Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-02-2014 Ran by Sony (administrator) on SONY-VAIO on 06-02-2014 08:21:30 Running from C:\Users\Sony\Desktop Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polish Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent64.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint\Apoint.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe () C:\Windows\SysWOW64\srvany.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\KMService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe () C:\Users\Sony\AppData\Roaming\pwo6\svchost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe (Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe () C:\Users\Sony\AppData\Local\Temp\_MEI20762\bin\winlogon.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApMsgFwd.exe (ALPS) C:\Program Files\Apoint\Apvfb.exe (Alps Electric Co., Ltd.) C:\Program Files\Apoint\ApntEx.exe (Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe (Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe (Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe (Sony of America Corporation) C:\Program Files\Sony\VAIO Care\listener.exe (ArcSoft, Inc.) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe () C:\Users\Sony\AppData\Local\Temp\_MEI20762\bin\explorer.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCsystray.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe (Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe (Microsoft Corporation) C:\Windows\System32\vds.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [cAudioFilterAgent] - C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [518784 2011-03-29] (Conexant Systems, Inc.) HKLM\...\Run: [Apoint] - C:\Program Files\Apoint\Apoint.exe [226672 2011-02-17] (Alps Electric Co., Ltd.) HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5618456 2013-09-12] (ESET) HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-13] (Intel Corporation) HKLM-x32\...\Run: [ISBMgr.exe] - C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [2757312 2011-02-15] (Sony Corporation) HKLM-x32\...\Run: [Application Layer Gateway] - C:\Program Files (x86)\Common Files\alg.exe HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe HKU\S-1-5-21-2432516722-503974337-737974545-1000\...\Run: [pwo6] - C:\Users\Sony\AppData\Roaming\pwo6\svchost.exe [7321472 2014-01-28] () HKU\S-1-5-21-2432516722-503974337-737974545-1000\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd) HKU\S-1-5-21-2432516722-503974337-737974545-1000\...\Run: [ChicaPasswordManager] - "C:\Program Files (x86)\ChicaLogic\Chica Password Manager\stpass.exe" /autorunned HKU\S-1-5-21-2432516722-503974337-737974545-1000\...\MountPoints2: {cc11b86d-88bd-11e3-978b-9439e5c4017a} - F:\autorun.exe ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://vaioportal.sony.eu HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://vaioportal.sony.eu HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://sony.msn.com HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://sony.msn.com SearchScopes: HKCU - {3028E4DD-8056-4F64-92CA-8DD29E951F4B} URL = http://services.zinio.com/search?s={searchTerms}&rf=sonyslices BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations) BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.20 FireFox: ======== FF ProfilePath: C:\Users\Sony\AppData\Roaming\Mozilla\Firefox\Profiles\ibhe72zo.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll () FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Extension: Jump Flip - C:\Users\Sony\AppData\Roaming\Mozilla\Firefox\Profiles\ibhe72zo.default\Extensions\firefox@jumpflip.net.xpi [2013-12-27] FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-12-31] ==================== Services (Whitelisted) ================= S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.) R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-04-29] (Atheros) S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [85096 2014-01-29] (Autodesk) R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1337752 2013-09-12] (ESET) R2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2013-12-31] () R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-14] (NVIDIA Corporation) R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [259192 2011-01-29] (Sony Corporation) R2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.) S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [887000 2011-01-20] (Sony Corporation) R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation) S2 Update Jump Flip; No ImagePath ==================== Drivers (Whitelisted) ==================== R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-01-29] (Disc Soft Ltd) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [239320 2013-09-17] (ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [168256 2013-09-17] (ESET) R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [157432 2013-09-17] (ESET) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-11-14] (NVIDIA Corporation) S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [239296 2013-09-17] (ESET) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-02-06 08:21 - 2014-02-06 08:21 - 00012119 _____ () C:\Users\Sony\Desktop\FRST.txt 2014-02-06 08:20 - 2014-02-06 08:21 - 00000000 ____D () C:\FRST 2014-02-06 08:19 - 2014-02-06 08:20 - 02082304 _____ (Farbar) C:\Users\Sony\Desktop\FRST64.exe 2014-02-02 21:50 - 2014-02-02 21:50 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\NVIDIA 2014-02-02 21:50 - 2014-02-02 21:50 - 00000000 ____D () C:\Users\Sony\AppData\Local\Two Worlds II 2014-02-02 21:48 - 2014-02-02 21:48 - 00000657 _____ () C:\Users\Public\Desktop\Two Worlds II.lnk 2014-02-02 21:45 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2014-02-02 21:45 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2014-02-02 21:45 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2014-02-02 21:45 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2014-02-02 21:45 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2014-02-02 21:45 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2014-02-02 17:34 - 2014-02-02 17:34 - 00000851 _____ () C:\Users\Sony\Desktop\µTorrent.lnk 2014-02-02 17:34 - 2014-02-02 17:34 - 00000000 ___SD () C:\Users\Sony\Documents\Chica Passwords 2014-02-02 17:33 - 2014-02-02 22:01 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\uTorrent 2014-02-02 17:33 - 2014-02-02 17:33 - 01142864 _____ (BitTorrent Inc.) C:\Users\Sony\Downloads\utorrent.exe 2014-02-02 17:29 - 2014-02-02 17:28 - 00094303 _____ () C:\Users\Sony\Desktop\Two Worlds 2.torrent 2014-02-01 19:44 - 2014-02-01 19:46 - 00000000 ____D () C:\Users\Sony\Desktop\p90x 2014-02-01 13:35 - 2014-02-01 13:35 - 00000000 ___RD () C:\Users\Sony\AppData\Roaming\Brother 2014-01-30 21:33 - 2014-01-30 21:35 - 00000000 ____D () C:\Users\Sony\AppData\Local\Microsoft Games 2014-01-30 11:03 - 2014-01-30 11:03 - 00448512 _____ (OldTimer Tools) C:\Users\Sony\Desktop\TFC.exe 2014-01-30 11:01 - 2014-01-30 11:01 - 00003148 _____ () C:\Windows\System32\Tasks\{406C5CB4-1D98-477D-95AB-ADEF4E121DF3} 2014-01-30 10:59 - 2014-01-30 10:59 - 00108314 _____ () C:\Users\Sony\Desktop\Extras.Txt 2014-01-30 10:58 - 2014-01-30 10:58 - 00222882 _____ () C:\Users\Sony\Desktop\OTL.Txt 2014-01-30 10:47 - 2014-01-30 10:47 - 00602112 _____ (OldTimer Tools) C:\Users\Sony\Desktop\OTL.exe 2014-01-29 10:14 - 2014-01-29 10:14 - 00001903 _____ () C:\Users\Public\Desktop\AutoCAD 2009 - Polski.lnk 2014-01-29 10:13 - 2014-01-29 10:14 - 00000000 ____D () C:\Program Files\AutoCAD 2009 2014-01-29 10:08 - 2014-01-29 10:08 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2014-01-29 10:08 - 2014-01-29 10:08 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite 2014-01-29 09:50 - 2014-01-29 09:50 - 00000000 ____D () C:\ProgramData\FLEXnet 2014-01-29 09:47 - 2014-01-29 09:47 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared 2014-01-29 09:46 - 2014-01-29 09:46 - 00001903 _____ () C:\Users\Public\Desktop\AutoCAD 2010 - Polski.lnk 2014-01-29 09:45 - 2014-02-03 16:55 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\Autodesk 2014-01-29 09:45 - 2014-02-03 16:55 - 00000000 ____D () C:\ProgramData\Autodesk 2014-01-29 09:45 - 2014-01-29 10:14 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared 2014-01-29 09:45 - 2014-01-29 10:13 - 00000000 ____D () C:\Users\Sony\AppData\Local\Autodesk 2014-01-29 09:45 - 2014-01-29 09:48 - 00000000 ____D () C:\Program Files\AutoCAD 2010 2014-01-29 09:44 - 2014-02-02 21:45 - 00092144 _____ () C:\Windows\DirectX.log 2014-01-29 09:42 - 2014-01-29 09:42 - 00002154 _____ () C:\Users\Public\Desktop\Autodesk Design Review.lnk 2014-01-29 09:42 - 2014-01-29 09:42 - 00000000 ____D () C:\Program Files (x86)\Autodesk 2014-01-28 19:01 - 2011-12-23 18:44 - 00000000 ____D () C:\Users\Sony\Desktop\Blicharski - Inżynieria Materiałowa Stal 2014-01-28 17:31 - 2008-02-20 17:09 - 00000000 ____D () C:\Users\Sony\Desktop\[Niezgodziński] Zadania z Wytrzymałości Materiałów 2014-01-28 17:30 - 2014-01-28 17:31 - 06132918 _____ () C:\Users\Sony\Desktop\Zadania z Wytrzymałości Materiałów - Niezgodziński.rar 2014-01-28 17:24 - 2014-01-28 17:44 - 505272387 _____ () C:\Users\Sony\Desktop\Blicharski - Inżynieria Materiałowa Stal.rar 2014-01-28 17:23 - 2014-02-06 08:13 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\pwo6 2014-01-27 18:21 - 2014-01-27 18:21 - 24205343 _____ () C:\Users\Sony\Desktop\zdjęcia obrazy.rar 2014-01-27 18:19 - 2014-01-27 18:20 - 00000000 ____D () C:\Users\Sony\Desktop\szkoła III semestr 2014-01-15 22:28 - 2014-02-06 08:13 - 00011766 _____ () C:\Windows\setupact.log 2014-01-15 22:28 - 2014-02-03 07:08 - 00007130 _____ () C:\Windows\PFRO.log 2014-01-15 22:28 - 2014-01-15 22:28 - 00000000 _____ () C:\Windows\setuperr.log 2014-01-15 21:27 - 2014-01-15 22:16 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\Auslogics 2014-01-15 21:25 - 2014-01-31 13:33 - 00159111 _____ () C:\test.xml 2014-01-15 15:13 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2014-01-15 15:13 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2014-01-15 15:13 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2014-01-15 15:13 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2014-01-15 15:13 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2014-01-15 15:13 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2014-01-15 15:13 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2014-01-15 15:13 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2014-01-15 15:13 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-01-12 10:10 - 2014-01-12 10:10 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help 2014-01-12 10:10 - 2014-01-12 10:10 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help 2014-01-12 10:07 - 2014-01-15 20:06 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\Skype 2014-01-11 13:08 - 2014-01-11 13:08 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-01-11 13:08 - 2014-01-11 13:08 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-01-10 19:28 - 2014-01-10 19:28 - 00000404 _____ () C:\Windows\BRWMARK.INI 2014-01-10 19:26 - 2014-01-10 19:26 - 00000050 _____ () C:\Windows\system32\bridf08b.dat 2014-01-10 19:26 - 2014-01-10 19:26 - 00000000 ____D () C:\Program Files (x86)\Brother 2014-01-10 19:26 - 2012-07-05 20:32 - 00084480 ____N (Brother Industries, Ltd.) C:\Windows\system32\BrNetSti.dll 2014-01-10 19:26 - 2009-07-21 15:32 - 01560064 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrWia09b.dll 2014-01-10 19:26 - 2009-05-19 17:39 - 00003072 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2S.dll 2014-01-10 19:26 - 2009-02-24 12:52 - 00058368 ____N (Brother Industries,Ltd.) C:\Windows\system32\BrWiaNCp.dll 2014-01-10 19:26 - 2009-02-24 12:52 - 00047616 ____N (Brother Industries,Ltd) C:\Windows\system32\Brnsplg.dll 2014-01-10 19:26 - 2009-01-19 09:29 - 00057344 _____ (Brother Industries Ltd.) C:\Windows\SysWOW64\brprtink.dll 2014-01-10 19:26 - 2008-06-17 15:35 - 00207872 ____N (brother) C:\Windows\system32\NSSRH64.dll 2014-01-10 19:26 - 2008-06-17 15:33 - 00167936 ____N (brother) C:\Windows\SysWOW64\NSSearch.dll 2014-01-10 19:26 - 2007-12-13 22:16 - 00073728 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2.dll 2014-01-10 19:26 - 2007-12-13 22:16 - 00004608 ____N (Brother Industries Ltd.) C:\Windows\SysWOW64\BrDctF2L.dll 2014-01-10 19:26 - 2006-12-28 13:39 - 00176128 ____N (Brother Industries, Ltd.) C:\Windows\SysWOW64\BroSNMP.dll 2014-01-10 19:26 - 2005-04-22 13:36 - 00143360 ____N () C:\Windows\system32\BrSNMP64.dll 2014-01-10 19:24 - 2014-01-10 19:24 - 00000000 ____D () C:\ProgramData\Brother 2014-01-10 18:38 - 2014-01-10 18:49 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\Apple Computer 2014-01-10 18:38 - 2014-01-10 18:38 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-01-10 18:38 - 2014-01-10 18:38 - 00000000 ____D () C:\Users\Sony\AppData\Local\Apple Computer 2014-01-10 18:37 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys 2014-01-10 18:36 - 2014-01-10 18:37 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-01-10 18:36 - 2014-01-10 18:37 - 00000000 ____D () C:\Program Files\iTunes 2014-01-10 18:36 - 2014-01-10 18:37 - 00000000 ____D () C:\Program Files (x86)\iTunes 2014-01-10 18:36 - 2014-01-10 18:36 - 00000000 ____D () C:\ProgramData\Apple Computer 2014-01-10 18:36 - 2014-01-10 18:36 - 00000000 ____D () C:\Program Files\iPod 2014-01-10 18:35 - 2014-01-10 18:35 - 00000000 ____D () C:\Windows\System32\Tasks\Apple 2014-01-10 18:35 - 2014-01-10 18:35 - 00000000 ____D () C:\Users\Sony\AppData\Local\Apple 2014-01-10 18:35 - 2014-01-10 18:35 - 00000000 ____D () C:\Program Files\Common Files\Apple 2014-01-10 18:35 - 2014-01-10 18:35 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update 2014-01-10 18:34 - 2014-01-10 18:35 - 00000000 ____D () C:\ProgramData\Apple 2014-01-10 16:20 - 2014-01-10 16:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf ==================== One Month Modified Files and Folders ======= 2014-02-06 08:21 - 2014-02-06 08:21 - 00012119 _____ () C:\Users\Sony\Desktop\FRST.txt 2014-02-06 08:21 - 2014-02-06 08:20 - 00000000 ____D () C:\FRST 2014-02-06 08:21 - 2009-07-14 05:45 - 00021200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-02-06 08:21 - 2009-07-14 05:45 - 00021200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-02-06 08:20 - 2014-02-06 08:19 - 02082304 _____ (Farbar) C:\Users\Sony\Desktop\FRST64.exe 2014-02-06 08:14 - 2010-01-01 01:28 - 01772537 _____ () C:\Windows\WindowsUpdate.log 2014-02-06 08:13 - 2014-01-28 17:23 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\pwo6 2014-02-06 08:13 - 2014-01-15 22:28 - 00011766 _____ () C:\Windows\setupact.log 2014-02-06 08:13 - 2010-01-01 01:39 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-02-06 08:13 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-02-05 23:13 - 2013-12-31 20:57 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-02-05 16:13 - 2013-12-31 20:57 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-02-05 16:13 - 2013-12-31 20:57 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-02-05 16:13 - 2013-12-31 20:57 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-02-05 15:47 - 2012-12-31 17:50 - 00003966 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{CC367994-EB23-43D8-A78B-3603F9B4F2FF} 2014-02-04 11:12 - 2009-07-14 06:08 - 00032508 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-02-03 16:55 - 2014-01-29 09:45 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\Autodesk 2014-02-03 16:55 - 2014-01-29 09:45 - 00000000 ____D () C:\ProgramData\Autodesk 2014-02-03 07:08 - 2014-01-15 22:28 - 00007130 _____ () C:\Windows\PFRO.log 2014-02-02 22:52 - 2014-01-01 10:11 - 00000000 ____D () C:\Users\Sony\AppData\Local\CrashDumps 2014-02-02 22:01 - 2014-02-02 17:33 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\uTorrent 2014-02-02 21:50 - 2014-02-02 21:50 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\NVIDIA 2014-02-02 21:50 - 2014-02-02 21:50 - 00000000 ____D () C:\Users\Sony\AppData\Local\Two Worlds II 2014-02-02 21:48 - 2014-02-02 21:48 - 00000657 _____ () C:\Users\Public\Desktop\Two Worlds II.lnk 2014-02-02 21:45 - 2014-01-29 09:44 - 00092144 _____ () C:\Windows\DirectX.log 2014-02-02 17:34 - 2014-02-02 17:34 - 00000851 _____ () C:\Users\Sony\Desktop\µTorrent.lnk 2014-02-02 17:34 - 2014-02-02 17:34 - 00000000 ___SD () C:\Users\Sony\Documents\Chica Passwords 2014-02-02 17:33 - 2014-02-02 17:33 - 01142864 _____ (BitTorrent Inc.) C:\Users\Sony\Downloads\utorrent.exe 2014-02-02 17:28 - 2014-02-02 17:29 - 00094303 _____ () C:\Users\Sony\Desktop\Two Worlds 2.torrent 2014-02-01 19:47 - 2011-02-14 21:50 - 00740672 _____ () C:\Windows\system32\perfh015.dat 2014-02-01 19:47 - 2011-02-14 21:50 - 00156214 _____ () C:\Windows\system32\perfc015.dat 2014-02-01 19:47 - 2009-07-14 06:13 - 01670518 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-02-01 19:46 - 2014-02-01 19:44 - 00000000 ____D () C:\Users\Sony\Desktop\p90x 2014-02-01 13:35 - 2014-02-01 13:35 - 00000000 ___RD () C:\Users\Sony\AppData\Roaming\Brother 2014-01-31 13:33 - 2014-01-15 21:25 - 00159111 _____ () C:\test.xml 2014-01-30 21:35 - 2014-01-30 21:33 - 00000000 ____D () C:\Users\Sony\AppData\Local\Microsoft Games 2014-01-30 11:03 - 2014-01-30 11:03 - 00448512 _____ (OldTimer Tools) C:\Users\Sony\Desktop\TFC.exe 2014-01-30 11:01 - 2014-01-30 11:01 - 00003148 _____ () C:\Windows\System32\Tasks\{406C5CB4-1D98-477D-95AB-ADEF4E121DF3} 2014-01-30 10:59 - 2014-01-30 10:59 - 00108314 _____ () C:\Users\Sony\Desktop\Extras.Txt 2014-01-30 10:58 - 2014-01-30 10:58 - 00222882 _____ () C:\Users\Sony\Desktop\OTL.Txt 2014-01-30 10:47 - 2014-01-30 10:47 - 00602112 _____ (OldTimer Tools) C:\Users\Sony\Desktop\OTL.exe 2014-01-29 14:25 - 2012-12-31 19:18 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\newnext.me 2014-01-29 14:09 - 2009-07-14 05:45 - 00520600 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-01-29 10:17 - 2012-12-31 17:47 - 00149400 _____ () C:\Users\Sony\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-29 10:14 - 2014-01-29 10:14 - 00001903 _____ () C:\Users\Public\Desktop\AutoCAD 2009 - Polski.lnk 2014-01-29 10:14 - 2014-01-29 10:13 - 00000000 ____D () C:\Program Files\AutoCAD 2009 2014-01-29 10:14 - 2014-01-29 09:45 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared 2014-01-29 10:13 - 2014-01-29 09:45 - 00000000 ____D () C:\Users\Sony\AppData\Local\Autodesk 2014-01-29 10:12 - 2014-01-05 18:49 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office 2014-01-29 10:10 - 2012-12-31 19:18 - 00000000 ____D () C:\Users\Sony\AppData\Local\Mobogenie 2014-01-29 10:10 - 2012-12-31 19:18 - 00000000 ____D () C:\Users\Sony\AppData\Local\genienext 2014-01-29 10:10 - 2012-12-31 19:18 - 00000000 ____D () C:\Program Files (x86)\Mobogenie 2014-01-29 10:08 - 2014-01-29 10:08 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2014-01-29 10:08 - 2014-01-29 10:08 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite 2014-01-29 09:50 - 2014-01-29 09:50 - 00000000 ____D () C:\ProgramData\FLEXnet 2014-01-29 09:48 - 2014-01-29 09:45 - 00000000 ____D () C:\Program Files\AutoCAD 2010 2014-01-29 09:48 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Help 2014-01-29 09:47 - 2014-01-29 09:47 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared 2014-01-29 09:46 - 2014-01-29 09:46 - 00001903 _____ () C:\Users\Public\Desktop\AutoCAD 2010 - Polski.lnk 2014-01-29 09:42 - 2014-01-29 09:42 - 00002154 _____ () C:\Users\Public\Desktop\Autodesk Design Review.lnk 2014-01-29 09:42 - 2014-01-29 09:42 - 00000000 ____D () C:\Program Files (x86)\Autodesk 2014-01-28 17:44 - 2014-01-28 17:24 - 505272387 _____ () C:\Users\Sony\Desktop\Blicharski - Inżynieria Materiałowa Stal.rar 2014-01-28 17:31 - 2014-01-28 17:30 - 06132918 _____ () C:\Users\Sony\Desktop\Zadania z Wytrzymałości Materiałów - Niezgodziński.rar 2014-01-27 18:21 - 2014-01-27 18:21 - 24205343 _____ () C:\Users\Sony\Desktop\zdjęcia obrazy.rar 2014-01-27 18:20 - 2014-01-27 18:19 - 00000000 ____D () C:\Users\Sony\Desktop\szkoła III semestr 2014-01-23 17:42 - 2011-02-14 22:24 - 01643124 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-01-18 22:33 - 2013-12-31 20:56 - 00000000 ____D () C:\Users\Sony\AppData\Local\Adobe 2014-01-15 22:28 - 2014-01-15 22:28 - 00000000 _____ () C:\Windows\setuperr.log 2014-01-15 22:28 - 2012-12-31 17:46 - 00000000 ____D () C:\Users\Sony 2014-01-15 22:19 - 2010-01-01 01:27 - 00000000 ____D () C:\ProgramData\Sony Corporation 2014-01-15 22:16 - 2014-01-15 21:27 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\Auslogics 2014-01-15 20:06 - 2014-01-12 10:07 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\Skype 2014-01-15 20:06 - 2010-01-01 02:11 - 00000000 ____D () C:\ProgramData\Skype 2014-01-15 19:48 - 2014-01-05 18:49 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-01-15 19:47 - 2013-12-31 21:32 - 00000000 ____D () C:\Windows\system32\MRT 2014-01-15 19:45 - 2013-12-31 21:31 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-12 10:10 - 2014-01-12 10:10 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help 2014-01-12 10:10 - 2014-01-12 10:10 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help 2014-01-12 10:10 - 2009-07-14 03:34 - 00000478 _____ () C:\Windows\win.ini 2014-01-11 18:38 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache 2014-01-11 13:08 - 2014-01-11 13:08 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-01-11 13:08 - 2014-01-11 13:08 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-01-10 21:44 - 2011-07-15 06:21 - 00000000 ____D () C:\Program Files\Windows Journal 2014-01-10 21:44 - 2011-02-14 21:15 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer 2014-01-10 21:44 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm 2014-01-10 21:44 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN 2014-01-10 21:44 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr 2014-01-10 21:44 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts 2014-01-10 21:44 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Sidebar 2014-01-10 21:44 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer 2014-01-10 21:44 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Defender 2014-01-10 21:44 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\DVD Maker 2014-01-10 21:44 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar 2014-01-10 21:44 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer 2014-01-10 21:44 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender 2014-01-10 21:44 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI 2014-01-10 21:44 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz 2014-01-10 21:44 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism 2014-01-10 21:44 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\System 2014-01-10 21:43 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\system32\winrm 2014-01-10 21:43 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\system32\WCN 2014-01-10 21:43 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\system32\slmgr 2014-01-10 21:43 - 2010-11-21 08:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts 2014-01-10 21:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR 2014-01-10 21:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\com 2014-01-10 21:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sysprep 2014-01-10 21:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\oobe 2014-01-10 21:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\MUI 2014-01-10 21:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\migwiz 2014-01-10 21:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism 2014-01-10 21:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\com 2014-01-10 21:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\servicing 2014-01-10 21:43 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\IME 2014-01-10 21:42 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\tr-TR 2014-01-10 21:41 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK 2014-01-10 21:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\ro-RO 2014-01-10 21:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sk-SK 2014-01-10 21:40 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\ro-RO 2014-01-10 21:35 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\bg-BG 2014-01-10 21:34 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\bg-BG 2014-01-10 21:34 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Speech 2014-01-10 19:28 - 2014-01-10 19:28 - 00000404 _____ () C:\Windows\BRWMARK.INI 2014-01-10 19:26 - 2014-01-10 19:26 - 00000050 _____ () C:\Windows\system32\bridf08b.dat 2014-01-10 19:26 - 2014-01-10 19:26 - 00000000 ____D () C:\Program Files (x86)\Brother 2014-01-10 19:25 - 2010-01-01 01:31 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-01-10 19:24 - 2014-01-10 19:24 - 00000000 ____D () C:\ProgramData\Brother 2014-01-10 18:49 - 2014-01-10 18:38 - 00000000 ____D () C:\Users\Sony\AppData\Roaming\Apple Computer 2014-01-10 18:38 - 2014-01-10 18:38 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk 2014-01-10 18:38 - 2014-01-10 18:38 - 00000000 ____D () C:\Users\Sony\AppData\Local\Apple Computer 2014-01-10 18:37 - 2014-01-10 18:36 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69 2014-01-10 18:37 - 2014-01-10 18:36 - 00000000 ____D () C:\Program Files\iTunes 2014-01-10 18:37 - 2014-01-10 18:36 - 00000000 ____D () C:\Program Files (x86)\iTunes 2014-01-10 18:36 - 2014-01-10 18:36 - 00000000 ____D () C:\ProgramData\Apple Computer 2014-01-10 18:36 - 2014-01-10 18:36 - 00000000 ____D () C:\Program Files\iPod 2014-01-10 18:35 - 2014-01-10 18:35 - 00000000 ____D () C:\Windows\System32\Tasks\Apple 2014-01-10 18:35 - 2014-01-10 18:35 - 00000000 ____D () C:\Users\Sony\AppData\Local\Apple 2014-01-10 18:35 - 2014-01-10 18:35 - 00000000 ____D () C:\Program Files\Common Files\Apple 2014-01-10 18:35 - 2014-01-10 18:35 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update 2014-01-10 18:35 - 2014-01-10 18:34 - 00000000 ____D () C:\ProgramData\Apple 2014-01-10 16:20 - 2014-01-10 16:20 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-29 14:53 ==================== End Of Log ============================