TA STRONA UŻYWA COOKIE. Dowiedz się więcej o celu ich używania i zmianie ustawień cookie w przeglądarce. Korzystając ze strony wyrażasz zgodę na używanie cookie, zgodnie z aktualnymi ustawieniami przeglądarki.  [X]
Nick Data Język
mazak987 17/10/2013 10:18:55 Plain Text

otl

  1. OTL logfile created on: 2013-10-17 11:03:19 - Run 1
  2. OTL by OldTimer - Version 3.2.69.0    Folder = C:\Users\kkuuu_000\Downloads
  3. 64bit- An unknown product  (Version = 6.2.9200) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.10.9200.16688)
  5. Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
  6.  
  7. 5,89 Gb Total Physical Memory | 4,72 Gb Available Physical Memory | 80,07% Memory free
  8. 6,83 Gb Paging File | 4,95 Gb Available in Paging File | 72,40% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 906,99 Gb Total Space | 798,93 Gb Free Space | 88,09% Space Free | Partition Type: NTFS
  13.  
  14. Computer Name: KUBA | User Name: kkuuu_000 | Logged in as Administrator.
  15. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
  16. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days
  17.  
  18. [color=#E56717]========== Processes (SafeList) ==========[/color]
  19.  
  20. PRC - [2013-10-17 11:00:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\kkuuu_000\Downloads\OTL.exe
  21. PRC - [2013-10-03 16:15:04 | 000,237,960 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
  22. PRC - [2013-10-03 08:03:07 | 000,844,752 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  23. PRC - [2013-08-30 09:47:34 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Programy\AVAST Software\Avast\AvastUI.exe
  24. PRC - [2013-08-30 09:47:33 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Programy\AVAST Software\Avast\AvastSvc.exe
  25. PRC - [2013-07-12 18:54:10 | 003,017,776 | ---- | M] (Samsung Electronics CO., LTD.) -- C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe
  26. PRC - [2012-12-05 19:57:52 | 000,323,584 | R--- | M] (Atheros) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
  27. PRC - [2012-09-05 16:50:26 | 001,593,976 | ---- | M] (Samsung Electronics CO., LTD.) -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
  28. PRC - [2012-09-05 16:50:24 | 000,085,112 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
  29. PRC - [2012-09-05 16:50:16 | 002,623,096 | ---- | M] (Samsung Electronics CO., LTD.) -- C:\Program Files (x86)\Samsung\Settings\sSettings.exe
  30. PRC - [2012-09-01 18:07:22 | 000,285,240 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
  31. PRC - [2012-09-01 18:07:22 | 000,014,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
  32. PRC - [2012-08-15 20:41:26 | 000,097,392 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
  33. PRC - [2012-06-08 05:34:06 | 000,111,120 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
  34. PRC - [2012-04-03 22:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
  35.  
  36.  
  37. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  38.  
  39. MOD - [2013-10-10 00:22:19 | 013,584,776 | ---- | M] () -- C:\Users\kkuuu_000\AppData\Local\Google\Chrome\User Data\PepperFlash\11.9.900.117\pepflashplayer.dll
  40. MOD - [2013-10-03 08:03:05 | 000,415,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll
  41. MOD - [2013-10-03 08:03:03 | 004,055,504 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll
  42. MOD - [2013-10-03 08:02:12 | 000,698,832 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\libglesv2.dll
  43. MOD - [2013-10-03 08:02:11 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\libegl.dll
  44. MOD - [2013-10-03 08:02:09 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ffmpegsumo.dll
  45. MOD - [2013-08-22 12:00:38 | 001,075,200 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\1b00485b37f0c4fccca7911fd9ded2fd\System.ServiceModel.Web.ni.dll
  46. MOD - [2013-08-19 10:20:37 | 002,959,872 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\6c91ea2e73f76025bbd03f0db7b0951a\System.IdentityModel.ni.dll
  47. MOD - [2013-08-19 10:20:12 | 000,366,592 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorUtil\ddbdad196d6ec27aca38e6e7b05a117b\IAStorUtil.ni.dll
  48. MOD - [2013-08-19 10:20:09 | 000,802,816 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\d438e7ec4899763070e7b5db3f166373\System.ServiceModel.Internals.ni.dll
  49. MOD - [2013-08-19 10:20:09 | 000,121,344 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\3df2fdd27a3e685ce5dda8bce4956e5b\SMDiagnostics.ni.dll
  50. MOD - [2013-08-15 14:05:36 | 007,566,336 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System.Xml\624ad6159b6e241ad6d28bf4dca9f14b\System.Xml.ni.dll
  51. MOD - [2013-08-15 14:05:22 | 012,698,624 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\3143512c68ba24d18b7444b13fae2abb\System.Windows.Forms.ni.dll
  52. MOD - [2013-08-15 14:05:05 | 019,537,408 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\ff5e9ab48d262357d4c44a6d5be4bced\System.ServiceModel.ni.dll
  53. MOD - [2013-08-15 14:04:40 | 002,786,816 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\945ba6fe50e8eb0db17d47f899d5f6c4\System.Runtime.Serialization.ni.dll
  54. MOD - [2013-08-15 14:04:34 | 001,631,744 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\3603744988436295da5d16e76038e484\System.Drawing.ni.dll
  55. MOD - [2013-08-15 14:04:21 | 000,964,096 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\19ecec839509af76b1bc0ccbabd60acd\System.Configuration.ni.dll
  56. MOD - [2013-08-15 14:03:32 | 006,998,016 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System.Core\acf905c62ab9c1b77ca69e8b745e3fdb\System.Core.ni.dll
  57. MOD - [2013-08-15 14:03:23 | 009,937,408 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\System\375a937eec7d6faa53ac11ab2973eb76\System.ni.dll
  58. MOD - [2013-08-05 14:31:01 | 000,029,696 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorDataMcfeeca6f#\e95ff740f4c52eca60af5d2a3fd8cf2f\IAStorDataMgrSvcInterfaces.ni.dll
  59. MOD - [2013-08-05 14:30:59 | 000,026,112 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\IAStorCommon\3baf6eefe8ca1de3ae7111a70e477255\IAStorCommon.ni.dll
  60. MOD - [2013-07-28 22:43:56 | 016,547,328 | ---- | M] () -- C:\windows\assembly\NativeImages_v4.0.30319_32\mscorlib\5e3a9f3d64adfb3c69b49d37368bf454\mscorlib.ni.dll
  61. MOD - [2012-09-05 16:50:28 | 000,110,712 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasySettingsBase.dll
  62. MOD - [2012-09-05 16:50:22 | 000,211,064 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\CmdServer\WinCRT.dll
  63. MOD - [2012-09-05 16:50:16 | 000,060,536 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasyMovieEnhancer.dll
  64. MOD - [2012-09-05 16:50:10 | 000,103,544 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasySettingsCmdClient.dll
  65. MOD - [2012-09-05 16:50:10 | 000,026,744 | ---- | M] () -- C:\Program Files (x86)\Samsung\Settings\EasySettingsAPI.dll
  66. MOD - [2012-06-08 11:34:06 | 000,016,400 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
  67. MOD - [2012-06-08 05:34:06 | 000,627,216 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
  68.  
  69.  
  70. [color=#E56717]========== Services (SafeList) ==========[/color]
  71.  
  72. SRV:[b]64bit:[/b] - [2013-08-16 07:39:26 | 002,371,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
  73. SRV:[b]64bit:[/b] - [2013-07-02 02:44:21 | 000,016,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
  74. SRV:[b]64bit:[/b] - [2013-06-25 00:54:45 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
  75. SRV:[b]64bit:[/b] - [2013-06-01 11:19:58 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
  76. SRV:[b]64bit:[/b] - [2013-05-04 08:58:02 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
  77. SRV:[b]64bit:[/b] - [2013-05-04 08:57:05 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
  78. SRV:[b]64bit:[/b] - [2013-04-09 06:48:42 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
  79. SRV:[b]64bit:[/b] - [2013-03-02 04:45:07 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
  80. SRV:[b]64bit:[/b] - [2013-03-02 04:45:05 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
  81. SRV:[b]64bit:[/b] - [2013-01-10 01:23:16 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
  82. SRV:[b]64bit:[/b] - [2013-01-10 01:22:35 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
  83. SRV:[b]64bit:[/b] - [2012-09-20 08:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
  84. SRV:[b]64bit:[/b] - [2012-08-01 19:06:02 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
  85. SRV:[b]64bit:[/b] - [2012-07-26 05:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
  86. SRV:[b]64bit:[/b] - [2012-07-26 05:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
  87. SRV:[b]64bit:[/b] - [2012-07-26 05:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
  88. SRV:[b]64bit:[/b] - [2012-07-26 05:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
  89. SRV:[b]64bit:[/b] - [2012-07-26 05:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
  90. SRV:[b]64bit:[/b] - [2012-07-26 05:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
  91. SRV:[b]64bit:[/b] - [2012-07-26 05:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
  92. SRV:[b]64bit:[/b] - [2012-07-26 05:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
  93. SRV:[b]64bit:[/b] - [2012-07-26 05:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
  94. SRV:[b]64bit:[/b] - [2012-07-26 05:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
  95. SRV:[b]64bit:[/b] - [2012-07-26 05:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
  96. SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
  97. SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
  98. SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
  99. SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
  100. SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
  101. SRV:[b]64bit:[/b] - [2012-07-26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
  102. SRV - [2013-08-30 09:47:33 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Programy\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
  103. SRV - [2013-07-12 18:54:10 | 003,017,776 | ---- | M] (Samsung Electronics CO., LTD.) [Auto | Running] -- C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe -- (SWUpdateService)
  104. SRV - [2012-12-05 20:44:14 | 000,231,552 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\adminservice.exe -- (AtherosSvc)
  105. SRV - [2012-12-05 19:57:52 | 000,323,584 | R--- | M] (Atheros) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe -- (ZAtheros Bt and Wlan Coex Agent)
  106. SRV - [2012-09-05 16:50:26 | 001,593,976 | ---- | M] (Samsung Electronics CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe -- (Easy Launcher)
  107. SRV - [2012-09-01 18:07:22 | 000,014,904 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
  108. SRV - [2012-07-26 05:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
  109. SRV - [2012-07-26 05:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
  110. SRV - [2012-07-20 08:52:12 | 000,276,288 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
  111. SRV - [2012-04-03 22:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
  112. SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
  113.  
  114.  
  115. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  116.  
  117. DRV:[b]64bit:[/b] - [2013-08-30 09:48:10 | 001,030,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
  118. DRV:[b]64bit:[/b] - [2013-08-30 09:48:10 | 000,378,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\SysNative\drivers\aswSP.sys -- (aswSP)
  119. DRV:[b]64bit:[/b] - [2013-08-30 09:48:10 | 000,204,880 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
  120. DRV:[b]64bit:[/b] - [2013-08-30 09:48:10 | 000,072,016 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\aswRdr2.sys -- (aswRdr)
  121. DRV:[b]64bit:[/b] - [2013-08-30 09:48:10 | 000,065,336 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
  122. DRV:[b]64bit:[/b] - [2013-08-30 09:48:10 | 000,064,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
  123. DRV:[b]64bit:[/b] - [2013-08-30 09:48:09 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\Drivers\aswMonFlt.sys -- (aswMonFlt)
  124. DRV:[b]64bit:[/b] - [2013-08-30 09:48:09 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
  125. DRV:[b]64bit:[/b] - [2013-08-16 07:41:13 | 000,058,200 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
  126. DRV:[b]64bit:[/b] - [2013-07-09 10:04:07 | 000,120,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
  127. DRV:[b]64bit:[/b] - [2013-07-02 02:44:14 | 000,036,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
  128. DRV:[b]64bit:[/b] - [2013-07-02 00:08:49 | 000,247,216 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
  129. DRV:[b]64bit:[/b] - [2013-06-29 08:15:54 | 000,195,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
  130. DRV:[b]64bit:[/b] - [2013-06-10 23:17:46 | 000,096,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
  131. DRV:[b]64bit:[/b] - [2013-06-01 13:29:35 | 000,337,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
  132. DRV:[b]64bit:[/b] - [2013-06-01 13:29:35 | 000,213,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
  133. DRV:[b]64bit:[/b] - [2013-06-01 05:08:57 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
  134. DRV:[b]64bit:[/b] - [2013-05-04 09:34:17 | 000,446,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
  135. DRV:[b]64bit:[/b] - [2013-05-04 09:34:15 | 000,284,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
  136. DRV:[b]64bit:[/b] - [2013-03-02 12:57:46 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
  137. DRV:[b]64bit:[/b] - [2013-03-02 12:45:20 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
  138. DRV:[b]64bit:[/b] - [2013-03-02 12:39:38 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
  139. DRV:[b]64bit:[/b] - [2013-01-11 19:02:34 | 000,064,624 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sys -- (MEIx64)
  140. DRV:[b]64bit:[/b] - [2013-01-10 03:53:32 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
  141. DRV:[b]64bit:[/b] - [2012-12-05 20:25:20 | 000,576,152 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btfilter.sys -- (BtFilter)
  142. DRV:[b]64bit:[/b] - [2012-12-05 20:25:18 | 000,135,832 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btath_rcp.sys -- (BTATH_RCP)
  143. DRV:[b]64bit:[/b] - [2012-12-05 20:25:16 | 000,222,360 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btath_hid.sys -- (BTATH_HID)
  144. DRV:[b]64bit:[/b] - [2012-12-05 20:25:16 | 000,178,840 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btath_hcrp.sys -- (BTATH_HCRP)
  145. DRV:[b]64bit:[/b] - [2012-12-05 20:25:16 | 000,077,464 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btath_lwflt.sys -- (BTATH_LWFLT)
  146. DRV:[b]64bit:[/b] - [2012-12-05 20:25:14 | 000,344,216 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btath_a2dp.sys -- (BTATH_A2DP)
  147. DRV:[b]64bit:[/b] - [2012-12-05 20:25:14 | 000,114,840 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btath_avdt.sys -- (btath_avdt)
  148. DRV:[b]64bit:[/b] - [2012-12-05 20:25:14 | 000,088,728 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btath_flt.sys -- (AthBTPort)
  149. DRV:[b]64bit:[/b] - [2012-12-05 20:25:14 | 000,033,944 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\btath_bus.sys -- (BTATH_BUS)
  150. DRV:[b]64bit:[/b] - [2012-11-27 05:55:44 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
  151. DRV:[b]64bit:[/b] - [2012-11-20 06:54:31 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
  152. DRV:[b]64bit:[/b] - [2012-11-06 05:55:44 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
  153. DRV:[b]64bit:[/b] - [2012-10-16 19:02:04 | 000,457,016 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SynTP.sys -- (SynTP)
  154. DRV:[b]64bit:[/b] - [2012-10-12 10:08:01 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
  155. DRV:[b]64bit:[/b] - [2012-10-11 09:25:48 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
  156. DRV:[b]64bit:[/b] - [2012-09-20 09:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
  157. DRV:[b]64bit:[/b] - [2012-09-20 09:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
  158. DRV:[b]64bit:[/b] - [2012-09-19 00:15:20 | 003,653,632 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\athw8x.sys -- (athr)
  159. DRV:[b]64bit:[/b] - [2012-09-01 18:01:56 | 000,647,736 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA)
  160. DRV:[b]64bit:[/b] - [2012-08-01 20:54:18 | 010,280,960 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmdag.sys -- (amdkmdag)
  161. DRV:[b]64bit:[/b] - [2012-08-01 18:09:30 | 000,368,640 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmpag.sys -- (amdkmdap)
  162. DRV:[b]64bit:[/b] - [2012-07-31 00:04:12 | 000,690,832 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Rt630x64.sys -- (RTL8168)
  163. DRV:[b]64bit:[/b] - [2012-07-27 14:00:03 | 000,023,408 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\RadioHIDMini.sys -- (RadioHIDMini)
  164. DRV:[b]64bit:[/b] - [2012-07-26 07:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
  165. DRV:[b]64bit:[/b] - [2012-07-26 07:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
  166. DRV:[b]64bit:[/b] - [2012-07-26 07:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
  167. DRV:[b]64bit:[/b] - [2012-07-26 07:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
  168. DRV:[b]64bit:[/b] - [2012-07-26 07:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
  169. DRV:[b]64bit:[/b] - [2012-07-26 07:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
  170. DRV:[b]64bit:[/b] - [2012-07-26 07:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
  171. DRV:[b]64bit:[/b] - [2012-07-26 07:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
  172. DRV:[b]64bit:[/b] - [2012-07-26 07:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
  173. DRV:[b]64bit:[/b] - [2012-07-26 07:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
  174. DRV:[b]64bit:[/b] - [2012-07-26 07:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
  175. DRV:[b]64bit:[/b] - [2012-07-26 07:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
  176. DRV:[b]64bit:[/b] - [2012-07-26 07:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
  177. DRV:[b]64bit:[/b] - [2012-07-26 07:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
  178. DRV:[b]64bit:[/b] - [2012-07-26 07:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
  179. DRV:[b]64bit:[/b] - [2012-07-26 07:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
  180. DRV:[b]64bit:[/b] - [2012-07-26 07:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
  181. DRV:[b]64bit:[/b] - [2012-07-26 06:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
  182. DRV:[b]64bit:[/b] - [2012-07-26 06:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
  183. DRV:[b]64bit:[/b] - [2012-07-26 05:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
  184. DRV:[b]64bit:[/b] - [2012-07-26 04:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
  185. DRV:[b]64bit:[/b] - [2012-07-26 04:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
  186. DRV:[b]64bit:[/b] - [2012-07-26 04:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
  187. DRV:[b]64bit:[/b] - [2012-07-26 04:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
  188. DRV:[b]64bit:[/b] - [2012-07-26 04:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
  189. DRV:[b]64bit:[/b] - [2012-07-26 04:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
  190. DRV:[b]64bit:[/b] - [2012-07-26 04:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
  191. DRV:[b]64bit:[/b] - [2012-07-26 04:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
  192. DRV:[b]64bit:[/b] - [2012-07-26 04:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
  193. DRV:[b]64bit:[/b] - [2012-07-26 04:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
  194. DRV:[b]64bit:[/b] - [2012-07-26 04:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
  195. DRV:[b]64bit:[/b] - [2012-07-26 04:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
  196. DRV:[b]64bit:[/b] - [2012-07-26 04:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
  197. DRV:[b]64bit:[/b] - [2012-07-26 04:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
  198. DRV:[b]64bit:[/b] - [2012-07-26 04:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
  199. DRV:[b]64bit:[/b] - [2012-07-26 04:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
  200. DRV:[b]64bit:[/b] - [2012-07-26 04:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
  201. DRV:[b]64bit:[/b] - [2012-07-26 04:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
  202. DRV:[b]64bit:[/b] - [2012-07-26 04:25:02 | 000,202,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\BthLEEnum.sys -- (BthLEEnum)
  203. DRV:[b]64bit:[/b] - [2012-07-26 04:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
  204. DRV:[b]64bit:[/b] - [2012-07-26 04:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
  205. DRV:[b]64bit:[/b] - [2012-07-26 04:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
  206. DRV:[b]64bit:[/b] - [2012-07-20 08:47:54 | 008,982,208 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\igdpmd64.sys -- (intelkmd)
  207. DRV:[b]64bit:[/b] - [2012-07-20 08:47:54 | 008,982,208 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\igdkmd64.sys -- (igfx)
  208. DRV:[b]64bit:[/b] - [2012-07-09 14:19:26 | 000,035,496 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\amdkmpfd.sys -- (amdkmpfd)
  209. DRV:[b]64bit:[/b] - [2012-06-25 10:24:50 | 000,092,536 | ---- | M] (CyberLink) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\CLVirtualDrive.sys -- (CLVirtualDrive)
  210. DRV:[b]64bit:[/b] - [2012-06-19 16:40:52 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\IntcDAud.sys -- (IntcDAud)
  211. DRV:[b]64bit:[/b] - [2012-06-15 07:50:46 | 000,315,536 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\RtsUVStor.sys -- (RSUSBVSTOR)
  212.  
  213. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  214.  
  215.  
  216. [color=#E56717]========== Internet Explorer ==========[/color]
  217.  
  218. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=hp&from=cor&uid=ST1000LM024XHN-M101MBB_S2RQJ9DC930520&ts=1377871219
  219. IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=hp&from=cor&uid=ST1000LM024XHN-M101MBB_S2RQJ9DC930520&ts=1377871219
  220. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
  221. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{1838EEB7-D790-4C38-977B-7610FC411ABC}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
  222. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
  223. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  224. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
  225. IE - HKLM\..\SearchScopes,DefaultScope =
  226. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  227. IE - HKLM\..\SearchScopes\{1838EEB7-D790-4C38-977B-7610FC411ABC}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS
  228.  
  229.  
  230. IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
  231. IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  232.  
  233. IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
  234. IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  235.  
  236. IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
  237.  
  238. IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
  239.  
  240. IE - HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
  241. IE - HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
  242. IE - HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\..\SearchScopes,DefaultScope = {1838EEB7-D790-4C38-977B-7610FC411ABC}
  243. IE - HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  244.  
  245.  
  246. [color=#E56717]========== FireFox ==========[/color]
  247.  
  248. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
  249. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
  250. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  251. FF - HKCU\Software\MozillaPlugins\intel.com/AppUp: C:\Program Files (x86)\Intel\IntelAppStore\bin\npAppUp.dll (Intel)
  252.  
  253.  
  254.  
  255. [color=#E56717]========== Chrome  ==========[/color]
  256.  
  257. CHR - default_search_provider: Google (Enabled)
  258. CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
  259. CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
  260. CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dll
  261. CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
  262. CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll
  263. CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\30.0.1599.69\pdf.dll
  264. CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
  265. CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
  266. CHR - Extension: Dokumenty Google = C:\Users\kkuuu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
  267. CHR - Extension: Dysk Google = C:\Users\kkuuu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
  268. CHR - Extension: YouTube = C:\Users\kkuuu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
  269. CHR - Extension: Szukaj w Google = C:\Users\kkuuu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
  270. CHR - Extension: Chrome In-App Payments service = C:\Users\kkuuu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
  271. CHR - Extension: Gmail = C:\Users\kkuuu_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
  272.  
  273. O1 HOSTS File: ([2012-07-26 07:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts
  274. O2:[b]64bit:[/b] - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programy\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
  275. O2:[b]64bit:[/b] - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
  276. O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programy\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  277. O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Programy\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
  278. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Programy\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
  279. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
  280. O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Programy\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  281. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
  282. O4:[b]64bit:[/b] - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
  283. O4:[b]64bit:[/b] - HKLM..\Run: [BtTray] C:\Program Files (x86)\Bluetooth Suite\BtTray.exe (Qualcomm Atheros)
  284. O4:[b]64bit:[/b] - HKLM..\Run: [BtvStack] C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Communications)
  285. O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
  286. O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
  287. O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
  288. O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
  289. O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
  290. O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
  291. O4 - HKLM..\Run: [avast] C:\Programy\AVAST Software\Avast\avastUI.exe (AVAST Software)
  292. O4 - HKLM..\Run: [CLMLServer_For_P2G8] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (CyberLink)
  293. O4 - HKLM..\Run: [CLVirtualDrive] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe (CyberLink Corp.)
  294. O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
  295. O4 - HKLM..\Run: [Intel AppUp(SM) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
  296. O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
  297. O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
  298. O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
  299. O4 - HKU\S-1-5-21-1229153242-3201741155-1693493588-1001..\Run: [AdobeBridge]  File not found
  300. O4 - HKU\S-1-5-21-1229153242-3201741155-1693493588-1001..\Run: [ALLUpdate] C:\Programy\ALLPlayer\ALLUpdate.exe (ALLPlayer Group Ltd.)
  301. O4 - Startup: C:\Users\kkuuu_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
  302. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  303. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  304. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  305. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
  306. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  307. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
  308. O7 - HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
  309. O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
  310. O13[b]64bit:[/b] - gopher Prefix: missing
  311. O13 - gopher Prefix: missing
  312. O15 - HKU\.DEFAULT\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
  313. O15 - HKU\.DEFAULT\..Trusted Domains: freerealms.com ([]* in Trusted sites)
  314. O15 - HKU\.DEFAULT\..Trusted Domains: soe.com ([]* in Trusted sites)
  315. O15 - HKU\.DEFAULT\..Trusted Domains: sony.com ([]* in Trusted sites)
  316. O15 - HKU\S-1-5-18\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
  317. O15 - HKU\S-1-5-18\..Trusted Domains: freerealms.com ([]* in Trusted sites)
  318. O15 - HKU\S-1-5-18\..Trusted Domains: soe.com ([]* in Trusted sites)
  319. O15 - HKU\S-1-5-18\..Trusted Domains: sony.com ([]* in Trusted sites)
  320. O15 - HKU\S-1-5-19\..Trusted Domains: clonewarsadventures.com ([]* in )
  321. O15 - HKU\S-1-5-19\..Trusted Domains: freerealms.com ([]* in )
  322. O15 - HKU\S-1-5-19\..Trusted Domains: soe.com ([]* in )
  323. O15 - HKU\S-1-5-19\..Trusted Domains: sony.com ([]* in )
  324. O15 - HKU\S-1-5-20\..Trusted Domains: clonewarsadventures.com ([]* in )
  325. O15 - HKU\S-1-5-20\..Trusted Domains: freerealms.com ([]* in )
  326. O15 - HKU\S-1-5-20\..Trusted Domains: soe.com ([]* in )
  327. O15 - HKU\S-1-5-20\..Trusted Domains: sony.com ([]* in )
  328. O15 - HKU\S-1-5-21-1229153242-3201741155-1693493588-1001\..Trusted Domains: sony.com ([]* in Trusted sites)
  329. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.62 62.179.1.63
  330. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CF1BC0AA-F16F-4444-BEF8-35AFE1BB09AD}: DhcpNameServer = 62.179.1.62 62.179.1.63
  331. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
  332. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  333. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
  334. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
  335. O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
  336. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  337. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  338. O30 - LSA: Security Packages - (livessp) -  File not found
  339. O32 - HKLM CDRom: AutoRun - 1
  340. O34 - HKLM BootExecute: (autocheck autochk *)
  341. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  342. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  343. O35 - HKLM\..comfile [open] -- "%1" %*
  344. O35 - HKLM\..exefile [open] -- "%1" %*
  345. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  346. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  347. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  348. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  349. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  350. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  351.  
  352. [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]
  353.  
  354. [2013-10-17 09:58:35 | 000,000,000 | R--D | C] -- C:\Users\kkuuu_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
  355. [2013-10-10 13:31:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guild Wars 2
  356. [2013-10-10 13:30:39 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Roaming\Guild Wars 2
  357. [2013-10-10 13:30:31 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\Documents\Guild Wars 2
  358. [2013-10-09 12:03:13 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Local\Gameforge4d
  359. [2013-10-07 16:51:14 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 10
  360. [2013-10-07 16:50:59 | 000,029,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msxml3a.dll
  361. [2013-10-07 16:46:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel AppUp(SM) center
  362. [2013-09-26 14:20:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
  363. [2013-09-26 14:20:13 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
  364. [2013-09-26 14:20:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Haali
  365. [2013-09-25 15:27:06 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
  366. [2013-09-25 11:17:21 | 000,694,232 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
  367. [2013-09-25 11:17:21 | 000,078,296 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
  368. [2013-09-17 21:43:13 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\tssdisai.dll
  369. [2013-09-17 17:01:11 | 000,209,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\NotificationUI.exe
  370. [2013-09-17 17:01:07 | 002,371,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WSService.dll
  371. [2013-09-17 17:01:04 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sppobjs.dll
  372. [2013-09-17 17:01:03 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WinSetupUI.dll
  373. [2013-09-17 17:01:02 | 000,773,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuapi.dll
  374. [2013-09-17 17:01:02 | 000,688,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WSShared.dll
  375. [2013-09-17 17:01:02 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WSShared.dll
  376. [2013-09-17 17:01:01 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wuapi.dll
  377. [2013-09-17 17:01:01 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sppwinob.dll
  378. [2013-09-17 17:01:01 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WSSync.dll
  379. [2013-09-17 17:01:01 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Windows.ApplicationModel.Store.dll
  380. [2013-09-17 17:01:01 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\sppc.dll
  381. [2013-09-17 17:01:01 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\sppc.dll
  382. [2013-09-17 17:01:00 | 001,621,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wucltux.dll
  383. [2013-09-17 17:00:59 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WSSync.dll
  384. [2013-09-17 17:00:58 | 000,059,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuauclt.exe
  385. [2013-09-17 17:00:58 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wups.dll
  386. [2013-09-17 17:00:58 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wups2.dll
  387. [2013-09-17 17:00:57 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WUSettingsProvider.dll
  388. [2013-09-17 17:00:56 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WSClient.dll
  389. [2013-09-17 17:00:56 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Windows.ApplicationModel.Store.dll
  390. [2013-09-17 17:00:56 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\storewuauth.dll
  391. [2013-09-17 17:00:56 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WSClient.dll
  392. [2013-09-17 17:00:56 | 000,058,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\dam.sys
  393. [2013-09-17 17:00:55 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuwebv.dll
  394. [2013-09-17 17:00:55 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wuwebv.dll
  395. [2013-09-17 17:00:55 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wudriver.dll
  396. [2013-09-17 17:00:55 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wudriver.dll
  397. [2013-09-17 17:00:55 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wuapp.exe
  398. [2013-09-17 17:00:55 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wups.dll
  399. [2013-09-17 17:00:54 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\setupcln.dll
  400. [2013-09-17 17:00:54 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wuapp.exe
  401. [2013-09-17 17:00:53 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
  402. [2013-09-17 17:00:53 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
  403. [2013-09-17 17:00:50 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\setupcln.dll
  404. [2013-09-17 17:00:01 | 003,959,296 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
  405. [2013-09-17 16:59:53 | 000,915,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\uxtheme.dll
  406. [2013-09-17 16:59:52 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
  407. [2013-09-17 16:59:52 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll
  408. [2013-09-17 16:59:52 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll
  409. [2013-09-17 16:59:51 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll
  410. [2013-09-17 16:59:51 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll
  411. [2013-09-17 16:59:51 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
  412. [2013-09-17 16:59:50 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\UXInit.dll
  413. [2013-09-17 16:59:50 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\UXInit.dll
  414. [2013-09-17 16:59:50 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
  415. [2013-09-17 16:59:50 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
  416. [2013-09-17 16:59:49 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
  417. [2013-09-17 16:59:49 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
  418. [2013-09-17 16:59:40 | 002,273,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msftedit.dll
  419. [2013-09-17 16:59:38 | 002,839,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msftedit.dll
  420. [2013-09-17 16:59:38 | 001,025,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\localspl.dll
  421. [2013-09-17 16:59:37 | 001,300,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\gdi32.dll
  422. [2013-09-17 16:59:37 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\oleaut32.dll
  423. [2013-09-17 16:59:36 | 000,381,952 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\FWPUCLNT.DLL
  424. [2013-09-17 16:59:35 | 000,439,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WerFault.exe
  425. [2013-09-17 16:59:35 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wwanconn.dll
  426. [2013-09-17 16:59:35 | 000,327,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\Classpnp.sys
  427. [2013-09-17 16:59:34 | 000,385,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\WerFault.exe
  428. [2013-09-17 16:59:34 | 000,263,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wcmsvc.dll
  429. [2013-09-17 16:59:34 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\WinSCard.dll
  430. [2013-09-17 16:59:34 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winmmbase.dll
  431. [2013-09-17 16:59:34 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\winmm.dll
  432. [2013-09-17 16:59:33 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\winmmbase.dll
  433. [2013-09-17 16:59:32 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\Windows.Networking.BackgroundTransfer.dll
  434. [2013-09-17 16:59:32 | 000,195,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\sdbus.sys
  435. [2013-09-17 16:59:32 | 000,125,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\dumpsd.sys
  436. [2013-09-17 16:59:32 | 000,120,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\msgpioclx.sys
  437. [2013-09-17 16:59:32 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wcmcsp.dll
  438. [2013-09-17 16:59:31 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Windows.Networking.BackgroundTransfer.dll
  439. [2013-09-17 16:59:31 | 000,370,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\Wwanadvui.dll
  440. [2013-09-17 16:59:31 | 000,096,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\wfplwfs.sys
  441. [2013-09-17 16:59:30 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\nshwfp.dll
  442. [2013-09-17 16:59:30 | 000,543,744 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wwanmm.dll
  443. [2013-09-17 16:59:30 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\FWPUCLNT.DLL
  444. [2013-09-17 16:59:30 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\openfiles.exe
  445. [2013-09-17 16:59:30 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\openfiles.exe
  446. [2013-09-17 16:59:29 | 000,888,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\nshwfp.dll
  447. [2013-09-17 16:59:29 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\LocationApi.dll
  448. [2013-09-17 16:59:29 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\LocationApi.dll
  449. [2013-09-10 15:31:07 | 000,041,664 | ---- | C] (AVAST Software) -- C:\windows\avastSS.scr
  450. [2013-09-08 21:46:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
  451. [2013-09-08 21:39:52 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Local\Adobe
  452. [2013-09-02 22:03:06 | 000,000,000 | ---D | C] -- C:\AdwCleaner
  453. [2013-08-30 16:37:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
  454. [2013-08-30 16:21:16 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Roaming\NapiProjekt
  455. [2013-08-30 16:19:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiPony
  456. [2013-08-30 16:00:43 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Roaming\BitTorrent
  457. [2013-08-24 19:15:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NapiProjekt
  458. [2013-08-24 19:15:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLConverter PRO
  459. [2013-08-24 19:15:49 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Local\ALLConverter
  460. [2013-08-24 19:15:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NapiProjekt
  461. [2013-08-24 19:15:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ALLConverter PRO
  462. [2013-08-24 19:15:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLMediaServer
  463. [2013-08-24 19:15:43 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Local\ALLMediaServer
  464. [2013-08-24 19:15:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ALLMediaServer
  465. [2013-08-24 19:15:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer
  466. [2013-08-24 19:15:28 | 000,276,992 | ---- | C] (IntelleSoft) -- C:\windows\SysWow64\BugTrap.dll
  467. [2013-08-24 19:15:25 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Local\ALLPlayer
  468. [2013-08-22 19:43:33 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Roaming\Mozilla
  469. [2013-08-22 19:43:33 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Local\Mozilla
  470. [2013-08-22 19:38:16 | 000,000,000 | ---D | C] -- C:\tor
  471. [2013-08-21 22:18:52 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Roaming\OpenOffice.org
  472. [2013-08-21 22:16:44 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
  473. [2013-08-21 22:16:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 3
  474. [2013-08-19 19:54:05 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\newdev.dll
  475. [2013-08-19 19:54:05 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\newdev.exe
  476. [2013-08-19 19:54:05 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ndadmin.exe
  477. [2013-08-19 19:53:51 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\newdev.dll
  478. [2013-08-19 19:53:51 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\newdev.exe
  479. [2013-08-19 19:53:51 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ndadmin.exe
  480. [2013-08-19 19:51:58 | 000,929,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mfnetsrc.dll
  481. [2013-08-19 19:51:58 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mfnetcore.dll
  482. [2013-08-19 19:51:57 | 000,513,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mfmpeg2srcsnk.dll
  483. [2013-08-19 19:51:53 | 001,172,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mfnetsrc.dll
  484. [2013-08-19 19:51:53 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mfnetcore.dll
  485. [2013-08-19 19:51:53 | 000,673,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\mfmpeg2srcsnk.dll
  486. [2013-08-19 10:44:16 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dskquota.dll
  487. [2013-08-19 10:43:37 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\dskquota.dll
  488. [2013-08-19 10:42:33 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Local\ElevatedDiagnostics
  489. [2013-08-19 10:41:59 | 000,000,000 | ---D | C] -- C:\Users\kkuuu_000\AppData\Local\Diagnostics
  490. [2013-07-26 00:40:24 | 002,063,240 | ---- | C] (Samsung Electronics) -- C:\ProgramData\MakeMarkerFile.exe
  491. [1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
  492.  
  493. [color=#E56717]========== Files - Modified Within 60 Days ==========[/color]
  494.  
  495. [2013-10-17 10:42:35 | 000,007,606 | ---- | M] () -- C:\Users\kkuuu_000\AppData\Local\Resmon.ResmonCfg
  496. [2013-10-17 10:20:19 | 000,001,064 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
  497. [2013-10-17 09:59:32 | 001,796,820 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
  498. [2013-10-17 09:59:32 | 000,795,984 | ---- | M] () -- C:\windows\SysNative\perfh015.dat
  499. [2013-10-17 09:59:32 | 000,711,282 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
  500. [2013-10-17 09:59:32 | 000,160,066 | ---- | M] () -- C:\windows\SysNative\perfc015.dat
  501. [2013-10-17 09:59:32 | 000,133,150 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
  502. [2013-10-17 09:58:18 | 000,001,060 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
  503. [2013-10-17 09:57:08 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
  504. [2013-10-16 17:56:51 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
  505. [2013-10-16 17:56:48 | 768,032,767 | -HS- | M] () -- C:\hiberfil.sys
  506. [2013-10-10 13:31:24 | 000,000,739 | ---- | M] () -- C:\Users\Public\Desktop\Guild Wars 2.lnk
  507. [2013-10-09 12:03:06 | 000,000,764 | ---- | M] () -- C:\Users\Public\Desktop\Gameforge Live.lnk
  508. [2013-10-07 16:47:39 | 000,029,480 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\msxml3a.dll
  509. [2013-10-04 22:32:35 | 000,002,271 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
  510. [2013-09-25 15:27:06 | 000,003,025 | ---- | M] () -- C:\Users\kkuuu_000\Desktop\HiJackThis.lnk
  511. [2013-09-23 00:45:02 | 004,929,160 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
  512. [2013-09-19 01:26:35 | 000,694,232 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
  513. [2013-09-19 01:26:35 | 000,078,296 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
  514. [2013-09-10 15:31:12 | 000,000,000 | ---- | M] () -- C:\windows\SysWow64\config.nt
  515. [2013-09-08 20:37:39 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
  516. [2013-08-30 17:19:10 | 000,000,053 | ---- | M] () -- C:\Users\kkuuu_000\AppData\Roaming\WB.CFG
  517. [2013-08-30 16:01:35 | 000,000,875 | ---- | M] () -- C:\Users\kkuuu_000\Desktop\BitTorrent.lnk
  518. [2013-08-30 09:48:10 | 001,030,952 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswSnx.sys
  519. [2013-08-30 09:48:10 | 000,378,944 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswSP.sys
  520. [2013-08-30 09:48:10 | 000,204,880 | ---- | M] () -- C:\windows\SysNative\drivers\aswVmm.sys
  521. [2013-08-30 09:48:10 | 000,072,016 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswRdr2.sys
  522. [2013-08-30 09:48:10 | 000,065,336 | ---- | M] () -- C:\windows\SysNative\drivers\aswRvrt.sys
  523. [2013-08-30 09:48:10 | 000,064,288 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswTdi.sys
  524. [2013-08-30 09:48:09 | 000,080,816 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswMonFlt.sys
  525. [2013-08-30 09:48:09 | 000,033,400 | ---- | M] (AVAST Software) -- C:\windows\SysNative\drivers\aswFsBlk.sys
  526. [2013-08-30 09:47:40 | 000,041,664 | ---- | M] (AVAST Software) -- C:\windows\avastSS.scr
  527. [2013-08-30 09:47:14 | 000,287,840 | ---- | M] (AVAST Software) -- C:\windows\SysNative\aswBoot.exe
  528. [2013-08-21 22:18:55 | 000,001,255 | ---- | M] () -- C:\Users\kkuuu_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
  529. [2013-08-21 06:12:21 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
  530. [2013-08-21 06:11:59 | 000,915,968 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\uxtheme.dll
  531. [2013-08-21 06:11:59 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\UXInit.dll
  532. [2013-08-21 06:11:22 | 000,603,136 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
  533. [2013-08-21 06:11:07 | 003,959,296 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
  534. [2013-08-21 06:11:07 | 000,855,552 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll
  535. [2013-08-21 06:11:04 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll
  536. [2013-08-21 06:11:04 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
  537. [2013-08-21 06:11:04 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
  538. [2013-08-21 04:06:06 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\UXInit.dll
  539. [2013-08-21 04:05:28 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll
  540. [2013-08-21 04:05:25 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll
  541. [2013-08-21 04:05:25 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
  542. [2013-08-21 04:05:25 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
  543. [1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
  544.  
  545. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  546.  
  547. [2013-10-17 10:42:35 | 000,007,606 | ---- | C] () -- C:\Users\kkuuu_000\AppData\Local\Resmon.ResmonCfg
  548. [2013-10-10 13:31:24 | 000,000,739 | ---- | C] () -- C:\Users\Public\Desktop\Guild Wars 2.lnk
  549. [2013-10-09 12:03:06 | 000,000,764 | ---- | C] () -- C:\Users\Public\Desktop\Gameforge Live.lnk
  550. [2013-09-25 15:27:06 | 000,003,025 | ---- | C] () -- C:\Users\kkuuu_000\Desktop\HiJackThis.lnk
  551. [2013-09-23 00:44:41 | 004,929,160 | ---- | C] () -- C:\windows\SysNative\FNTCACHE.DAT
  552. [2013-09-17 17:00:52 | 000,083,968 | ---- | C] () -- C:\windows\SysWow64\OEMLicense.dll
  553. [2013-09-17 16:59:28 | 000,387,583 | ---- | C] () -- C:\windows\SysNative\ApnDatabase.xml
  554. [2013-09-08 21:57:17 | 000,001,052 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk
  555. [2013-09-08 21:56:06 | 000,000,979 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk
  556. [2013-09-08 21:54:59 | 000,001,010 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk
  557. [2013-09-08 21:54:14 | 000,000,939 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk
  558. [2013-09-08 21:50:30 | 000,001,151 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk
  559. [2013-09-08 21:50:23 | 000,001,573 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
  560. [2013-09-08 20:37:39 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
  561. [2013-09-02 22:03:56 | 000,002,271 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
  562. [2013-09-02 22:03:56 | 000,001,017 | ---- | C] () -- C:\Users\kkuuu_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
  563. [2013-08-30 17:19:10 | 000,000,053 | ---- | C] () -- C:\Users\kkuuu_000\AppData\Roaming\WB.CFG
  564. [2013-08-30 16:01:35 | 000,000,875 | ---- | C] () -- C:\Users\kkuuu_000\Desktop\BitTorrent.lnk
  565. [2013-08-24 19:15:28 | 002,106,368 | ---- | C] () -- C:\windows\SysWow64\ac3filter.ax
  566. [2013-08-24 19:15:28 | 000,644,608 | ---- | C] () -- C:\windows\SysWow64\xvidcore.dll
  567. [2013-08-24 19:15:28 | 000,258,048 | ---- | C] () -- C:\windows\SysWow64\libFLAC.dll
  568. [2013-08-21 22:18:55 | 000,001,255 | ---- | C] () -- C:\Users\kkuuu_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
  569. [2013-07-26 10:59:41 | 003,727,136 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
  570. [2013-07-26 10:36:23 | 000,003,917 | ---- | C] () -- C:\windows\SysWow64\atipblup.dat
  571. [2013-07-26 10:36:10 | 000,000,000 | ---- | C] () -- C:\windows\ativpsrm.bin
  572. [2013-07-26 10:34:08 | 000,597,244 | ---- | C] () -- C:\windows\SysWow64\igvpkrng700.bin
  573. [2013-07-26 10:34:04 | 000,755,048 | ---- | C] () -- C:\windows\SysWow64\igcodeckrng700.bin
  574. [2013-07-26 10:34:04 | 000,064,512 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
  575. [2013-07-26 10:34:03 | 000,204,952 | ---- | C] () -- C:\windows\SysWow64\ativvsvl.dat
  576. [2013-07-26 10:34:03 | 000,157,144 | ---- | C] () -- C:\windows\SysWow64\ativvsva.dat
  577. [2013-07-26 10:34:03 | 000,003,917 | ---- | C] () -- C:\windows\SysWow64\atipblag.dat
  578. [2013-07-26 00:40:24 | 000,003,004 | ---- | C] () -- C:\ProgramData\MakeMarkerFile.xml
  579. [2012-07-26 10:13:10 | 000,215,943 | ---- | C] () -- C:\windows\SysWow64\dssec.dat
  580. [2012-07-26 10:13:09 | 000,000,741 | ---- | C] () -- C:\windows\SysWow64\NOISE.DAT
  581. [2012-07-26 09:21:26 | 000,067,584 | --S- | C] () -- C:\windows\bootstat.dat
  582. [2012-07-26 03:17:42 | 000,043,520 | ---- | C] () -- C:\windows\SysWow64\BWContextHandler.dll
  583. [2012-07-25 22:37:29 | 000,043,131 | ---- | C] () -- C:\windows\mib.bin
  584. [2012-07-25 22:28:31 | 000,364,544 | ---- | C] () -- C:\windows\SysWow64\msjetoledb40.dll
  585. [2012-06-02 16:31:19 | 000,673,088 | ---- | C] () -- C:\windows\SysWow64\mlang.dat
  586.  
  587. [color=#E56717]========== ZeroAccess Check ==========[/color]
  588.  
  589. [2013-08-06 13:08:14 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini
  590.  
  591. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  592.  
  593. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  594.  
  595. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
  596.  
  597. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  598.  
  599. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  600. "" = C:\Windows\SysNative\shell32.dll -- [2013-03-06 08:31:28 | 019,758,592 | ---- | M] (Microsoft Corporation)
  601. "ThreadingModel" = Apartment
  602.  
  603. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  604. "" = %SystemRoot%\system32\shell32.dll -- [2013-03-06 07:03:37 | 017,561,600 | ---- | M] (Microsoft Corporation)
  605. "ThreadingModel" = Apartment
  606.  
  607. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
  608. "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012-07-26 05:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
  609. "ThreadingModel" = Free
  610.  
  611. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  612. "" = %systemroot%\system32\wbem\fastprox.dll -- [2012-07-26 05:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
  613. "ThreadingModel" = Free
  614.  
  615. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
  616. "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012-07-26 05:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
  617. "ThreadingModel" = Both
  618.  
  619. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  620.  
  621. [color=#E56717]========== LOP Check ==========[/color]
  622.  
  623. [2013-10-10 19:30:18 | 000,000,000 | ---D | M] -- C:\Users\kkuuu_000\AppData\Roaming\BitTorrent
  624. [2013-10-10 13:30:40 | 000,000,000 | ---D | M] -- C:\Users\kkuuu_000\AppData\Roaming\Guild Wars 2
  625. [2013-08-30 16:21:20 | 000,000,000 | ---D | M] -- C:\Users\kkuuu_000\AppData\Roaming\NapiProjekt
  626. [2013-08-21 22:18:52 | 000,000,000 | ---D | M] -- C:\Users\kkuuu_000\AppData\Roaming\OpenOffice.org
  627. [2013-07-26 10:57:51 | 000,000,000 | ---D | M] -- C:\Users\kkuuu_000\AppData\Roaming\Synaptics
  628. [2013-08-14 22:34:10 | 000,000,000 | ---D | M] -- C:\Users\kkuuu_000\AppData\Roaming\TS3Client
  629.  
  630. [color=#E56717]========== Purity Check ==========[/color]
  631.  
  632.  
  633.  
  634. < End of report >
  635.