Dawid_Dj utworzono 14 grudnia 2013 utworzono 14 grudnia 2013 Witam Pare dni temu zainstalwoalem aktualizacje do mojego Win7 Pro 64 i po nich po komp mi sie wieszał. Przywróciłem system w trybie awaryjnym i juz sie nie wiesza ale mam innym problem. Gdy komp jest uruchomiony po pewnym czasie co jakis (krotki) czas komp mi sie przycina na kilka sekund. Nie wiem o co chodzi. Anti-Malware znalazł chyba 16 wirusów. Usunąłem je ale problem mam nadal. Dodam jeszcze ze tej przycince towarzyszy zmienny kursor tzn. gdy powinna byc normalna strzalka to nadal jest np "łapka". Pisząc ten tekst tez mi system przycina... Proszę o pomoc.
Youki komentarz 14 grudnia 2013 komentarz 14 grudnia 2013 Jeśli nic nie da to wykonaj SMART dysku oraz pokaż screena z zakłądki Health z programu HD Tune.
Dawid_Dj komentarz 14 grudnia 2013 Autor komentarz 14 grudnia 2013 Dodam jeszcze ze czasem gdy monitor wylaczy sie po pewnym czasie (sam sie wylaczy gdy nic sie nie robi) to nie mozna pozniej go wlaczyc tzn nie reaguje na nic. Klikam myszka, klawiatura i nic. Gdy chce np wlaczyc caps locka to tez nie reaguje.Serio myslicie zeby zresetowac BIOS ? Jesli tak to zrobie to pozniej a teraz mam dla was "health" po kilkunastominutowej pracy systemu.
Natsuki Kuga komentarz 15 grudnia 2013 komentarz 15 grudnia 2013 Co wykrył MBAM? Przy okazji zapoznaj się z tematem: http://www.forumpc.pl/topic/277786-nieingerencyjne-narz%C4%99dzia-do-tworzenia-log%C3%B3w-systemowych/ i pokaż zestaw logów z OTL i Gmer.
Dawid_Dj komentarz 16 grudnia 2013 Autor komentarz 16 grudnia 2013 Zresetowałem. Zamulił mi tak że musiałem go zresetować. Teraz zajme sie logami. MBAM [spoiler] Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Wersja bazy: v2013.12.12.06 Windows 7 Service Pack 1 x64 NTFS (Tryb Awaryjny z dostępem do sieci) Internet Explorer 11.0.9600.16476 Dawid :: DAWID-KOMPUTER [administrator] 2013-12-12 19:02:36 mbam-log-2013-12-12 (19-02-36).txt Typ skanowania: Szybkie skanowanie Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM Odznaczone opcje skanowania: P2P Przeskanowano obiektów: 292703 Upłynęło: 12 minut(y), 9 sekund(y) Wykrytych procesów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych modułów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych kluczy rejestru: 4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WPM (PUP.Optional.WpManager.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (PUP.Optional.Qone8) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. HKLM\SOFTWARE\aartemisSoftware\aartemishp (PUP.Optional.Aartemis.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. Wykrytych wartości rejestru: 2 HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0H1L1J1L1S1R1N -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|NextLive (PUP.Optional.NextLive.A) -> Data: C:\Windows\SysWOW64\rundll32.exe "C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. Wykryte wpisy rejestru systemowego: 2 HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command| (PUP.Optional.Aartemis) -> Złe: (C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com/?type=sc&ts=1386108150&from=slbnew&uid=WDCXWD5000AADS-00S9B0_WD-WCAV9U90280802808) Dobre: (iexplore.exe) -> Dodanie do kwarantanny i naprawa pliku zakończyły się powodzeniem. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|DefaultScope (PUP.Optional.Qone8) -> Złe: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}) Dobre: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}) -> Dodanie do kwarantanny i naprawa pliku zakończyły się powodzeniem. wykrytych folderów: 2 C:\Users\Dawid\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. C:\Users\Dawid\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. Wykrytych plików: 6 C:\ProgramData\WPM\wprotectmanager.exe (PUP.Optional.WpManager.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. C:\Users\Dawid\AppData\Local\Temp\fullpackage_temp1386108130\tmp\NewGdp.exe (PUP.Optional.WpManager.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. C:\Users\Dawid\AppData\Local\Temp\n5344\aartemis_1111-76a67d16.exe (PUP.Optional.Aartemis.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. C:\Users\Dawid\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. (zakończone) [/spoiler] OTL [spoiler]OTL logfile created on: 2013-12-15 12:54:18 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dawid\Desktop 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.16428) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 7,98 Gb Total Physical Memory | 5,31 Gb Available Physical Memory | 66,50% Memory free 15,96 Gb Paging File | 12,98 Gb Available in Paging File | 81,33% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 155,25 Gb Total Space | 12,46 Gb Free Space | 8,02% Space Free | Partition Type: NTFS Drive D: | 155,16 Gb Total Space | 37,42 Gb Free Space | 24,12% Space Free | Partition Type: NTFS Drive E: | 155,25 Gb Total Space | 16,42 Gb Free Space | 10,58% Space Free | Partition Type: NTFS Computer Name: DAWID-KOMPUTER | User Name: Dawid | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013-12-15 12:51:55 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dawid\Desktop\OTL.exe PRC - [2013-12-11 18:00:04 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2013-12-11 17:41:00 | 000,761,024 | ---- | M] () -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe PRC - [2013-12-11 17:22:11 | 001,862,536 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe PRC - [2013-12-08 11:33:48 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2013-11-14 12:56:57 | 001,028,384 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe PRC - [2013-11-14 12:56:48 | 001,914,656 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2013-11-11 15:42:02 | 000,764,192 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe PRC - [2013-11-11 08:59:20 | 000,414,496 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2013-10-25 12:07:24 | 002,151,200 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe PRC - [2013-10-25 12:07:00 | 000,878,368 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe PRC - [2013-10-16 00:06:12 | 001,016,712 | ---- | M] (Flux Software LLC) -- C:\Users\Dawid\AppData\Local\FluxSoftware\Flux\flux.exe PRC - [2013-07-25 08:43:24 | 008,062,464 | ---- | M] (AQQ Sp. z o.o.) -- C:\Program Files (x86)\WapSter\WapSter AQQ\AQQ.exe PRC - [2013-04-23 08:48:17 | 003,574,624 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe PRC - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2013-04-04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2013-03-12 06:32:58 | 000,506,744 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe PRC - [2012-06-06 20:33:42 | 001,564,872 | ---- | M] (Ask) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe PRC - [2012-01-18 07:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe PRC - [2011-06-06 21:38:24 | 001,101,440 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe PRC - [2011-05-24 20:54:46 | 001,426,048 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe PRC - [2011-05-19 15:39:18 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2011-05-19 15:39:14 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe PRC - [2011-05-13 16:18:24 | 001,215,616 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe PRC - [2011-02-21 22:17:32 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\SysWOW64\nlssrv32.exe PRC - [2011-01-12 16:41:42 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe PRC - [2010-12-02 03:15:14 | 000,915,584 | R--- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe PRC - [2010-11-26 21:50:04 | 002,931,328 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe PRC - [2010-11-08 15:09:00 | 000,465,536 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe PRC - [2010-11-03 10:30:14 | 000,918,144 | R--- | M] () -- C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe PRC - [2010-10-21 10:52:26 | 000,586,880 | R--- | M] () -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe PRC - [2010-09-24 21:29:32 | 001,115,776 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe PRC - [2010-03-10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe PRC - [2009-12-22 12:31:50 | 000,024,576 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\TestDDCCI.exe PRC - [2009-12-22 12:30:54 | 000,159,744 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\EasySetPackage.exe PRC - [2009-12-15 13:47:00 | 000,103,720 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe ========== Modules (No Company Name) ========== MOD - [2013-12-11 18:00:04 | 003,559,024 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll MOD - [2013-12-11 17:41:00 | 000,761,024 | ---- | M] () -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe MOD - [2013-12-11 17:22:10 | 016,242,056 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll MOD - [2013-12-07 22:52:54 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d473c19e69818875b9c739cad8f386a5\System.Runtime.Remoting.ni.dll MOD - [2013-12-07 22:52:54 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\41a3bd6011f301f808fac8eb53993206\IAStorCommon.ni.dll MOD - [2013-12-07 22:52:53 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\4eef5a3a4d0ed6d6fd882947a70df530\WindowsBase.ni.dll MOD - [2013-12-07 22:52:52 | 000,492,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\d52b8823da05f910389b3d26bfe654c6\IAStorUtil.ni.dll MOD - [2013-12-07 22:52:51 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ef0a534be135cd8f0d99d938d8b1814a\System.Windows.Forms.ni.dll MOD - [2013-12-07 22:52:47 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll MOD - [2013-12-07 22:52:44 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll MOD - [2013-12-07 22:52:42 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\29f3ae8d313e62b4daed1107ccd29f9f\System.Configuration.ni.dll MOD - [2013-12-07 22:52:40 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll MOD - [2013-12-07 22:52:37 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll MOD - [2013-09-24 15:47:15 | 001,221,120 | ---- | M] () -- C:\Users\Dawid\WapSter\AQQ Folder\Profiles\Pako\Plugins\BirthdayReminder.dll MOD - [2013-09-24 15:45:42 | 000,309,248 | ---- | M] () -- C:\Users\Dawid\WapSter\AQQ Folder\Profiles\Pako\Plugins\StealStatus.dll MOD - [2013-09-24 15:45:21 | 000,309,248 | ---- | M] () -- C:\Users\Dawid\WapSter\AQQ Folder\Profiles\Pako\Plugins\Makra.dll MOD - [2013-06-13 12:30:58 | 004,296,192 | ---- | M] () -- C:\Program Files (x86)\WapSter\WapSter AQQ\System\Shared\Plugins\GGNet.dll MOD - [2013-03-23 16:44:28 | 000,335,360 | ---- | M] () -- C:\Users\Dawid\WapSter\AQQ Folder\Profiles\Pako\Plugins\AQQRestarter.dll MOD - [2013-02-02 21:39:22 | 000,095,232 | ---- | M] () -- C:\Users\Dawid\WapSter\AQQ Folder\Profiles\Pako\Plugins\OfflineNotify.dll MOD - [2013-01-29 14:10:14 | 000,025,088 | ---- | M] () -- C:\Program Files (x86)\WapSter\WapSter AQQ\System\Shared\Plugins\SMS.dll MOD - [2013-01-28 09:39:26 | 000,022,016 | ---- | M] () -- C:\Program Files (x86)\WapSter\WapSter AQQ\System\Shared\Plugins\Contact.dll MOD - [2013-01-15 18:48:26 | 000,348,992 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\madExcept_.bpl MOD - [2013-01-15 18:48:26 | 000,051,008 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\madDisAsm_.bpl MOD - [2013-01-15 18:48:24 | 000,183,616 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\madBasic_.bpl MOD - [2013-01-15 18:47:56 | 000,893,248 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\webres.dll MOD - [2012-12-16 11:34:52 | 002,831,872 | ---- | M] () -- C:\Users\Dawid\WapSter\AQQ Folder\Profiles\Pako\Plugins\offlinePictures.dll MOD - [2012-12-16 11:34:21 | 000,872,448 | ---- | M] () -- C:\Users\Dawid\WapSter\AQQ Folder\Profiles\Pako\Plugins\Responder.dll MOD - [2012-12-13 01:28:50 | 000,060,416 | ---- | M] () -- C:\Users\Dawid\WapSter\AQQ Folder\Profiles\Pako\Plugins\SpellChecker.dll MOD - [2011-06-06 21:38:24 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll MOD - [2011-05-20 09:12:18 | 000,881,152 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll MOD - [2011-05-16 17:35:56 | 000,965,632 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll MOD - [2011-05-16 06:39:29 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll MOD - [2011-04-12 14:21:11 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_pl_b77a5c561934e089\System.Runtime.Remoting.resources.dll MOD - [2011-04-07 17:33:18 | 001,607,168 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll MOD - [2011-03-11 19:53:12 | 001,257,472 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll MOD - [2011-03-09 14:55:24 | 001,036,800 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\ASUS Update\Update.dll MOD - [2011-02-24 10:19:36 | 000,143,360 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll MOD - [2011-02-09 09:02:28 | 000,873,472 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\AI Charger+\AIChargerPlus.dll MOD - [2011-01-15 19:59:24 | 000,338,944 | ---- | M] () -- C:\Users\Dawid\WapSter\AQQ Folder\Profiles\Pako\Plugins\Archeolog.dll MOD - [2011-01-07 16:39:36 | 001,246,208 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll MOD - [2011-01-06 10:38:48 | 001,027,072 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll MOD - [2010-11-13 03:03:49 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll MOD - [2010-08-23 03:17:40 | 000,662,016 | R--- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMLib.dll MOD - [2010-08-06 18:13:48 | 000,886,272 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll MOD - [2010-08-06 18:11:20 | 000,850,944 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll MOD - [2010-06-21 15:21:22 | 000,208,896 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\ImageHelper.dll MOD - [2010-06-21 15:21:22 | 000,208,896 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll MOD - [2009-12-22 12:31:50 | 000,024,576 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\TestDDCCI.exe MOD - [2009-12-22 12:30:54 | 000,159,744 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\EasySetPackage.exe MOD - [2009-12-22 12:30:36 | 000,057,344 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\HOOK.dll MOD - [2009-12-22 12:30:34 | 000,065,536 | ---- | M] () -- C:\Windows\SysWOW64\LGErrorHandler.dll MOD - [2009-12-22 12:30:28 | 000,012,288 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\EngRes.dll MOD - [2009-12-15 13:49:20 | 000,013,096 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll MOD - [2009-12-15 13:46:38 | 000,619,816 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll MOD - [2009-08-12 20:15:52 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll MOD - [2009-04-19 16:42:06 | 000,186,880 | ---- | M] () -- C:\Users\Dawid\WapSter\AQQ Folder\Profiles\Pako\Plugins\QuickDel.dll ========== Services (SafeList) ========== SRV:64bit: - [2013-11-26 10:18:09 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService) SRV:64bit: - [2013-11-14 12:57:03 | 015,125,280 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc) SRV:64bit: - [2013-10-13 11:02:56 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\PnkBstrA.exe -- (PnkBstrA) SRV:64bit: - [2013-06-29 22:37:42 | 001,471,352 | ---- | M] (Flexera Software LLC) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FlexNet Licensing Service 64) SRV:64bit: - [2013-05-27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:64bit: - [2012-06-04 13:26:12 | 003,268,448 | ---- | M] (Agnitum Ltd.) [Auto | Running] -- C:\Program Files\Agnitum\Outpost Firewall Pro\acs.exe -- (acssrv) SRV:64bit: - [2012-04-26 09:14:06 | 002,438,696 | ---- | M] (mobile concepts GmbH) [On_Demand | Stopped] -- C:\Program Files\CyberGhost VPN\CGVPNCliService.exe -- (CGVPNCliSrvc) SRV:64bit: - [2011-01-12 16:44:02 | 000,042,360 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv) SRV:64bit: - [2011-01-12 16:41:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn) SRV:64bit: - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2013-12-11 18:00:04 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013-12-11 17:22:11 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013-12-08 11:33:48 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2013-11-14 12:56:48 | 001,914,656 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2013-11-11 08:59:20 | 000,414,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2013-10-25 12:07:24 | 002,151,200 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc) SRV - [2013-10-25 12:07:00 | 000,878,368 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe -- (AdvancedSystemCareService7) SRV - [2013-09-11 21:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2013-06-03 15:21:54 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2013-04-23 08:48:17 | 003,574,624 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8) SRV - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2012-12-13 16:37:26 | 000,012,288 | ---- | M] (Autodesk, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service) SRV - [2012-08-01 15:07:16 | 000,724,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2012-01-18 07:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv) SRV - [2011-05-19 15:39:18 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) SRV - [2011-03-01 17:29:58 | 000,130,976 | ---- | M] (Futuremark Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service) SRV - [2011-02-21 22:17:32 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\SysWOW64\nlssrv32.exe -- (nlsX86cc) SRV - [2010-12-02 11:34:52 | 000,258,688 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\Disk Unlocker\ASPFSVS64.exe -- (ASDiskUnlocker) SRV - [2010-12-02 03:15:14 | 000,915,584 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe -- (asHmComSvc) SRV - [2010-11-03 10:30:14 | 000,918,144 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe -- (asComSvc) SRV - [2010-10-21 10:52:26 | 000,586,880 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe -- (AsSysCtrlService) SRV - [2010-03-10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2) SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) ========== Driver Services (SafeList) ========== DRV:64bit: - [2013-11-14 12:57:13 | 000,039,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible) DRV:64bit: - [2013-11-14 12:57:05 | 000,196,384 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2013-08-29 02:29:52 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser) DRV:64bit: - [2013-06-28 11:45:00 | 000,036,352 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandnetmodem64.sys -- (ANDNetModem) DRV:64bit: - [2013-04-23 16:30:52 | 000,093,696 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandnetndis64.sys -- (andnetndis) DRV:64bit: - [2013-04-18 16:14:12 | 000,029,184 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandnetdiag64.sys -- (AndNetDiag) DRV:64bit: - [2013-04-04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector) DRV:64bit: - [2012-08-29 18:46:14 | 000,028,008 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dfx11_1x64.sys -- (DFX11_1) DRV:64bit: - [2012-08-23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2012-08-23 15:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2012-08-23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2012-06-27 14:18:52 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd) DRV:64bit: - [2012-05-31 15:04:52 | 000,445,056 | ---- | M] (Agnitum Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\afwcore.sys -- (afwcore) DRV:64bit: - [2012-03-19 09:36:42 | 000,066,184 | ---- | M] (Agnitum Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Filt\ASWFilt64.dll -- (ASWFilt) DRV:64bit: - [2012-03-19 09:36:38 | 001,266,544 | ---- | M] (Agnitum Ltd.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\SandBox64.sys -- (SandBox) DRV:64bit: - [2012-03-01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2012-02-09 07:06:36 | 000,125,376 | ---- | M] (Power Software Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scdemu.sys -- (SCDEmu) DRV:64bit: - [2012-01-18 07:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) DRV:64bit: - [2012-01-18 07:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64) DRV:64bit: - [2012-01-15 14:05:59 | 000,279,616 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2012-01-09 16:28:20 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd) DRV:64bit: - [2012-01-09 16:28:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt) DRV:64bit: - [2012-01-09 16:28:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev) DRV:64bit: - [2012-01-09 16:28:18 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc) DRV:64bit: - [2011-12-15 18:29:42 | 000,031,232 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901) DRV:64bit: - [2011-06-10 06:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:64bit: - [2011-05-16 06:39:26 | 000,026,136 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ICCWDT.sys -- (ICCWDT) DRV:64bit: - [2011-05-10 17:46:52 | 000,557,848 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) DRV:64bit: - [2011-03-28 17:53:54 | 000,038,488 | ---- | M] (Agnitum Ltd.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\afw.sys -- (afw) DRV:64bit: - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2011-02-24 10:30:50 | 000,389,608 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci) DRV:64bit: - [2011-02-24 10:30:50 | 000,126,952 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3) DRV:64bit: - [2010-12-21 15:04:06 | 000,170,640 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm) DRV:64bit: - [2010-12-21 15:04:06 | 000,141,264 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv) DRV:64bit: - [2010-12-21 13:47:38 | 000,170,640 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw) DRV:64bit: - [2010-12-21 13:47:38 | 000,050,624 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp) DRV:64bit: - [2010-12-21 13:47:38 | 000,034,144 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\epfwndis.sys -- (Epfwndis) DRV:64bit: - [2010-11-21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2010-11-21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010-11-08 14:57:58 | 000,014,464 | ---- | M] (ASUSTek Computer Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AiChargerPlus.sys -- (AiChargerPlus) DRV:64bit: - [2010-10-19 16:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) DRV:64bit: - [2010-09-21 11:29:36 | 000,043,136 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\VDiskBus64.sys -- (VDiskBus) DRV:64bit: - [2010-04-06 18:33:10 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btnetBus.sys -- (btnetBUs) DRV:64bit: - [2010-04-06 18:32:48 | 000,027,016 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IvtBtBus.sys -- (IvtBtBUs) DRV:64bit: - [2010-04-06 18:32:46 | 000,023,944 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\BtHidBus.sys -- (BtHidBus) DRV:64bit: - [2010-02-08 22:28:10 | 000,148,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hrmports.sys -- (HRMPORTS) DRV:64bit: - [2010-02-08 22:28:10 | 000,133,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hrmcfgspc.sys -- (HRMCFGSPC) DRV:64bit: - [2010-02-08 22:28:10 | 000,128,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hrmints.sys -- (HRMINTS) DRV:64bit: - [2010-02-08 22:28:08 | 000,676,232 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\dsfksvcs.sys -- (DSFKSVCS) DRV:64bit: - [2010-02-08 22:28:08 | 000,035,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\dsfroot.sys -- (dsfroot) DRV:64bit: - [2010-02-08 20:58:56 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbehci_dsf.sys -- (usbehci_dsf) DRV:64bit: - [2010-02-08 20:06:46 | 000,675,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\softusbk.sys -- (SOFTUSBK) DRV:64bit: - [2010-02-08 20:06:46 | 000,366,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\softehci.sys -- (softehci) DRV:64bit: - [2010-02-08 20:06:42 | 000,206,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\softhidusbk.sys -- (SOFTHIDUSBK) DRV:64bit: - [2010-01-14 13:27:46 | 000,032,544 | R--- | M] (Realtek ) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\RtNdPt60.sys -- (RtNdPt60) DRV:64bit: - [2010-01-14 13:27:30 | 000,048,416 | R--- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam60.sys -- (TEAM) DRV:64bit: - [2010-01-14 13:27:30 | 000,048,416 | R--- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam60.sys -- (RTTEAMPT) DRV:64bit: - [2010-01-14 13:27:18 | 000,029,472 | R--- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtVlan60.sys -- (RTVLANPT) DRV:64bit: - [2009-08-13 08:38:24 | 000,029,184 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcp.sys -- (BthAvrcp) DRV:64bit: - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009-07-14 01:10:47 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rootmdm.sys -- (ROOTMODEM) DRV:64bit: - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2008-11-04 04:08:12 | 000,022,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\GWHid.sys -- (GWHid) DRV:64bit: - [2008-09-23 00:24:00 | 000,050,176 | ---- | M] (Todos Data System AB) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\shbecr.sys -- (Tdsshbecr) DRV:64bit: - [2008-03-30 03:16:46 | 000,031,848 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VL807.sys -- (VL807) DRV - [2010-09-16 20:56:06 | 000,016,512 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys -- (ASFLTDrv.sys) DRV - [2009-12-22 12:30:46 | 000,019,456 | ---- | M] (LG Soft India) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\LGPII2CDriver.sys -- (LGII2CDevice) DRV - [2009-12-22 12:30:36 | 000,016,384 | ---- | M] (LG Soft India) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\LGI2CDriver.sys -- (LGDDCDevice) DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2008-11-04 04:08:18 | 000,018,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\GWHid.sys -- (GWHid) DRV - [2008-03-30 03:17:18 | 000,025,064 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\VL807.sys -- (VL807) DRV - [2008-02-15 16:30:48 | 000,015,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys -- (FLASHSYS) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com/web/?type=ds&ts=1386108150&from=slbnew&uid=WDCXWD5000AADS-00S9B0_WD-WCAV9U90280802808&q={searchTerms} IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com/web/?type=ds&ts=1386108150&from=slbnew&uid=WDCXWD5000AADS-00S9B0_WD-WCAV9U90280802808&q={searchTerms} IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.aartemis.com/web/?type=ds&ts=1386108150&from=slbnew&uid=WDCXWD5000AADS-00S9B0_WD-WCAV9U90280802808&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com/web/?type=ds&ts=1386108150&from=slbnew&uid=WDCXWD5000AADS-00S9B0_WD-WCAV9U90280802808&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com/web/?type=ds&ts=1386108150&from=slbnew&uid=WDCXWD5000AADS-00S9B0_WD-WCAV9U90280802808&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.pl/ [binary data] IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\SearchScopes,DefaultScope = {01AA3507-BBE7-437F-B89A-A4E240EF067E} IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\SearchScopes\{01AA3507-BBE7-437F-B89A-A4E240EF067E}: "URL" = http://www.idg.pl?q={searchTerms} IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={E22CEB03-2D8D-4CB3-B7C2-CE17B1DEFA86}&mid=3c8acdbcac8547d095a0252442857de7-617abbcef06b250eea98b924de82af8847409f3a&lang=pl&ds=st011&pr=sa&d=2012-03-30 17:42:10&v=10.0.0.7&sap=dsp&q={searchTerms} IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\SearchScopes\{F687E906-078E-4CEE-9FE6-35D0BD44D5D5}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=FF&o=14594&src=kw&q={searchTerms}&locale=&apn_ptnrs=FV&apn_dtid=YYYYYYYYPL&apn_uid=c6407942-0034-4ec1-a989-42b62292c4f3&apn_sauid=83C60800-D40F-41FC-A3AE-5FF710E7CD1E IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local> ========== FireFox ========== FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..extensions.enabledAddons: SkipScreen%40SkipScreen:0.7.2 FF - prefs.js..extensions.enabledAddons: translator%40zoli.bod:2.1.0.3 FF - prefs.js..extensions.enabledAddons: YoutubeDownloader%40PeterOlayev.com:2.2.0 FF - prefs.js..extensions.enabledAddons: %7B3e0e7d2a-070f-4a47-b019-91fe5385ba79%7D:3.5.9 FF - prefs.js..extensions.enabledAddons: ascsurfingprotection%40iobit.com:1.0 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:26.0 FF - prefs.js..keyword.URL: "http://websearch.ask.com/redirect?client=ff&src=kw&tb=FF&o=14594&locale=en_US&apn_uid=c6407942-0034-4ec1-a989-42b62292c4f3&apn_ptnrs=FV&apn_sauid=83C60800-D40F-41FC-A3AE-5FF710E7CD1E&apn_dtid=YYYYYYYYPL&&q=" FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.104.0: File not found FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.116.0: C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll File not found FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.122.0: C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll File not found FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.138.0: C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll File not found FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.4: C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll File not found FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.3.1: C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB) FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.3.2: C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF - HKLM\Software\MozillaPlugins\@ganymede/GanymedeNetPlugin,version=1.0: C:\Program Files (x86)\Ganymede\Plugins\npganymedenet.dll ( ) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( ) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Dawid\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF - HKCU\Software\MozillaPlugins\facebook.com/fbDesktopPlugin: C:\Users\Dawid\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.) FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll () 64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2012-12-10 20:52:55 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013-12-11 17:59:59 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012-12-10 20:52:55 | 000,000,000 | ---D | M] [2011-11-29 20:31:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\Extensions [2013-12-12 17:04:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions [2013-01-07 11:31:47 | 000,000,000 | ---D | M] (AddThis) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\{3e0e7d2a-070f-4a47-b019-91fe5385ba79} [2013-08-27 11:06:39 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-12-12 17:04:47 | 000,000,000 | ---D | M] (Advanced SystemCare Surfing Protection) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\ascsurfingprotection@iobit.com [2013-12-05 14:20:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\staged [2013-10-20 11:48:20 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\toolbar@ask.com [2013-02-18 10:26:22 | 000,054,842 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\imageviewer@toptip.ca.xpi [2013-06-20 21:59:29 | 000,255,232 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\jid1-GBYr3F9iI4n8IA@jetpack.xpi [2013-12-05 14:20:23 | 000,703,930 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\jid1-qQSMEVsYTOjgYA@jetpack.xpi [2013-02-18 10:26:22 | 000,030,191 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\screensurfer@pjs.nl.xpi [2013-07-21 08:57:20 | 000,071,038 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\SkipScreen@SkipScreen.xpi [2013-02-04 10:44:31 | 000,060,290 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\translator@zoli.bod.xpi [2013-01-30 16:47:08 | 000,021,356 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\uss-button@uploadscreenshot.com.xpi [2013-11-27 16:18:36 | 000,072,622 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\YoutubeDownloader@PeterOlayev.com.xpi [2013-09-07 21:43:17 | 000,242,531 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\{b0e1b4a6-2c6f-4e99-94f2-8e625d7ae255}.xpi [2013-08-02 11:11:22 | 000,224,035 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2013-11-14 16:57:46 | 000,185,247 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\{c8d3bc80-0810-4d21-a2c2-be5f2b2832ac}.xpi [2013-10-10 17:18:21 | 000,915,554 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-07-20 14:08:32 | 000,002,322 | ---- | M] () -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\searchplugins\askcom.xml [2013-12-11 17:59:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2013-12-11 17:59:59 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2013-12-11 17:59:59 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} [2013-12-11 17:59:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions [2013-12-11 18:00:05 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} File not found (No name found) -- C:\PROGRAM FILES (X86)\IOBIT APPS TOOLBAR\FF [2012-06-12 17:01:57 | 000,003,768 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml O1 HOSTS File: ([2012-02-26 15:44:09 | 000,000,867 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 activate.adobe.com O2:64bit: - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Advanced SystemCare Browser Protection) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL (IObit) O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found. O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4:64bit: - HKLM..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation) O4:64bit: - HKLM..\Run: [OutpostMonitor] C:\Program Files\Agnitum\Outpost Firewall Pro\op_mon.exe (Agnitum Ltd.) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation) O4:64bit: - HKLM..\Run: [TNOD UP] "C:\Program Files\ESET\TNod User & Password Finder\TNODUP.exe" /i File not found O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask) O4 - HKLM..\Run: [ASUS AiChargerPlus Execute] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (ASUSTek Computer Inc.) O4 - HKLM..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.94.193\AsusWSPanel.exe (ecareme) O4 - HKLM..\Run: [CLMLServer] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) O4 - HKLM..\Run: [LGODDFU] blrun File not found O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe () O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKU\.DEFAULT..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.) O4 - HKU\S-1-5-18..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.) O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000..\Run: [] File not found O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000..\Run: [AQQ] C:\PROGRA~2\WapSter\WAPSTE~1\AQQ.exe (AQQ Sp. z o.o.) O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000..\Run: [F.lux] C:\Users\Dawid\AppData\Local\FluxSoftware\Flux\flux.exe (Flux Software LLC) O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup File not found O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000..\Run: [NextLive] C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.dll (NewNextDotMe) O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1008..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1008..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableThumbnails = 0 O7 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: = O8:64bit: - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1A07E7B8-1FD9-4107-B093-43C81F346573}: DhcpNameServer = 192.168.1.1 O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - AppInit_DLLs: (c:\progra~1\agnitum\outpos~1\wl_hoo~1.dll) - c:\Program Files\Agnitum\Outpost Firewall Pro\wl_hook64.dll (Agnitum Ltd.) O20 - AppInit_DLLs: (c:\progra~1\agnitum\outpos~1\wl_hook.dll) - c:\Program Files\Agnitum\Outpost Firewall Pro\wl_hook.dll (Agnitum Ltd.) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013-06-26 21:38:36 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ] O32 - AutoRun File - [2013-07-24 13:54:55 | 000,000,000 | ---D | M] - E:\autocad -- [ NTFS ] O32 - AutoRun File - [2013-06-29 23:51:50 | 000,000,000 | ---D | M] - E:\Autodesk -- [ NTFS ] O33 - MountPoints2\{30c971b1-15dd-11e2-b2eb-f46d04619414}\Shell - "" = AutoRun O33 - MountPoints2\{30c971b1-15dd-11e2-b2eb-f46d04619414}\Shell\AutoRun\command - "" = K:\start.exe O33 - MountPoints2\{706d8922-e23b-11e1-9d52-f46d04619414}\Shell - "" = AutoRun O33 - MountPoints2\{706d8922-e23b-11e1-9d52-f46d04619414}\Shell\AutoRun\command - "" = K:\LaunchU3.exe -a O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) ========== Files/Folders - Created Within 30 Days ========== [2013-12-15 12:51:48 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Dawid\Desktop\OTL.exe [2013-12-14 23:52:51 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Local\FileViewPro [2013-12-14 23:52:49 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\IsolatedStorage [2013-12-14 23:52:49 | 000,000,000 | ---D | C] -- C:\ProgramData\IsolatedStorage [2013-12-14 23:47:55 | 000,000,000 | ---D | C] -- C:\Spacekace [2013-12-14 18:19:29 | 000,000,000 | ---D | C] -- C:\Users\Dawid\Desktop\tel [2013-12-14 17:56:55 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\newnext.me [2013-12-14 14:16:57 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\hdd_guardian [2013-12-14 14:16:57 | 000,000,000 | ---D | C] -- C:\ProgramData\hdd_guardian [2013-12-14 14:15:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Guardian 0.5.0 [2013-12-14 14:15:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HDD Guardian 0.5.0 [2013-12-14 11:08:30 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\LG Electronics [2013-12-14 10:50:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite [2013-12-14 10:50:30 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Local\LG Electronics [2013-12-14 09:28:18 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\Gholam_Inc [2013-12-14 09:28:14 | 000,000,000 | ---D | C] -- C:\ProgramData\DonationCoder [2013-12-14 09:27:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JottiQ [2013-12-14 09:27:51 | 000,000,000 | ---D | C] -- C:\Program Files\JottiQ [2013-12-12 17:04:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller [2013-12-12 17:04:45 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData [2013-12-12 17:04:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7 [2013-12-12 14:30:31 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL [2013-12-12 14:30:30 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL [2013-12-12 14:30:30 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2013-12-12 14:30:28 | 014,631,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2013-12-12 14:28:58 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013-12-12 14:28:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll [2013-12-12 14:28:57 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013-12-12 14:28:57 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013-12-12 14:28:57 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013-12-12 14:28:57 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe [2013-12-12 14:28:57 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013-12-12 14:28:57 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll [2013-12-12 14:28:57 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013-12-12 14:28:56 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2013-12-12 14:28:56 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll [2013-12-12 14:28:56 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2013-12-12 14:28:56 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll [2013-12-12 14:28:53 | 001,995,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013-12-12 14:28:53 | 001,928,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013-12-12 14:28:50 | 005,769,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013-12-11 22:08:40 | 001,064,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll [2013-12-11 22:08:40 | 000,955,168 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll [2013-12-11 22:07:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies [2013-12-11 22:02:54 | 001,510,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco64.dll [2013-12-11 22:02:54 | 000,196,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys [2013-12-11 22:02:54 | 000,039,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvad64v.sys [2013-12-11 22:02:54 | 000,031,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll [2013-12-11 22:02:54 | 000,029,984 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvaudcap64v.dll [2013-12-11 22:02:54 | 000,028,960 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll [2013-12-11 22:02:53 | 030,361,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2013-12-11 22:02:53 | 025,257,248 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2013-12-11 22:02:53 | 022,951,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2013-12-11 22:02:53 | 017,560,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2013-12-11 22:02:53 | 011,600,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2013-12-11 22:02:53 | 011,514,624 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2013-12-11 22:02:53 | 009,691,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2013-12-11 22:02:53 | 009,619,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2013-12-11 22:02:53 | 003,132,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2013-12-11 22:02:53 | 003,125,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2013-12-11 22:02:53 | 002,947,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2013-12-11 22:02:53 | 002,747,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2013-12-11 22:02:53 | 001,884,448 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6433182.dll [2013-12-11 22:02:53 | 001,511,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6433182.dll [2013-12-11 22:02:53 | 001,242,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll [2013-12-11 22:02:53 | 000,707,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll [2013-12-11 22:02:53 | 000,657,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll [2013-12-11 22:02:53 | 000,609,568 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll [2013-12-11 22:02:53 | 000,562,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll [2013-12-11 22:02:53 | 000,317,472 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll [2013-12-11 22:02:53 | 000,266,984 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll [2013-12-11 22:02:53 | 000,168,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll [2013-12-11 22:02:53 | 000,141,336 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll [2013-12-11 17:59:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2013-12-11 15:46:40 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll [2013-12-11 15:46:40 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll [2013-12-11 15:46:39 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll [2013-12-11 15:46:39 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll [2013-12-11 15:46:36 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll [2013-12-11 15:45:57 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys [2013-12-11 15:45:57 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrrun.dll [2013-12-11 15:45:57 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscript.exe [2013-12-11 15:45:57 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshom.ocx [2013-12-11 15:45:57 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshom.ocx [2013-12-11 15:45:57 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys [2013-12-11 15:45:56 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrrun.dll [2013-12-11 15:45:56 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscript.exe [2013-12-09 14:38:48 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Local\genienext [2013-12-08 19:31:35 | 000,000,000 | ---D | C] -- C:\Users\Dawid\Documents\Recorder [2013-12-08 19:00:45 | 000,000,000 | ---D | C] -- C:\Users\Dawid\Desktop\vCardOrganizer [2013-12-08 10:19:18 | 000,000,000 | ---D | C] -- C:\Windows\Migration [2013-12-08 10:06:50 | 000,000,000 | ---D | C] -- C:\ProgramData\HotSync [2013-12-08 10:05:47 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\HotSync [2013-12-08 10:05:42 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Installations [2013-12-08 09:49:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Palm Desktop [2013-12-08 09:06:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Undelete360 [2013-12-08 09:06:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\File Recovery [2013-12-07 23:20:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\vCardOrganizer [2013-12-07 22:14:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VCardExport [2013-12-07 22:14:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VCardExportTool [2013-12-07 19:42:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LG Electronics [2013-12-07 19:40:13 | 000,000,000 | ---D | C] -- C:\Users\Dawid\.android [2013-12-03 23:02:47 | 000,000,000 | ---D | C] -- C:\ProgramData\WPM [2013-12-03 22:52:10 | 000,000,000 | ---D | C] -- C:\Users\Dawid\Documents\Mobogenie [2013-12-03 22:52:10 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Local\Mobogenie [2013-12-03 22:51:16 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie [2013-12-03 22:51:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mobogenie [2013-12-03 18:37:16 | 000,000,000 | ---D | C] -- C:\ProgramData\firebird [2013-12-03 18:36:07 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Local\Paraben Corporation [2013-12-03 18:34:15 | 000,376,832 | ---- | C] (MARX CryptoTech LP ) -- C:\Windows\SysWow64\MPIWIN32.DLL [2013-12-03 18:34:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\MARX Shared [2013-12-03 18:33:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Temp [2013-12-03 18:33:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paraben Corporation [2013-12-03 18:32:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Paraben Corporation [2013-12-02 21:27:07 | 675,197,848 | ---- | C] (Microsoft Corporation) -- C:\Users\Dawid\Desktop\ds-demo.exe [2013-11-17 12:19:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\oldcatroot2 [2013-11-17 10:21:50 | 000,000,000 | ---D | C] -- C:\punkbuster [2013-11-17 09:13:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3 [3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013-12-15 13:00:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013-12-15 12:51:55 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dawid\Desktop\OTL.exe [2013-12-15 12:49:00 | 000,032,096 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013-12-15 12:49:00 | 000,032,096 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013-12-15 12:42:42 | 000,000,494 | ---- | M] () -- C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job [2013-12-15 12:42:29 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013-12-15 12:40:43 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013-12-15 12:40:41 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\drivers\lvuvc.hs [2013-12-15 12:40:38 | 2131,857,407 | -HS- | M] () -- C:\hiberfil.sys [2013-12-15 12:12:00 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013-12-15 10:44:01 | 000,000,928 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1744233449-2869872091-3771974885-1000UA.job [2013-12-15 10:16:23 | 003,722,082 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013-12-15 10:16:23 | 001,430,882 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2013-12-15 10:16:23 | 001,290,900 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013-12-15 10:16:23 | 000,544,654 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2013-12-15 10:16:23 | 000,424,572 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013-12-15 10:00:46 | 000,000,126 | ---- | M] () -- C:\Windows\wininit.ini [2013-12-14 23:46:43 | 002,388,400 | ---- | M] () -- C:\Users\Dawid\Desktop\FileViewPro_2013.exe [2013-12-14 22:44:00 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1744233449-2869872091-3771974885-1000Core.job [2013-12-14 18:00:00 | 000,000,468 | ---- | M] () -- C:\Windows\tasks\ParetoLogic Registration3.job [2013-12-14 14:15:50 | 000,152,145 | ---- | M] () -- C:\Users\Dawid\Desktop\helath dysk.jpg [2013-12-14 14:15:10 | 000,001,098 | ---- | M] () -- C:\Users\Public\Desktop\HDD Guardian.lnk [2013-12-14 11:27:07 | 000,001,110 | ---- | M] () -- C:\Users\Public\Desktop\LG PC Suite.Lnk [2013-12-14 10:53:50 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013-12-14 09:48:55 | 000,001,268 | ---- | M] () -- C:\Users\Dawid\Desktop\JottiQ.lnk [2013-12-12 14:35:09 | 005,148,816 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013-12-11 17:22:11 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013-12-11 17:22:11 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013-12-08 12:07:35 | 000,290,184 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2013-12-08 12:07:35 | 000,290,184 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2013-12-08 11:33:54 | 000,290,184 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2013-12-08 11:33:48 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2013-12-08 10:21:05 | 003,679,910 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013-12-08 10:15:28 | 000,001,474 | ---- | M] () -- C:\Users\Dawid\Desktop\vCardOrganizer.lnk [2013-12-08 10:14:54 | 000,001,456 | ---- | M] () -- C:\Users\Dawid\Desktop\VCardExport.lnk [2013-12-08 10:10:09 | 000,000,000 | ---- | M] () -- C:\Windows\QuickInstall.INI [2013-12-08 09:06:50 | 000,001,218 | ---- | M] () -- C:\Users\Dawid\Desktop\Undelete 360.lnk [2013-12-07 23:04:56 | 000,000,028 | ---- | M] () -- C:\Windows\ODBC.INI [2013-12-07 23:04:54 | 000,038,418 | ---- | M] () -- C:\Users\Dawid\AppData\Roaming\Microsoft Excel 97-2003.ADR [2013-12-04 15:47:37 | 000,001,134 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013-12-03 22:51:35 | 000,001,023 | ---- | M] () -- C:\Users\Dawid\Desktop\Mobogenie.lnk [2013-12-03 18:36:18 | 000,005,025 | ---- | M] () -- C:\ProgramData\bzewdlof.ahj [2013-12-03 18:34:15 | 000,376,832 | ---- | M] (MARX CryptoTech LP ) -- C:\Windows\SysWow64\MPIWIN32.DLL [2013-12-03 18:33:26 | 000,002,138 | ---- | M] () -- C:\Users\Public\Desktop\Device Seizure.lnk [2013-12-02 22:55:47 | 675,197,848 | ---- | M] (Microsoft Corporation) -- C:\Users\Dawid\Desktop\ds-demo.exe [2013-12-01 23:23:49 | 000,000,132 | ---- | M] () -- C:\Users\Dawid\AppData\Roaming\Preferencje Adobe CS5 dla formatu BMP [2013-12-01 23:22:02 | 000,000,132 | ---- | M] () -- C:\Users\Dawid\AppData\Roaming\Preferencje Adobe CS5 dla formatu PNG [2013-11-30 23:45:56 | 000,011,017 | ---- | M] () -- C:\Users\Dawid\Desktop\00001.vcf [2013-11-26 11:18:23 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll [2013-11-26 10:48:07 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013-11-26 10:46:25 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll [2013-11-26 10:27:54 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013-11-26 10:21:24 | 000,574,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013-11-26 10:18:39 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013-11-26 10:18:09 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe [2013-11-26 10:16:57 | 000,708,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll [2013-11-26 09:57:44 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013-11-26 09:35:02 | 005,769,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013-11-26 09:32:08 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013-11-26 09:28:16 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll [2013-11-26 09:02:16 | 001,995,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013-11-26 08:32:06 | 001,928,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013-11-26 07:34:55 | 000,703,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2013-11-26 07:34:27 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2013-11-25 21:16:38 | 000,140,044 | ---- | M] () -- C:\Users\Dawid\Desktop\428x343_product_media_01089.jpg [2013-11-25 21:13:37 | 000,847,260 | ---- | M] () -- C:\Users\Dawid\Desktop\wallpaper-1541836.jpg [2013-11-25 21:11:18 | 000,367,174 | ---- | M] () -- C:\Users\Dawid\Desktop\wallpaper-714209.jpg [2013-11-24 14:51:12 | 000,000,097 | ---- | M] () -- C:\Windows\SysWow64\91207717.sys [2013-11-23 19:26:20 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll [2013-11-23 18:47:34 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll [3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] ========== Files Created - No Company Name ========== [2013-12-15 10:00:46 | 000,000,126 | ---- | C] () -- C:\Windows\wininit.ini [2013-12-14 23:46:25 | 002,388,400 | ---- | C] () -- C:\Users\Dawid\Desktop\FileViewPro_2013.exe [2013-12-14 14:15:10 | 000,001,098 | ---- | C] () -- C:\Users\Public\Desktop\HDD Guardian.lnk [2013-12-14 14:10:22 | 000,152,145 | ---- | C] () -- C:\Users\Dawid\Desktop\helath dysk.jpg [2013-12-14 10:53:50 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013-12-14 10:52:13 | 000,001,110 | ---- | C] () -- C:\Users\Public\Desktop\LG PC Suite.Lnk [2013-12-14 09:48:55 | 000,001,268 | ---- | C] () -- C:\Users\Dawid\Desktop\JottiQ.lnk [2013-12-08 10:15:28 | 000,001,474 | ---- | C] () -- C:\Users\Dawid\Desktop\vCardOrganizer.lnk [2013-12-08 10:14:54 | 000,001,456 | ---- | C] () -- C:\Users\Dawid\Desktop\VCardExport.lnk [2013-12-08 10:10:09 | 000,000,000 | ---- | C] () -- C:\Windows\QuickInstall.INI [2013-12-08 09:06:50 | 000,001,218 | ---- | C] () -- C:\Users\Dawid\Desktop\Undelete 360.lnk [2013-12-07 23:04:54 | 000,038,418 | ---- | C] () -- C:\Users\Dawid\AppData\Roaming\Microsoft Excel 97-2003.ADR [2013-12-07 23:04:52 | 000,000,028 | ---- | C] () -- C:\Windows\ODBC.INI [2013-12-07 19:59:14 | 000,011,017 | ---- | C] () -- C:\Users\Dawid\Desktop\00001.vcf [2013-12-06 22:11:44 | 004,001,112 | ---- | C] () -- C:\Users\Dawid\Desktop\P1210250.JPG [2013-12-03 22:51:35 | 000,001,023 | ---- | C] () -- C:\Users\Dawid\Desktop\Mobogenie.lnk [2013-12-03 18:36:18 | 000,005,025 | ---- | C] () -- C:\ProgramData\bzewdlof.ahj [2013-12-03 18:33:26 | 000,002,138 | ---- | C] () -- C:\Users\Public\Desktop\Device Seizure.lnk [2013-12-01 23:23:33 | 000,000,132 | ---- | C] () -- C:\Users\Dawid\AppData\Roaming\Preferencje Adobe CS5 dla formatu BMP [2013-12-01 23:20:50 | 000,000,132 | ---- | C] () -- C:\Users\Dawid\AppData\Roaming\Preferencje Adobe CS5 dla formatu PNG [2013-11-25 21:16:38 | 000,140,044 | ---- | C] () -- C:\Users\Dawid\Desktop\428x343_product_media_01089.jpg [2013-11-25 21:13:37 | 000,847,260 | ---- | C] () -- C:\Users\Dawid\Desktop\wallpaper-1541836.jpg [2013-11-25 21:11:17 | 000,367,174 | ---- | C] () -- C:\Users\Dawid\Desktop\wallpaper-714209.jpg [2013-11-03 10:51:36 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\91207717.sys [2013-10-19 10:45:51 | 000,000,093 | ---- | C] () -- C:\Users\Dawid\AppData\Local\fusioncache.dat [2013-06-29 22:38:42 | 000,000,153 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [2012-12-07 21:05:48 | 000,000,096 | ---- | C] () -- C:\Windows\BsMobileModel.ini [2012-09-28 20:45:06 | 000,247,296 | ---- | C] () -- C:\Windows\SysWow64\rtvcvfw32.dll [2012-06-19 13:02:17 | 003,123,272 | R--- | C] () -- C:\Windows\SysWow64\pbsvc.exe [2012-01-29 12:21:24 | 000,042,132 | ---- | C] () -- C:\Windows\XF2000.INI [2012-01-24 12:17:42 | 000,217,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2012-01-21 14:11:33 | 000,061,800 | ---- | C] () -- C:\Windows\SysWow64\Hidhlp.dll [2012-01-21 14:11:33 | 000,049,152 | ---- | C] () -- C:\Windows\SysWow64\iFT7195.dll [2012-01-21 14:11:33 | 000,025,064 | ---- | C] () -- C:\Windows\SysWow64\drivers\VL807.sys [2012-01-18 07:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll [2012-01-18 07:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll [2012-01-18 07:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe [2011-12-21 13:44:05 | 000,007,645 | ---- | C] () -- C:\Users\Dawid\AppData\Local\resmon.resmoncfg [2011-12-17 17:56:55 | 005,265,744 | ---- | C] () -- C:\Windows\PE_Rom.dll ========== ZeroAccess Check ========== [2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2013-07-26 03:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013-07-26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2013-12-08 15:53:29 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\AIMP3 [2012-02-22 14:36:09 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\AIWI [2011-12-18 16:05:40 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ashampoo [2011-12-30 16:23:42 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ASUS WebStorage [2013-11-03 10:53:11 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Audacity [2013-06-29 23:33:55 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Autodesk [2012-06-02 12:27:08 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\BANDISOFT [2012-01-28 11:06:00 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\com.adobe.DC3Module.AdobeADC [2012-08-30 14:51:25 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\CrystalIdea Software [2012-03-29 16:09:33 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DAEMON Tools Lite [2011-11-29 16:17:38 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DAEMON Tools Pro [2012-10-20 16:48:05 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Dexpot [2013-10-20 11:12:54 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DriverCure [2011-12-03 14:12:42 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Dropbox [2011-12-17 20:07:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DxO Labs [2012-01-22 19:10:02 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\e-pity [2012-01-14 19:38:48 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ESET [2012-06-09 16:33:26 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\EurekaLog [2012-01-27 18:40:09 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Gadu-Gadu 10 [2012-05-15 16:55:28 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\GanymedeNet [2013-12-14 14:00:04 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\GG [2013-12-14 09:28:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Gholam_Inc [2013-12-14 14:16:57 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\hdd_guardian [2012-05-02 10:34:16 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\HDRsoft [2013-12-08 10:05:47 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\HotSync [2013-12-12 17:04:48 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\IObit [2013-10-20 11:48:19 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ipla [2013-12-14 23:52:49 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\IsolatedStorage [2012-04-06 12:04:43 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Leadertech [2013-12-14 18:02:19 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\LG Electronics [2013-12-15 12:43:02 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\newnext.me [2012-12-10 18:29:23 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nokia [2012-12-10 18:22:52 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nokia Suite [2012-01-01 13:32:38 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nseries [2013-04-14 17:21:31 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nvu [2012-01-24 19:57:45 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\OpenFM [2013-07-16 12:17:32 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Origin [2011-12-17 20:06:35 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PACE Anti-Piracy [2013-10-20 11:12:54 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ParetoLogic [2012-01-19 19:15:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PC Suite [2011-12-24 16:59:14 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Personal [2011-12-23 13:50:04 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PunkBuster [2012-04-02 21:38:06 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Rovio [2012-03-09 18:49:56 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\S.A.D [2013-10-18 17:12:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Softativity [2012-01-28 16:46:54 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2012-03-25 17:21:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\SuperUtils.com [2013-12-07 22:26:35 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TeamViewer [2011-12-26 11:45:26 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Tific [2013-12-14 10:35:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TS3Client [2012-04-10 10:23:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ts3overlay [2012-07-08 21:10:24 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TSNotifier [2012-04-18 13:56:06 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TuneUp Software [2012-06-07 17:35:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ubisoft [2011-12-10 15:19:39 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ulead Systems [2012-06-17 13:50:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\WinAVI ========== Purity Check ========== ========== Custom Scans ========== < C:\*.* > [2013-12-15 12:40:38 | 2131,857,407 | -HS- | M] () -- C:\hiberfil.sys [2013-12-08 10:06:52 | 003,806,062 | ---- | M] () -- C:\HuskyInstallerLog.txt [2013-12-15 12:40:38 | 4274,135,039 | -HS- | M] () -- C:\pagefile.sys [2012-02-24 14:31:04 | 000,179,054 | ---- | M] () -- C:\TDSSKiller.2.7.13.0_24.02.2012_14.29.38_log.txt [2012-03-18 12:32:45 | 000,090,740 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_18.03.2012_12.31.31_log.txt [2012-03-18 16:39:16 | 000,000,348 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_18.03.2012_16.39.14_log.txt [2012-02-24 14:35:44 | 000,091,570 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_24.02.2012_14.34.50_log.txt [2012-02-26 13:14:01 | 000,092,604 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_26.02.2012_13.13.18_log.txt [2012-03-18 16:47:27 | 000,090,740 | ---- | M] () -- C:\TDSSKiller.2.7.20.0_18.03.2012_16.46.10_log.txt [2012-06-18 11:10:49 | 000,092,934 | ---- | M] () -- C:\TDSSKiller.2.7.20.0_18.06.2012_12.10.17_log.txt [2009-07-14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT [2009-07-14 06:08:49 | 000,032,608 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2012-04-01 17:42:06 | 000,000,930 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job [2012-04-11 21:02:43 | 000,000,906 | ---- | C] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1744233449-2869872091-3771974885-1000Core.job [2012-04-11 21:02:44 | 000,000,928 | ---- | C] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1744233449-2869872091-3771974885-1000UA.job [2012-07-06 16:17:38 | 000,001,042 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [2012-07-06 16:17:38 | 000,001,046 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [2013-10-20 11:41:50 | 000,000,410 | ---- | C] () -- C:\Windows\Tasks\RegCure Pro.job [2013-10-20 11:41:52 | 000,000,442 | ---- | C] () -- C:\Windows\Tasks\ParetoLogic Update Version3.job [2013-10-20 11:41:52 | 000,000,494 | ---- | C] () -- C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job [2013-10-20 11:42:25 | 000,000,468 | ---- | C] () -- C:\Windows\Tasks\ParetoLogic Registration3.job < D:\*.* > [2012-01-24 17:23:59 | 000,258,492 | ---- | M] () -- D:\00-00-00.jpg [2012-01-24 17:27:28 | 000,350,024 | ---- | M] () -- D:\00-00-00_et.jpg [2012-01-24 17:23:59 | 000,256,656 | ---- | M] () -- D:\00-00-02.jpg [2013-07-04 16:59:03 | 1557,383,068 | ---- | M] () -- D:\17 urodziny danona przejazd moto noca.avi [2013-07-04 16:59:03 | 018,693,868 | ---- | M] () -- D:\17 urodziny danona przejazd moto noca~2.avi [2013-07-04 16:53:17 | 000,011,264 | ---- | M] () -- D:\17 urodziny danona przejazdza moto.VSP [2011-08-24 20:51:58 | 003,050,163 | ---- | M] () -- D:\2fotkiorygprzerobka_kolaz.jpg [2011-08-24 20:52:54 | 002,784,026 | ---- | M] () -- D:\2fotkiorygprzerobka_kolaz22.jpg [2011-04-02 09:47:29 | 957,273,448 | ---- | M] () -- D:\ACBSP 2011-04-02 10-43-51-23.avi [2011-04-02 09:47:45 | 023,624,872 | ---- | M] () -- D:\ACBSP 2011-04-02 10-47-38-89.avi [2013-11-29 19:06:05 | 000,647,626 | ---- | M] () -- D:\billing (2).txt [2013-12-08 14:40:23 | 000,630,136 | ---- | M] () -- D:\billing (3).txt [2013-12-14 22:55:11 | 000,192,065 | ---- | M] () -- D:\billing (4).txt [2013-10-26 19:12:46 | 000,538,759 | ---- | M] () -- D:\billing.txt [2011-02-27 15:19:06 | 559,481,986 | ---- | M] () -- D:\CoDMW2.wmv [2012-12-17 15:43:30 | 050,040,832 | ---- | M] () -- D:\Credo Prawko B.iso [2011-09-29 19:34:36 | 003,957,706 | ---- | M] () -- D:\crosskolaz1.jpg [2013-03-31 19:02:38 | 004,249,281 | ---- | M] () -- D:\crosskolaz2.jpg [2007-02-01 15:04:06 | 061,236,062 | ---- | M] () -- D:\CRYSpcVIDTRdx10.wmv [2013-04-18 19:59:46 | 000,819,831 | ---- | M] () -- D:\dwe.mp4 [2013-12-12 18:01:19 | 000,011,007 | ---- | M] () -- D:\kontakty 07.12.2013.txt [2012-03-18 12:30:40 | 000,041,183 | ---- | M] () -- D:\KontaktyDawid_18.03.2012 [2012-02-24 14:26:06 | 000,041,837 | ---- | M] () -- D:\KontaktyggDawid_24.02.2012 [2012-07-04 14:54:27 | 000,041,618 | ---- | M] () -- D:\Kontakty_9207423_04.07.2012 [2012-05-15 18:15:38 | 000,040,493 | ---- | M] () -- D:\Kontakty_9207423_15.05.2012 [2012-07-29 22:16:42 | 000,041,069 | ---- | M] () -- D:\Kontakty_9207423_29.07.2012 [2012-06-17 14:09:04 | 000,927,188 | ---- | M] () -- D:\ludzie, lodożerca.mp3 [2010-02-16 18:53:20 | 000,052,070 | ---- | M] () -- D:\ludzie.amr [2010-02-16 18:53:20 | 000,527,079 | ---- | M] () -- D:\ludzie.mp3 [2012-11-03 00:54:26 | 015,740,409 | ---- | M] () -- D:\MOV00321.3gp [2012-11-05 21:45:27 | 2020,266,143 | ---- | M] () -- D:\Osiemnastka Danona.mp4 [2008-03-05 18:16:30 | 096,558,090 | ---- | M] () -- D:\P1010399.MOV [2008-03-05 18:22:20 | 029,908,310 | ---- | M] () -- D:\P1010403.MOV [2008-03-22 15:03:28 | 067,235,722 | ---- | M] () -- D:\P1020379.MOV [2010-02-10 19:22:24 | 003,646,352 | ---- | M] () -- D:\P1080184.JPG [2010-02-15 11:42:26 | 003,417,346 | ---- | M] () -- D:\P1080190.JPG [2010-02-15 11:50:04 | 003,938,113 | ---- | M] () -- D:\P1080191.JPG [2010-03-22 16:13:06 | 003,575,334 | ---- | M] () -- D:\P1080392.JPG [2010-03-22 16:13:32 | 003,854,951 | ---- | M] () -- D:\P1080393.JPG [2011-11-06 14:03:12 | 003,020,341 | ---- | M] () -- D:\P1160593.JPG [2011-11-07 15:21:22 | 001,950,575 | ---- | M] () -- D:\P1160593_3.jpeg [2011-11-27 16:39:40 | 002,506,626 | ---- | M] () -- D:\P1160754.JPG [2011-11-27 17:19:26 | 000,773,794 | ---- | M] () -- D:\P1160754_2.jpg [2011-11-27 17:37:50 | 000,787,302 | ---- | M] () -- D:\P1160754_3.jpeg [2013-12-01 22:27:03 | 000,990,569 | ---- | M] () -- D:\Picture 28.jpg [2011-10-16 17:13:10 | 000,070,941 | ---- | M] () -- D:\screen320.jpg [2013-04-18 19:11:11 | 000,531,728 | ---- | M] () -- D:\Skok przez okno na lekcji GEOGRAFII.mp4 [2011-11-25 19:37:17 | 268,435,456 | -HS- | M] () -- D:\WinPEpge.sys [2013-05-09 18:17:33 | 180,403,915 | ---- | M] () -- D:\wiosny - przypomnienie.psd [2012-11-08 19:00:32 | 108,882,807 | ---- | M] () -- D:\Wojtas na Paka urodzinach.mp4 [2012-11-08 19:00:58 | 000,008,704 | ---- | M] () -- D:\Wojtas na urodzinach u Paka.VSP < E:\*.* > [2013-11-30 23:45:56 | 000,011,017 | ---- | M] () -- E:\00001.vcf [2011-11-20 15:08:22 | 007,891,551 | ---- | M] (A.I.SOFT,INC.) -- E:\465-USB-WIN7-64-PNP-A-PL(1).EXE [2012-06-05 18:57:45 | 094,039,935 | ---- | M] () -- E:\AC3 - Oficjalny zwiastun z E3 [PL].mp4 [2012-03-29 08:25:54 | 733,779,968 | ---- | M] () -- E:\american pie 6 beta house lektor pl.avi [2012-04-02 21:32:34 | 034,995,726 | ---- | M] () -- E:\Angry Birds Space 1.0.0.THETA www.exsite.pl.rar [2012-06-11 15:14:57 | 729,248,342 | ---- | M] () -- E:\bf3_2012_06_11_16_10_49_808.avi [2012-10-07 12:00:23 | 071,831,387 | ---- | M] () -- E:\BF3_Premium_Guide02_EN_v2.pdf [2012-12-30 12:28:09 | 090,682,025 | ---- | M] () -- E:\BF3_Premium_Guide03_EN.pdf [2013-04-02 13:30:22 | 081,254,005 | ---- | M] () -- E:\BF3_Premium_Guide04_EN.pdf [2013-12-14 22:55:11 | 000,192,065 | ---- | M] () -- E:\billing 05.12-14.12.txt [2013-12-08 14:40:23 | 000,630,136 | ---- | M] () -- E:\billing 09.11-08.12.txt [2013-10-26 19:12:46 | 000,538,759 | ---- | M] () -- E:\billing 27.09-26.10.txt [2013-12-08 17:41:49 | 000,181,408 | ---- | M] () -- E:\billing 29.11-08.12.txt [2013-11-29 19:06:05 | 000,647,626 | ---- | M] () -- E:\billing 31.10-29.11.txt [2011-04-22 23:11:50 | 726,675,276 | ---- | M] () -- E:\cfy-newkids.avi [2011-04-25 23:59:46 | 000,032,634 | ---- | M] () -- E:\cfy-newkids.txt [2011-11-26 09:03:16 | 000,042,101 | ---- | M] () -- E:\Dawidkontakty_26.11.2011 [2012-06-03 12:39:43 | 108,508,108 | ---- | M] () -- E:\F1 2012 Monaco GP Official race edit.mp4 [2012-07-23 18:23:49 | 017,532,198 | ---- | M] () -- E:\iCEnhancer2_1FINAL.zip [2011-07-01 18:45:10 | 000,000,198 | ---- | M] () -- E:\kod corel x4 video.txt [2013-12-12 18:01:19 | 000,011,007 | ---- | M] () -- E:\kontakty 07.12.2013.txt [2011-11-13 10:47:12 | 003,035,825 | ---- | M] () -- E:\livebox_USB_Vista_7_366825985.zip [2011-12-19 20:56:59 | 000,000,528 | R--- | M] () -- E:\MediaID.bin [2012-05-31 15:56:34 | 011,042,294 | ---- | M] () -- E:\Nie pomalujesz ! To je amelinium (Oryginał HD)~1.mp4 [2011-12-26 20:23:50 | 733,983,449 | ---- | M] () -- E:\niekwestionowany 2-2006 lektor(2).avi [2012-11-08 19:04:24 | 727,189,374 | ---- | M] () -- E:\Niekwestionowany 3.avi [2013-12-09 16:26:56 | 000,000,020 | ---- | M] () -- E:\nieznajomy 2.txt [2013-12-02 21:32:12 | 000,000,009 | ---- | M] () -- E:\nieznajomy.txt [2013-01-27 22:31:54 | 740,037,076 | ---- | M] () -- E:\niezniszczalni 2 2012 lektor pl b53(2).avi [2010-03-20 17:11:58 | 068,484,620 | ---- | M] () -- E:\Opel_Omega_B_sam_naprawiam.pdf [2012-11-07 19:30:03 | 155,786,365 | ---- | M] () -- E:\The_Origin_of_Battlefield_1942.pdf [2013-10-12 10:05:17 | 002,823,266 | ---- | M] () -- E:\trasa.png [2012-02-27 16:56:16 | 000,023,055 | ---- | M] () -- E:\video.pass [2012-02-19 20:42:43 | 000,000,025 | ---- | M] () -- E:\wirus zawiecha.bat [2013-01-27 13:36:24 | 734,474,240 | ---- | M] () -- E:\wróg u bram cd 2 [lektor pl].avi [2013-01-10 21:03:40 | 322,319,705 | ---- | M] () -- E:\[nvmovies][archiwum prywatne] tough night 12'_13'.mp4 [1 E:\*.tmp files -> E:\*.tmp -> ] < F:\*.* > < G:\*.* > < H:\*.* > < %ALLUSERSPROFILE%\Application Data\*. > < %APPDATA%\*. > [2012-05-05 12:49:30 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Adobe [2012-04-22 10:11:57 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Adobe Mini Bridge CS5 [2012-01-28 16:46:55 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Adobe Mini Bridge CS5.1 [2013-12-08 15:53:29 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\AIMP3 [2012-02-22 14:36:09 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\AIWI [2013-11-02 14:26:13 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Apple Computer [2011-12-18 16:05:40 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ashampoo [2011-12-30 16:23:42 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ASUS WebStorage [2013-11-03 10:53:11 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Audacity [2013-06-29 23:33:55 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Autodesk [2012-06-02 12:27:08 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\BANDISOFT [2011-11-30 21:43:03 | 000,000,000 | R--D | M] -- C:\Users\Dawid\AppData\Roaming\Brother [2012-01-28 11:06:00 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\com.adobe.DC3Module.AdobeADC [2011-12-10 15:11:42 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Corel [2012-08-30 14:51:25 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\CrystalIdea Software [2012-01-01 18:50:36 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\CyberLink [2012-03-29 16:09:33 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DAEMON Tools Lite [2011-11-29 16:17:38 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DAEMON Tools Pro [2012-10-20 16:48:05 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Dexpot [2013-10-20 11:12:54 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DriverCure [2011-12-03 14:12:42 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Dropbox [2011-12-17 20:07:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DxO Labs [2012-01-22 19:10:02 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\e-pity [2012-01-14 19:38:48 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ESET [2012-06-09 16:33:26 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\EurekaLog [2012-01-27 18:40:09 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Gadu-Gadu 10 [2012-05-15 16:55:28 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\GanymedeNet [2013-12-14 14:00:04 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\GG [2013-12-14 09:28:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Gholam_Inc [2013-12-14 14:16:57 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\hdd_guardian [2012-05-02 10:34:16 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\HDRsoft [2013-12-08 10:05:47 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\HotSync [2011-11-29 15:51:59 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Identities [2011-11-29 16:01:56 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\InstallShield [2011-11-29 16:24:50 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Intel Corporation [2013-12-12 17:04:48 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\IObit [2013-10-20 11:48:19 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ipla [2013-12-14 23:52:49 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\IsolatedStorage [2012-04-06 12:04:43 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Leadertech [2013-12-14 18:02:19 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\LG Electronics [2011-11-29 17:46:14 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Macromedia [2013-12-12 19:45:04 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Malwarebytes [2011-04-12 14:32:33 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Media Center Programs [2013-12-07 23:04:03 | 000,000,000 | --SD | M] -- C:\Users\Dawid\AppData\Roaming\Microsoft [2012-06-10 20:05:24 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Mozilla [2013-12-15 12:43:02 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\newnext.me [2012-12-10 18:29:23 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nokia [2012-12-10 18:22:52 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nokia Suite [2012-01-01 13:32:38 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nseries [2011-12-10 15:18:51 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\NVIDIA [2013-04-14 17:21:31 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nvu [2012-01-24 19:57:45 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\OpenFM [2013-07-16 12:17:32 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Origin [2011-12-17 20:06:35 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PACE Anti-Piracy [2013-10-20 11:12:54 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ParetoLogic [2012-01-19 19:15:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PC Suite [2011-12-24 16:59:14 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Personal [2011-12-23 13:50:04 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PunkBuster [2012-04-02 21:38:06 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Rovio [2012-03-09 18:49:56 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\S.A.D [2011-12-10 19:08:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\SecuROM [2013-12-15 13:03:24 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Skype [2013-10-18 17:12:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Softativity [2012-01-28 16:46:54 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2012-03-25 17:21:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\SuperUtils.com [2013-12-07 22:26:35 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TeamViewer [2011-12-26 11:45:26 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Tific [2013-12-14 10:35:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TS3Client [2012-04-10 10:23:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ts3overlay [2012-07-08 21:10:24 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TSNotifier [2012-04-18 13:56:06 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TuneUp Software [2012-08-09 17:50:25 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\U3 [2012-06-07 17:35:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ubisoft [2011-12-10 15:19:39 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ulead Systems [2012-12-17 21:15:03 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\vlc [2012-06-17 13:50:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\WinAVI [2011-11-29 18:43:58 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\WinRAR < %SYSTEMDRIVE%\*. /mp /s > < MD5 for: AGP440.SYS > [2009-07-14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys [2009-07-14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys [2009-07-14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys < MD5 for: ATAPI.SYS > [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys < MD5 for: BEEP.SYS > [2009-07-14 01:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=16A47CE2DECC9B099349A5F840654746 -- C:\Windows\SysNative\drivers\beep.sys [2009-07-14 01:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=16A47CE2DECC9B099349A5F840654746 -- C:\Windows\winsxs\amd64_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_201592fa214e4f02\beep.sys < MD5 for: EXPLORER.EXE > [2011-02-26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe [2012-02-27 16:40:42 | 000,004,608 | ---- | M] () MD5=181066E31AD20869CF049262A0DB0BC2 -- C:\Users\Dawid\AppData\Local\Xenocode\ApplianceCaches\GameCamV2.exe_v049D98E1\Native\STUBEXE\@SYSTEM@\explorer.exe [2011-02-25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe [2011-02-25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe [2011-02-26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe [2010-11-21 04:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe [2010-11-21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe < MD5 for: NTFS.SYS > [2010-11-21 04:23:55 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=05D78AA5CB5F3F5C31160BDB955D0B7C -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17514_none_04972f2c338b23d4\ntfs.sys [2011-03-11 07:19:20 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=87B104128D4D3BA3C13098BAEBF38082 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.21680_none_04d11b5b4ce521d9\ntfs.sys [2011-03-11 07:41:34 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=A2F74975097F52A00745F9637451FDD8 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17577_none_0459508233b9177f\ntfs.sys [2013-04-12 15:16:02 | 001,686,888 | ---- | M] (Microsoft Corporation) MD5=A6AE4551BF8EED09FA3B6FCDF472F3E1 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.22297_none_04cd2f154ce71430\ntfs.sys [2013-04-12 15:45:08 | 001,656,680 | ---- | M] (Microsoft Corporation) MD5=B98F8C6E31CD07B2E6F71F7F648E38C0 -- C:\Windows\SysNative\drivers\ntfs.sys [2013-04-12 15:45:08 | 001,656,680 | ---- | M] (Microsoft Corporation) MD5=B98F8C6E31CD07B2E6F71F7F648E38C0 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.18127_none_048f41be3390b0cf\ntfs.sys < MD5 for: SVCHOST.EXE > [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe [2013-04-04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe [2009-07-14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe [2009-07-14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe < MD5 for: USERINIT.EXE > [2010-11-21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe [2010-11-21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe [2010-11-21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe [2010-11-21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe < MD5 for: WINLOGON.EXE > [2010-11-21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe [2010-11-21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe [2013-04-04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe < %systemroot%\system32\ws2_32.dll /md5 > [2010-11-21 04:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\system32\ws2_32.dll [1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ] < %systemroot%\system32\kernel32.dll /md5 > [2013-08-02 02:50:41 | 001,114,112 | ---- | M] (Microsoft Corporation) MD5=365A5034093AD9E04F433046C4CDF6AB -- C:\Windows\system32\kernel32.dll [1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ] < %systemroot%\system32\user32.dll /md5 > [2010-11-21 04:24:20 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\system32\user32.dll [1 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ] < %systemroot%\Tasks\*.* /lockedfiles > [2013-10-14 12:39:08 | 000,032,608 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Restore Points Found ========== ========== Hard Links - Junction Points - Mount Points - Symbolic Links ========== [C:\Users\All Users] -> -> Unknown point type ========== Alternate Data Streams ========== @Alternate Data Stream - 192 bytes -> C:\Windows:nlsPreferences @Alternate Data Stream - 123 bytes -> C:\Users\All Users\Temp:1C209B86 @Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:1C209B86 < End of report > [/spoiler] Extras [spoiler]OTL Extras logfile created on: 2013-12-15 12:54:18 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dawid\Desktop 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.16428) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 7,98 Gb Total Physical Memory | 5,31 Gb Available Physical Memory | 66,50% Memory free 15,96 Gb Paging File | 12,98 Gb Available in Paging File | 81,33% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 155,25 Gb Total Space | 12,46 Gb Free Space | 8,02% Space Free | Partition Type: NTFS Drive D: | 155,16 Gb Total Space | 37,42 Gb Free Space | 24,12% Space Free | Partition Type: NTFS Drive E: | 155,25 Gb Total Space | 16,42 Gb Free Space | 10,58% Space Free | Partition Type: NTFS Computer Name: DAWID-KOMPUTER | User Name: Dawid | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{067202FA-FB20-4EB7-989C-3859D15A1A09}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{08617120-8914-4034-81A7-07F0E96341F7}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{0A0401B9-7C28-4978-92A1-F1C0DAB985F4}" = rport=137 | protocol=17 | dir=out | app=system | "{0C2D0C78-D8C8-44CF-A1A2-5238B6DA2BC9}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{15026F90-DF7B-4407-8E41-D8144DD71D21}" = lport=139 | protocol=6 | dir=in | app=system | "{1DF44B3D-2AEC-4987-8985-BC178E1854E6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{2056652C-64D8-406A-833D-6C60F4CAD105}" = lport=445 | protocol=6 | dir=in | app=system | "{34F6984E-9E3A-4CA0-AB14-89BFEB84E13B}" = rport=138 | protocol=17 | dir=out | app=system | "{455C4DD2-462D-41A9-B20B-8BB1CF806EC9}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{55D70FE6-9318-4287-97A0-41A1C845C476}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{69ED7FA8-A8E7-4770-A760-869558C00481}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{6E8A9786-641D-4CEB-89C0-A492DAB26BDB}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{72190C1D-61E2-4C6C-88ED-2D2E0504770D}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service | "{7508478E-8008-474A-889D-16DD679EFFDB}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | "{84F9193D-E4CC-48B9-B414-FAEE61C4743E}" = lport=10243 | protocol=6 | dir=in | app=system | "{8E8809CC-569C-4C58-9627-B36CD5BF1BBA}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe | "{940EE33A-50AB-4FD8-B12B-EC21CF159CE4}" = lport=137 | protocol=17 | dir=in | app=system | "{945C2275-D6D1-4012-9150-946901ED2278}" = lport=2869 | protocol=6 | dir=in | app=system | "{95285DB7-1613-446F-8431-25FABB39FD48}" = rport=139 | protocol=6 | dir=out | app=system | "{98F4E4AC-F703-4428-A545-D1E34715706D}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{AC8948A1-102B-4E2F-AB51-3CB8C250D943}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{C3593B60-2EE2-451B-BF16-5A5B5DA71575}" = rport=10243 | protocol=6 | dir=out | app=system | "{D38BC28C-53D5-4F97-A114-10921CE535E5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{E046E66E-2BA8-47E7-B241-14FB35D31792}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{E16E2025-DAC2-4C81-A49F-A1F5AA7A7287}" = rport=445 | protocol=6 | dir=out | app=system | "{EDBC7A31-AD62-4076-8BDB-9C8A88A78691}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{F65A4E17-26ED-4A02-AE9C-D2CE5AF2349B}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{FA020FF2-3D82-4E52-A80C-B12396CD4BCC}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{FF2A64AB-D235-418C-8078-A91BC721692B}" = lport=138 | protocol=17 | dir=in | app=system | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0994B7F4-A440-43F3-A425-F5FB71A3C646}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe | "{11AFD906-3D0C-4529-B2F7-E96D329F44D6}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe | "{123335A9-16A1-4EE1-A5B9-542300803183}" = protocol=6 | dir=in | app=e:\assassin's creed iii\ac3mp.exe | "{1547B707-677E-423F-963C-1BCD7E6ECA49}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe | "{155B3876-96A3-4635-A945-41CBC093DA96}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe | "{17408F70-A0BE-47E6-821B-4C78EF466E5D}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe | "{1923B629-1606-475F-8A22-4543D60282AA}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{1BDBDD68-5592-481E-B245-B6EBE8125D51}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{215B89B1-F0A7-4899-A43E-3CE0336F6896}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 4 beta\bf4.exe | "{268D7F68-795E-4EDF-A3D0-38024AB63B31}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{27792FA4-ED21-426D-8B4A-07B6441308A8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{314633D4-3B56-4999-B903-DE7D7749B1EF}" = protocol=17 | dir=in | app=c:\users\dawid\desktop\autocad_2014_polish_win_32-64bit_wi_pl-pl_setup(1).exe | "{349F502C-C633-4EF7-981D-8680E3DB882F}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe | "{37B31DAF-F223-415F-B3BC-ABFC680CFF05}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{39BEEA53-78C3-4308-9752-8752A39A5F81}" = protocol=6 | dir=in | app=c:\program files (x86)\aibelive\aiwi\aiwi.exe | "{3C275697-CC3D-4E64-8C58-16A28E26897C}" = protocol=6 | dir=in | app=e:\gta iv\rockstar games social club\rgsclauncher.exe | "{3E582B93-96E3-4EBD-88BA-4F2D7136CBFD}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{3E5E3B04-9BB5-4D30-A074-CC4FE5E90979}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{4B514292-0C6E-4BDC-9689-3DD074FCDCC5}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{4D428C51-2BEE-4066-A114-0649CA63A237}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{5329B928-7976-48ED-90ED-2111BD0BC075}" = protocol=17 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesoleilcs.exe | "{54E557F5-7305-41C0-88C4-2CD09C411590}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{557A165E-8394-4329-8B79-54D0E4E1635E}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe | "{57F73904-3BB9-4831-81D1-25D50391FFA8}" = protocol=17 | dir=in | app=e:\gta iv\grand theft auto iv\launchgtaiv.exe | "{5860B855-191C-421A-BE61-3856368EC406}" = protocol=6 | dir=out | app=system | "{5E208D2A-D49F-428F-BEBC-62F13AA8DF47}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{5FC06493-E879-49B3-B8AF-70FB206C8244}" = protocol=6 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesoleilcs.exe | "{69CF4335-01A6-4CED-97E7-F5A2F4A035AD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{6A916F85-06B8-4F93-862B-CBADCBAC8B37}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe | "{6BC4FC3B-0055-451D-B0F1-1CA4354C3430}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe | "{6BD161BB-80B2-419A-84A0-C3DD6A2D53BA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{6FE05B75-77B9-4AC4-B3CF-73127C628181}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{71B4DF4C-E5F5-490B-A14B-528DB99F2FAB}" = protocol=6 | dir=in | app=c:\users\dawid\desktop\autocad_2014_polish_win_32-64bit_wi_pl-pl_setup(1).exe | "{72A68625-7110-4C80-A9B4-3A29FD75A4BD}" = dir=out | app=%programfiles%\adobe\adobe photoshop cs5.1 (64 bit)\photoshop.exe | "{7540C063-5F62-4114-963B-03F2A6B3DCB6}" = protocol=17 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe | "{7B48A4C2-5C13-41CF-9322-08B5F2005FFA}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe | "{7CCB04C3-84DF-48D4-8434-8DEBD736F0CF}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 4 beta\bf4.exe | "{804FCF24-CAF3-4EEE-9855-DC1777C862BA}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{81050B87-9B31-4BBE-862A-A0A0EEE91FA1}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{8241E055-8522-4A75-822E-E2F87CC1DC04}" = protocol=17 | dir=in | app=e:\assassin's creed iii\assassinscreed3.exe | "{82D90AD8-4023-44BE-A944-68D354B1CF37}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{856CCCDB-3FFA-4BC1-BF20-2E4C24F60028}" = protocol=6 | dir=in | app=e:\battlefield 3\battlefield 3\bf3.exe | "{886950DC-2A5F-465E-9FCA-C70D06C22D15}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{8CF69D1F-1869-427D-A08B-1789CAAFF66C}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe | "{8E95545F-A7DE-446B-B533-4FC1598222D3}" = protocol=17 | dir=in | app=e:\gta iv\rockstar games social club\rgsclauncher.exe | "{918512A2-A5F4-46CC-8F48-9FE8DAEAC9F5}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{972012F9-A2E9-4486-A0C6-CD8296E06ACF}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{9D0E9955-E3D3-4631-A4AF-850F55112EA6}" = protocol=6 | dir=in | app=c:\users\dawid\appdata\roaming\dropbox\bin\dropbox.exe | "{9D787760-5FAA-4D20-A5D6-3BD4E110198E}" = protocol=6 | dir=in | app=e:\gta iv\grand theft auto iv\launchgtaiv.exe | "{A3B4FACB-2D8B-4947-BB51-F25C51C631DC}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{A6B25DF3-55A1-4EDA-9A0F-18AA6D2B17AC}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe | "{AA197DE7-2835-45D7-9199-51F1638D6F6F}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | "{AC56FB77-6D62-40F8-89DC-6ED0EE5A99DA}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe | "{ADB91B4E-26E2-4614-A154-E5391E0DE910}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{AF240F08-E43F-4284-9E1A-CDE86C3473A0}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{B08BF8EF-0172-405D-B245-493336237DF9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{B65E9A0B-01F4-4838-822C-32C66F19176E}" = protocol=17 | dir=in | app=e:\battlefield 3\battlefield 3\bf3.exe | "{BDC8AED4-5753-4AF2-A3F1-A6C8EB066D35}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe | "{BE7441FC-7440-4CD5-92FA-88DF3D4A353E}" = protocol=17 | dir=in | app=e:\assassin's creed iii\ac3sp.exe | "{C0CFF26E-8B20-45BE-A1C9-D4772216E522}" = protocol=6 | dir=in | app=e:\assassin's creed iii\assassinscreed3.exe | "{C5A4A066-BCFA-4A67-AAFA-68CE3BE34B3B}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | "{C5A7FF21-1BC5-438B-8762-06A9C332F396}" = protocol=17 | dir=in | app=e:\assassin's creed iii\ac3mp.exe | "{CE9DC2E1-9A31-48EF-888E-234275640251}" = protocol=17 | dir=in | app=c:\users\dawid\appdata\roaming\dropbox\bin\dropbox.exe | "{D2F6485E-77AD-4731-AD84-40B44E5C7817}" = dir=in | app=c:\users\dawid\appdata\local\facebook\video\skype\facebookvideocalling.exe | "{D45E5968-A01C-4042-9ECB-B57D8510986E}" = protocol=6 | dir=in | app=e:\assassin's creed iii\ac3sp.exe | "{D9A4E547-A2FA-4A47-B920-4A6050FB4DEF}" = dir=in | app=%programfiles%\adobe\adobe photoshop cs5.1 (64 bit)\photoshop.exe | "{DA3FE40C-A3A2-4573-8984-B14BB46C3162}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe | "{DB6C9C1C-1AA6-43EB-9EAE-BDA940C38114}" = protocol=17 | dir=in | app=c:\program files (x86)\aibelive\aiwi\aiwi.exe | "{DBAFEFB0-F5C7-465D-BD9C-D72E7BEE9E38}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{DBCB690B-0D26-4EE8-8CD1-F916EC209E31}" = protocol=6 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesoleil_.exe | "{E23BF599-26BB-4BA7-86D7-38FCD4658758}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe | "{E2D3E600-3393-469C-BD1C-8523FB809ADF}" = protocol=6 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe | "{E506569D-F227-406C-891D-7A8DA3F00761}" = dir=in | app=%userprofile%\desktop\autocad_2014_polish_win_32-64bit_wi_pl-pl_setup(1).exe | "{EA8AB3D3-CE48-4B25-AE67-461BC640B2CA}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe | "{EB0F49C9-F2CE-4318-836B-C6031828F82B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{F24E0B31-0810-4AF2-9C22-CD751D32D5D8}" = protocol=17 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesoleil_.exe | "{F86C79D9-F2E2-4A38-8AF1-C7D7CF073B71}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe | "{FF1FDAEF-4032-4CAF-A83E-90BB02BC901D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "TCP Query User{20E5E139-277F-4FE3-BD6A-9B8FAEF19923}C:\program files (x86)\wapster\wapster aqq\aqq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\wapster\wapster aqq\aqq.exe | "TCP Query User{31A581B6-EDDF-48A9-9744-9A780BDC3A47}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | "TCP Query User{4E045403-787D-4FA4-9FC1-6EE89CA8F79C}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "TCP Query User{FA13BBD2-A698-4B79-A13D-76D8131243F1}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "TCP Query User{FFD469CF-B67B-4D9E-BEB4-3E4C06DB7E4F}C:\users\dawid\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\dawid\appdata\local\akamai\netsession_win.exe | "UDP Query User{0D693FB2-E70D-4B2C-B438-406442314D17}C:\users\dawid\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\dawid\appdata\local\akamai\netsession_win.exe | "UDP Query User{4A72E3D2-B3EB-4A99-99B1-868AFC15C286}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "UDP Query User{6611A0CD-E5E2-420C-9591-EC9600EA206F}C:\program files (x86)\wapster\wapster aqq\aqq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\wapster\wapster aqq\aqq.exe | "UDP Query User{78DEA512-3DC6-4CDD-8422-12AACEC967A7}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "UDP Query User{AF5EAD91-35EB-4B38-9D64-F1886ACE2EAD}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64 "{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 "{31ABA3F2-0000-1033-0102-111D43815377}" = Autodesk ReCap "{31ABA3F2-0010-1033-0102-111D43815377}" = Autodesk ReCap Language Pack-English "{33B49B5C-2D04-4B8F-BA1F-D22EB8A627B0}" = ESET Smart Security "{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64 "{48BB9EBA-C929-4D7E-AF43-21B4427373EB}" = AIWI JoyStick "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2 "{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}" = Autodesk 360 "{5783F2D7-D001-0000-0102-0060B0CE6BBA}" = AutoCAD 2014 — Polski (Polish) "{5783F2D7-D001-0415-1102-0060B0CE6BBA}" = AutoCAD 2014 Language Pack – Polski (Polish) "{5783F2D7-D001-0415-2102-0060B0CE6BBA}" = AutoCAD 2014 — Polski (Polish) "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{669A82E0-43E2-4645-8A2E-1A3DE78F8312}" = Adobe Photoshop Lightroom 4 64-bit "{680EDA59-9266-44B4-949E-0C24F65DFF82}" = Microsoft_VC100_CRT_SP1_x64 "{764384C5-BCA9-307C-9AAC-FD443662686A}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 "{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1 "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8BB347A7-68B5-4E46-9FCC-17F6172BA9E1}" = Share64 "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-0415-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Polish) 2007 "{90BF0360-A1DB-4599-A643-95AB90A52C1E}" = Microsoft_VC90_MFCLOC_x86_x64 "{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64 "{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64 "{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1 "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{9ED333F8-3E6C-4A38-BAFA-728454121CDA}" = PDF-XChange Viewer "{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64 "{A49402DD-2781-3782-B0CF-52BDA349E3F3}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack "{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 331.82 "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 331.82 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 331.82 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.7.1 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Sterownik kontrolera 3D Vision 331.82 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.13.0725 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 9.3.21 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Sterownik dźwięku HD 1.3.26.4 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 9.3.21 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.9 "{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}" = Bonjour "{C7966AB3-A8D9-48D5-B7DF-922674C40098}" = Device Simulation Framework 1.0.1 "{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64 "{CE52672C-A0E9-4450-8875-88A221D5CD50}" = Windows Live ID Sign-in Assistant "{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64 "62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F" = Pakiet sterowników systemu Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) "Agnitum Outpost Firewall Pro_is1" = Outpost Firewall Pro 7.5.3 "AutoCAD 2014 — Polski (Polish)" = Autodesk AutoCAD 2014 — Polski (Polish) "Autodesk ReCap" = Autodesk ReCap "AutoHotkey" = AutoHotkey 1.1.13.01 "BurnInTest_is1" = BurnInTest v7.1 Pro "CCleaner" = CCleaner "CyberGhost VPN_is1" = CyberGhost VPN Patch 4.7.19 "JottiQSetup_is1" = JottiQ v1.0.2 "Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile "TeamSpeak 3 Client" = TeamSpeak 3 Client "TNod" = TNod User & Password Finder "WinRAR archiver" = WinRAR 4.11 (64-bitowy) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "_{AA902C31-B49D-4608-BCCF-2519EB77722D}" = Corel VideoStudio Pro X4 "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = LG CyberLink YouCam "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86 "{0454BB9A-2A7A-4214-BDFF-937F7A711A44}" = Windows Live Communications Platform "{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video "{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86 "{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1" = MSI Kombustor 2.5.0 "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86 "{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi "{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5 "{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main "{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = LG Power Tools "{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin "{266725C1-716F-43AC-BBFB-4201131ED656}" = EasySetPackage "{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25 "{2A078A2B-E2C8-43A3-862C-DC57090AB7C2}" = Movie Maker "{2E6044C5-3495-485F-91BC-46D1B6430E51}" = Windows 7 Logon Background Changer "{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5 "{30F99474-EBE3-4134-A02B-F6CD38CFE243}" = Photo Gallery "{34D3688E-A737-44C5-9E2A-FF73618728E1}" = AI Suite II "{3990E632-42C3-4A25-ADFF-1101E3D6DD47}" = VSClassic "{3B69A712-4CBC-40B1-AE55-0203075FD093}" = Nokia Suite "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT "{3F6C0B68-F8CC-4F6A-8346-44E247A92CB6}_is1" = Multi AV wersja 1.0.1 "{3FD0C489-0F02-481a-A3E1-9754CD396761}" = Intel® Watchdog Timer Driver (Intel® WDT) "{40BF1E83-20EB-11D8-97C5-0009C5020658}" = LG CyberLink Power2Go "{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4C35E42C-98B4-4A82-87C7-8E73FBDDFBCC}" = AIMP2 MegaPack v6 by UppeD "{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace "{4CCBD1F4-CEEC-452A-9CB8-46564B501315}" = Windows Live UX Platform "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.5 "{51BF3210-B825-4092-8E0D-66D689916E02}" = Autodesk Material Library Base Resolution Image Library 2014 "{5454083B-1308-4485-BF17-1110000B8301}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000B8302}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000B8303}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000B8304}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8302}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8303}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8304}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8305}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8306}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8307}" = Grand Theft Auto IV "{55031CEF-CE75-4A5C-8DEA-60577820529B}" = LG United Mobile Drivers "{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV "{611E417A-82C3-415C-B9C4-7C8DBF02E6D5}" = TS Notifier "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{6179550A-3E7C-499E-BCC9-9E8113E0A285}" = LG ODD Auto Oprogramowanie "{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service "{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86 "{644E9589-F73A-49A4-AC61-A953B9DE5669}" = SketchUp Import for AutoCAD 2014 "{644F9B19-A462-499C-BF4D-300ABC2A28B1}" = Autodesk Material Library 2014 "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components "{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}" = Windows Live PIMT Platform "{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2 "{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery "{705B639E-FAAF-40D7-AD58-C445321C7C3F}" = LightScribe System Software "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection "{7204BDEE-1A48-4D95-A964-44A9250B439E}" = Facebook Messenger 2.1.4814.0 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{7390478C-8581-415E-92E9-2997D9306B81}" = PC Connectivity Solution "{7595CAD2-87D0-4D01-AC02-3FDD3A891BB8}" = Galeria fotografii "{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™ "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX "{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime "{7C4F2AE9-4D57-4A5D-B20A-B52DC24EC953}_is1" = Counter-Strike 1.6 v40 "{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable "{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7 "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher "{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software "{8A470330-70B2-49AD-86AF-79885EF9898A}" = FARO LS 1.1.501.0 (64bit) "{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}" = Windows Live SOXE Definitions "{8AA0316E-A4E1-4E10-9DAA-46E0C70A2F2A}" = Machinery DEMO "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110 "{8F196892-666A-4A40-8587-6AE38F78A5C2}" = FARO LS 1.1.501.0 "{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007 "{90120000-0015-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007 "{90120000-0019-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007 "{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{9CC96D78-9E1D-46E0-AF4D-3EB440CD4619}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-002A-0415-1000-0000000FF1CE}_ENTERPRISE_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007 "{90120000-0044-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007 "{90120000-00BA-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86 "{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI "{99E66BC9-E4B6-485F-ABFC-31EFCE36DFDF}" = Microsoft Keyboard Layout Creator 1.4 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9D15E813-0C26-41E7-ABC5-3EB06FF1B3CF}" = Assassin's Creed(R) III v1.04 "{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin "{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 "{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}" = Brother MFL-Pro Suite "{A567895C-1D23-48ED-BE83-FB3ED7D30442}" = IPM_VS_Pro "{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver "{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5 "{A7E73DE5-E5FD-4923-9D88-E09ECD1F3545}" = Podstawowe programy Windows Live "{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support "{A864167F-970B-4673-8FD2-AA1FD7AF3C1C}" = DxO Optics Pro 7 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AA82E5EF-70C2-41CB-8432-309078304CBB}" = Photo Common "{AA902C31-B49D-4608-BCCF-2519EB77722D}" = ICA "{ADD5DB49-72CF-11D8-9D75-000129760D75}" = LG CyberLink PowerBackup "{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86 "{B0125BEB-6731-43FA-88DA-B64D7BD3AD2D}" = VSPro "{B0DC2DA9-2AF9-422A-88E0-1B84E0F65DB5}" = Speed-Link SL-6535 USB Pad "{B3E74336-F275-40D9-BFAB-2FCB765609F5}" = AIWI "{B4008666-3C27-4B67-9D89-80B4E31FA685}" = Paraben's Device Seizure "{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86 "{B84ECBE1-6ED5-4E86-B4AB-DF46D342411F}" = Share "{B87FAC24-973D-4A4F-AFC4-555FB95B32DB}" = PureHD "{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}" = SmartSound Common Data "{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287 "{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo "{C070121A-C8C5-4D52-9A7D-D240631BD433}" = Autodesk App Manager "{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}" = Windows Live Installer "{C4778408-3268-45CE-AE15-772D1739A1F1}" = VIO "{C547F361-5750-4CD1-9FB6-BC93827CB6C1}" = RegCure Pro "{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LG CyberLink LabelPrint "{C6017EEA-9E51-4129-84BA-EFA9520E69D8}" = Common "{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}" = Windows Live Photo Common "{CC4C7E9B-4B26-4D8D-8076-40CF708A9FA4}" = Contents "{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86 "{CFAB3721-549D-4827-A4E8-7F90192114AB}" = Battlefield 4™ Beta "{D07F85DE-22F1-4FB4-B3D1-402FD22C4870}" = DeviceIO "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86 "{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software "{D68897FC-7E8D-4849-819A-726B2489713C}" = ISCOM "{D8D9BCF5-0F5F-4D3F-8427-64B7632F93BE}" = Setup "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86 "{DADC7AB0-E554-4705-9F6A-83EA82ED708E}" = Realtek Ethernet Diagnostic Utility "{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series "{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86 "{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}" = Asmedia ASM104x USB 3.0 Host Controller Driver "{E9275D69-7DEC-430B-BA1B-F74DFF9B0B43}" = Disk Unlocker "{ED6C77F9-4D7E-447C-9EC0-9A212D075535}" = Movie Maker "{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker "{F09DD76B-D3D3-4558-B5BC-F1EEA6E00162}" = Windows Live UX Platform Language Pack "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F40963EC-223E-4E65-8CF0-A60E9A227245}_is1" = Prawo Jazdy ABCDT - egzamin wewnętrzny "{F67EF53C-11BF-4EC8-B025-EC85CABA50B5}" = HDD Guardian 0.5.0 "{F732FEDA-7713-4428-934B-EF83B8DD65D0}" = Autodesk Featured Apps "{FA1BD6B7-9740-4C9A-81EA-42D5196FA592}" = Angry Birds Space "{FC274982-5AAD-4C20-848D-A9D60D18D757}_is1" = ScanMyReg 2.02 "{FE7C0B3D-50B9-4951-BE78-A321CBF86552}" = Windows Live SOXE "{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "Advanced SystemCare 7_is1" = Advanced SystemCare 7 "Afterburner" = MSI Afterburner 2.3.1 "AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v2.30 "AIMP3" = AIMP3 "AQQ" = WapSter AQQ "Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v10.0.15 "Ashampoo Internet Accelerator 3_is1" = Ashampoo Internet Accelerator 3 v.3.20 "Ashampoo Snap 4_is1" = Ashampoo Snap 4 v.4.3.0 "ASUS WebStorage" = ASUS WebStorage "Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.13 (Unicode) "Audacity_is1" = Audacity 2.0.4 "Autodesk Content Service" = Autodesk Content Service "Battlelog Web Plugins" = Battlelog Web Plugins "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player "DAEMON Tools Lite" = DAEMON Tools Lite "DFX for AIMP2 1.2.5" = DFX for AIMP2 1.2.5 "easyHDR_BASIC_2" = easyHDR BASIC 2 "ENTERPRISE" = Microsoft Office Enterprise 2007 "ESN Sonar-0.70.4" = ESN Sonar "ExifCleaner" = ExifCleaner 1.7 "FormatFactory" = FormatFactory 3.0.1 "FotoSender_is1" = FotoSender 3.0 "Fraps" = Fraps (remove only) "GameDesire-Pool & Snooker" = GameDesire-Pool & Snooker "HD Tune Pro_is1" = HD Tune Pro 3.00 "Image Grabber II" = Image Grabber II "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = LG CyberLink YouCam "InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = LG Power Tools "InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5 "InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = LG CyberLink Power2Go "InstallShield_{B3E74336-F275-40D9-BFAB-2FCB765609F5}" = AIWI "InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}" = SmartSound Common Data "InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LG CyberLink LabelPrint "IObit Malware Fighter_is1" = IObit Malware Fighter "IObit Surfing Protection_is1" = Surfing Protection "IObitUninstall" = IObit Uninstaller "ipla" = ipla 2.6.2 "JDownloader" = JDownloader "jv16 PowerTools_is1" = jv16 PowerTools 1.3 "KLiteCodecPack_is1" = K-Lite Codec Pack 10.0.5 Full "Komputer Świat Plus_is1" = Komputer Świat Plus "LAME for Audacity_is1" = LAME v3.98.2 for Audacity "LAME_is1" = LAME v3.99.3 (for Windows) "LG PC Suite" = LG PC Suite "Lightning_is1" = Lightning "Liveupdate4_is1" = Liveupdate4 "Logitech Vid" = Logitech Vid HD "Łatka polonizacyjna GTA IV v1.0" = Łatka polonizacyjna GTA IV v1.0 "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.75.0.1300 "Mobogenie" = Mobogenie "Mozilla Firefox 24.0 (x86 pl)" = Mozilla Firefox 24.0 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "MSI_APS_is1" = MSI_APS "Nokia Suite" = Nokia Suite "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "Nvu_is1" = Nvu 1.0 "OCCT" = OCCT 4.2.0 "Origin" = Origin "PC Alert 4" = PC Alert 4 "PowerISO" = PowerISO "Protected Folder_is1" = Protected Folder "PunkBusterSvc" = PunkBuster Services "Silver Efex Pro 2" = Silver Efex Pro 2 "SM7192" = USB Cobra Joystick V4 "SystemRequirementsLab" = System Requirements Lab "TeamViewer 8" = TeamViewer 8 "The KMPlayer" = The KMPlayer (remove only) "The Mighty Quest For Epic Loot_is1" = The Mighty Quest For Epic Loot wersja 1.210372 "Undelete 360_is1" = Undelete 360 "Uninstall Tool_is1" = Uninstall Tool "Uplay" = Uplay "VCardExport_is1" = VCardExportTool "Visual Watermark_is1" = Visual Watermark 2.9.30 "Windows Media Encoder 9" = Windows Media Encoder 9 Series "WinLiveSuite" = Podstawowe programy Windows Live "WinRAR archiver" = WinRAR archiver ========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{79A765E1-C399-405B-85AF-466F52E918B0}" = Ask Toolbar Updater "Akamai" = Akamai NetSession Interface "Dexpot" = Dexpot "Dropbox" = Dropbox "Flux" = f.lux "GG" = GG "KeyTurion" = KeyTurion version 2.8 "Polska lokalizacja Lightroom 4" = Polska lokalizacja Lightroom 4 ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 2013-12-15 05:02:11 | Computer Name = Dawid-Komputer | Source = MsiInstaller | ID = 10005 Description = Error - 2013-12-15 05:03:10 | Computer Name = Dawid-Komputer | Source = SideBySide | ID = 16842832 Description = Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error - 2013-12-15 05:13:46 | Computer Name = Dawid-Komputer | Source = SideBySide | ID = 16842832 Description = Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error - 2013-12-15 05:13:51 | Computer Name = Dawid-Komputer | Source = SideBySide | ID = 16842832 Description = Nie można wygenerować kontekstu aktywacji dla „C:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error - 2013-12-15 05:24:11 | Computer Name = Dawid-Komputer | Source = Application Hang | ID = 1002 Description = Program DllHost.exe w wersji 6.1.7600.16385 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: adc Godzina rozpoczęcia: 01cef9773fafa82c Godzina zakończenia: 8008 Ścieżka aplikacji: C:\Windows\system32\DllHost.exe Identyfikator raportu: 9ff2bda0-656a-11e3-923a-f46d04619414 Error - 2013-12-15 06:22:51 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-15 06:22:51 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-15 06:23:46 | Computer Name = Dawid-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-12-15 07:41:37 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-15 07:41:37 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-15 07:42:21 | Computer Name = Dawid-Komputer | Source = WinMgmt | ID = 10 Description = [ Media Center Events ] Error - 2012-01-10 12:31:51 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 17:31:51 - Błąd podczas nawiązywania połączenia z Internetem. 17:31:51 - Nie można skontaktować się z serwerem.. Error - 2012-01-10 12:31:59 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 17:31:56 - Błąd podczas nawiązywania połączenia z Internetem. 17:31:56 - Nie można skontaktować się z serwerem.. Error - 2012-01-11 13:15:09 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 18:15:09 - Błąd podczas nawiązywania połączenia z Internetem. 18:15:09 - Nie można skontaktować się z serwerem.. Error - 2012-01-11 13:15:17 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 18:15:14 - Błąd podczas nawiązywania połączenia z Internetem. 18:15:14 - Nie można skontaktować się z serwerem.. Error - 2012-01-12 12:01:15 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 17:01:15 - Błąd podczas nawiązywania połączenia z Internetem. 17:01:15 - Nie można skontaktować się z serwerem.. Error - 2012-01-12 12:01:24 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 17:01:20 - Błąd podczas nawiązywania połączenia z Internetem. 17:01:20 - Nie można skontaktować się z serwerem.. Error - 2012-01-13 11:45:32 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 16:45:32 - Błąd podczas nawiązywania połączenia z Internetem. 16:45:32 - Nie można skontaktować się z serwerem.. Error - 2012-01-13 11:45:42 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 16:45:37 - Błąd podczas nawiązywania połączenia z Internetem. 16:45:37 - Nie można skontaktować się z serwerem.. Error - 2012-01-14 10:05:39 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 15:05:39 - Błąd podczas nawiązywania połączenia z Internetem. 15:05:39 - Nie można skontaktować się z serwerem.. Error - 2012-01-14 10:05:51 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 15:05:47 - Błąd podczas nawiązywania połączenia z Internetem. 15:05:47 - Nie można skontaktować się z serwerem.. [ System Events ] Error - 2013-12-15 05:18:29 | Computer Name = Dawid-Komputer | Source = Disk | ID = 262155 Description = Sterownik wykrył błąd kontrolera na \Device\Harddisk5\DR8. Error - 2013-12-15 05:18:29 | Computer Name = Dawid-Komputer | Source = Disk | ID = 262155 Description = Sterownik wykrył błąd kontrolera na \Device\Harddisk5\DR8. Error - 2013-12-15 05:18:30 | Computer Name = Dawid-Komputer | Source = Disk | ID = 262155 Description = Sterownik wykrył błąd kontrolera na \Device\Harddisk5\DR8. Error - 2013-12-15 05:18:31 | Computer Name = Dawid-Komputer | Source = Disk | ID = 262155 Description = Sterownik wykrył błąd kontrolera na \Device\Harddisk5\DR8. Error - 2013-12-15 05:19:14 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7016 Description = Usługa ASDiskUnlocker zaraportowała nieprawidłowy stan bieżący 11. Error - 2013-12-15 06:22:42 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: BTHidMgr Error - 2013-12-15 06:23:53 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Dostawca grupy domowej zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 Error - 2013-12-15 07:40:49 | Computer Name = Dawid-Komputer | Source = EventLog | ID = 6008 Description = Poprzednie zamknięcie systemu przy 12:39:07 na ?2013-?12-?15 było nieoczekiwane. Error - 2013-12-15 07:41:29 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: BTHidMgr Error - 2013-12-15 07:42:59 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Dostawca grupy domowej zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 < End of report > [/spoiler] Gmer [spoiler]GMER 2.1.19163 - http://www.gmer.net Rootkit scan 2013-12-15 13:51:43 Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD50 rev.01.0 465,76GB Running: gmer.exe; Driver: C:\Users\Dawid\AppData\Local\Temp\awddikob.sys ---- Kernel code sections - GMER 2.1 ---- .text C:\Windows\System32\win32k.sys!W32pServiceTable fffff96000153f00 7 bytes [80, 9D, F3, FF, 01, A9, F0] .text C:\Windows\System32\win32k.sys!W32pServiceTable + 8 fffff96000153f08 3 bytes [C0, 06, 02] .text ... * 101 .text C:\Windows\System32\win32k.sys!EngCreateBitmap + 48 fffff96000214770 14 bytes {JMP QWORD [RIP+0x0]} .text C:\Windows\System32\win32k.sys!EngCTGetCurrentGamma + 32 fffff960002190c0 14 bytes {JMP QWORD [RIP+0x0]} .text C:\Windows\System32\win32k.sys!XFORMOBJ_bApplyXform + 404 fffff960002784b0 14 bytes {JMP QWORD [RIP+0x0]} ---- User code sections - GMER 2.1 ---- .text C:\Windows\system32\wininit.exe[724] C:\Windows\system32\USER32.dll!UnregisterClassW + 212 0000000076f2d538 14 bytes [70, D1, DB, FC, FE, 07, 00, ...] .text C:\Windows\system32\wininit.exe[724] C:\Windows\system32\USER32.dll!SetWindowPos 0000000076f33c50 6 bytes {JMP QWORD [RIP+0xa0]} .text C:\Windows\system32\wininit.exe[724] C:\Windows\system32\USER32.dll!SetWindowPos + 166 0000000076f33cf6 8 bytes [E0, D1, DB, FC, FE, 07, 00, ...] .text C:\Windows\system32\wininit.exe[724] C:\Windows\system32\USER32.dll!mouse_event + 212 0000000076f43968 14 bytes {RCL DL, 0xdb; CLD ; INC BYTE [RDI]; ADD [RAX], AL; JMP QWORD [RIP-0xe]} .text C:\Windows\system32\wininit.exe[724] C:\Windows\system32\USER32.dll!VkKeyScanW + 20 0000000076f706f8 14 bytes [30, D3, DB, FC, FE, 07, 00, ...] .text C:\Windows\system32\winlogon.exe[800] C:\Windows\system32\USER32.dll!UnregisterClassW + 212 0000000076f2d538 14 bytes [70, D1, DB, FC, FE, 07, 00, ...] .text C:\Windows\system32\winlogon.exe[800] C:\Windows\system32\USER32.dll!SetWindowPos 0000000076f33c50 6 bytes {JMP QWORD [RIP+0xa0]} .text C:\Windows\system32\winlogon.exe[800] C:\Windows\system32\USER32.dll!SetWindowPos + 166 0000000076f33cf6 8 bytes [E0, D1, DB, FC, FE, 07, 00, ...] .text C:\Windows\system32\winlogon.exe[800] C:\Windows\system32\USER32.dll!mouse_event + 212 0000000076f43968 14 bytes {RCL DL, 0xdb; CLD ; INC BYTE [RDI]; ADD [RAX], AL; JMP QWORD [RIP-0xe]} .text C:\Windows\system32\winlogon.exe[800] C:\Windows\system32\USER32.dll!VkKeyScanW + 20 0000000076f706f8 14 bytes [30, D3, DB, FC, FE, 07, 00, ...] .text C:\Windows\system32\services.exe[824] C:\Windows\system32\USER32.dll!UnregisterClassW + 212 0000000076f2d538 14 bytes [70, D1, DB, FC, FE, 07, 00, ...] .text C:\Windows\system32\services.exe[824] C:\Windows\system32\USER32.dll!SetWindowPos 0000000076f33c50 6 bytes {JMP QWORD [RIP+0xa0]} .text C:\Windows\system32\services.exe[824] C:\Windows\system32\USER32.dll!SetWindowPos + 166 0000000076f33cf6 8 bytes [E0, D1, DB, FC, FE, 07, 00, ...] .text C:\Windows\system32\services.exe[824] C:\Windows\system32\USER32.dll!mouse_event + 212 0000000076f43968 14 bytes {RCL DL, 0xdb; CLD ; INC BYTE [RDI]; ADD [RAX], AL; JMP QWORD [RIP-0xe]} .text C:\Windows\system32\services.exe[824] C:\Windows\system32\USER32.dll!VkKeyScanW + 20 0000000076f706f8 14 bytes [30, D3, DB, FC, FE, 07, 00, ...] .text C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe[1016] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe[1016] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe[1016] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe[1016] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe[1016] C:\Windows\syswow64\PSAPI.dll!GetModuleInformation + 69 00000000771d1465 2 bytes [1D, 77] .text C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe[1016] C:\Windows\syswow64\PSAPI.dll!GetModuleInformation + 155 00000000771d14bb 2 bytes [1D, 77] .text ... * 2 .text C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[516] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[516] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[516] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[516] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe[1208] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe[1208] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe[1208] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe[1208] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe[1876] C:\Windows\system32\kernel32.dll!FindResourceW + 24 0000000076e19b78 14 bytes {ADC [RSP+RAX*2+0x3f], DH; ADD [RAX], EAX; ADD [RAX], AL; JMP QWORD [RIP-0xe]} .text C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe[1980] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe[1980] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe[1980] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe[1980] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe[1772] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 0000000100a6a540 .text C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe[1772] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 0000000100a6a514 .text C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe[1772] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 0000000100a6a5c4 .text C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe[1772] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 0000000100a6a598 .text C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe[1940] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 00000001009ea540 .text C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe[1940] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 00000001009ea514 .text C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe[1940] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 00000001009ea5c4 .text C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe[1940] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 00000001009ea598 .text C:\Program Files (x86)\Bonjour\mDNSResponder.exe[1256] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\Bonjour\mDNSResponder.exe[1256] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\Bonjour\mDNSResponder.exe[1256] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\Bonjour\mDNSResponder.exe[1256] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[2108] C:\Windows\syswow64\kernel32.dll!SetUnhandledExceptionFilter 0000000076b98769 4 bytes [C2, 04, 00, 00] .text C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[2108] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69 00000000771d1465 2 bytes [1D, 77] .text C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe[2108] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155 00000000771d14bb 2 bytes [1D, 77] .text ... * 2 .text C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe[2164] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe[2164] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe[2164] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe[2164] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe[2164] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000771d1465 2 bytes [1D, 77] .text C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe[2164] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000771d14bb 2 bytes [1D, 77] .text ... * 2 .text C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe[2196] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe[2196] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe[2196] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe[2196] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe[2244] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe[2244] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe[2244] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe[2244] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe[2264] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe[2264] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe[2264] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe[2264] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe[2264] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000771d1465 2 bytes [1D, 77] .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe[2264] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000771d14bb 2 bytes [1D, 77] .text ... * 2 .text C:\Windows\SysWOW64\nlssrv32.exe[2296] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Windows\SysWOW64\nlssrv32.exe[2296] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Windows\SysWOW64\nlssrv32.exe[2296] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Windows\SysWOW64\nlssrv32.exe[2296] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[2508] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[2508] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[2508] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[2508] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[2508] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000771d1465 2 bytes [1D, 77] .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe[2508] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000771d14bb 2 bytes [1D, 77] .text ... * 2 .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322 0000000074b11a22 2 bytes [B1, 74] .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496 0000000074b11ad0 2 bytes [B1, 74] .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552 0000000074b11b08 2 bytes [B1, 74] .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730 0000000074b11bba 2 bytes [B1, 74] .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762 0000000074b11bda 2 bytes [B1, 74] .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 00000000771d1465 2 bytes [1D, 77] .text C:\Windows\SysWOW64\PnkBstrA.exe[2544] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000771d14bb 2 bytes [1D, 77] .text ... * 2 .text c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe[2568] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe[2568] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe[2568] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe[2568] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe[2684] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe[2684] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe[2684] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe[2684] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files\Agnitum\Outpost Firewall Pro\op_mon.exe[3148] C:\Windows\SYSTEM32\ntdll.dll!RtlCreateUnicodeStringFromAsciiz + 808 0000000077047ab8 14 bytes [F0, 82, 99, 3F, 01, 00, 00, ...] .text C:\Program Files\Agnitum\Outpost Firewall Pro\op_mon.exe[3148] C:\Windows\system32\kernel32.dll!FindResourceW + 24 0000000076e19b78 14 bytes [60, 81, 99, 3F, 01, 00, 00, ...] .text C:\Program Files (x86)\Mobogenie\DaemonProcess.exe[4476] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\Mobogenie\DaemonProcess.exe[4476] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\Mobogenie\DaemonProcess.exe[4476] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\Mobogenie\DaemonProcess.exe[4476] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe[3748] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe[3748] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe[3748] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe[3748] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 .text C:\Users\Dawid\Desktop\gmer.exe[1092] C:\Windows\syswow64\USER32.dll!SetWindowPos 0000000075138e4e 5 bytes JMP 000000011009a540 .text C:\Users\Dawid\Desktop\gmer.exe[1092] C:\Windows\syswow64\USER32.dll!SetForegroundWindow 000000007515f170 5 bytes JMP 000000011009a514 .text C:\Users\Dawid\Desktop\gmer.exe[1092] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExW 00000000751807d7 5 bytes JMP 000000011009a5c4 .text C:\Users\Dawid\Desktop\gmer.exe[1092] C:\Windows\syswow64\USER32.dll!ChangeDisplaySettingsExA 0000000075196da0 5 bytes JMP 000000011009a598 ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\00158315a310 Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\00158315a310@5c57c848c229 0xF4 0x46 0x49 0xF4 ... Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\00158315a310 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\00158315a310@5c57c848c229 0xF4 0x46 0x49 0xF4 ... Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{35052DFB-C19B-BF67-9A27-E559BEDD78D2} Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{35052DFB-C19B-BF67-9A27-E559BEDD78D2}@jakcjdklmejkincploba 0x62 0x61 0x66 0x65 ... Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{35052DFB-C19B-BF67-9A27-E559BEDD78D2}@jakcjdklmejkincplofa 0x62 0x61 0x68 0x65 ... Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{88E2262B-E5FA-F247-7D1E-8D1FA96DB056} Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{88E2262B-E5FA-F247-7D1E-8D1FA96DB056}@jamhbmaoceodkhbochia 0x62 0x61 0x6A 0x69 ... Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{88E2262B-E5FA-F247-7D1E-8D1FA96DB056}@iamgmcekjdkjbknegc 0x6B 0x61 0x62 0x6B ... Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{88E2262B-E5FA-F247-7D1E-8D1FA96DB056}@jamhbmaoceodkhbochmp 0x62 0x61 0x61 0x6B ... Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{88E2262B-E5FA-F247-7D1E-8D1FA96DB056}@haaifjjkgcfhlmai 0x70 0x61 0x70 0x68 ... Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{88E2262B-E5FA-F247-7D1E-8D1FA96DB056}@japhoiniofgaomhkilij 0x64 0x62 0x61 0x6B ... Reg HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@C:\Users\Dawid\AppData\Local\Logitech\xae Webcam Software\Logishrd\LU2.0\LogitechUpdate.exe 1 ---- EOF - GMER 2.1 ---- [/spoiler] Pojawil sie problem z wylaczeniem komp.a Wczoraj gdy go wylaczalem to musialem na koncu wylaczcy go z pradu tak jak przy starych systemach. Monitor sie wylaczyl ae komp nadal pracowal. Dzisiaj natomiast prez jakis czas byl napis "trwa zamykanie" ale po pewnym czasie w koncu sie wylaczyl i po chwili znowu wlaczyl z komunikatem w ktorym moglem wybrac tryb awaryjny. Gdy komp sie wlaczyl to wyswietlil sie komunikat "System windows odzyskal sprawnosc po nieoczekiwanym zamknieciu. System windows przestal dzialac poprawnie z powodu wystapienia problemu. System windows wyswietli powiadomienie jesli bedzie dostepne rozwiazanie." Przepraszam za wszystkie bledy ale ciezko robi sie wszystkie czynnosci podczas gdy ma sie goraczke. edit@ 18:36 błyskawiczne skanowanie MBAM [spoiler]Malwarebytes Anti-Malware (PRO) 1.75.0.1300 www.malwarebytes.org Wersja bazy: v2013.12.15.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16476 Dawid :: DAWID-KOMPUTER [administrator] Ochrona: Włączona 2013-12-15 18:32:01 mbam-log-2013-12-15 (18-32-01).txt Typ skanowania: Błyskawiczne skanowanie Zaznaczone opcje skanowania: Pamięć | Rozruch | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM Odznaczone opcje skanowania: Rejestr | System plików | P2P Przeskanowano obiektów: 255967 Upłynęło: 30 sekund(y) Wykrytych procesów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych modułów w pamięci: 1 C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Usuń po ponownym uruchomieniu. Wykrytych kluczy rejestru: 0 (Nie znaleziono zagrożeń) Wykrytych wartości rejestru: 1 HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|NextLive (PUP.Optional.NextLive.A) -> Data: C:\Windows\SysWOW64\rundll32.exe "C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. Wykryte wpisy rejestru systemowego: 0 (Nie znaleziono zagrożeń) wykrytych folderów: 2 C:\Users\Dawid\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Usuń po ponownym uruchomieniu. C:\Users\Dawid\AppData\Roaming\newnext.me\cache (PUP.Optional.NextLive.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. Wykrytych plików: 3 C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Usuń po ponownym uruchomieniu. C:\Users\Dawid\AppData\Roaming\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. (zakończone) [/spoiler] @edit 2 23:00 MBAM [spoiler]Malwarebytes Anti-Malware (PRO) 1.75.0.1300 www.malwarebytes.org Wersja bazy: v2013.12.15.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16476 Dawid :: DAWID-KOMPUTER [administrator] Ochrona: Włączona 2013-12-15 22:52:16 mbam-log-2013-12-15 (22-52-16).txt Typ skanowania: Szybkie skanowanie Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM Odznaczone opcje skanowania: P2P Przeskanowano obiektów: 295989 Upłynęło: 5 minut(y), 45 sekund(y) Wykrytych procesów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych modułów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych kluczy rejestru: 0 (Nie znaleziono zagrożeń) Wykrytych wartości rejestru: 0 (Nie znaleziono zagrożeń) Wykryte wpisy rejestru systemowego: 0 (Nie znaleziono zagrożeń) wykrytych folderów: 0 (Nie znaleziono zagrożeń) Wykrytych plików: 1 C:\Users\Dawid\Downloads\MyPhoneExplorer_Setup_v1.8.5(dobreprogrmy.pl).exe (PUP.Optional.OpenCandy) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. (zakończone) [/spoiler] Gdy pobieram z dobreprogramy.pl to zawsze nod mowi mi o jakims zagrozeniu. dziwne :/ @edit 3 12:48 MBAM [spoiler]Malwarebytes Anti-Malware (PRO) 1.75.0.1300 www.malwarebytes.org Wersja bazy: v2013.12.15.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16476 Dawid :: DAWID-KOMPUTER [administrator] Ochrona: Włączona 2013-12-16 09:52:46 mbam-log-2013-12-16 (09-52-46).txt Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|K:\|) Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM Odznaczone opcje skanowania: P2P Przeskanowano obiektów: 600236 Upłynęło: 2 godzin(y), 18 minut(y), 27 sekund(y) Wykrytych procesów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych modułów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych kluczy rejestru: 0 (Nie znaleziono zagrożeń) Wykrytych wartości rejestru: 0 (Nie znaleziono zagrożeń) Wykryte wpisy rejestru systemowego: 0 (Nie znaleziono zagrożeń) wykrytych folderów: 0 (Nie znaleziono zagrożeń) Wykrytych plików: 16 E:\Photoshop CS5\PhotoshopCS5.12\Adobe.Photoshop.CS5.Extended.v12.0.ONLY.Keymaker-EMBRACE\Adobe.Photoshop.CS5.Extended.v12.0.ONLY.Keymaker-EMBRACE\keygen.exe (Malware.Gen) -> Nie wykonano akcji. E:\Photoshop CS5\PhotoshopCS5.12\Adobe_CS5_Products_Activator\Adobe CS5 Products Activator\adobe.cs5.products.activator.fixed-mpt.exe (CrackTool.Agent) -> Nie wykonano akcji. E:\Programy\power iso 4.4 keygen.rar (PUP.Keygen.Intro) -> Nie wykonano akcji. E:\Programy\Adobe CS5 All Products Keygens + Individual Product Keygen\Adobe Flash Professional CS5 v11.0.0.485 Keygen\adobe_FP_CS5_keygen.exe (Malware.Gen) -> Nie wykonano akcji. E:\Programy\Adobe CS5 All Products Keygens + Individual Product Keygen\Adobe InDesign CS5 Premium v7.0 Keygen\adobe_IDP_CS5_keygen.exe (Malware.Gen) -> Nie wykonano akcji. E:\Programy\eset smart security [new] 5 64 i 32 (download 09.06.2012)\password finder final.zip (Trojan.Agent.CK) -> Nie wykonano akcji. E:\Programy\Patch Longtion Autorun Pro\Longtion.Autorun.Pro.6.0.1.40.-.7.0.0.59_Patch.exe (PUP.Hacktool.Patcher) -> Nie wykonano akcji. E:\Programy\Patch Longtion AutoRun Pro Enterprise & II\Longtion.Autorun.Pro.Enterprise.-.ii_Patch.exe (PUP.Hacktool.Patcher) -> Nie wykonano akcji. E:\Programy\Sjlver_Efex_Pr0_2.0-MPT\silver.efex.pro.2.0-MPT.rar (CrackTool.Agent) -> Nie wykonano akcji. E:\Programy\Sjlver_Efex_Pr0_2.0-MPT\silver.efex.pro.2.0-MPT\silver.efex.pro.2.0-MPT.exe (CrackTool.Agent) -> Nie wykonano akcji. E:\Programy\WinAVIVCv.11.5.1.4360\Patch.rar (PUP.Hacktool.Patcher) -> Nie wykonano akcji. E:\Programy\WinAVIVCv.11.5.1.4360\Patch\WinAVI Video Converter 11.5 Reg Tool.exe (PUP.Hacktool.Patcher) -> Nie wykonano akcji. E:\Programy\WinAVIVCv.11.5.1.4360\Patch\WinAVI Video Converter 11.5 Reg Tool.rar (PUP.Hacktool.Patcher) -> Nie wykonano akcji. C:\Users\Dawid\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\10M3FWFB\MyPhoneExplorer_v2_5185[1].exe (PUP.Optional.InstallMonetizer.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. C:\Users\Dawid\Downloads\DAEMON.Tools.Pro.Advanced.4.41.0315.0262.patch-SND\ind.dll (RiskWare.Tool.CK) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. E:\Counter-Strike\Counter-Strike\cstrike\addons\amxmodx\data\WinCSX.exe (Rogue.FakeAV.ED) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. (zakończone) [/spoiler]
Natsuki Kuga komentarz 17 grudnia 2013 komentarz 17 grudnia 2013 Gdy pobieram z dobreprogramy.pl to zawsze nod mowi mi o jakims zagrozeniu. dziwne :/ A nie pobierasz czasami przez ich asystenta pobierania? Jeśli tak, to możliwe, że Nod wykrywa adware w nim zawarte. 1. Odinstaluj poprzez Dodaj/usuń programy: Ask Toolbar, Mobogenie.2. Poszukaj w przeglądarkach dodatków o nazwach wyżej wymienionych. Jeśli są - odinstaluj.3. Wykonaj ten skrypt w OTL (instrukcja: http://www.forumpc.pl/topic/277786-nieingerencyjne-narz%C4%99dzia-do-tworzenia-log%C3%B3w-systemowych/#entry1683607 ): :OTL IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis....q={searchTerms} IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis....q={searchTerms} IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.aartemis....q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis....q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis....q={searchTerms} IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityrespo...er/fix_homepage IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityrespo...er/fix_homepage IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityrespo...er/fix_homepage IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityrespo...er/fix_homepage IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\SearchScopes\{F687E906-078E-4CEE-9FE6-35D0BD44D5D5}: "URL" = http://websearch.ask...AE-5FF710E7CD1E FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..keyword.URL: "http://websearch.ask...YYYYYYYYPL&&q=" [2013-10-20 11:48:20 | 000,000,000 | ---D | M] (Ask Toolbar) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\toolbar@ask.com [2012-07-20 14:08:32 | 000,002,322 | ---- | M] () -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\searchplugins\askcom.xml O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask) O3 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found. O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [LGODDFU] blrun File not found O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe () O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000..\Run: [] File not found O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000..\Run: [NextLive] C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.dll (NewNextDotMe) :Files C:\Program Files (x86)\Mobogenie C:\Users\Dawid\AppData\Roaming\newnext.me C:\Users\Dawid\Desktop\Mobogenie.lnk C:\ProgramData\bzewdlof.ahj C:\Program Files (x86)\Ask.com C:\Users\Public\Desktop\Device Seizure.lnk :Commands [emptytemp] Pokaż raport.4. Użyj AdwCleaner z opcji Usuń. Pokaż raport.5. Do SystemLook wklej: :file C:\Windows\SysWow64\91207717.sys Look, pokaż raport.6. Pokaż zestaw nowych logów. [2012-02-24 14:31:04 | 000,179,054 | ---- | M] () -- C:\TDSSKiller.2.7.13.0_24.02.2012_14.29.38_log.txt [2012-03-18 12:32:45 | 000,090,740 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_18.03.2012_12.31.31_log.txt [2012-03-18 16:39:16 | 000,000,348 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_18.03.2012_16.39.14_log.txt [2012-02-24 14:35:44 | 000,091,570 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_24.02.2012_14.34.50_log.txt [2012-02-26 13:14:01 | 000,092,604 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_26.02.2012_13.13.18_log.txt [2012-03-18 16:47:27 | 000,090,740 | ---- | M] () -- C:\TDSSKiller.2.7.20.0_18.03.2012_16.46.10_log.txt [2012-06-18 11:10:49 | 000,092,934 | ---- | M] () -- C:\TDSSKiller.2.7.20.0_18.06.2012_12.10.17_log.txt TDSSKiller coś usuwał?
Dawid_Dj komentarz 23 grudnia 2013 Autor komentarz 23 grudnia 2013 (edytowane) Tak, pobieram przez ich asystenta, bo inaczej się nie da. To znaczy ze w tym asystencie są wirusy ? Nie powinienem już pobierać z dobreprogramy.pl ? Skrypt z OTL [spoiler]All processes killed ========== OTL ========== HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully! HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully! 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ deleted successfully. 64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86}\ not found. HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Search_URL| /E : value set successfully! HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully! HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! Registry value HKEY_USERS\S-1-5-21-1744233449-2869872091-3771974885-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{00000000-6E41-4FD3-8538-502F5495E5FC} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}\ not found. File C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll not found. Registry key HKEY_USERS\S-1-5-21-1744233449-2869872091-3771974885-1000\Software\Microsoft\Internet Explorer\SearchScopes\{F687E906-078E-4CEE-9FE6-35D0BD44D5D5}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F687E906-078E-4CEE-9FE6-35D0BD44D5D5}\ not found. Prefs.js: "Ask.com" removed from browser.search.defaultengine Prefs.js: "Ask.com" removed from browser.search.order.1 Prefs.js: "http://websearch.ask...YYYYYYYYPL&&q=" removed from keyword.URL Folder C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\toolbar@ask.com\ not found. C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\searchplugins\askcom.xml moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found. File C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found. File C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll not found. Registry value HKEY_USERS\S-1-5-21-1744233449-2869872091-3771974885-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\LGODDFU deleted successfully. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon deleted successfully. File C:\Program Files (x86)\Mobogenie\DaemonProcess.exe not found. Registry value HKEY_USERS\S-1-5-21-1744233449-2869872091-3771974885-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully. Registry value HKEY_USERS\S-1-5-21-1744233449-2869872091-3771974885-1000\Software\Microsoft\Windows\CurrentVersion\Run\\NextLive deleted successfully. C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.dll moved successfully. ========== FILES ========== C:\Program Files (x86)\Mobogenie folder moved successfully. C:\Users\Dawid\AppData\Roaming\newnext.me\cache folder moved successfully. C:\Users\Dawid\AppData\Roaming\newnext.me folder moved successfully. File\Folder C:\Users\Dawid\Desktop\Mobogenie.lnk not found. C:\ProgramData\bzewdlof.ahj moved successfully. File\Folder C:\Program Files (x86)\Ask.com not found. C:\Users\Public\Desktop\Device Seizure.lnk moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: Administrator User: All Users User: Dawid ->Temp folder emptied: 1093541674 bytes ->Temporary Internet Files folder emptied: 173899030 bytes ->Java cache emptied: 2882961 bytes ->FireFox cache emptied: 233783923 bytes ->Flash cache emptied: 17261 bytes User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 56502 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Gość User: HomeGroupUser$ User: Public User: UpdatusUser ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 56502 bytes User: wangjihua User: wangzhisong %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 356352 bytes %systemroot%\System32 .tmp files removed: 771424 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 540573932 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 68160 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 1 951,00 mb OTL by OldTimer - Version 3.2.69.0 log created on 12232013_104643 Files\Folders moved on Reboot... C:\Users\Dawid\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. C:\Users\Dawid\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully. PendingFileRenameOperations files... Registry entries deleted on Reboot... [/spoiler] AdwCleaner [spoiler]# AdwCleaner v3.016 - Log utworzony 23/12/2013 o 11:02:39 # Aktualizacja 23/12/2013 przez Xplode # System operacyjny : Windows 7 Professional Service Pack 1 (64 bits) # Użytkownik : Dawid - DAWID-KOMPUTER # Ścieżka : C:\Users\Dawid\Desktop\adwcleaner.exe # Opcja : Usuń ***** [ Usługi ] ***** ***** [ Pliki / Foldery ] ***** Folder Usunięto : C:\ProgramData\Ask Folder Usunięto : C:\ProgramData\ParetoLogic Folder Usunięto : C:\ProgramData\WPM Folder Usunięto : C:\Program Files (x86)\ParetoLogic Folder Usunięto : C:\Program Files (x86)\Common Files\ParetoLogic Folder Usunięto : C:\Users\Dawid\AppData\Local\Mobogenie Folder Usunięto : C:\Users\Dawid\AppData\Local\PackageAware Folder Usunięto : C:\Users\Dawid\AppData\Roaming\DriverCure Folder Usunięto : C:\Users\Dawid\AppData\Roaming\ParetoLogic Folder Usunięto : C:\Users\Dawid\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic Folder Usunięto : C:\Users\Dawid\Documents\Mobogenie Plik Usunięto : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml Plik Usunięto : C:\Users\Dawid\AppData\Roaming\Mozilla\Firefox\Profiles\ihgv3ubd.default\user.js Plik Usunięto : C:\Windows\Tasks\paretologic registration3.job Plik Usunięto : C:\Windows\System32\Tasks\paretologic registration3 Plik Usunięto : C:\Windows\Tasks\paretologic update version3.job Plik Usunięto : C:\Windows\System32\Tasks\paretologic update version3 ***** [ Skróty ] ***** ***** [ Rejestr ] ***** Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32 Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32 Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32 Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32 Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd Klucz Usunięto : HKLM\SOFTWARE\NSIS_AQQ Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MSI_APS_is1 Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323} Klucz Usunięto : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777} Klucz Usunięto : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3} Klucz Usunięto : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Klucz Usunięto : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Klucz Usunięto : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48} Klucz Usunięto : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Klucz Usunięto : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5} Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Klucz Usunięto : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Klucz Usunięto : [x64] HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48} Klucz Usunięto : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5} Klucz Usunięto : HKCU\Software\APN PIP Klucz Usunięto : HKCU\Software\ParetoLogic Klucz Usunięto : HKCU\Software\Softonic Klucz Usunięto : HKLM\Software\aartemisSoftware Klucz Usunięto : HKLM\Software\ParetoLogic Klucz Usunięto : HKLM\Software\supWPM ***** [ Przeglądarki internetowe ] ***** -\\ Internet Explorer v11.0.9600.16428 -\\ Mozilla Firefox v24.0 (pl) [ Plik : C:\Users\Dawid\AppData\Roaming\Mozilla\Firefox\Profiles\ihgv3ubd.default\prefs.js ] Wpis usunięty : user_pref("extensions.skipscreen.hostMatchStr", "hxxp://www.4shared.com/(get|audio|file|document|dir)/.*|hxxp://.*depositfiles.com/(([a-z]{2})/files/|auth-).*|hxxp://(www.)*digg.com/(.{5}|.{6})$|hxxp:[...] Wpis usunięty : user_pref("extensions.toolbar@ask.com.install-event-fired", true); Wpis usunięty : user_pref("keyword.URL", "hxxp://isearch.avg.com/search?cid=%7B9b6f0ca3-7e12-4afe-b918-e1143ebfb52f%7D&mid=3c8acdbcac8547d095a0252442857de7-617abbcef06b250eea98b924de82af8847409f3a&ds=st011&v=11.1.0.7[...] ************************* AdwCleaner[R0].txt - [4932 octets] - [23/12/2013 11:01:29] AdwCleaner[S0].txt - [4497 octets] - [23/12/2013 11:02:39] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4557 octets] ########## [/spoiler] SystemLook [spoiler]SystemLook 30.07.11 by jpshortstuff Log created at 11:10 on 23/12/2013 by Dawid Administrator - Elevation successful ========== file ========== C:\Windows\SysWow64\91207717.sys - File found and opened. MD5: 8D8ACABAACEECD3BF569E7CDDDAD5C68 Created at 09:51 on 03/11/2013 Modified at 13:51 on 24/11/2013 Size: 97 bytes Attributes: --a---- No version information available. -= EOF =-[/spoiler] MBAM [spoiler]Malwarebytes Anti-Malware (PRO) 1.75.0.1300 www.malwarebytes.org Wersja bazy: v2013.12.23.03 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16476 Dawid :: DAWID-KOMPUTER [administrator] Ochrona: Włączona 2013-12-23 11:22:50 mbam-log-2013-12-23 (11-22-50).txt Typ skanowania: Szybkie skanowanie Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM Odznaczone opcje skanowania: P2P Przeskanowano obiektów: 293468 Upłynęło: 5 minut(y), 29 sekund(y) Wykrytych procesów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych modułów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych kluczy rejestru: 0 (Nie znaleziono zagrożeń) Wykrytych wartości rejestru: 0 (Nie znaleziono zagrożeń) Wykryte wpisy rejestru systemowego: 0 (Nie znaleziono zagrożeń) wykrytych folderów: 1 C:\Users\Dawid\AppData\Roaming\newnext.me (PUP.Optional.NextLive.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. Wykrytych plików: 1 C:\Users\Dawid\AppData\Roaming\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem. (zakończone) [/spoiler] OTL [spoiler]OTL logfile created on: 2013-12-23 11:31:06 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dawid\Desktop 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.16428) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 7,98 Gb Total Physical Memory | 5,48 Gb Available Physical Memory | 68,62% Memory free 15,96 Gb Paging File | 13,08 Gb Available in Paging File | 81,97% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 155,25 Gb Total Space | 14,87 Gb Free Space | 9,58% Space Free | Partition Type: NTFS Drive D: | 155,16 Gb Total Space | 37,42 Gb Free Space | 24,12% Space Free | Partition Type: NTFS Drive E: | 155,25 Gb Total Space | 16,42 Gb Free Space | 10,58% Space Free | Partition Type: NTFS Computer Name: DAWID-KOMPUTER | User Name: Dawid | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013-12-15 12:51:55 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dawid\Desktop\OTL.exe PRC - [2013-12-11 18:00:04 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2013-12-08 11:33:48 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2013-11-14 12:56:57 | 001,028,384 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe PRC - [2013-11-14 12:56:48 | 001,914,656 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2013-11-11 15:42:02 | 000,764,192 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe PRC - [2013-11-11 08:59:20 | 000,414,496 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2013-10-25 12:07:24 | 002,151,200 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe PRC - [2013-10-25 12:07:00 | 000,878,368 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe PRC - [2013-10-16 00:06:12 | 001,016,712 | ---- | M] (Flux Software LLC) -- C:\Users\Dawid\AppData\Local\FluxSoftware\Flux\flux.exe PRC - [2013-04-23 08:48:17 | 003,574,624 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe PRC - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe PRC - [2013-04-04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe PRC - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe PRC - [2013-03-12 06:32:58 | 000,506,744 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe PRC - [2012-01-18 07:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe PRC - [2011-06-06 21:38:24 | 001,101,440 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe PRC - [2011-05-24 20:54:46 | 001,426,048 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe PRC - [2011-05-19 15:39:18 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2011-05-19 15:39:14 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe PRC - [2011-05-13 16:18:24 | 001,215,616 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe PRC - [2011-02-21 22:17:32 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) -- C:\Windows\SysWOW64\nlssrv32.exe PRC - [2011-01-12 16:41:42 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe PRC - [2010-12-02 03:15:14 | 000,915,584 | R--- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe PRC - [2010-11-26 21:50:04 | 002,931,328 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe PRC - [2010-11-08 15:09:00 | 000,465,536 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe PRC - [2010-11-03 10:30:14 | 000,918,144 | R--- | M] () -- C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe PRC - [2010-10-21 10:52:26 | 000,586,880 | R--- | M] () -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe PRC - [2010-09-24 21:29:32 | 001,115,776 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe PRC - [2010-03-10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe PRC - [2009-12-22 12:31:50 | 000,024,576 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\TestDDCCI.exe PRC - [2009-12-22 12:30:54 | 000,159,744 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\EasySetPackage.exe PRC - [2009-12-15 13:47:00 | 000,103,720 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe ========== Modules (No Company Name) ========== MOD - [2013-12-11 18:00:04 | 003,559,024 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll MOD - [2013-12-07 22:52:54 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d473c19e69818875b9c739cad8f386a5\System.Runtime.Remoting.ni.dll MOD - [2013-12-07 22:52:54 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\41a3bd6011f301f808fac8eb53993206\IAStorCommon.ni.dll MOD - [2013-12-07 22:52:53 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\4eef5a3a4d0ed6d6fd882947a70df530\WindowsBase.ni.dll MOD - [2013-12-07 22:52:52 | 000,492,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\d52b8823da05f910389b3d26bfe654c6\IAStorUtil.ni.dll MOD - [2013-12-07 22:52:51 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ef0a534be135cd8f0d99d938d8b1814a\System.Windows.Forms.ni.dll MOD - [2013-12-07 22:52:47 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5aa44bce7933e4de09d935848f868a4b\System.Drawing.ni.dll MOD - [2013-12-07 22:52:44 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09db78d6068543df01862a023aca785a\System.Xml.ni.dll MOD - [2013-12-07 22:52:42 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\29f3ae8d313e62b4daed1107ccd29f9f\System.Configuration.ni.dll MOD - [2013-12-07 22:52:40 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5d22a30e587e2cac106b81fb351e7c08\System.ni.dll MOD - [2013-12-07 22:52:37 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll MOD - [2013-01-15 18:48:26 | 000,348,992 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\madExcept_.bpl MOD - [2013-01-15 18:48:26 | 000,051,008 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\madDisAsm_.bpl MOD - [2013-01-15 18:48:24 | 000,183,616 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\madBasic_.bpl MOD - [2013-01-15 18:47:56 | 000,893,248 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\webres.dll MOD - [2011-06-06 21:38:24 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll MOD - [2011-05-20 09:12:18 | 000,881,152 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll MOD - [2011-05-16 17:35:56 | 000,965,632 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll MOD - [2011-05-16 06:39:29 | 000,053,248 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll MOD - [2011-04-07 17:33:18 | 001,607,168 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll MOD - [2011-03-11 19:53:12 | 001,257,472 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll MOD - [2011-03-09 14:55:24 | 001,036,800 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\ASUS Update\Update.dll MOD - [2011-02-24 10:19:36 | 000,143,360 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll MOD - [2011-02-09 09:02:28 | 000,873,472 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\AI Charger+\AIChargerPlus.dll MOD - [2011-01-07 16:39:36 | 001,246,208 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll MOD - [2011-01-06 10:38:48 | 001,027,072 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll MOD - [2010-11-13 03:03:49 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll MOD - [2010-08-23 03:17:40 | 000,662,016 | R--- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMLib.dll MOD - [2010-08-06 18:13:48 | 000,886,272 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll MOD - [2010-08-06 18:11:20 | 000,850,944 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll MOD - [2010-06-21 15:21:22 | 000,208,896 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\ImageHelper.dll MOD - [2010-06-21 15:21:22 | 000,208,896 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll MOD - [2009-12-22 12:31:50 | 000,024,576 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\TestDDCCI.exe MOD - [2009-12-22 12:30:54 | 000,159,744 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\EasySetPackage.exe MOD - [2009-12-22 12:30:36 | 000,057,344 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\HOOK.dll MOD - [2009-12-22 12:30:34 | 000,065,536 | ---- | M] () -- C:\Windows\SysWOW64\LGErrorHandler.dll MOD - [2009-12-22 12:30:28 | 000,012,288 | ---- | M] () -- C:\Program Files (x86)\LG Soft India\EasySetPackage\bin\EngRes.dll MOD - [2009-12-15 13:49:20 | 000,013,096 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll MOD - [2009-12-15 13:46:38 | 000,619,816 | ---- | M] () -- C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll MOD - [2009-08-12 20:15:52 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll ========== Services (SafeList) ========== SRV:64bit: - [2013-11-26 10:18:09 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService) SRV:64bit: - [2013-11-14 12:57:03 | 015,125,280 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc) SRV:64bit: - [2013-10-13 11:02:56 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\PnkBstrA.exe -- (PnkBstrA) SRV:64bit: - [2013-06-29 22:37:42 | 001,471,352 | ---- | M] (Flexera Software LLC) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FlexNet Licensing Service 64) SRV:64bit: - [2013-05-27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:64bit: - [2012-06-04 13:26:12 | 003,268,448 | ---- | M] (Agnitum Ltd.) [Auto | Running] -- C:\Program Files\Agnitum\Outpost Firewall Pro\acs.exe -- (acssrv) SRV:64bit: - [2012-04-26 09:14:06 | 002,438,696 | ---- | M] (mobile concepts GmbH) [On_Demand | Stopped] -- C:\Program Files\CyberGhost VPN\CGVPNCliService.exe -- (CGVPNCliSrvc) SRV:64bit: - [2011-01-12 16:44:02 | 000,042,360 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv) SRV:64bit: - [2011-01-12 16:41:42 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn) SRV:64bit: - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2013-12-11 18:00:04 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013-12-11 17:22:11 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013-12-08 11:33:48 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2013-11-14 12:56:48 | 001,914,656 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2013-11-11 08:59:20 | 000,414,496 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2013-10-25 12:07:24 | 002,151,200 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc) SRV - [2013-10-25 12:07:00 | 000,878,368 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe -- (AdvancedSystemCareService7) SRV - [2013-10-23 08:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2013-09-11 21:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2013-04-23 08:48:17 | 003,574,624 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8) SRV - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService) SRV - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler) SRV - [2012-12-13 16:37:26 | 000,012,288 | ---- | M] (Autodesk, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service) SRV - [2012-08-01 15:07:16 | 000,724,888 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2012-01-18 07:44:52 | 000,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv) SRV - [2011-05-19 15:39:18 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) SRV - [2011-03-01 17:29:58 | 000,130,976 | ---- | M] (Futuremark Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe -- (Futuremark SystemInfo Service) SRV - [2011-02-21 22:17:32 | 000,066,560 | ---- | M] (Nalpeiron Ltd.) [Auto | Running] -- C:\Windows\SysWOW64\nlssrv32.exe -- (nlsX86cc) SRV - [2010-12-02 11:34:52 | 000,258,688 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\Disk Unlocker\ASPFSVS64.exe -- (ASDiskUnlocker) SRV - [2010-12-02 03:15:14 | 000,915,584 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe -- (asHmComSvc) SRV - [2010-11-03 10:30:14 | 000,918,144 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe -- (asComSvc) SRV - [2010-10-21 10:52:26 | 000,586,880 | R--- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe -- (AsSysCtrlService) SRV - [2010-03-10 14:26:48 | 000,189,728 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2) SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) ========== Driver Services (SafeList) ========== DRV:64bit: - [2013-11-14 12:57:13 | 000,039,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible) DRV:64bit: - [2013-11-14 12:57:05 | 000,196,384 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:64bit: - [2013-08-29 02:29:52 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser) DRV:64bit: - [2013-06-28 11:45:00 | 000,036,352 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandnetmodem64.sys -- (ANDNetModem) DRV:64bit: - [2013-04-23 16:30:52 | 000,093,696 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandnetndis64.sys -- (andnetndis) DRV:64bit: - [2013-04-18 16:14:12 | 000,029,184 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lgandnetdiag64.sys -- (AndNetDiag) DRV:64bit: - [2013-04-04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector) DRV:64bit: - [2012-08-29 18:46:14 | 000,028,008 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dfx11_1x64.sys -- (DFX11_1) DRV:64bit: - [2012-08-23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2012-08-23 15:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:64bit: - [2012-08-23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2012-06-27 14:18:52 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd) DRV:64bit: - [2012-05-31 15:04:52 | 000,445,056 | ---- | M] (Agnitum Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\afwcore.sys -- (afwcore) DRV:64bit: - [2012-03-19 09:36:42 | 000,066,184 | ---- | M] (Agnitum Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Filt\ASWFilt64.dll -- (ASWFilt) DRV:64bit: - [2012-03-19 09:36:38 | 001,266,544 | ---- | M] (Agnitum Ltd.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\SandBox64.sys -- (SandBox) DRV:64bit: - [2012-03-01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2012-02-09 07:06:36 | 000,125,376 | ---- | M] (Power Software Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\scdemu.sys -- (SCDEmu) DRV:64bit: - [2012-01-18 07:44:36 | 004,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) DRV:64bit: - [2012-01-18 07:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64) DRV:64bit: - [2012-01-15 14:05:59 | 000,279,616 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:64bit: - [2012-01-09 16:28:20 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd) DRV:64bit: - [2012-01-09 16:28:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt) DRV:64bit: - [2012-01-09 16:28:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev) DRV:64bit: - [2012-01-09 16:28:18 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc) DRV:64bit: - [2011-12-15 18:29:42 | 000,031,232 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901) DRV:64bit: - [2011-06-10 06:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:64bit: - [2011-05-16 06:39:26 | 000,026,136 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ICCWDT.sys -- (ICCWDT) DRV:64bit: - [2011-05-10 17:46:52 | 000,557,848 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) DRV:64bit: - [2011-03-28 17:53:54 | 000,038,488 | ---- | M] (Agnitum Ltd.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\afw.sys -- (afw) DRV:64bit: - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2011-02-24 10:30:50 | 000,389,608 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci) DRV:64bit: - [2011-02-24 10:30:50 | 000,126,952 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3) DRV:64bit: - [2010-12-21 15:04:06 | 000,170,640 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm) DRV:64bit: - [2010-12-21 15:04:06 | 000,141,264 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv) DRV:64bit: - [2010-12-21 13:47:38 | 000,170,640 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw) DRV:64bit: - [2010-12-21 13:47:38 | 000,050,624 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp) DRV:64bit: - [2010-12-21 13:47:38 | 000,034,144 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\epfwndis.sys -- (Epfwndis) DRV:64bit: - [2010-11-21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:64bit: - [2010-11-21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010-11-08 14:57:58 | 000,014,464 | ---- | M] (ASUSTek Computer Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AiChargerPlus.sys -- (AiChargerPlus) DRV:64bit: - [2010-10-19 16:34:26 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) DRV:64bit: - [2010-09-21 11:29:36 | 000,043,136 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\VDiskBus64.sys -- (VDiskBus) DRV:64bit: - [2010-04-06 18:33:10 | 000,030,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btnetBus.sys -- (btnetBUs) DRV:64bit: - [2010-04-06 18:32:48 | 000,027,016 | ---- | M] (IVT Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IvtBtBus.sys -- (IvtBtBUs) DRV:64bit: - [2010-04-06 18:32:46 | 000,023,944 | ---- | M] (IVT Corporation.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\BtHidBus.sys -- (BtHidBus) DRV:64bit: - [2010-02-08 22:28:10 | 000,148,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hrmports.sys -- (HRMPORTS) DRV:64bit: - [2010-02-08 22:28:10 | 000,133,512 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hrmcfgspc.sys -- (HRMCFGSPC) DRV:64bit: - [2010-02-08 22:28:10 | 000,128,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hrmints.sys -- (HRMINTS) DRV:64bit: - [2010-02-08 22:28:08 | 000,676,232 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\dsfksvcs.sys -- (DSFKSVCS) DRV:64bit: - [2010-02-08 22:28:08 | 000,035,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\dsfroot.sys -- (dsfroot) DRV:64bit: - [2010-02-08 20:58:56 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbehci_dsf.sys -- (usbehci_dsf) DRV:64bit: - [2010-02-08 20:06:46 | 000,675,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\softusbk.sys -- (SOFTUSBK) DRV:64bit: - [2010-02-08 20:06:46 | 000,366,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\softehci.sys -- (softehci) DRV:64bit: - [2010-02-08 20:06:42 | 000,206,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\softhidusbk.sys -- (SOFTHIDUSBK) DRV:64bit: - [2010-01-14 13:27:46 | 000,032,544 | R--- | M] (Realtek ) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\RtNdPt60.sys -- (RtNdPt60) DRV:64bit: - [2010-01-14 13:27:30 | 000,048,416 | R--- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam60.sys -- (TEAM) DRV:64bit: - [2010-01-14 13:27:30 | 000,048,416 | R--- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam60.sys -- (RTTEAMPT) DRV:64bit: - [2010-01-14 13:27:18 | 000,029,472 | R--- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtVlan60.sys -- (RTVLANPT) DRV:64bit: - [2009-08-13 08:38:24 | 000,029,184 | ---- | M] (CSR, plc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcp.sys -- (BthAvrcp) DRV:64bit: - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009-07-14 01:10:47 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rootmdm.sys -- (ROOTMODEM) DRV:64bit: - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2008-11-04 04:08:12 | 000,022,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\GWHid.sys -- (GWHid) DRV:64bit: - [2008-09-23 00:24:00 | 000,050,176 | ---- | M] (Todos Data System AB) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\shbecr.sys -- (Tdsshbecr) DRV:64bit: - [2008-03-30 03:16:46 | 000,031,848 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VL807.sys -- (VL807) DRV - [2010-09-16 20:56:06 | 000,016,512 | ---- | M] (ASUSTeK Computer Inc.) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys -- (ASFLTDrv.sys) DRV - [2009-12-22 12:30:46 | 000,019,456 | ---- | M] (LG Soft India) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\LGPII2CDriver.sys -- (LGII2CDevice) DRV - [2009-12-22 12:30:36 | 000,016,384 | ---- | M] (LG Soft India) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\LGI2CDriver.sys -- (LGDDCDevice) DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2008-11-04 04:08:18 | 000,018,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\GWHid.sys -- (GWHid) DRV - [2008-03-30 03:17:18 | 000,025,064 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\VL807.sys -- (VL807) DRV - [2008-02-15 16:30:48 | 000,015,192 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys -- (FLASHSYS) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.pl/ [binary data] IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\SearchScopes,DefaultScope = {01AA3507-BBE7-437F-B89A-A4E240EF067E} IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\SearchScopes\{01AA3507-BBE7-437F-B89A-A4E240EF067E}: "URL" = http://www.idg.pl?q={searchTerms} IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local> IE - HKU\S-1-5-21-1744233449-2869872091-3771974885-1008\..\SearchScopes,DefaultScope = ========== FireFox ========== FF - prefs.js..browser.search.defaultengine: "" FF - prefs.js..browser.search.order.1: "" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..extensions.enabledAddons: SkipScreen%40SkipScreen:0.7.2 FF - prefs.js..extensions.enabledAddons: translator%40zoli.bod:2.1.0.3 FF - prefs.js..extensions.enabledAddons: %7B3e0e7d2a-070f-4a47-b019-91fe5385ba79%7D:3.5.9 FF - prefs.js..extensions.enabledAddons: ascsurfingprotection%40iobit.com:1.0 FF - prefs.js..extensions.enabledAddons: YoutubeDownloader%40PeterOlayev.com:2.2.2 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:26.0 FF - prefs.js..keyword.url: "http://isearch.avg.com/search?cid=%7B9b6f0ca3-7e12-4afe-b918-e1143ebfb52f%7D&mid=3c8acdbcac8547d095a0252442857de7-617abbcef06b250eea98b924de82af8847409f3a&ds=st011&v=11.1.0.7&lang=pl&pr=sa&d=2012-03-30%2017%3A42%3A10&sap=ku&q=" FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.104.0: File not found FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.116.0: C:\Program Files (x86)\Battlelog Web Plugins\1.116.0\npesnlaunch.dll File not found FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.122.0: C:\Program Files (x86)\Battlelog Web Plugins\1.122.0\npesnlaunch.dll File not found FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=1.138.0: C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll File not found FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.4: C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll File not found FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.3.1: C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB) FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.3.2: C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF - HKLM\Software\MozillaPlugins\@ganymede/GanymedeNetPlugin,version=1.0: C:\Program Files (x86)\Ganymede\Plugins\npganymedenet.dll ( ) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( ) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Dawid\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) FF - HKCU\Software\MozillaPlugins\facebook.com/fbDesktopPlugin: C:\Users\Dawid\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.) FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll () 64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2012-12-10 20:52:55 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013-12-11 17:59:59 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012-12-10 20:52:55 | 000,000,000 | ---D | M] [2011-11-29 20:31:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\Extensions [2013-12-23 10:34:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions [2013-01-07 11:31:47 | 000,000,000 | ---D | M] (AddThis) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\{3e0e7d2a-070f-4a47-b019-91fe5385ba79} [2013-08-27 11:06:39 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-12-12 17:04:47 | 000,000,000 | ---D | M] (Advanced SystemCare Surfing Protection) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\ascsurfingprotection@iobit.com [2013-12-22 09:32:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\Firefox\Profiles\ihgv3ubd.default\extensions\staged [2013-02-18 10:26:22 | 000,054,842 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\imageviewer@toptip.ca.xpi [2013-06-20 21:59:29 | 000,255,232 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\jid1-GBYr3F9iI4n8IA@jetpack.xpi [2013-12-05 14:20:23 | 000,703,930 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\jid1-qQSMEVsYTOjgYA@jetpack.xpi [2013-02-18 10:26:22 | 000,030,191 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\screensurfer@pjs.nl.xpi [2013-07-21 08:57:20 | 000,071,038 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\SkipScreen@SkipScreen.xpi [2013-02-04 10:44:31 | 000,060,290 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\translator@zoli.bod.xpi [2013-01-30 16:47:08 | 000,021,356 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\uss-button@uploadscreenshot.com.xpi [2013-12-22 09:32:13 | 000,072,921 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\YoutubeDownloader@PeterOlayev.com.xpi [2013-09-07 21:43:17 | 000,242,531 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\{b0e1b4a6-2c6f-4e99-94f2-8e625d7ae255}.xpi [2013-08-02 11:11:22 | 000,224,035 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2013-12-21 20:18:22 | 000,389,303 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\{c8d3bc80-0810-4d21-a2c2-be5f2b2832ac}.xpi [2013-10-10 17:18:21 | 000,915,554 | ---- | M] () (No name found) -- C:\Users\Dawid\AppData\Roaming\mozilla\firefox\profiles\ihgv3ubd.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-11 17:59:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2013-12-11 17:59:59 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2013-12-11 17:59:59 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} [2013-12-11 17:59:59 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions [2013-12-11 18:00:05 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} File not found (No name found) -- C:\PROGRAM FILES (X86)\IOBIT APPS TOOLBAR\FF O1 HOSTS File: ([2012-02-26 15:44:09 | 000,000,867 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 activate.adobe.com O2:64bit: - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll (IObit) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Advanced SystemCare Browser Protection) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL (IObit) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4:64bit: - HKLM..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation) O4:64bit: - HKLM..\Run: [OutpostMonitor] C:\Program Files\Agnitum\Outpost Firewall Pro\op_mon.exe (Agnitum Ltd.) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation) O4:64bit: - HKLM..\Run: [TNOD UP] "C:\Program Files\ESET\TNod User & Password Finder\TNODUP.exe" /i File not found O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ASUS AiChargerPlus Execute] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe (ASUSTek Computer Inc.) O4 - HKLM..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.94.193\AsusWSPanel.exe (ecareme) O4 - HKLM..\Run: [CLMLServer] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.) O4 - HKU\.DEFAULT..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.) O4 - HKU\S-1-5-18..\Run: [Autodesk Sync] C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe (Autodesk, Inc.) O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000..\Run: [AQQ] C:\PROGRA~2\WapSter\WAPSTE~1\AQQ.exe (AQQ Sp. z o.o.) O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000..\Run: [F.lux] C:\Users\Dawid\AppData\Local\FluxSoftware\Flux\flux.exe (Flux Software LLC) O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup File not found O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1008..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1008..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableThumbnails = 0 O7 - HKU\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: = O8:64bit: - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation) O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{1A07E7B8-1FD9-4107-B093-43C81F346573}: DhcpNameServer = 192.168.1.1 O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:64bit: - Protocol\Handler\ms-help - No CLSID value found O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\wlpg - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - AppInit_DLLs: (c:\progra~1\agnitum\outpos~1\wl_hoo~1.dll) - c:\Program Files\Agnitum\Outpost Firewall Pro\wl_hook64.dll (Agnitum Ltd.) O20 - AppInit_DLLs: (c:\progra~1\agnitum\outpos~1\wl_hook.dll) - c:\Program Files\Agnitum\Outpost Firewall Pro\wl_hook.dll (Agnitum Ltd.) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013-06-26 21:38:36 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ] O32 - AutoRun File - [2013-07-24 13:54:55 | 000,000,000 | ---D | M] - E:\autocad -- [ NTFS ] O32 - AutoRun File - [2013-06-29 23:51:50 | 000,000,000 | ---D | M] - E:\Autodesk -- [ NTFS ] O33 - MountPoints2\{30c971b1-15dd-11e2-b2eb-f46d04619414}\Shell - "" = AutoRun O33 - MountPoints2\{30c971b1-15dd-11e2-b2eb-f46d04619414}\Shell\AutoRun\command - "" = K:\start.exe O33 - MountPoints2\{706d8922-e23b-11e1-9d52-f46d04619414}\Shell - "" = AutoRun O33 - MountPoints2\{706d8922-e23b-11e1-9d52-f46d04619414}\Shell\AutoRun\command - "" = K:\LaunchU3.exe -a O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) ========== Files/Folders - Created Within 30 Days ========== [2013-12-23 11:01:02 | 000,000,000 | ---D | C] -- C:\AdwCleaner [2013-12-23 10:46:43 | 000,000,000 | ---D | C] -- C:\_OTL [2013-12-23 10:34:23 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt [2013-12-15 12:51:48 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Dawid\Desktop\OTL.exe [2013-12-14 23:52:51 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Local\FileViewPro [2013-12-14 23:52:49 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\IsolatedStorage [2013-12-14 23:52:49 | 000,000,000 | ---D | C] -- C:\ProgramData\IsolatedStorage [2013-12-14 23:47:55 | 000,000,000 | ---D | C] -- C:\Spacekace [2013-12-14 18:19:29 | 000,000,000 | ---D | C] -- C:\Users\Dawid\Desktop\tel [2013-12-14 14:16:57 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\hdd_guardian [2013-12-14 14:16:57 | 000,000,000 | ---D | C] -- C:\ProgramData\hdd_guardian [2013-12-14 14:15:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDD Guardian 0.5.0 [2013-12-14 14:15:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HDD Guardian 0.5.0 [2013-12-14 11:08:30 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\LG Electronics [2013-12-14 10:50:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LG PC Suite [2013-12-14 10:50:30 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Local\LG Electronics [2013-12-14 09:28:18 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\Gholam_Inc [2013-12-14 09:28:14 | 000,000,000 | ---D | C] -- C:\ProgramData\DonationCoder [2013-12-14 09:27:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JottiQ [2013-12-14 09:27:51 | 000,000,000 | ---D | C] -- C:\Program Files\JottiQ [2013-12-12 17:04:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller [2013-12-12 17:04:45 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData [2013-12-12 17:04:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7 [2013-12-12 14:30:31 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL [2013-12-12 14:30:30 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL [2013-12-12 14:30:30 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll [2013-12-12 14:30:28 | 014,631,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll [2013-12-12 14:28:58 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013-12-12 14:28:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll [2013-12-12 14:28:57 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013-12-12 14:28:57 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013-12-12 14:28:57 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013-12-12 14:28:57 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe [2013-12-12 14:28:57 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013-12-12 14:28:57 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll [2013-12-12 14:28:57 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013-12-12 14:28:56 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2013-12-12 14:28:56 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll [2013-12-12 14:28:56 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2013-12-12 14:28:56 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll [2013-12-12 14:28:53 | 001,995,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013-12-12 14:28:53 | 001,928,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013-12-12 14:28:50 | 005,769,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013-12-11 22:08:40 | 001,064,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll [2013-12-11 22:08:40 | 000,955,168 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll [2013-12-11 22:07:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies [2013-12-11 22:02:54 | 001,510,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco64.dll [2013-12-11 22:02:54 | 000,196,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys [2013-12-11 22:02:54 | 000,039,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvad64v.sys [2013-12-11 22:02:54 | 000,031,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll [2013-12-11 22:02:54 | 000,029,984 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvaudcap64v.dll [2013-12-11 22:02:54 | 000,028,960 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll [2013-12-11 22:02:53 | 030,361,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2013-12-11 22:02:53 | 025,257,248 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2013-12-11 22:02:53 | 022,951,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2013-12-11 22:02:53 | 017,560,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2013-12-11 22:02:53 | 011,600,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2013-12-11 22:02:53 | 011,514,624 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2013-12-11 22:02:53 | 009,691,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2013-12-11 22:02:53 | 009,619,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2013-12-11 22:02:53 | 003,132,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2013-12-11 22:02:53 | 003,125,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2013-12-11 22:02:53 | 002,947,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2013-12-11 22:02:53 | 002,747,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2013-12-11 22:02:53 | 001,884,448 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6433182.dll [2013-12-11 22:02:53 | 001,511,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6433182.dll [2013-12-11 22:02:53 | 001,242,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll [2013-12-11 22:02:53 | 000,707,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll [2013-12-11 22:02:53 | 000,657,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll [2013-12-11 22:02:53 | 000,609,568 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll [2013-12-11 22:02:53 | 000,562,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll [2013-12-11 22:02:53 | 000,317,472 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll [2013-12-11 22:02:53 | 000,266,984 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll [2013-12-11 22:02:53 | 000,168,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll [2013-12-11 22:02:53 | 000,141,336 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll [2013-12-11 17:59:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2013-12-11 15:46:40 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll [2013-12-11 15:46:40 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll [2013-12-11 15:46:39 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll [2013-12-11 15:46:39 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll [2013-12-11 15:46:36 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll [2013-12-11 15:45:57 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys [2013-12-11 15:45:57 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrrun.dll [2013-12-11 15:45:57 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscript.exe [2013-12-11 15:45:57 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshom.ocx [2013-12-11 15:45:57 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshom.ocx [2013-12-11 15:45:57 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys [2013-12-11 15:45:56 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrrun.dll [2013-12-11 15:45:56 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscript.exe [2013-12-09 14:38:48 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Local\genienext [2013-12-08 19:31:35 | 000,000,000 | ---D | C] -- C:\Users\Dawid\Documents\Recorder [2013-12-08 19:00:45 | 000,000,000 | ---D | C] -- C:\Users\Dawid\Desktop\vCardOrganizer [2013-12-08 10:19:18 | 000,000,000 | ---D | C] -- C:\Windows\Migration [2013-12-08 10:06:50 | 000,000,000 | ---D | C] -- C:\ProgramData\HotSync [2013-12-08 10:05:47 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Roaming\HotSync [2013-12-08 10:05:42 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Installations [2013-12-08 09:49:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Palm Desktop [2013-12-08 09:06:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Undelete360 [2013-12-08 09:06:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\File Recovery [2013-12-07 23:20:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\vCardOrganizer [2013-12-07 22:14:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VCardExport [2013-12-07 22:14:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VCardExportTool [2013-12-07 19:42:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\LG Electronics [2013-12-07 19:40:13 | 000,000,000 | ---D | C] -- C:\Users\Dawid\.android [2013-12-03 18:37:16 | 000,000,000 | ---D | C] -- C:\ProgramData\firebird [2013-12-03 18:36:07 | 000,000,000 | ---D | C] -- C:\Users\Dawid\AppData\Local\Paraben Corporation [2013-12-03 18:34:15 | 000,376,832 | ---- | C] (MARX CryptoTech LP ) -- C:\Windows\SysWow64\MPIWIN32.DLL [2013-12-03 18:34:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\MARX Shared [2013-12-03 18:33:36 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Temp [2013-12-03 18:33:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Paraben Corporation [2013-12-03 18:32:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Paraben Corporation [2013-12-02 21:27:07 | 675,197,848 | ---- | C] (Microsoft Corporation) -- C:\Users\Dawid\Desktop\ds-demo.exe ========== Files - Modified Within 30 Days ========== [2013-12-23 11:20:29 | 000,032,096 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013-12-23 11:20:29 | 000,032,096 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013-12-23 11:14:31 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013-12-23 11:14:31 | 000,000,494 | ---- | M] () -- C:\Windows\tasks\ParetoLogic Update Version3 Startup Task.job [2013-12-23 11:11:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013-12-23 11:11:58 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\drivers\lvuvc.hs [2013-12-23 11:11:52 | 2131,857,407 | -HS- | M] () -- C:\hiberfil.sys [2013-12-23 11:10:04 | 000,165,376 | ---- | M] () -- C:\Users\Dawid\Desktop\SystemLook_x64.exe [2013-12-23 11:00:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013-12-23 10:44:01 | 000,000,928 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1744233449-2869872091-3771974885-1000UA.job [2013-12-23 10:24:05 | 001,233,962 | ---- | M] () -- C:\Users\Dawid\Desktop\adwcleaner.exe [2013-12-23 10:12:00 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013-12-22 22:44:00 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1744233449-2869872091-3771974885-1000Core.job [2013-12-19 15:05:46 | 003,693,752 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013-12-19 15:05:46 | 001,430,882 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2013-12-19 15:05:46 | 001,290,900 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013-12-19 15:05:46 | 000,544,654 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2013-12-19 15:05:46 | 000,424,572 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013-12-19 15:05:36 | 003,693,752 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013-12-15 12:51:55 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dawid\Desktop\OTL.exe [2013-12-15 10:00:46 | 000,000,126 | ---- | M] () -- C:\Windows\wininit.ini [2013-12-14 23:46:43 | 002,388,400 | ---- | M] () -- C:\Users\Dawid\Desktop\FileViewPro_2013.exe [2013-12-14 14:15:50 | 000,152,145 | ---- | M] () -- C:\Users\Dawid\Desktop\helath dysk.jpg [2013-12-14 14:15:10 | 000,001,098 | ---- | M] () -- C:\Users\Public\Desktop\HDD Guardian.lnk [2013-12-14 11:27:07 | 000,001,110 | ---- | M] () -- C:\Users\Public\Desktop\LG PC Suite.Lnk [2013-12-14 10:53:50 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013-12-14 09:48:55 | 000,001,268 | ---- | M] () -- C:\Users\Dawid\Desktop\JottiQ.lnk [2013-12-12 14:35:09 | 005,148,816 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013-12-11 17:22:11 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013-12-11 17:22:11 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013-12-08 12:07:35 | 000,290,184 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2013-12-08 12:07:35 | 000,290,184 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2013-12-08 11:33:54 | 000,290,184 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2013-12-08 11:33:48 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2013-12-08 10:15:28 | 000,001,474 | ---- | M] () -- C:\Users\Dawid\Desktop\vCardOrganizer.lnk [2013-12-08 10:14:54 | 000,001,456 | ---- | M] () -- C:\Users\Dawid\Desktop\VCardExport.lnk [2013-12-08 10:10:09 | 000,000,000 | ---- | M] () -- C:\Windows\QuickInstall.INI [2013-12-08 09:06:50 | 000,001,218 | ---- | M] () -- C:\Users\Dawid\Desktop\Undelete 360.lnk [2013-12-07 23:04:56 | 000,000,028 | ---- | M] () -- C:\Windows\ODBC.INI [2013-12-07 23:04:54 | 000,038,418 | ---- | M] () -- C:\Users\Dawid\AppData\Roaming\Microsoft Excel 97-2003.ADR [2013-12-04 15:47:37 | 000,001,134 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013-12-03 18:34:15 | 000,376,832 | ---- | M] (MARX CryptoTech LP ) -- C:\Windows\SysWow64\MPIWIN32.DLL [2013-12-02 22:55:47 | 675,197,848 | ---- | M] (Microsoft Corporation) -- C:\Users\Dawid\Desktop\ds-demo.exe [2013-12-01 23:23:49 | 000,000,132 | ---- | M] () -- C:\Users\Dawid\AppData\Roaming\Preferencje Adobe CS5 dla formatu BMP [2013-12-01 23:22:02 | 000,000,132 | ---- | M] () -- C:\Users\Dawid\AppData\Roaming\Preferencje Adobe CS5 dla formatu PNG [2013-11-30 23:45:56 | 000,011,017 | ---- | M] () -- C:\Users\Dawid\Desktop\00001.vcf [2013-11-26 11:18:23 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll [2013-11-26 10:48:07 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2013-11-26 10:46:25 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll [2013-11-26 10:27:54 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2013-11-26 10:21:24 | 000,574,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2013-11-26 10:18:39 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2013-11-26 10:18:09 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe [2013-11-26 10:16:57 | 000,708,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll [2013-11-26 09:57:44 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2013-11-26 09:35:02 | 005,769,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2013-11-26 09:32:08 | 000,440,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2013-11-26 09:28:16 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll [2013-11-26 09:02:16 | 001,995,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2013-11-26 08:32:06 | 001,928,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2013-11-26 07:34:55 | 000,703,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2013-11-26 07:34:27 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2013-11-25 21:16:38 | 000,140,044 | ---- | M] () -- C:\Users\Dawid\Desktop\428x343_product_media_01089.jpg [2013-11-25 21:13:37 | 000,847,260 | ---- | M] () -- C:\Users\Dawid\Desktop\wallpaper-1541836.jpg [2013-11-25 21:11:18 | 000,367,174 | ---- | M] () -- C:\Users\Dawid\Desktop\wallpaper-714209.jpg [2013-11-24 14:51:12 | 000,000,097 | ---- | M] () -- C:\Windows\SysWow64\91207717.sys [2013-11-23 19:26:20 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll [2013-11-23 18:47:34 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll ========== Files Created - No Company Name ========== [2013-12-23 11:10:02 | 000,165,376 | ---- | C] () -- C:\Users\Dawid\Desktop\SystemLook_x64.exe [2013-12-23 10:23:54 | 001,233,962 | ---- | C] () -- C:\Users\Dawid\Desktop\adwcleaner.exe [2013-12-15 13:41:42 | 000,377,856 | ---- | C] () -- C:\Users\Dawid\Desktop\gmer.exe [2013-12-15 10:00:46 | 000,000,126 | ---- | C] () -- C:\Windows\wininit.ini [2013-12-14 23:46:25 | 002,388,400 | ---- | C] () -- C:\Users\Dawid\Desktop\FileViewPro_2013.exe [2013-12-14 14:15:10 | 000,001,098 | ---- | C] () -- C:\Users\Public\Desktop\HDD Guardian.lnk [2013-12-14 14:10:22 | 000,152,145 | ---- | C] () -- C:\Users\Dawid\Desktop\helath dysk.jpg [2013-12-14 10:53:50 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk [2013-12-14 10:52:13 | 000,001,110 | ---- | C] () -- C:\Users\Public\Desktop\LG PC Suite.Lnk [2013-12-14 09:48:55 | 000,001,268 | ---- | C] () -- C:\Users\Dawid\Desktop\JottiQ.lnk [2013-12-08 10:15:28 | 000,001,474 | ---- | C] () -- C:\Users\Dawid\Desktop\vCardOrganizer.lnk [2013-12-08 10:14:54 | 000,001,456 | ---- | C] () -- C:\Users\Dawid\Desktop\VCardExport.lnk [2013-12-08 10:10:09 | 000,000,000 | ---- | C] () -- C:\Windows\QuickInstall.INI [2013-12-08 09:06:50 | 000,001,218 | ---- | C] () -- C:\Users\Dawid\Desktop\Undelete 360.lnk [2013-12-07 23:04:54 | 000,038,418 | ---- | C] () -- C:\Users\Dawid\AppData\Roaming\Microsoft Excel 97-2003.ADR [2013-12-07 23:04:52 | 000,000,028 | ---- | C] () -- C:\Windows\ODBC.INI [2013-12-07 19:59:14 | 000,011,017 | ---- | C] () -- C:\Users\Dawid\Desktop\00001.vcf [2013-12-06 22:11:44 | 004,001,112 | ---- | C] () -- C:\Users\Dawid\Desktop\P1210250.JPG [2013-12-01 23:23:33 | 000,000,132 | ---- | C] () -- C:\Users\Dawid\AppData\Roaming\Preferencje Adobe CS5 dla formatu BMP [2013-12-01 23:20:50 | 000,000,132 | ---- | C] () -- C:\Users\Dawid\AppData\Roaming\Preferencje Adobe CS5 dla formatu PNG [2013-11-25 21:16:38 | 000,140,044 | ---- | C] () -- C:\Users\Dawid\Desktop\428x343_product_media_01089.jpg [2013-11-25 21:13:37 | 000,847,260 | ---- | C] () -- C:\Users\Dawid\Desktop\wallpaper-1541836.jpg [2013-11-25 21:11:17 | 000,367,174 | ---- | C] () -- C:\Users\Dawid\Desktop\wallpaper-714209.jpg [2013-11-03 10:51:36 | 000,000,097 | ---- | C] () -- C:\Windows\SysWow64\91207717.sys [2013-10-19 10:45:51 | 000,000,093 | ---- | C] () -- C:\Users\Dawid\AppData\Local\fusioncache.dat [2013-06-29 22:38:42 | 000,000,153 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [2012-12-07 21:05:48 | 000,000,096 | ---- | C] () -- C:\Windows\BsMobileModel.ini [2012-09-28 20:45:06 | 000,247,296 | ---- | C] () -- C:\Windows\SysWow64\rtvcvfw32.dll [2012-06-19 13:02:17 | 003,123,272 | R--- | C] () -- C:\Windows\SysWow64\pbsvc.exe [2012-01-29 12:21:24 | 000,042,132 | ---- | C] () -- C:\Windows\XF2000.INI [2012-01-24 12:17:42 | 000,217,176 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2012-01-21 14:11:33 | 000,061,800 | ---- | C] () -- C:\Windows\SysWow64\Hidhlp.dll [2012-01-21 14:11:33 | 000,049,152 | ---- | C] () -- C:\Windows\SysWow64\iFT7195.dll [2012-01-21 14:11:33 | 000,025,064 | ---- | C] () -- C:\Windows\SysWow64\drivers\VL807.sys [2012-01-18 07:44:00 | 010,920,984 | ---- | C] () -- C:\Windows\SysWow64\LogiDPP.dll [2012-01-18 07:44:00 | 000,336,408 | ---- | C] () -- C:\Windows\SysWow64\DevManagerCore.dll [2012-01-18 07:44:00 | 000,104,472 | ---- | C] () -- C:\Windows\SysWow64\LogiDPPApp.exe [2011-12-21 13:44:05 | 000,007,645 | ---- | C] () -- C:\Users\Dawid\AppData\Local\resmon.resmoncfg ========== ZeroAccess Check ========== [2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2013-07-26 03:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013-07-26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2013-12-23 09:19:30 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\AIMP3 [2012-02-22 14:36:09 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\AIWI [2011-12-18 16:05:40 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ashampoo [2011-12-30 16:23:42 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ASUS WebStorage [2013-11-03 10:53:11 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Audacity [2013-06-29 23:33:55 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Autodesk [2012-06-02 12:27:08 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\BANDISOFT [2012-01-28 11:06:00 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\com.adobe.DC3Module.AdobeADC [2012-08-30 14:51:25 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\CrystalIdea Software [2012-03-29 16:09:33 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DAEMON Tools Lite [2011-11-29 16:17:38 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DAEMON Tools Pro [2012-10-20 16:48:05 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Dexpot [2011-12-03 14:12:42 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Dropbox [2011-12-17 20:07:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DxO Labs [2012-01-22 19:10:02 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\e-pity [2012-01-14 19:38:48 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ESET [2012-06-09 16:33:26 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\EurekaLog [2012-01-27 18:40:09 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Gadu-Gadu 10 [2012-05-15 16:55:28 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\GanymedeNet [2013-12-14 14:00:04 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\GG [2013-12-14 09:28:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Gholam_Inc [2013-12-14 14:16:57 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\hdd_guardian [2012-05-02 10:34:16 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\HDRsoft [2013-12-08 10:05:47 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\HotSync [2013-12-12 17:04:48 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\IObit [2013-10-20 11:48:19 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ipla [2013-12-14 23:52:49 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\IsolatedStorage [2012-04-06 12:04:43 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Leadertech [2013-12-14 18:02:19 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\LG Electronics [2012-12-10 18:29:23 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nokia [2012-12-10 18:22:52 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nokia Suite [2012-01-01 13:32:38 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nseries [2013-04-14 17:21:31 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nvu [2012-01-24 19:57:45 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\OpenFM [2013-07-16 12:17:32 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Origin [2011-12-17 20:06:35 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PACE Anti-Piracy [2012-01-19 19:15:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PC Suite [2011-12-24 16:59:14 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Personal [2011-12-23 13:50:04 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PunkBuster [2012-04-02 21:38:06 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Rovio [2012-03-09 18:49:56 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\S.A.D [2013-10-18 17:12:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Softativity [2012-01-28 16:46:54 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2012-03-25 17:21:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\SuperUtils.com [2013-12-07 22:26:35 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TeamViewer [2011-12-26 11:45:26 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Tific [2013-12-14 10:35:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TS3Client [2012-04-10 10:23:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ts3overlay [2012-07-08 21:10:24 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TSNotifier [2012-04-18 13:56:06 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TuneUp Software [2012-06-07 17:35:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ubisoft [2011-12-10 15:19:39 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ulead Systems [2012-06-17 13:50:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\WinAVI ========== Purity Check ========== ========== Custom Scans ========== < C:\*.* > [2013-12-23 11:11:52 | 2131,857,407 | -HS- | M] () -- C:\hiberfil.sys [2013-12-08 10:06:52 | 003,806,062 | ---- | M] () -- C:\HuskyInstallerLog.txt [2013-12-23 11:11:54 | 4274,135,039 | -HS- | M] () -- C:\pagefile.sys [2012-02-24 14:31:04 | 000,179,054 | ---- | M] () -- C:\TDSSKiller.2.7.13.0_24.02.2012_14.29.38_log.txt [2012-03-18 12:32:45 | 000,090,740 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_18.03.2012_12.31.31_log.txt [2012-03-18 16:39:16 | 000,000,348 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_18.03.2012_16.39.14_log.txt [2012-02-24 14:35:44 | 000,091,570 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_24.02.2012_14.34.50_log.txt [2012-02-26 13:14:01 | 000,092,604 | ---- | M] () -- C:\TDSSKiller.2.7.14.0_26.02.2012_13.13.18_log.txt [2012-03-18 16:47:27 | 000,090,740 | ---- | M] () -- C:\TDSSKiller.2.7.20.0_18.03.2012_16.46.10_log.txt [2012-06-18 11:10:49 | 000,092,934 | ---- | M] () -- C:\TDSSKiller.2.7.20.0_18.06.2012_12.10.17_log.txt [2009-07-14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT [2009-07-14 06:08:49 | 000,032,604 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2012-04-01 17:42:06 | 000,000,930 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job [2012-04-11 21:02:43 | 000,000,906 | ---- | C] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1744233449-2869872091-3771974885-1000Core.job [2012-04-11 21:02:44 | 000,000,928 | ---- | C] () -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1744233449-2869872091-3771974885-1000UA.job [2012-07-06 16:17:38 | 000,001,042 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [2012-07-06 16:17:38 | 000,001,046 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [2013-10-20 11:41:50 | 000,000,410 | ---- | C] () -- C:\Windows\Tasks\RegCure Pro.job [2013-10-20 11:41:52 | 000,000,494 | ---- | C] () -- C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job < D:\*.* > [2012-01-24 17:23:59 | 000,258,492 | ---- | M] () -- D:\00-00-00.jpg [2012-01-24 17:27:28 | 000,350,024 | ---- | M] () -- D:\00-00-00_et.jpg [2012-01-24 17:23:59 | 000,256,656 | ---- | M] () -- D:\00-00-02.jpg [2013-07-04 16:59:03 | 1557,383,068 | ---- | M] () -- D:\17 urodziny danona przejazd moto noca.avi [2013-07-04 16:59:03 | 018,693,868 | ---- | M] () -- D:\17 urodziny danona przejazd moto noca~2.avi [2013-07-04 16:53:17 | 000,011,264 | ---- | M] () -- D:\17 urodziny danona przejazdza moto.VSP [2011-08-24 20:51:58 | 003,050,163 | ---- | M] () -- D:\2fotkiorygprzerobka_kolaz.jpg [2011-08-24 20:52:54 | 002,784,026 | ---- | M] () -- D:\2fotkiorygprzerobka_kolaz22.jpg [2011-04-02 09:47:29 | 957,273,448 | ---- | M] () -- D:\ACBSP 2011-04-02 10-43-51-23.avi [2011-04-02 09:47:45 | 023,624,872 | ---- | M] () -- D:\ACBSP 2011-04-02 10-47-38-89.avi [2013-11-29 19:06:05 | 000,647,626 | ---- | M] () -- D:\billing (2).txt [2013-12-08 14:40:23 | 000,630,136 | ---- | M] () -- D:\billing (3).txt [2013-12-14 22:55:11 | 000,192,065 | ---- | M] () -- D:\billing (4).txt [2013-10-26 19:12:46 | 000,538,759 | ---- | M] () -- D:\billing.txt [2011-02-27 15:19:06 | 559,481,986 | ---- | M] () -- D:\CoDMW2.wmv [2012-12-17 15:43:30 | 050,040,832 | ---- | M] () -- D:\Credo Prawko B.iso [2011-09-29 19:34:36 | 003,957,706 | ---- | M] () -- D:\crosskolaz1.jpg [2013-03-31 19:02:38 | 004,249,281 | ---- | M] () -- D:\crosskolaz2.jpg [2007-02-01 15:04:06 | 061,236,062 | ---- | M] () -- D:\CRYSpcVIDTRdx10.wmv [2013-04-18 19:59:46 | 000,819,831 | ---- | M] () -- D:\dwe.mp4 [2013-12-12 18:01:19 | 000,011,007 | ---- | M] () -- D:\kontakty 07.12.2013.txt [2013-12-12 21:00:27 | 000,014,558 | ---- | M] () -- D:\kontakty 07.12.2013.txt.docx [2012-03-18 12:30:40 | 000,041,183 | ---- | M] () -- D:\KontaktyDawid_18.03.2012 [2012-02-24 14:26:06 | 000,041,837 | ---- | M] () -- D:\KontaktyggDawid_24.02.2012 [2012-07-04 14:54:27 | 000,041,618 | ---- | M] () -- D:\Kontakty_9207423_04.07.2012 [2012-05-15 18:15:38 | 000,040,493 | ---- | M] () -- D:\Kontakty_9207423_15.05.2012 [2012-07-29 22:16:42 | 000,041,069 | ---- | M] () -- D:\Kontakty_9207423_29.07.2012 [2012-06-17 14:09:04 | 000,927,188 | ---- | M] () -- D:\ludzie, lodożerca.mp3 [2010-02-16 18:53:20 | 000,052,070 | ---- | M] () -- D:\ludzie.amr [2010-02-16 18:53:20 | 000,527,079 | ---- | M] () -- D:\ludzie.mp3 [2012-11-03 00:54:26 | 015,740,409 | ---- | M] () -- D:\MOV00321.3gp [2012-11-05 21:45:27 | 2020,266,143 | ---- | M] () -- D:\Osiemnastka Danona.mp4 [2008-03-05 18:16:30 | 096,558,090 | ---- | M] () -- D:\P1010399.MOV [2008-03-05 18:22:20 | 029,908,310 | ---- | M] () -- D:\P1010403.MOV [2008-03-22 15:03:28 | 067,235,722 | ---- | M] () -- D:\P1020379.MOV [2010-02-10 19:22:24 | 003,646,352 | ---- | M] () -- D:\P1080184.JPG [2010-02-15 11:42:26 | 003,417,346 | ---- | M] () -- D:\P1080190.JPG [2010-02-15 11:50:04 | 003,938,113 | ---- | M] () -- D:\P1080191.JPG [2010-03-22 16:13:06 | 003,575,334 | ---- | M] () -- D:\P1080392.JPG [2010-03-22 16:13:32 | 003,854,951 | ---- | M] () -- D:\P1080393.JPG [2011-11-06 14:03:12 | 003,020,341 | ---- | M] () -- D:\P1160593.JPG [2011-11-07 15:21:22 | 001,950,575 | ---- | M] () -- D:\P1160593_3.jpeg [2011-11-27 16:39:40 | 002,506,626 | ---- | M] () -- D:\P1160754.JPG [2011-11-27 17:19:26 | 000,773,794 | ---- | M] () -- D:\P1160754_2.jpg [2011-11-27 17:37:50 | 000,787,302 | ---- | M] () -- D:\P1160754_3.jpeg [2013-12-01 22:27:03 | 000,990,569 | ---- | M] () -- D:\Picture 28.jpg [2011-10-16 17:13:10 | 000,070,941 | ---- | M] () -- D:\screen320.jpg [2013-04-18 19:11:11 | 000,531,728 | ---- | M] () -- D:\Skok przez okno na lekcji GEOGRAFII.mp4 [2011-11-25 19:37:17 | 268,435,456 | -HS- | M] () -- D:\WinPEpge.sys [2013-05-09 18:17:33 | 180,403,915 | ---- | M] () -- D:\wiosny - przypomnienie.psd [2012-11-08 19:00:32 | 108,882,807 | ---- | M] () -- D:\Wojtas na Paka urodzinach.mp4 [2012-11-08 19:00:58 | 000,008,704 | ---- | M] () -- D:\Wojtas na urodzinach u Paka.VSP < E:\*.* > [2013-11-30 23:45:56 | 000,011,017 | ---- | M] () -- E:\00001.vcf [2011-11-20 15:08:22 | 007,891,551 | ---- | M] (A.I.SOFT,INC.) -- E:\465-USB-WIN7-64-PNP-A-PL(1).EXE [2012-06-05 18:57:45 | 094,039,935 | ---- | M] () -- E:\AC3 - Oficjalny zwiastun z E3 [PL].mp4 [2012-03-29 08:25:54 | 733,779,968 | ---- | M] () -- E:\american pie 6 beta house lektor pl.avi [2012-04-02 21:32:34 | 034,995,726 | ---- | M] () -- E:\Angry Birds Space 1.0.0.THETA www.exsite.pl.rar [2012-06-11 15:14:57 | 729,248,342 | ---- | M] () -- E:\bf3_2012_06_11_16_10_49_808.avi [2012-10-07 12:00:23 | 071,831,387 | ---- | M] () -- E:\BF3_Premium_Guide02_EN_v2.pdf [2012-12-30 12:28:09 | 090,682,025 | ---- | M] () -- E:\BF3_Premium_Guide03_EN.pdf [2013-04-02 13:30:22 | 081,254,005 | ---- | M] () -- E:\BF3_Premium_Guide04_EN.pdf [2013-12-14 22:55:11 | 000,192,065 | ---- | M] () -- E:\billing 05.12-14.12.txt [2013-12-08 14:40:23 | 000,630,136 | ---- | M] () -- E:\billing 09.11-08.12.txt [2013-10-26 19:12:46 | 000,538,759 | ---- | M] () -- E:\billing 27.09-26.10.txt [2013-12-08 17:41:49 | 000,181,408 | ---- | M] () -- E:\billing 29.11-08.12.txt [2013-11-29 19:06:05 | 000,647,626 | ---- | M] () -- E:\billing 31.10-29.11.txt [2011-04-22 23:11:50 | 726,675,276 | ---- | M] () -- E:\cfy-newkids.avi [2011-04-25 23:59:46 | 000,032,634 | ---- | M] () -- E:\cfy-newkids.txt [2011-11-26 09:03:16 | 000,042,101 | ---- | M] () -- E:\Dawidkontakty_26.11.2011 [2012-06-03 12:39:43 | 108,508,108 | ---- | M] () -- E:\F1 2012 Monaco GP Official race edit.mp4 [2012-07-23 18:23:49 | 017,532,198 | ---- | M] () -- E:\iCEnhancer2_1FINAL.zip [2011-07-01 18:45:10 | 000,000,198 | ---- | M] () -- E:\kod corel x4 video.txt [2013-12-12 18:01:19 | 000,011,007 | ---- | M] () -- E:\kontakty 07.12.2013.txt [2011-11-13 10:47:12 | 003,035,825 | ---- | M] () -- E:\livebox_USB_Vista_7_366825985.zip [2011-12-19 20:56:59 | 000,000,528 | R--- | M] () -- E:\MediaID.bin [2012-05-31 15:56:34 | 011,042,294 | ---- | M] () -- E:\Nie pomalujesz ! To je amelinium (Oryginał HD)~1.mp4 [2011-12-26 20:23:50 | 733,983,449 | ---- | M] () -- E:\niekwestionowany 2-2006 lektor(2).avi [2012-11-08 19:04:24 | 727,189,374 | ---- | M] () -- E:\Niekwestionowany 3.avi [2013-12-09 16:26:56 | 000,000,020 | ---- | M] () -- E:\nieznajomy 2.txt [2013-12-02 21:32:12 | 000,000,009 | ---- | M] () -- E:\nieznajomy.txt [2013-01-27 22:31:54 | 740,037,076 | ---- | M] () -- E:\niezniszczalni 2 2012 lektor pl b53(2).avi [2010-03-20 17:11:58 | 068,484,620 | ---- | M] () -- E:\Opel_Omega_B_sam_naprawiam.pdf [2012-11-07 19:30:03 | 155,786,365 | ---- | M] () -- E:\The_Origin_of_Battlefield_1942.pdf [2013-10-12 10:05:17 | 002,823,266 | ---- | M] () -- E:\trasa.png [2012-02-27 16:56:16 | 000,023,055 | ---- | M] () -- E:\video.pass [2012-02-19 20:42:43 | 000,000,025 | ---- | M] () -- E:\wirus zawiecha.bat [2013-01-27 13:36:24 | 734,474,240 | ---- | M] () -- E:\wróg u bram cd 2 [lektor pl].avi [2013-01-10 21:03:40 | 322,319,705 | ---- | M] () -- E:\[nvmovies][archiwum prywatne] tough night 12'_13'.mp4 [1 E:\*.tmp files -> E:\*.tmp -> ] < F:\*.* > < G:\*.* > < H:\*.* > < %ALLUSERSPROFILE%\Application Data\*. > < %APPDATA%\*. > [2012-05-05 12:49:30 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Adobe [2012-04-22 10:11:57 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Adobe Mini Bridge CS5 [2012-01-28 16:46:55 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Adobe Mini Bridge CS5.1 [2013-12-23 09:19:30 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\AIMP3 [2012-02-22 14:36:09 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\AIWI [2013-11-02 14:26:13 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Apple Computer [2011-12-18 16:05:40 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ashampoo [2011-12-30 16:23:42 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ASUS WebStorage [2013-11-03 10:53:11 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Audacity [2013-06-29 23:33:55 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Autodesk [2012-06-02 12:27:08 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\BANDISOFT [2011-11-30 21:43:03 | 000,000,000 | R--D | M] -- C:\Users\Dawid\AppData\Roaming\Brother [2012-01-28 11:06:00 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\com.adobe.DC3Module.AdobeADC [2011-12-10 15:11:42 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Corel [2012-08-30 14:51:25 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\CrystalIdea Software [2012-01-01 18:50:36 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\CyberLink [2012-03-29 16:09:33 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DAEMON Tools Lite [2011-11-29 16:17:38 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DAEMON Tools Pro [2012-10-20 16:48:05 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Dexpot [2011-12-03 14:12:42 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Dropbox [2011-12-17 20:07:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\DxO Labs [2012-01-22 19:10:02 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\e-pity [2012-01-14 19:38:48 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ESET [2012-06-09 16:33:26 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\EurekaLog [2012-01-27 18:40:09 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Gadu-Gadu 10 [2012-05-15 16:55:28 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\GanymedeNet [2013-12-14 14:00:04 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\GG [2013-12-14 09:28:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Gholam_Inc [2013-12-14 14:16:57 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\hdd_guardian [2012-05-02 10:34:16 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\HDRsoft [2013-12-08 10:05:47 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\HotSync [2011-11-29 15:51:59 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Identities [2011-11-29 16:01:56 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\InstallShield [2011-11-29 16:24:50 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Intel Corporation [2013-12-12 17:04:48 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\IObit [2013-10-20 11:48:19 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ipla [2013-12-14 23:52:49 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\IsolatedStorage [2012-04-06 12:04:43 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Leadertech [2013-12-14 18:02:19 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\LG Electronics [2011-11-29 17:46:14 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Macromedia [2013-12-12 19:45:04 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Malwarebytes [2011-04-12 14:32:33 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Media Center Programs [2013-12-23 10:37:25 | 000,000,000 | --SD | M] -- C:\Users\Dawid\AppData\Roaming\Microsoft [2012-06-10 20:05:24 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Mozilla [2012-12-10 18:29:23 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nokia [2012-12-10 18:22:52 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nokia Suite [2012-01-01 13:32:38 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nseries [2011-12-10 15:18:51 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\NVIDIA [2013-04-14 17:21:31 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Nvu [2012-01-24 19:57:45 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\OpenFM [2013-07-16 12:17:32 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Origin [2011-12-17 20:06:35 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PACE Anti-Piracy [2012-01-19 19:15:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PC Suite [2011-12-24 16:59:14 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Personal [2011-12-23 13:50:04 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\PunkBuster [2012-04-02 21:38:06 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Rovio [2012-03-09 18:49:56 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\S.A.D [2011-12-10 19:08:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\SecuROM [2013-12-23 11:22:13 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Skype [2013-10-18 17:12:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Softativity [2012-01-28 16:46:54 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2012-03-25 17:21:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\SuperUtils.com [2013-12-07 22:26:35 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TeamViewer [2011-12-26 11:45:26 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Tific [2013-12-14 10:35:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TS3Client [2012-04-10 10:23:18 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\ts3overlay [2012-07-08 21:10:24 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TSNotifier [2012-04-18 13:56:06 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\TuneUp Software [2012-08-09 17:50:25 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\U3 [2012-06-07 17:35:12 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ubisoft [2011-12-10 15:19:39 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\Ulead Systems [2012-12-17 21:15:03 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\vlc [2012-06-17 13:50:20 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\WinAVI [2011-11-29 18:43:58 | 000,000,000 | ---D | M] -- C:\Users\Dawid\AppData\Roaming\WinRAR < %SYSTEMDRIVE%\*. /mp /s > < MD5 for: AGP440.SYS > [2009-07-14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys [2009-07-14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys [2009-07-14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys < MD5 for: ATAPI.SYS > [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys [2009-07-14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys < MD5 for: BEEP.SYS > [2009-07-14 01:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=16A47CE2DECC9B099349A5F840654746 -- C:\Windows\SysNative\drivers\beep.sys [2009-07-14 01:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=16A47CE2DECC9B099349A5F840654746 -- C:\Windows\winsxs\amd64_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_201592fa214e4f02\beep.sys < MD5 for: EXPLORER.EXE > [2011-02-26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe [2012-02-27 16:40:42 | 000,004,608 | ---- | M] () MD5=181066E31AD20869CF049262A0DB0BC2 -- C:\Users\Dawid\AppData\Local\Xenocode\ApplianceCaches\GameCamV2.exe_v049D98E1\Native\STUBEXE\@SYSTEM@\explorer.exe [2011-02-25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe [2011-02-25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe [2011-02-26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe [2010-11-21 04:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe [2010-11-21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe < MD5 for: NTFS.SYS > [2010-11-21 04:23:55 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=05D78AA5CB5F3F5C31160BDB955D0B7C -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17514_none_04972f2c338b23d4\ntfs.sys [2011-03-11 07:19:20 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=87B104128D4D3BA3C13098BAEBF38082 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.21680_none_04d11b5b4ce521d9\ntfs.sys [2011-03-11 07:41:34 | 001,659,776 | ---- | M] (Microsoft Corporation) MD5=A2F74975097F52A00745F9637451FDD8 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.17577_none_0459508233b9177f\ntfs.sys [2013-04-12 15:16:02 | 001,686,888 | ---- | M] (Microsoft Corporation) MD5=A6AE4551BF8EED09FA3B6FCDF472F3E1 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.22297_none_04cd2f154ce71430\ntfs.sys [2013-04-12 15:45:08 | 001,656,680 | ---- | M] (Microsoft Corporation) MD5=B98F8C6E31CD07B2E6F71F7F648E38C0 -- C:\Windows\SysNative\drivers\ntfs.sys [2013-04-12 15:45:08 | 001,656,680 | ---- | M] (Microsoft Corporation) MD5=B98F8C6E31CD07B2E6F71F7F648E38C0 -- C:\Windows\winsxs\amd64_microsoft-windows-ntfs_31bf3856ad364e35_6.1.7601.18127_none_048f41be3390b0cf\ntfs.sys < MD5 for: SVCHOST.EXE > [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe [2013-04-04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe [2009-07-14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe [2009-07-14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe < MD5 for: USERINIT.EXE > [2010-11-21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe [2010-11-21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe [2010-11-21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe [2010-11-21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe < MD5 for: WINLOGON.EXE > [2010-11-21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe [2010-11-21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe [2013-04-04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe < %systemroot%\system32\ws2_32.dll /md5 > [2010-11-21 04:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\system32\ws2_32.dll < %systemroot%\system32\kernel32.dll /md5 > [2013-08-02 02:50:41 | 001,114,112 | ---- | M] (Microsoft Corporation) MD5=365A5034093AD9E04F433046C4CDF6AB -- C:\Windows\system32\kernel32.dll < %systemroot%\system32\user32.dll /md5 > [2010-11-21 04:24:20 | 000,833,024 | ---- | M] (Microsoft Corporation) MD5=5E0DB2D8B2750543CD2EBB9EA8E6CDD3 -- C:\Windows\system32\user32.dll < %systemroot%\Tasks\*.* /lockedfiles > [2013-12-23 10:39:48 | 000,032,604 | ---- | M] () Unable to obtain MD5 -- C:\Windows\Tasks\SCHEDLGU.TXT ========== Restore Points Found ========== ========== Hard Links - Junction Points - Mount Points - Symbolic Links ========== [C:\Users\All Users] -> -> Unknown point type ========== Alternate Data Streams ========== @Alternate Data Stream - 192 bytes -> C:\Windows:nlsPreferences @Alternate Data Stream - 123 bytes -> C:\Users\All Users\Temp:1C209B86 @Alternate Data Stream - 123 bytes -> C:\ProgramData\Temp:1C209B86 < End of report > [/spoiler] Extras [spoiler]OTL Extras logfile created on: 2013-12-23 11:31:06 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dawid\Desktop 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.16428) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 7,98 Gb Total Physical Memory | 5,48 Gb Available Physical Memory | 68,62% Memory free 15,96 Gb Paging File | 13,08 Gb Available in Paging File | 81,97% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 155,25 Gb Total Space | 14,87 Gb Free Space | 9,58% Space Free | Partition Type: NTFS Drive D: | 155,16 Gb Total Space | 37,42 Gb Free Space | 24,12% Space Free | Partition Type: NTFS Drive E: | 155,25 Gb Total Space | 16,42 Gb Free Space | 10,58% Space Free | Partition Type: NTFS Computer Name: DAWID-KOMPUTER | User Name: Dawid | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 0 "DisableNotifications" = 0 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{067202FA-FB20-4EB7-989C-3859D15A1A09}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{08617120-8914-4034-81A7-07F0E96341F7}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{0A0401B9-7C28-4978-92A1-F1C0DAB985F4}" = rport=137 | protocol=17 | dir=out | app=system | "{0C2D0C78-D8C8-44CF-A1A2-5238B6DA2BC9}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{15026F90-DF7B-4407-8E41-D8144DD71D21}" = lport=139 | protocol=6 | dir=in | app=system | "{1DF44B3D-2AEC-4987-8985-BC178E1854E6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{2056652C-64D8-406A-833D-6C60F4CAD105}" = lport=445 | protocol=6 | dir=in | app=system | "{34F6984E-9E3A-4CA0-AB14-89BFEB84E13B}" = rport=138 | protocol=17 | dir=out | app=system | "{455C4DD2-462D-41A9-B20B-8BB1CF806EC9}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{55D70FE6-9318-4287-97A0-41A1C845C476}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{69ED7FA8-A8E7-4770-A760-869558C00481}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{6E8A9786-641D-4CEB-89C0-A492DAB26BDB}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{72190C1D-61E2-4C6C-88ED-2D2E0504770D}" = lport=50248 | protocol=6 | dir=in | name=autodesk content service | "{7508478E-8008-474A-889D-16DD679EFFDB}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | "{84F9193D-E4CC-48B9-B414-FAEE61C4743E}" = lport=10243 | protocol=6 | dir=in | app=system | "{8E8809CC-569C-4C58-9627-B36CD5BF1BBA}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe | "{940EE33A-50AB-4FD8-B12B-EC21CF159CE4}" = lport=137 | protocol=17 | dir=in | app=system | "{945C2275-D6D1-4012-9150-946901ED2278}" = lport=2869 | protocol=6 | dir=in | app=system | "{95285DB7-1613-446F-8431-25FABB39FD48}" = rport=139 | protocol=6 | dir=out | app=system | "{98F4E4AC-F703-4428-A545-D1E34715706D}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{AC8948A1-102B-4E2F-AB51-3CB8C250D943}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{C3593B60-2EE2-451B-BF16-5A5B5DA71575}" = rport=10243 | protocol=6 | dir=out | app=system | "{D38BC28C-53D5-4F97-A114-10921CE535E5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{E046E66E-2BA8-47E7-B241-14FB35D31792}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{E16E2025-DAC2-4C81-A49F-A1F5AA7A7287}" = rport=445 | protocol=6 | dir=out | app=system | "{EDBC7A31-AD62-4076-8BDB-9C8A88A78691}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{F65A4E17-26ED-4A02-AE9C-D2CE5AF2349B}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{FA020FF2-3D82-4E52-A80C-B12396CD4BCC}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{FF2A64AB-D235-418C-8078-A91BC721692B}" = lport=138 | protocol=17 | dir=in | app=system | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0994B7F4-A440-43F3-A425-F5FB71A3C646}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe | "{11AFD906-3D0C-4529-B2F7-E96D329F44D6}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe | "{123335A9-16A1-4EE1-A5B9-542300803183}" = protocol=6 | dir=in | app=e:\assassin's creed iii\ac3mp.exe | "{1547B707-677E-423F-963C-1BCD7E6ECA49}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe | "{155B3876-96A3-4635-A945-41CBC093DA96}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe | "{17408F70-A0BE-47E6-821B-4C78EF466E5D}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe | "{1923B629-1606-475F-8A22-4543D60282AA}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{1BDBDD68-5592-481E-B245-B6EBE8125D51}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{215B89B1-F0A7-4899-A43E-3CE0336F6896}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 4 beta\bf4.exe | "{268D7F68-795E-4EDF-A3D0-38024AB63B31}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{27792FA4-ED21-426D-8B4A-07B6441308A8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{314633D4-3B56-4999-B903-DE7D7749B1EF}" = protocol=17 | dir=in | app=c:\users\dawid\desktop\autocad_2014_polish_win_32-64bit_wi_pl-pl_setup(1).exe | "{349F502C-C633-4EF7-981D-8680E3DB882F}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe | "{37B31DAF-F223-415F-B3BC-ABFC680CFF05}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{39BEEA53-78C3-4308-9752-8752A39A5F81}" = protocol=6 | dir=in | app=c:\program files (x86)\aibelive\aiwi\aiwi.exe | "{3C275697-CC3D-4E64-8C58-16A28E26897C}" = protocol=6 | dir=in | app=e:\gta iv\rockstar games social club\rgsclauncher.exe | "{3E582B93-96E3-4EBD-88BA-4F2D7136CBFD}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{3E5E3B04-9BB5-4D30-A074-CC4FE5E90979}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{4B514292-0C6E-4BDC-9689-3DD074FCDCC5}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{4D428C51-2BEE-4066-A114-0649CA63A237}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{5329B928-7976-48ED-90ED-2111BD0BC075}" = protocol=17 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesoleilcs.exe | "{54E557F5-7305-41C0-88C4-2CD09C411590}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{557A165E-8394-4329-8B79-54D0E4E1635E}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe | "{57F73904-3BB9-4831-81D1-25D50391FFA8}" = protocol=17 | dir=in | app=e:\gta iv\grand theft auto iv\launchgtaiv.exe | "{5860B855-191C-421A-BE61-3856368EC406}" = protocol=6 | dir=out | app=system | "{5E208D2A-D49F-428F-BEBC-62F13AA8DF47}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{5FC06493-E879-49B3-B8AF-70FB206C8244}" = protocol=6 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesoleilcs.exe | "{69CF4335-01A6-4CED-97E7-F5A2F4A035AD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{6A916F85-06B8-4F93-862B-CBADCBAC8B37}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe | "{6BC4FC3B-0055-451D-B0F1-1CA4354C3430}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe | "{6BD161BB-80B2-419A-84A0-C3DD6A2D53BA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{6FE05B75-77B9-4AC4-B3CF-73127C628181}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{71B4DF4C-E5F5-490B-A14B-528DB99F2FAB}" = protocol=6 | dir=in | app=c:\users\dawid\desktop\autocad_2014_polish_win_32-64bit_wi_pl-pl_setup(1).exe | "{72A68625-7110-4C80-A9B4-3A29FD75A4BD}" = dir=out | app=%programfiles%\adobe\adobe photoshop cs5.1 (64 bit)\photoshop.exe | "{7540C063-5F62-4114-963B-03F2A6B3DCB6}" = protocol=17 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe | "{7B48A4C2-5C13-41CF-9322-08B5F2005FFA}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe | "{7CCB04C3-84DF-48D4-8434-8DEBD736F0CF}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 4 beta\bf4.exe | "{804FCF24-CAF3-4EEE-9855-DC1777C862BA}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{81050B87-9B31-4BBE-862A-A0A0EEE91FA1}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{8241E055-8522-4A75-822E-E2F87CC1DC04}" = protocol=17 | dir=in | app=e:\assassin's creed iii\assassinscreed3.exe | "{82D90AD8-4023-44BE-A944-68D354B1CF37}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{856CCCDB-3FFA-4BC1-BF20-2E4C24F60028}" = protocol=6 | dir=in | app=e:\battlefield 3\battlefield 3\bf3.exe | "{886950DC-2A5F-465E-9FCA-C70D06C22D15}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{8CF69D1F-1869-427D-A08B-1789CAAFF66C}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe | "{8E95545F-A7DE-446B-B533-4FC1598222D3}" = protocol=17 | dir=in | app=e:\gta iv\rockstar games social club\rgsclauncher.exe | "{918512A2-A5F4-46CC-8F48-9FE8DAEAC9F5}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{972012F9-A2E9-4486-A0C6-CD8296E06ACF}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{9D0E9955-E3D3-4631-A4AF-850F55112EA6}" = protocol=6 | dir=in | app=c:\users\dawid\appdata\roaming\dropbox\bin\dropbox.exe | "{9D787760-5FAA-4D20-A5D6-3BD4E110198E}" = protocol=6 | dir=in | app=e:\gta iv\grand theft auto iv\launchgtaiv.exe | "{A3B4FACB-2D8B-4947-BB51-F25C51C631DC}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{A6B25DF3-55A1-4EDA-9A0F-18AA6D2B17AC}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe | "{AA197DE7-2835-45D7-9199-51F1638D6F6F}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | "{AC56FB77-6D62-40F8-89DC-6ED0EE5A99DA}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe | "{ADB91B4E-26E2-4614-A154-E5391E0DE910}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{AF240F08-E43F-4284-9E1A-CDE86C3473A0}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{B08BF8EF-0172-405D-B245-493336237DF9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{B65E9A0B-01F4-4838-822C-32C66F19176E}" = protocol=17 | dir=in | app=e:\battlefield 3\battlefield 3\bf3.exe | "{BDC8AED4-5753-4AF2-A3F1-A6C8EB066D35}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe | "{BE7441FC-7440-4CD5-92FA-88DF3D4A353E}" = protocol=17 | dir=in | app=e:\assassin's creed iii\ac3sp.exe | "{C0CFF26E-8B20-45BE-A1C9-D4772216E522}" = protocol=6 | dir=in | app=e:\assassin's creed iii\assassinscreed3.exe | "{C5A4A066-BCFA-4A67-AAFA-68CE3BE34B3B}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe | "{C5A7FF21-1BC5-438B-8762-06A9C332F396}" = protocol=17 | dir=in | app=e:\assassin's creed iii\ac3mp.exe | "{CE9DC2E1-9A31-48EF-888E-234275640251}" = protocol=17 | dir=in | app=c:\users\dawid\appdata\roaming\dropbox\bin\dropbox.exe | "{D2F6485E-77AD-4731-AD84-40B44E5C7817}" = dir=in | app=c:\users\dawid\appdata\local\facebook\video\skype\facebookvideocalling.exe | "{D45E5968-A01C-4042-9ECB-B57D8510986E}" = protocol=6 | dir=in | app=e:\assassin's creed iii\ac3sp.exe | "{D9A4E547-A2FA-4A47-B920-4A6050FB4DEF}" = dir=in | app=%programfiles%\adobe\adobe photoshop cs5.1 (64 bit)\photoshop.exe | "{DA3FE40C-A3A2-4573-8984-B14BB46C3162}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe | "{DB6C9C1C-1AA6-43EB-9EAE-BDA940C38114}" = protocol=17 | dir=in | app=c:\program files (x86)\aibelive\aiwi\aiwi.exe | "{DBAFEFB0-F5C7-465D-BD9C-D72E7BEE9E38}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{DBCB690B-0D26-4EE8-8CD1-F916EC209E31}" = protocol=6 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesoleil_.exe | "{E23BF599-26BB-4BA7-86D7-38FCD4658758}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe | "{E2D3E600-3393-469C-BD1C-8523FB809ADF}" = protocol=6 | dir=in | app=c:\program files (x86)\logitech\vid hd\vid.exe | "{E506569D-F227-406C-891D-7A8DA3F00761}" = dir=in | app=%userprofile%\desktop\autocad_2014_polish_win_32-64bit_wi_pl-pl_setup(1).exe | "{EA8AB3D3-CE48-4B25-AE67-461BC640B2CA}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe | "{EB0F49C9-F2CE-4318-836B-C6031828F82B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{F24E0B31-0810-4AF2-9C22-CD751D32D5D8}" = protocol=17 | dir=in | app=c:\program files (x86)\ivt corporation\bluesoleil\bluesoleil_.exe | "{F86C79D9-F2E2-4A38-8AF1-C7D7CF073B71}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe | "{FF1FDAEF-4032-4CAF-A83E-90BB02BC901D}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "TCP Query User{20E5E139-277F-4FE3-BD6A-9B8FAEF19923}C:\program files (x86)\wapster\wapster aqq\aqq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\wapster\wapster aqq\aqq.exe | "TCP Query User{31A581B6-EDDF-48A9-9744-9A780BDC3A47}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | "TCP Query User{4E045403-787D-4FA4-9FC1-6EE89CA8F79C}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "TCP Query User{FA13BBD2-A698-4B79-A13D-76D8131243F1}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "TCP Query User{FFD469CF-B67B-4D9E-BEB4-3E4C06DB7E4F}C:\users\dawid\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\dawid\appdata\local\akamai\netsession_win.exe | "UDP Query User{0D693FB2-E70D-4B2C-B438-406442314D17}C:\users\dawid\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\dawid\appdata\local\akamai\netsession_win.exe | "UDP Query User{4A72E3D2-B3EB-4A99-99B1-868AFC15C286}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "UDP Query User{6611A0CD-E5E2-420C-9591-EC9600EA206F}C:\program files (x86)\wapster\wapster aqq\aqq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\wapster\wapster aqq\aqq.exe | "UDP Query User{78DEA512-3DC6-4CDD-8422-12AACEC967A7}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "UDP Query User{AF5EAD91-35EB-4B38-9D64-F1886ACE2EAD}C:\program files (x86)\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\javaw.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{138A4072-9E64-46BD-B5F9-DB2BB395391F}" = LWS VideoEffects "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64 "{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 "{31ABA3F2-0000-1033-0102-111D43815377}" = Autodesk ReCap "{31ABA3F2-0010-1033-0102-111D43815377}" = Autodesk ReCap Language Pack-English "{33B49B5C-2D04-4B8F-BA1F-D22EB8A627B0}" = ESET Smart Security "{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64 "{45F1F774-38B4-3CC3-BAAF-051E6D19E48E}" = Microsoft .NET Framework 4.5.1 (PLK) "{48BB9EBA-C929-4D7E-AF43-21B4427373EB}" = AIWI JoyStick "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2 "{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}" = Autodesk 360 "{5783F2D7-D001-0000-0102-0060B0CE6BBA}" = AutoCAD 2014 — Polski (Polish) "{5783F2D7-D001-0415-1102-0060B0CE6BBA}" = AutoCAD 2014 Language Pack – Polski (Polish) "{5783F2D7-D001-0415-2102-0060B0CE6BBA}" = AutoCAD 2014 — Polski (Polish) "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{669A82E0-43E2-4645-8A2E-1A3DE78F8312}" = Adobe Photoshop Lightroom 4 64-bit "{680EDA59-9266-44B4-949E-0C24F65DFF82}" = Microsoft_VC100_CRT_SP1_x64 "{764384C5-BCA9-307C-9AAC-FD443662686A}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 "{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1 "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8BB347A7-68B5-4E46-9FCC-17F6172BA9E1}" = Share64 "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-0415-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Polish) 2007 "{90BF0360-A1DB-4599-A643-95AB90A52C1E}" = Microsoft_VC90_MFCLOC_x86_x64 "{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64 "{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64 "{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1 "{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045" = Microsoft .NET Framework 4.5.1 (Polski) "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting "{9ED333F8-3E6C-4A38-BAFA-728454121CDA}" = PDF-XChange Viewer "{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64 "{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 331.82 "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 331.82 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 331.82 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.7.1 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Sterownik kontrolera 3D Vision 331.82 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.13.0725 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 9.3.21 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Sterownik dźwięku HD 1.3.26.4 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 9.3.21 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.9 "{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}" = Bonjour "{C7966AB3-A8D9-48D5-B7DF-922674C40098}" = Device Simulation Framework 1.0.1 "{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64 "{CE52672C-A0E9-4450-8875-88A221D5CD50}" = Windows Live ID Sign-in Assistant "{E9FA781F-3E80-4399-825A-AD3E11C28C77}" = MSVCRT110_amd64 "62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F" = Pakiet sterowników systemu Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) "Agnitum Outpost Firewall Pro_is1" = Outpost Firewall Pro 7.5.3 "AutoCAD 2014 — Polski (Polish)" = Autodesk AutoCAD 2014 — Polski (Polish) "Autodesk ReCap" = Autodesk ReCap "AutoHotkey" = AutoHotkey 1.1.13.01 "BurnInTest_is1" = BurnInTest v7.1 Pro "CCleaner" = CCleaner "CyberGhost VPN_is1" = CyberGhost VPN Patch 4.7.19 "JottiQSetup_is1" = JottiQ v1.0.2 "TeamSpeak 3 Client" = TeamSpeak 3 Client "TNod" = TNod User & Password Finder "WinRAR archiver" = WinRAR 4.11 (64-bitowy) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "_{AA902C31-B49D-4608-BCCF-2519EB77722D}" = Corel VideoStudio Pro X4 "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = LG CyberLink YouCam "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86 "{0454BB9A-2A7A-4214-BDFF-937F7A711A44}" = Windows Live Communications Platform "{08610298-29AE-445B-B37D-EFBE05802967}" = LWS Pictures And Video "{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86 "{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1" = MSI Kombustor 2.5.0 "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86 "{15634701-BACE-4449-8B25-1567DA8C9FD3}" = CameraHelperMsi "{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5 "{1651216E-E7AD-4250-92A1-FB8ED61391C9}" = LWS Help_main "{174A3B31-4C43-43DD-866F-73C9DB887B48}" = LWS Twitter "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = LG Power Tools "{21DF0294-6B9D-4741-AB6F-B2ABFBD2387E}" = LWS YouTube Plugin "{266725C1-716F-43AC-BBFB-4201131ED656}" = EasySetPackage "{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25 "{2A078A2B-E2C8-43A3-862C-DC57090AB7C2}" = Movie Maker "{2E6044C5-3495-485F-91BC-46D1B6430E51}" = Windows 7 Logon Background Changer "{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5 "{30F99474-EBE3-4134-A02B-F6CD38CFE243}" = Photo Gallery "{34D3688E-A737-44C5-9E2A-FF73618728E1}" = AI Suite II "{3990E632-42C3-4A25-ADFF-1101E3D6DD47}" = VSClassic "{3B69A712-4CBC-40B1-AE55-0203075FD093}" = Nokia Suite "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology "{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = erLT "{3F6C0B68-F8CC-4F6A-8346-44E247A92CB6}_is1" = Multi AV wersja 1.0.1 "{3FD0C489-0F02-481a-A3E1-9754CD396761}" = Intel® Watchdog Timer Driver (Intel® WDT) "{40BF1E83-20EB-11D8-97C5-0009C5020658}" = LG CyberLink Power2Go "{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4C35E42C-98B4-4A82-87C7-8E73FBDDFBCC}" = AIMP2 MegaPack v6 by UppeD "{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace "{4CCBD1F4-CEEC-452A-9CB8-46564B501315}" = Windows Live UX Platform "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.11 "{51BF3210-B825-4092-8E0D-66D689916E02}" = Autodesk Material Library Base Resolution Image Library 2014 "{5454083B-1308-4485-BF17-1110000B8301}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000B8302}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000B8303}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000B8304}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8302}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8303}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8304}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8305}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8306}" = Grand Theft Auto IV "{5454083B-1308-4485-BF17-1110000D8307}" = Grand Theft Auto IV "{55031CEF-CE75-4A5C-8DEA-60577820529B}" = LG United Mobile Drivers "{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV "{611E417A-82C3-415C-B9C4-7C8DBF02E6D5}" = TS Notifier "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{6179550A-3E7C-499E-BCC9-9E8113E0A285}" = LG ODD Auto Oprogramowanie "{62F029AB-85F2-0000-866A-9FC0DD99DDBC}" = Autodesk Content Service "{62F029AB-85F2-0001-866A-9FC0DD99DDBC}" = Autodesk Content Service Language Pack "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86 "{644E9589-F73A-49A4-AC61-A953B9DE5669}" = SketchUp Import for AutoCAD 2014 "{644F9B19-A462-499C-BF4D-300ABC2A28B1}" = Autodesk Material Library 2014 "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components "{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}" = Windows Live PIMT Platform "{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2 "{6F76EC3C-34B1-436E-97FB-48C58D7BEDCD}" = LWS Gallery "{705B639E-FAAF-40D7-AD58-C445321C7C3F}" = LightScribe System Software "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{71E66D3F-A009-44AB-8784-75E2819BA4BA}" = LWS Motion Detection "{7204BDEE-1A48-4D95-A964-44A9250B439E}" = Facebook Messenger 2.1.4814.0 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{7390478C-8581-415E-92E9-2997D9306B81}" = PC Connectivity Solution "{7595CAD2-87D0-4D01-AC02-3FDD3A891BB8}" = Galeria fotografii "{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™ "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX "{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime "{7C4F2AE9-4D57-4A5D-B20A-B52DC24EC953}_is1" = Counter-Strike 1.6 v40 "{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable "{83C8FA3C-F4EA-46C4-8392-D3CE353738D6}" = LWS Launcher "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7 "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher "{8937D274-C281-42E4-8CDB-A0B2DF979189}" = LWS Webcam Software "{8A470330-70B2-49AD-86AF-79885EF9898A}" = FARO LS 1.1.501.0 (64bit) "{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}" = Windows Live SOXE Definitions "{8AA0316E-A4E1-4E10-9DAA-46E0C70A2F2A}" = Machinery DEMO "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110 "{8F196892-666A-4A40-8587-6AE38F78A5C2}" = FARO LS 1.1.501.0 "{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007 "{90120000-0015-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007 "{90120000-0019-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007 "{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{9CC96D78-9E1D-46E0-AF4D-3EB440CD4619}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-002A-0415-1000-0000000FF1CE}_ENTERPRISE_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007 "{90120000-0044-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007 "{90120000-00BA-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86 "{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI "{99E66BC9-E4B6-485F-ABFC-31EFCE36DFDF}" = Microsoft Keyboard Layout Creator 1.4 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9D15E813-0C26-41E7-ABC5-3EB06FF1B3CF}" = Assassin's Creed(R) III v1.04 "{9DAEA76B-E50F-4272-A595-0124E826553D}" = LWS WLM Plugin "{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 "{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}" = Brother MFL-Pro Suite "{A567895C-1D23-48ED-BE83-FB3ED7D30442}" = IPM_VS_Pro "{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver "{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5 "{A7E73DE5-E5FD-4923-9D88-E09ECD1F3545}" = Podstawowe programy Windows Live "{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support "{A864167F-970B-4673-8FD2-AA1FD7AF3C1C}" = DxO Optics Pro 7 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AA82E5EF-70C2-41CB-8432-309078304CBB}" = Photo Common "{AA902C31-B49D-4608-BCCF-2519EB77722D}" = ICA "{ADD5DB49-72CF-11D8-9D75-000129760D75}" = LG CyberLink PowerBackup "{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86 "{B0125BEB-6731-43FA-88DA-B64D7BD3AD2D}" = VSPro "{B0DC2DA9-2AF9-422A-88E0-1B84E0F65DB5}" = Speed-Link SL-6535 USB Pad "{B3E74336-F275-40D9-BFAB-2FCB765609F5}" = AIWI "{B4008666-3C27-4B67-9D89-80B4E31FA685}" = Paraben's Device Seizure "{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86 "{B84ECBE1-6ED5-4E86-B4AB-DF46D342411F}" = Share "{B87FAC24-973D-4A4F-AFC4-555FB95B32DB}" = PureHD "{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}" = SmartSound Common Data "{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287 "{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo "{C070121A-C8C5-4D52-9A7D-D240631BD433}" = Autodesk App Manager "{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}" = Windows Live Installer "{C4778408-3268-45CE-AE15-772D1739A1F1}" = VIO "{C547F361-5750-4CD1-9FB6-BC93827CB6C1}" = RegCure Pro "{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LG CyberLink LabelPrint "{C6017EEA-9E51-4129-84BA-EFA9520E69D8}" = Common "{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}" = Windows Live Photo Common "{CC4C7E9B-4B26-4D8D-8076-40CF708A9FA4}" = Contents "{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86 "{CFAB3721-549D-4827-A4E8-7F90192114AB}" = Battlefield 4™ Beta "{D07F85DE-22F1-4FB4-B3D1-402FD22C4870}" = DeviceIO "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86 "{D40EB009-0499-459c-A8AF-C9C110766215}" = Logitech Webcam Software "{D68897FC-7E8D-4849-819A-726B2489713C}" = ISCOM "{D8D9BCF5-0F5F-4D3F-8427-64B7632F93BE}" = Setup "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86 "{DADC7AB0-E554-4705-9F6A-83EA82ED708E}" = Realtek Ethernet Diagnostic Utility "{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series "{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86 "{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}" = Asmedia ASM104x USB 3.0 Host Controller Driver "{E9275D69-7DEC-430B-BA1B-F74DFF9B0B43}" = Disk Unlocker "{ED6C77F9-4D7E-447C-9EC0-9A212D075535}" = Movie Maker "{EED027B7-0DB6-404B-8F45-6DFEE34A0441}" = LWS Video Mask Maker "{F09DD76B-D3D3-4558-B5BC-F1EEA6E00162}" = Windows Live UX Platform Language Pack "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F40963EC-223E-4E65-8CF0-A60E9A227245}_is1" = Prawo Jazdy ABCDT - egzamin wewnętrzny "{F67EF53C-11BF-4EC8-B025-EC85CABA50B5}" = HDD Guardian 0.5.0 "{F732FEDA-7713-4428-934B-EF83B8DD65D0}" = Autodesk Featured Apps "{FA1BD6B7-9740-4C9A-81EA-42D5196FA592}" = Angry Birds Space "{FC274982-5AAD-4C20-848D-A9D60D18D757}_is1" = ScanMyReg 2.02 "{FE7C0B3D-50B9-4951-BE78-A321CBF86552}" = Windows Live SOXE "{FF167195-9EE4-46C0-8CD7-FBA3457E88AB}" = LWS Facebook "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "Advanced SystemCare 7_is1" = Advanced SystemCare 7 "Afterburner" = MSI Afterburner 2.3.1 "AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v2.30 "AIMP3" = AIMP3 "AQQ" = WapSter AQQ "Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v10.0.15 "Ashampoo Internet Accelerator 3_is1" = Ashampoo Internet Accelerator 3 v.3.20 "Ashampoo Snap 4_is1" = Ashampoo Snap 4 v.4.3.0 "ASUS WebStorage" = ASUS WebStorage "Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.13 (Unicode) "Audacity_is1" = Audacity 2.0.4 "Autodesk Content Service" = Autodesk Content Service "Battlelog Web Plugins" = Battlelog Web Plugins "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player "DAEMON Tools Lite" = DAEMON Tools Lite "DFX for AIMP2 1.2.5" = DFX for AIMP2 1.2.5 "easyHDR_BASIC_2" = easyHDR BASIC 2 "ENTERPRISE" = Microsoft Office Enterprise 2007 "ESN Sonar-0.70.4" = ESN Sonar "ExifCleaner" = ExifCleaner 1.7 "FormatFactory" = FormatFactory 3.0.1 "FotoSender_is1" = FotoSender 3.0 "Fraps" = Fraps (remove only) "GameDesire-Pool & Snooker" = GameDesire-Pool & Snooker "HD Tune Pro_is1" = HD Tune Pro 3.00 "Image Grabber II" = Image Grabber II "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = LG CyberLink YouCam "InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = LG Power Tools "InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5 "InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = LG CyberLink Power2Go "InstallShield_{B3E74336-F275-40D9-BFAB-2FCB765609F5}" = AIWI "InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}" = SmartSound Common Data "InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LG CyberLink LabelPrint "IObit Malware Fighter_is1" = IObit Malware Fighter "IObit Surfing Protection_is1" = Surfing Protection "IObitUninstall" = IObit Uninstaller "ipla" = ipla 2.6.2 "JDownloader" = JDownloader "jv16 PowerTools_is1" = jv16 PowerTools 1.3 "KLiteCodecPack_is1" = K-Lite Codec Pack 10.0.5 Full "Komputer Świat Plus_is1" = Komputer Świat Plus "LAME for Audacity_is1" = LAME v3.98.2 for Audacity "LAME_is1" = LAME v3.99.3 (for Windows) "LG PC Suite" = LG PC Suite "Lightning_is1" = Lightning "Liveupdate4_is1" = Liveupdate4 "Logitech Vid" = Logitech Vid HD "Łatka polonizacyjna GTA IV v1.0" = Łatka polonizacyjna GTA IV v1.0 "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.75.0.1300 "Mozilla Firefox 24.0 (x86 pl)" = Mozilla Firefox 24.0 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "Nokia Suite" = Nokia Suite "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "Nvu_is1" = Nvu 1.0 "OCCT" = OCCT 4.2.0 "Origin" = Origin "PC Alert 4" = PC Alert 4 "PowerISO" = PowerISO "Protected Folder_is1" = Protected Folder "PunkBusterSvc" = PunkBuster Services "Silver Efex Pro 2" = Silver Efex Pro 2 "SM7192" = USB Cobra Joystick V4 "SystemRequirementsLab" = System Requirements Lab "TeamViewer 8" = TeamViewer 8 "The KMPlayer" = The KMPlayer (remove only) "The Mighty Quest For Epic Loot_is1" = The Mighty Quest For Epic Loot wersja 1.210372 "Undelete 360_is1" = Undelete 360 "Uninstall Tool_is1" = Uninstall Tool "Uplay" = Uplay "VCardExport_is1" = VCardExportTool "Visual Watermark_is1" = Visual Watermark 2.9.30 "Windows Media Encoder 9" = Windows Media Encoder 9 Series "WinLiveSuite" = Podstawowe programy Windows Live "WinRAR archiver" = WinRAR archiver ========== HKEY_USERS Uninstall List ========== [HKEY_USERS\S-1-5-21-1744233449-2869872091-3771974885-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Akamai" = Akamai NetSession Interface "Dexpot" = Dexpot "Dropbox" = Dropbox "Flux" = f.lux "GG" = GG "KeyTurion" = KeyTurion version 2.8 "Polska lokalizacja Lightroom 4" = Polska lokalizacja Lightroom 4 ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 2013-12-23 05:40:18 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-23 05:41:19 | Computer Name = Dawid-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-12-23 05:52:38 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-23 05:52:38 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-23 05:53:42 | Computer Name = Dawid-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-12-23 06:05:46 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-23 06:05:46 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-23 06:06:50 | Computer Name = Dawid-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-12-23 06:12:38 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-23 06:12:38 | Computer Name = Dawid-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2013-12-23 06:13:43 | Computer Name = Dawid-Komputer | Source = WinMgmt | ID = 10 Description = [ Media Center Events ] Error - 2012-01-10 12:31:51 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 17:31:51 - Błąd podczas nawiązywania połączenia z Internetem. 17:31:51 - Nie można skontaktować się z serwerem.. Error - 2012-01-10 12:31:59 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 17:31:56 - Błąd podczas nawiązywania połączenia z Internetem. 17:31:56 - Nie można skontaktować się z serwerem.. Error - 2012-01-11 13:15:09 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 18:15:09 - Błąd podczas nawiązywania połączenia z Internetem. 18:15:09 - Nie można skontaktować się z serwerem.. Error - 2012-01-11 13:15:17 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 18:15:14 - Błąd podczas nawiązywania połączenia z Internetem. 18:15:14 - Nie można skontaktować się z serwerem.. Error - 2012-01-12 12:01:15 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 17:01:15 - Błąd podczas nawiązywania połączenia z Internetem. 17:01:15 - Nie można skontaktować się z serwerem.. Error - 2012-01-12 12:01:24 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 17:01:20 - Błąd podczas nawiązywania połączenia z Internetem. 17:01:20 - Nie można skontaktować się z serwerem.. Error - 2012-01-13 11:45:32 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 16:45:32 - Błąd podczas nawiązywania połączenia z Internetem. 16:45:32 - Nie można skontaktować się z serwerem.. Error - 2012-01-13 11:45:42 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 16:45:37 - Błąd podczas nawiązywania połączenia z Internetem. 16:45:37 - Nie można skontaktować się z serwerem.. Error - 2012-01-14 10:05:39 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 15:05:39 - Błąd podczas nawiązywania połączenia z Internetem. 15:05:39 - Nie można skontaktować się z serwerem.. Error - 2012-01-14 10:05:51 | Computer Name = Dawid-Komputer | Source = MCUpdate | ID = 0 Description = 15:05:47 - Błąd podczas nawiązywania połączenia z Internetem. 15:05:47 - Nie można skontaktować się z serwerem.. [ System Events ] Error - 2013-12-23 04:36:39 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Dostawca grupy domowej zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 Error - 2013-12-23 05:40:08 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: BTHidMgr Error - 2013-12-23 05:42:46 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Dostawca grupy domowej zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 Error - 2013-12-23 05:46:46 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7034 Description = Usługa Advanced SystemCare Service 7 niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2013-12-23 05:52:25 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: BTHidMgr Error - 2013-12-23 05:57:10 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Dostawca grupy domowej zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 Error - 2013-12-23 06:05:32 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: BTHidMgr Error - 2013-12-23 06:07:37 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Dostawca grupy domowej zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 Error - 2013-12-23 06:12:24 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: BTHidMgr Error - 2013-12-23 06:14:51 | Computer Name = Dawid-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Dostawca grupy domowej zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1058 < End of report > [/spoiler] TDSSKiller - yyy, nie pamiętam :/ ale całkiem możlwe PUP - polecicie jakiś program do tego typu zagrożeń ?
Dawid_Dj komentarz 26 grudnia 2013 Autor komentarz 26 grudnia 2013 Przypomnę jeszcze ze jest priblem z wylaczeniem komputera. Wszystko idzie jak po masle ale zasilanie na koncu musze sam odlaczyc. Podobnie z opcja "uruchom ponownie". Ekran zgasnie ale musze go zresetowac.
Natsuki Kuga komentarz 28 grudnia 2013 komentarz 28 grudnia 2013 Tak, pobieram przez ich asystenta, bo inaczej się nie da. To znaczy ze w tym asystencie są wirusy ? Nie powinienem już pobierać z dobreprogramy.pl ? Pokażę ci screen: To jest strona przykładowego programu. Ty pobierasz ją zielonym przyciskiem po lewej. Wystarczy kliknąć szary przycisk po lewej stronie, by obejść pobieranie poprzez asystenta. Pozbywasz się przy okazji niepotrzebnego syfu. ;) TDSSKiller - yyy, nie pamiętam :/ ale całkiem możlwe W takim razie pokaż zawartość tych raportów, które są na partycji C. :) PUP - polecicie jakiś program do tego typu zagrożeń ? PUPy można usunąć albo poprzez AdwCleanera (chociaż nie wykrywa wszystkiego), albo MBAMem. Zwykły antywirus też coś wykryje, ale tamta dwójka puszczona jeden po drugim jest najskuteczniejsza. Te przycinki nadal występują czy teraz jest tylko problem z wyłączeniem komputera?
Dawid_Dj komentarz 29 grudnia 2013 Autor komentarz 29 grudnia 2013 Przycinke i zawieche mam nadal. Tak to już jest gdy nie ma sie oczu dookoła głowy... (dobreprogramy.pl) TDSSKiller.2.7.13.0_24.02.2012_14.29.38_log [spoiler]14:29:38.0947 4024 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14 14:29:40.0959 4024 ============================================================ 14:29:40.0959 4024 Current date / time: 2012/02/24 14:29:40.0959 14:29:40.0959 4024 SystemInfo: 14:29:40.0959 4024 14:29:40.0959 4024 OS Version: 6.1.7601 ServicePack: 1.0 14:29:40.0959 4024 Product type: Workstation 14:29:40.0959 4024 ComputerName: DAWID-KOMPUTER 14:29:40.0959 4024 UserName: Dawid 14:29:40.0959 4024 Windows directory: C:\Windows 14:29:40.0959 4024 System windows directory: C:\Windows 14:29:40.0959 4024 Running under WOW64 14:29:40.0959 4024 Processor architecture: Intel x64 14:29:40.0959 4024 Number of processors: 4 14:29:40.0959 4024 Page size: 0x1000 14:29:40.0959 4024 Boot type: Normal boot 14:29:40.0959 4024 ============================================================ 14:29:41.0365 4024 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 14:29:41.0365 4024 \Device\Harddisk0\DR0: 14:29:41.0365 4024 MBR used 14:29:41.0365 4024 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 14:29:41.0365 4024 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1364F800 14:29:41.0365 4024 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13682000, BlocksNum 0x13682000 14:29:41.0365 4024 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x26D04000, BlocksNum 0x13681800 14:29:41.0536 4024 Initialize success 14:29:41.0536 4024 ============================================================ 14:29:45.0265 4532 ============================================================ 14:29:45.0265 4532 Scan started 14:29:45.0265 4532 Mode: Manual; 14:29:45.0265 4532 ============================================================ 14:29:45.0639 4532 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 14:29:45.0670 4532 1394ohci - ok 14:29:45.0701 4532 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 14:29:45.0701 4532 ACPI - ok 14:29:45.0717 4532 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 14:29:45.0733 4532 AcpiPmi - ok 14:29:45.0795 4532 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys 14:29:45.0842 4532 adp94xx - ok 14:29:45.0873 4532 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys 14:29:45.0904 4532 adpahci - ok 14:29:45.0951 4532 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys 14:29:45.0967 4532 adpu320 - ok 14:29:46.0060 4532 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys 14:29:46.0091 4532 AFD - ok 14:29:46.0123 4532 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 14:29:46.0138 4532 agp440 - ok 14:29:46.0169 4532 AiChargerPlus (8b6625d53c18774f0102f690e285b5e8) C:\Windows\system32\DRIVERS\AiChargerPlus.sys 14:29:46.0201 4532 AiChargerPlus - ok 14:29:46.0216 4532 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 14:29:46.0232 4532 aliide - ok 14:29:46.0247 4532 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 14:29:46.0263 4532 amdide - ok 14:29:46.0279 4532 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys 14:29:46.0294 4532 AmdK8 - ok 14:29:46.0310 4532 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys 14:29:46.0341 4532 AmdPPM - ok 14:29:46.0357 4532 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 14:29:46.0403 4532 amdsata - ok 14:29:46.0450 4532 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys 14:29:46.0466 4532 amdsbs - ok 14:29:46.0481 4532 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 14:29:46.0497 4532 amdxata - ok 14:29:46.0544 4532 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 14:29:46.0559 4532 AppID - ok 14:29:46.0622 4532 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys 14:29:46.0637 4532 arc - ok 14:29:46.0653 4532 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys 14:29:46.0653 4532 arcsas - ok 14:29:46.0793 4532 ASFLTDrv.sys (2921131f9a111fd6c6d2c5e1e5b6b75c) C:\Program Files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys 14:29:46.0809 4532 ASFLTDrv.sys - ok 14:29:46.0809 4532 AsIO - ok 14:29:46.0840 4532 asmthub3 (954950d11ada98ac1b7ee3c770e4622c) C:\Windows\system32\DRIVERS\asmthub3.sys 14:29:46.0840 4532 asmthub3 - ok 14:29:46.0887 4532 asmtxhci (01dbb05db1db95803e3c9f2b49afe79c) C:\Windows\system32\DRIVERS\asmtxhci.sys 14:29:46.0887 4532 asmtxhci - ok 14:29:46.0918 4532 AsUpIO - ok 14:29:46.0949 4532 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 14:29:46.0949 4532 AsyncMac - ok 14:29:46.0996 4532 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 14:29:47.0012 4532 atapi - ok 14:29:47.0074 4532 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys 14:29:47.0074 4532 b06bdrv - ok 14:29:47.0105 4532 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 14:29:47.0137 4532 b57nd60a - ok 14:29:47.0152 4532 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 14:29:47.0152 4532 Beep - ok 14:29:47.0215 4532 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 14:29:47.0230 4532 blbdrive - ok 14:29:47.0246 4532 BlueletAudio - ok 14:29:47.0277 4532 BlueletSCOAudio - ok 14:29:47.0324 4532 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 14:29:47.0324 4532 bowser - ok 14:29:47.0371 4532 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys 14:29:47.0402 4532 BrFiltLo - ok 14:29:47.0417 4532 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys 14:29:47.0417 4532 BrFiltUp - ok 14:29:47.0449 4532 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 14:29:47.0464 4532 Brserid - ok 14:29:47.0495 4532 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 14:29:47.0511 4532 BrSerWdm - ok 14:29:47.0527 4532 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 14:29:47.0542 4532 BrUsbMdm - ok 14:29:47.0558 4532 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 14:29:47.0558 4532 BrUsbSer - ok 14:29:47.0573 4532 BT - ok 14:29:47.0636 4532 Btcsrusb (e0c1e6b70e0c626b37e643b799e434f3) C:\Windows\system32\Drivers\btcusb.sys 14:29:47.0636 4532 Btcsrusb - ok 14:29:47.0683 4532 BthAvrcp (832b121e4532919cc49f2438f1dcaa21) C:\Windows\system32\DRIVERS\BthAvrcp.sys 14:29:47.0683 4532 BthAvrcp - ok 14:29:47.0745 4532 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys 14:29:47.0761 4532 BthEnum - ok 14:29:47.0761 4532 BTHidEnum - ok 14:29:47.0792 4532 BTHidMgr - ok 14:29:47.0823 4532 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 14:29:47.0839 4532 BTHMODEM - ok 14:29:47.0885 4532 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys 14:29:47.0885 4532 BthPan - ok 14:29:47.0932 4532 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys 14:29:47.0948 4532 BTHPORT - ok 14:29:47.0995 4532 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys 14:29:48.0010 4532 BTHUSB - ok 14:29:48.0041 4532 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 14:29:48.0041 4532 cdfs - ok 14:29:48.0088 4532 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys 14:29:48.0104 4532 cdrom - ok 14:29:48.0135 4532 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys 14:29:48.0135 4532 circlass - ok 14:29:48.0166 4532 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 14:29:48.0213 4532 CLFS - ok 14:29:48.0260 4532 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys 14:29:48.0275 4532 CmBatt - ok 14:29:48.0291 4532 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 14:29:48.0307 4532 cmdide - ok 14:29:48.0338 4532 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys 14:29:48.0338 4532 CNG - ok 14:29:48.0385 4532 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys 14:29:48.0385 4532 Compbatt - ok 14:29:48.0416 4532 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys 14:29:48.0416 4532 CompositeBus - ok 14:29:48.0431 4532 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys 14:29:48.0431 4532 crcdisk - ok 14:29:48.0478 4532 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys 14:29:48.0478 4532 CSC - ok 14:29:48.0525 4532 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 14:29:48.0525 4532 DfsC - ok 14:29:48.0603 4532 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 14:29:48.0634 4532 discache - ok 14:29:48.0665 4532 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys 14:29:48.0681 4532 Disk - ok 14:29:48.0728 4532 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys 14:29:48.0743 4532 dmvsc - ok 14:29:48.0790 4532 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 14:29:48.0806 4532 drmkaud - ok 14:29:48.0868 4532 DSFKSVCS (4c639a503201e3f9fb001b840b934a3f) C:\Windows\system32\DRIVERS\dsfksvcs.sys 14:29:48.0884 4532 DSFKSVCS - ok 14:29:48.0915 4532 dsfroot (13699ba0680d8eeef67945f5a405610c) C:\Windows\system32\DRIVERS\dsfroot.sys 14:29:48.0915 4532 dsfroot - ok 14:29:48.0946 4532 dtsoftbus01 (400582b09e0bb557d0ec28a945150eeb) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 14:29:48.0946 4532 dtsoftbus01 - ok 14:29:49.0009 4532 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 14:29:49.0009 4532 DXGKrnl - ok 14:29:49.0055 4532 eamonm (aca3fe4f18a945b7bf2618a79f6f670b) C:\Windows\system32\DRIVERS\eamonm.sys 14:29:49.0071 4532 eamonm - ok 14:29:49.0180 4532 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys 14:29:49.0274 4532 ebdrv - ok 14:29:49.0336 4532 ehdrv (6672438bdcbfd87250d22112d458294d) C:\Windows\system32\DRIVERS\ehdrv.sys 14:29:49.0367 4532 ehdrv - ok 14:29:49.0445 4532 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys 14:29:49.0445 4532 elxstor - ok 14:29:49.0477 4532 epfw (443805b5b11c859ac8ca35297648ff0c) C:\Windows\system32\DRIVERS\epfw.sys 14:29:49.0492 4532 epfw - ok 14:29:49.0508 4532 Epfwndis (66e61bc6c9f519a99275eb0f0e530bf4) C:\Windows\system32\DRIVERS\Epfwndis.sys 14:29:49.0523 4532 Epfwndis - ok 14:29:49.0555 4532 epfwwfp (f72c97f3d34ea5ec919c73e3901266bb) C:\Windows\system32\DRIVERS\epfwwfp.sys 14:29:49.0570 4532 epfwwfp - ok 14:29:49.0586 4532 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 14:29:49.0601 4532 ErrDev - ok 14:29:49.0617 4532 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 14:29:49.0648 4532 exfat - ok 14:29:49.0648 4532 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 14:29:49.0664 4532 fastfat - ok 14:29:49.0711 4532 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys 14:29:49.0726 4532 fdc - ok 14:29:49.0757 4532 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 14:29:49.0757 4532 FileInfo - ok 14:29:49.0789 4532 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 14:29:49.0804 4532 Filetrace - ok 14:29:49.0868 4532 FLASHSYS (5b314cc7640d091de8f3bc822490da28) C:\Program Files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys 14:29:49.0883 4532 FLASHSYS - ok 14:29:49.0883 4532 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys 14:29:49.0883 4532 flpydisk - ok 14:29:49.0899 4532 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 14:29:49.0914 4532 FltMgr - ok 14:29:49.0946 4532 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 14:29:49.0946 4532 FsDepends - ok 14:29:49.0961 4532 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys 14:29:49.0961 4532 Fs_Rec - ok 14:29:49.0992 4532 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 14:29:50.0008 4532 fvevol - ok 14:29:50.0024 4532 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys 14:29:50.0039 4532 gagp30kx - ok 14:29:50.0086 4532 GWHid (5c2cd67845d77e3bc968ef84e1090754) C:\Windows\system32\DRIVERS\GWHid.sys 14:29:50.0102 4532 GWHid - ok 14:29:50.0102 4532 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 14:29:50.0102 4532 hcw85cir - ok 14:29:50.0180 4532 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 14:29:50.0180 4532 HdAudAddService - ok 14:29:50.0211 4532 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys 14:29:50.0211 4532 HDAudBus - ok 14:29:50.0226 4532 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys 14:29:50.0242 4532 HidBatt - ok 14:29:50.0258 4532 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys 14:29:50.0273 4532 HidBth - ok 14:29:50.0304 4532 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys 14:29:50.0320 4532 HidIr - ok 14:29:50.0351 4532 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys 14:29:50.0367 4532 HidUsb - ok 14:29:50.0398 4532 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 14:29:50.0398 4532 HpSAMD - ok 14:29:50.0414 4532 HRMACPI - ok 14:29:50.0460 4532 HRMCFGSPC (1696a06c0ef55dfcd540b32556d3819a) C:\Windows\system32\DRIVERS\HRMCFGSPC.SYS 14:29:50.0460 4532 HRMCFGSPC - ok 14:29:50.0476 4532 HRMINTS (f58f8f2a11ce4a695c9333c416d0321f) C:\Windows\system32\DRIVERS\HRMINTS.SYS 14:29:50.0507 4532 HRMINTS - ok 14:29:50.0507 4532 HRMPORTS (6bc42dc759d42a4edca7452b4d08d870) C:\Windows\system32\DRIVERS\HRMPORTS.SYS 14:29:50.0523 4532 HRMPORTS - ok 14:29:50.0538 4532 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 14:29:50.0554 4532 HTTP - ok 14:29:50.0570 4532 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 14:29:50.0585 4532 hwpolicy - ok 14:29:50.0601 4532 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys 14:29:50.0616 4532 i8042prt - ok 14:29:50.0648 4532 iaStor (d1e30259353e7d8d1b713a76cddeb88b) C:\Windows\system32\DRIVERS\iaStor.sys 14:29:50.0648 4532 iaStor - ok 14:29:50.0710 4532 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 14:29:50.0726 4532 iaStorV - ok 14:29:50.0772 4532 ICCWDT (c1010add3ddae1196ed21057af7b2aae) C:\Windows\system32\DRIVERS\ICCWDT.sys 14:29:50.0788 4532 ICCWDT - ok 14:29:50.0804 4532 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys 14:29:50.0804 4532 iirsp - ok 14:29:50.0991 4532 IntcAzAudAddService (589b94a9b73a0e819ff873743a480834) C:\Windows\system32\drivers\RTKVHD64.sys 14:29:51.0006 4532 IntcAzAudAddService - ok 14:29:51.0038 4532 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 14:29:51.0038 4532 intelide - ok 14:29:51.0084 4532 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 14:29:51.0100 4532 intelppm - ok 14:29:51.0116 4532 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 14:29:51.0116 4532 IpFilterDriver - ok 14:29:51.0162 4532 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 14:29:51.0162 4532 IPMIDRV - ok 14:29:51.0178 4532 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 14:29:51.0209 4532 IPNAT - ok 14:29:51.0225 4532 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 14:29:51.0240 4532 IRENUM - ok 14:29:51.0256 4532 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 14:29:51.0272 4532 isapnp - ok 14:29:51.0303 4532 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 14:29:51.0318 4532 iScsiPrt - ok 14:29:51.0334 4532 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 14:29:51.0334 4532 kbdclass - ok 14:29:51.0365 4532 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys 14:29:51.0365 4532 kbdhid - ok 14:29:51.0396 4532 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys 14:29:51.0412 4532 KSecDD - ok 14:29:51.0428 4532 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys 14:29:51.0428 4532 KSecPkg - ok 14:29:51.0443 4532 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 14:29:51.0459 4532 ksthunk - ok 14:29:51.0506 4532 LGDDCDevice - ok 14:29:51.0506 4532 LGII2CDevice - ok 14:29:51.0537 4532 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 14:29:51.0552 4532 lltdio - ok 14:29:51.0584 4532 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys 14:29:51.0599 4532 LSI_FC - ok 14:29:51.0615 4532 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys 14:29:51.0630 4532 LSI_SAS - ok 14:29:51.0646 4532 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys 14:29:51.0646 4532 LSI_SAS2 - ok 14:29:51.0677 4532 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys 14:29:51.0677 4532 LSI_SCSI - ok 14:29:51.0708 4532 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 14:29:51.0708 4532 luafv - ok 14:29:51.0771 4532 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys 14:29:51.0786 4532 MBAMProtector - ok 14:29:51.0818 4532 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys 14:29:51.0849 4532 megasas - ok 14:29:51.0864 4532 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys 14:29:51.0880 4532 MegaSR - ok 14:29:51.0911 4532 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys 14:29:51.0911 4532 MEIx64 - ok 14:29:51.0942 4532 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 14:29:51.0942 4532 Modem - ok 14:29:51.0974 4532 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 14:29:51.0989 4532 monitor - ok 14:29:52.0020 4532 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 14:29:52.0020 4532 mouclass - ok 14:29:52.0067 4532 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 14:29:52.0067 4532 mouhid - ok 14:29:52.0098 4532 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 14:29:52.0098 4532 mountmgr - ok 14:29:52.0114 4532 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 14:29:52.0114 4532 mpio - ok 14:29:52.0130 4532 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 14:29:52.0145 4532 mpsdrv - ok 14:29:52.0176 4532 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 14:29:52.0176 4532 MRxDAV - ok 14:29:52.0192 4532 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 14:29:52.0208 4532 mrxsmb - ok 14:29:52.0223 4532 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 14:29:52.0239 4532 mrxsmb10 - ok 14:29:52.0254 4532 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 14:29:52.0254 4532 mrxsmb20 - ok 14:29:52.0286 4532 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 14:29:52.0301 4532 msahci - ok 14:29:52.0317 4532 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 14:29:52.0317 4532 msdsm - ok 14:29:52.0348 4532 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 14:29:52.0348 4532 Msfs - ok 14:29:52.0379 4532 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 14:29:52.0379 4532 mshidkmdf - ok 14:29:52.0395 4532 MSICDSetup - ok 14:29:52.0410 4532 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 14:29:52.0426 4532 msisadrv - ok 14:29:52.0442 4532 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 14:29:52.0442 4532 MSKSSRV - ok 14:29:52.0457 4532 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 14:29:52.0457 4532 MSPCLOCK - ok 14:29:52.0457 4532 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 14:29:52.0473 4532 MSPQM - ok 14:29:52.0488 4532 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 14:29:52.0504 4532 MsRPC - ok 14:29:52.0504 4532 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys 14:29:52.0520 4532 mssmbios - ok 14:29:52.0520 4532 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 14:29:52.0520 4532 MSTEE - ok 14:29:52.0535 4532 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys 14:29:52.0535 4532 MTConfig - ok 14:29:52.0566 4532 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 14:29:52.0582 4532 Mup - ok 14:29:52.0629 4532 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 14:29:52.0660 4532 NativeWifiP - ok 14:29:52.0722 4532 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 14:29:52.0738 4532 NDIS - ok 14:29:52.0769 4532 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 14:29:52.0785 4532 NdisCap - ok 14:29:52.0816 4532 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 14:29:52.0816 4532 NdisTapi - ok 14:29:52.0847 4532 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 14:29:52.0847 4532 Ndisuio - ok 14:29:52.0863 4532 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 14:29:52.0878 4532 NdisWan - ok 14:29:52.0910 4532 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 14:29:52.0941 4532 NDProxy - ok 14:29:52.0972 4532 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 14:29:52.0972 4532 NetBIOS - ok 14:29:52.0988 4532 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 14:29:53.0003 4532 NetBT - ok 14:29:53.0097 4532 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys 14:29:53.0112 4532 nfrd960 - ok 14:29:53.0206 4532 nmwcd (5fe6f8c05f0769bbb74afac11453b182) C:\Windows\system32\drivers\ccdcmbx64.sys 14:29:53.0222 4532 nmwcd - ok 14:29:53.0268 4532 nmwcdc (73c929945c0850b8d1fe2fea05fdf05d) C:\Windows\system32\drivers\ccdcmbox64.sys 14:29:53.0284 4532 nmwcdc - ok 14:29:53.0300 4532 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 14:29:53.0300 4532 Npfs - ok 14:29:53.0331 4532 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 14:29:53.0331 4532 nsiproxy - ok 14:29:53.0393 4532 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 14:29:53.0409 4532 Ntfs - ok 14:29:53.0440 4532 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 14:29:53.0440 4532 Null - ok 14:29:53.0502 4532 NVHDA (8d4aac74b571fc356560e5b308955e93) C:\Windows\system32\drivers\nvhda64v.sys 14:29:53.0502 4532 NVHDA - ok 14:29:53.0814 4532 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys 14:29:53.0877 4532 nvlddmkm - ok 14:29:53.0986 4532 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 14:29:54.0017 4532 nvraid - ok 14:29:54.0033 4532 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 14:29:54.0048 4532 nvstor - ok 14:29:54.0126 4532 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 14:29:54.0142 4532 nv_agp - ok 14:29:54.0158 4532 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 14:29:54.0173 4532 ohci1394 - ok 14:29:54.0204 4532 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys 14:29:54.0220 4532 Parport - ok 14:29:54.0251 4532 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys 14:29:54.0251 4532 partmgr - ok 14:29:54.0282 4532 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys 14:29:54.0298 4532 pccsmcfd - ok 14:29:54.0314 4532 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 14:29:54.0329 4532 pci - ok 14:29:54.0360 4532 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 14:29:54.0360 4532 pciide - ok 14:29:54.0376 4532 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys 14:29:54.0407 4532 pcmcia - ok 14:29:54.0423 4532 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 14:29:54.0438 4532 pcw - ok 14:29:54.0485 4532 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 14:29:54.0501 4532 PEAUTH - ok 14:29:54.0641 4532 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 14:29:54.0672 4532 PptpMiniport - ok 14:29:54.0704 4532 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys 14:29:54.0719 4532 Processor - ok 14:29:54.0750 4532 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 14:29:54.0750 4532 Psched - ok 14:29:54.0828 4532 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys 14:29:54.0860 4532 ql2300 - ok 14:29:54.0891 4532 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys 14:29:54.0906 4532 ql40xx - ok 14:29:54.0922 4532 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 14:29:54.0938 4532 QWAVEdrv - ok 14:29:54.0969 4532 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 14:29:54.0969 4532 RasAcd - ok 14:29:55.0000 4532 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 14:29:55.0016 4532 RasAgileVpn - ok 14:29:55.0031 4532 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 14:29:55.0062 4532 Rasl2tp - ok 14:29:55.0140 4532 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 14:29:55.0140 4532 RasPppoe - ok 14:29:55.0156 4532 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 14:29:55.0172 4532 RasSstp - ok 14:29:55.0234 4532 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 14:29:55.0234 4532 rdbss - ok 14:29:55.0250 4532 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 14:29:55.0281 4532 rdpbus - ok 14:29:55.0328 4532 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 14:29:55.0328 4532 RDPCDD - ok 14:29:55.0359 4532 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys 14:29:55.0390 4532 RDPDR - ok 14:29:55.0406 4532 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 14:29:55.0406 4532 RDPENCDD - ok 14:29:55.0421 4532 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 14:29:55.0421 4532 RDPREFMP - ok 14:29:55.0484 4532 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys 14:29:55.0499 4532 RDPWD - ok 14:29:55.0530 4532 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 14:29:55.0530 4532 rdyboost - ok 14:29:55.0593 4532 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys 14:29:55.0608 4532 RFCOMM - ok 14:29:55.0655 4532 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys 14:29:55.0655 4532 ROOTMODEM - ok 14:29:55.0733 4532 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 14:29:55.0749 4532 rspndr - ok 14:29:55.0780 4532 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys 14:29:55.0811 4532 RTL8167 - ok 14:29:55.0842 4532 RtNdPt60 (e16b7c030a05ef649b18fab0a93d871f) C:\Windows\system32\DRIVERS\RtNdPt60.sys 14:29:55.0858 4532 RtNdPt60 - ok 14:29:55.0889 4532 RTTEAMPT (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 14:29:55.0889 4532 RTTEAMPT - ok 14:29:55.0905 4532 RTVLANPT (b1018aa1b5735f5fa89fd4dadf4bea7a) C:\Windows\system32\DRIVERS\RtVlan60.sys 14:29:55.0920 4532 RTVLANPT - ok 14:29:55.0952 4532 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys 14:29:55.0967 4532 s3cap - ok 14:29:55.0983 4532 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 14:29:55.0998 4532 sbp2port - ok 14:29:56.0030 4532 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 14:29:56.0045 4532 scfilter - ok 14:29:56.0076 4532 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 14:29:56.0092 4532 secdrv - ok 14:29:56.0139 4532 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 14:29:56.0154 4532 Serenum - ok 14:29:56.0217 4532 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 14:29:56.0264 4532 Serial - ok 14:29:56.0373 4532 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys 14:29:56.0373 4532 sermouse - ok 14:29:56.0435 4532 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 14:29:56.0451 4532 sffdisk - ok 14:29:56.0466 4532 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 14:29:56.0482 4532 sffp_mmc - ok 14:29:56.0482 4532 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 14:29:56.0482 4532 sffp_sd - ok 14:29:56.0498 4532 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys 14:29:56.0513 4532 sfloppy - ok 14:29:56.0529 4532 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys 14:29:56.0544 4532 SiSRaid2 - ok 14:29:56.0560 4532 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys 14:29:56.0560 4532 SiSRaid4 - ok 14:29:56.0576 4532 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 14:29:56.0576 4532 Smb - ok 14:29:56.0638 4532 softehci (5da8039e58b3a557c6a744e476cdeb7f) C:\Windows\system32\DRIVERS\softehci.sys 14:29:56.0654 4532 softehci - ok 14:29:56.0669 4532 SOFTHIDUSBK (26d2b0ff718219809c0bc3a8b061c6ec) C:\Windows\system32\DRIVERS\SOFTHIDUSBK.SYS 14:29:56.0669 4532 SOFTHIDUSBK - ok 14:29:56.0700 4532 SOFTUSBK (e1702bbe8d31b6edd5c6881c80f123a8) C:\Windows\system32\DRIVERS\SOFTUSBK.SYS 14:29:56.0716 4532 SOFTUSBK - ok 14:29:56.0716 4532 SOFTUSBTESTHUB - ok 14:29:56.0732 4532 SOFTWADP - ok 14:29:56.0747 4532 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 14:29:56.0763 4532 spldr - ok 14:29:56.0825 4532 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys 14:29:56.0825 4532 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2 14:29:56.0825 4532 sptd ( LockedFile.Multi.Generic ) - warning 14:29:56.0825 4532 sptd - detected LockedFile.Multi.Generic (1) 14:29:56.0856 4532 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 14:29:56.0872 4532 srv - ok 14:29:56.0903 4532 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 14:29:56.0903 4532 srv2 - ok 14:29:56.0950 4532 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 14:29:56.0950 4532 srvnet - ok 14:29:56.0997 4532 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys 14:29:56.0997 4532 stexstor - ok 14:29:57.0044 4532 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys 14:29:57.0044 4532 storflt - ok 14:29:57.0075 4532 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys 14:29:57.0106 4532 storvsc - ok 14:29:57.0122 4532 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys 14:29:57.0122 4532 swenum - ok 14:29:57.0231 4532 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys 14:29:57.0278 4532 Tcpip - ok 14:29:57.0340 4532 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys 14:29:57.0340 4532 TCPIP6 - ok 14:29:57.0371 4532 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 14:29:57.0387 4532 tcpipreg - ok 14:29:57.0402 4532 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 14:29:57.0402 4532 TDPIPE - ok 14:29:57.0449 4532 Tdsshbecr (03e62cd83a62859f4f796434ee6c385e) C:\Windows\system32\DRIVERS\shbecr.sys 14:29:57.0449 4532 Tdsshbecr - ok 14:29:57.0480 4532 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys 14:29:57.0480 4532 TDTCP - ok 14:29:57.0512 4532 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 14:29:57.0527 4532 tdx - ok 14:29:57.0574 4532 TEAM (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 14:29:57.0574 4532 TEAM - ok 14:29:57.0605 4532 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys 14:29:57.0605 4532 TermDD - ok 14:29:57.0636 4532 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 14:29:57.0636 4532 tssecsrv - ok 14:29:57.0683 4532 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 14:29:57.0699 4532 TsUsbFlt - ok 14:29:57.0761 4532 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys 14:29:57.0761 4532 TsUsbGD - ok 14:29:57.0777 4532 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 14:29:57.0792 4532 tunnel - ok 14:29:57.0824 4532 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys 14:29:57.0855 4532 uagp35 - ok 14:29:57.0870 4532 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 14:29:57.0886 4532 udfs - ok 14:29:57.0917 4532 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 14:29:57.0933 4532 uliagpkx - ok 14:29:57.0948 4532 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys 14:29:57.0964 4532 umbus - ok 14:29:57.0995 4532 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys 14:29:58.0011 4532 UmPass - ok 14:29:58.0042 4532 upperdev (34afb83c7bba370e404e52cc2290350c) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys 14:29:58.0073 4532 upperdev - ok 14:29:58.0120 4532 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 14:29:58.0136 4532 usbccgp - ok 14:29:58.0167 4532 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 14:29:58.0167 4532 usbcir - ok 14:29:58.0182 4532 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys 14:29:58.0198 4532 usbehci - ok 14:29:58.0214 4532 usbehci_dsf (dc2b97b8865042fc17c82381ac426d1c) C:\Windows\system32\DRIVERS\usbehci_dsf.sys 14:29:58.0245 4532 usbehci_dsf - ok 14:29:58.0276 4532 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 14:29:58.0292 4532 usbhub - ok 14:29:58.0307 4532 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys 14:29:58.0323 4532 usbohci - ok 14:29:58.0370 4532 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 14:29:58.0370 4532 usbprint - ok 14:29:58.0416 4532 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys 14:29:58.0416 4532 usbscan - ok 14:29:58.0494 4532 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys 14:29:58.0510 4532 usbser - ok 14:29:58.0541 4532 UsbserFilt (aa75e1efbee7186b4cbaaacf1f15e6ca) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys 14:29:58.0557 4532 UsbserFilt - ok 14:29:58.0604 4532 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS 14:29:58.0619 4532 USBSTOR - ok 14:29:58.0666 4532 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys 14:29:58.0666 4532 usbuhci - ok 14:29:58.0713 4532 VComm - ok 14:29:58.0728 4532 VcommMgr - ok 14:29:58.0791 4532 VDiskBus (1d3d716e05caa17122de65d0dba4f6d7) C:\Windows\system32\DRIVERS\VDiskBus64.sys 14:29:58.0806 4532 VDiskBus - ok 14:29:58.0838 4532 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 14:29:58.0853 4532 vdrvroot - ok 14:29:58.0884 4532 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 14:29:58.0884 4532 vga - ok 14:29:58.0916 4532 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 14:29:58.0931 4532 VgaSave - ok 14:29:58.0947 4532 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 14:29:58.0978 4532 vhdmp - ok 14:29:58.0994 4532 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 14:29:59.0009 4532 viaide - ok 14:29:59.0040 4532 VL807 (f6627d3bdd1e4747ebb0b5e9f2fcb706) C:\Windows\system32\DRIVERS\VL807.sys 14:29:59.0056 4532 VL807 - ok 14:29:59.0103 4532 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys 14:29:59.0118 4532 vmbus - ok 14:29:59.0150 4532 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys 14:29:59.0165 4532 VMBusHID - ok 14:29:59.0196 4532 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 14:29:59.0228 4532 volmgr - ok 14:29:59.0259 4532 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 14:29:59.0259 4532 volmgrx - ok 14:29:59.0274 4532 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 14:29:59.0306 4532 volsnap - ok 14:29:59.0337 4532 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys 14:29:59.0352 4532 vsmraid - ok 14:29:59.0368 4532 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys 14:29:59.0384 4532 vwifibus - ok 14:29:59.0399 4532 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys 14:29:59.0399 4532 WacomPen - ok 14:29:59.0415 4532 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 14:29:59.0430 4532 WANARP - ok 14:29:59.0430 4532 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 14:29:59.0430 4532 Wanarpv6 - ok 14:29:59.0446 4532 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys 14:29:59.0446 4532 Wd - ok 14:29:59.0462 4532 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 14:29:59.0477 4532 Wdf01000 - ok 14:29:59.0508 4532 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 14:29:59.0524 4532 WfpLwf - ok 14:29:59.0571 4532 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 14:29:59.0602 4532 WIMMount - ok 14:29:59.0680 4532 WinRing0_1_2_0 (0c0195c48b6b8582fa6f6373032118da) E:\Real_Temp3.60_www.INSTALKI.pl\WinRing0x64.sys 14:29:59.0696 4532 WinRing0_1_2_0 - ok 14:29:59.0758 4532 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys 14:29:59.0758 4532 WinUsb - ok 14:29:59.0805 4532 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys 14:29:59.0805 4532 WmiAcpi - ok 14:29:59.0836 4532 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 14:29:59.0852 4532 ws2ifsl - ok 14:29:59.0867 4532 WSOFTUSBK - ok 14:29:59.0867 4532 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 14:29:59.0883 4532 WudfPf - ok 14:29:59.0945 4532 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys 14:29:59.0961 4532 WUDFRd - ok 14:29:59.0992 4532 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 14:30:00.0054 4532 \Device\Harddisk0\DR0 - ok 14:30:00.0054 4532 Boot (0x1200) (596b5f9925ba890f00ce754536c27b1d) \Device\Harddisk0\DR0\Partition0 14:30:00.0054 4532 \Device\Harddisk0\DR0\Partition0 - ok 14:30:00.0070 4532 Boot (0x1200) (f6ad5e4b25c34b31f72cdddcc5437d1b) \Device\Harddisk0\DR0\Partition1 14:30:00.0070 4532 \Device\Harddisk0\DR0\Partition1 - ok 14:30:00.0086 4532 Boot (0x1200) (38d41339708f62b5de168d2a594b4ddd) \Device\Harddisk0\DR0\Partition2 14:30:00.0086 4532 \Device\Harddisk0\DR0\Partition2 - ok 14:30:00.0117 4532 Boot (0x1200) (f47de2c3dd2e33e0ba93658f18a85026) \Device\Harddisk0\DR0\Partition3 14:30:00.0117 4532 \Device\Harddisk0\DR0\Partition3 - ok 14:30:00.0117 4532 ============================================================ 14:30:00.0117 4532 Scan finished 14:30:00.0117 4532 ============================================================ 14:30:00.0117 3428 Detected object count: 1 14:30:00.0117 3428 Actual detected object count: 1 14:30:16.0356 3428 sptd ( LockedFile.Multi.Generic ) - skipped by user 14:30:16.0356 3428 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 14:30:29.0180 4696 ============================================================ 14:30:29.0180 4696 Scan started 14:30:29.0180 4696 Mode: Manual; SigCheck; TDLFS; 14:30:29.0180 4696 ============================================================ 14:30:29.0398 4696 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 14:30:29.0523 4696 1394ohci - ok 14:30:29.0554 4696 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 14:30:29.0570 4696 ACPI - ok 14:30:29.0585 4696 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 14:30:29.0648 4696 AcpiPmi - ok 14:30:29.0679 4696 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys 14:30:29.0694 4696 adp94xx - ok 14:30:29.0710 4696 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys 14:30:29.0726 4696 adpahci - ok 14:30:29.0741 4696 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys 14:30:29.0741 4696 adpu320 - ok 14:30:29.0788 4696 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys 14:30:29.0850 4696 AFD - ok 14:30:29.0866 4696 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 14:30:29.0882 4696 agp440 - ok 14:30:29.0913 4696 AiChargerPlus (8b6625d53c18774f0102f690e285b5e8) C:\Windows\system32\DRIVERS\AiChargerPlus.sys 14:30:29.0944 4696 AiChargerPlus - ok 14:30:29.0991 4696 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 14:30:29.0991 4696 aliide - ok 14:30:30.0006 4696 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 14:30:30.0006 4696 amdide - ok 14:30:30.0022 4696 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys 14:30:30.0069 4696 AmdK8 - ok 14:30:30.0084 4696 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys 14:30:30.0116 4696 AmdPPM - ok 14:30:30.0147 4696 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 14:30:30.0162 4696 amdsata - ok 14:30:30.0178 4696 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys 14:30:30.0194 4696 amdsbs - ok 14:30:30.0209 4696 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 14:30:30.0225 4696 amdxata - ok 14:30:30.0256 4696 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 14:30:30.0396 4696 AppID - ok 14:30:30.0412 4696 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys 14:30:30.0428 4696 arc - ok 14:30:30.0443 4696 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys 14:30:30.0443 4696 arcsas - ok 14:30:30.0521 4696 ASFLTDrv.sys (2921131f9a111fd6c6d2c5e1e5b6b75c) C:\Program Files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys 14:30:30.0537 4696 ASFLTDrv.sys - ok 14:30:30.0537 4696 AsIO - ok 14:30:30.0568 4696 asmthub3 (954950d11ada98ac1b7ee3c770e4622c) C:\Windows\system32\DRIVERS\asmthub3.sys 14:30:30.0584 4696 asmthub3 - ok 14:30:30.0615 4696 asmtxhci (01dbb05db1db95803e3c9f2b49afe79c) C:\Windows\system32\DRIVERS\asmtxhci.sys 14:30:30.0630 4696 asmtxhci - ok 14:30:30.0646 4696 AsUpIO - ok 14:30:30.0662 4696 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 14:30:30.0786 4696 AsyncMac - ok 14:30:30.0802 4696 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 14:30:30.0802 4696 atapi - ok 14:30:30.0849 4696 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys 14:30:30.0911 4696 b06bdrv - ok 14:30:30.0942 4696 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 14:30:30.0974 4696 b57nd60a - ok 14:30:30.0989 4696 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 14:30:31.0052 4696 Beep - ok 14:30:31.0083 4696 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 14:30:31.0114 4696 blbdrive - ok 14:30:31.0114 4696 BlueletAudio - ok 14:30:31.0130 4696 BlueletSCOAudio - ok 14:30:31.0161 4696 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 14:30:31.0176 4696 bowser - ok 14:30:31.0192 4696 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys 14:30:31.0239 4696 BrFiltLo - ok 14:30:31.0254 4696 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys 14:30:31.0270 4696 BrFiltUp - ok 14:30:31.0301 4696 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 14:30:31.0348 4696 Brserid - ok 14:30:31.0364 4696 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 14:30:31.0395 4696 BrSerWdm - ok 14:30:31.0410 4696 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 14:30:31.0457 4696 BrUsbMdm - ok 14:30:31.0473 4696 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 14:30:31.0504 4696 BrUsbSer - ok 14:30:31.0504 4696 BT - ok 14:30:31.0535 4696 Btcsrusb (e0c1e6b70e0c626b37e643b799e434f3) C:\Windows\system32\Drivers\btcusb.sys 14:30:31.0551 4696 Btcsrusb - ok 14:30:31.0582 4696 BthAvrcp (832b121e4532919cc49f2438f1dcaa21) C:\Windows\system32\DRIVERS\BthAvrcp.sys 14:30:31.0629 4696 BthAvrcp - ok 14:30:31.0644 4696 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys 14:30:31.0676 4696 BthEnum - ok 14:30:31.0691 4696 BTHidEnum - ok 14:30:31.0691 4696 BTHidMgr - ok 14:30:31.0722 4696 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 14:30:31.0754 4696 BTHMODEM - ok 14:30:31.0785 4696 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys 14:30:31.0816 4696 BthPan - ok 14:30:31.0847 4696 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys 14:30:31.0878 4696 BTHPORT - ok 14:30:31.0878 4696 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys 14:30:31.0894 4696 BTHUSB - ok 14:30:31.0925 4696 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 14:30:31.0941 4696 cdfs - ok 14:30:31.0972 4696 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys 14:30:32.0003 4696 cdrom - ok 14:30:32.0019 4696 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys 14:30:32.0081 4696 circlass - ok 14:30:32.0112 4696 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 14:30:32.0128 4696 CLFS - ok 14:30:32.0159 4696 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys 14:30:32.0175 4696 CmBatt - ok 14:30:32.0190 4696 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 14:30:32.0206 4696 cmdide - ok 14:30:32.0253 4696 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys 14:30:32.0268 4696 CNG - ok 14:30:32.0284 4696 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys 14:30:32.0300 4696 Compbatt - ok 14:30:32.0315 4696 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys 14:30:32.0331 4696 CompositeBus - ok 14:30:32.0346 4696 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys 14:30:32.0346 4696 crcdisk - ok 14:30:32.0393 4696 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys 14:30:32.0440 4696 CSC - ok 14:30:32.0471 4696 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 14:30:32.0502 4696 DfsC - ok 14:30:32.0549 4696 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 14:30:32.0596 4696 discache - ok 14:30:32.0627 4696 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys 14:30:32.0643 4696 Disk - ok 14:30:32.0658 4696 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys 14:30:32.0690 4696 dmvsc - ok 14:30:32.0721 4696 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 14:30:32.0768 4696 drmkaud - ok 14:30:32.0814 4696 DSFKSVCS (4c639a503201e3f9fb001b840b934a3f) C:\Windows\system32\DRIVERS\dsfksvcs.sys 14:30:32.0846 4696 DSFKSVCS - ok 14:30:32.0861 4696 dsfroot (13699ba0680d8eeef67945f5a405610c) C:\Windows\system32\DRIVERS\dsfroot.sys 14:30:32.0861 4696 dsfroot - ok 14:30:32.0892 4696 dtsoftbus01 (400582b09e0bb557d0ec28a945150eeb) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 14:30:32.0908 4696 dtsoftbus01 - ok 14:30:32.0939 4696 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 14:30:32.0955 4696 DXGKrnl - ok 14:30:32.0986 4696 eamonm (aca3fe4f18a945b7bf2618a79f6f670b) C:\Windows\system32\DRIVERS\eamonm.sys 14:30:33.0002 4696 eamonm - ok 14:30:33.0095 4696 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys 14:30:33.0158 4696 ebdrv - ok 14:30:33.0173 4696 ehdrv (6672438bdcbfd87250d22112d458294d) C:\Windows\system32\DRIVERS\ehdrv.sys 14:30:33.0189 4696 ehdrv - ok 14:30:33.0220 4696 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys 14:30:33.0220 4696 elxstor - ok 14:30:33.0251 4696 epfw (443805b5b11c859ac8ca35297648ff0c) C:\Windows\system32\DRIVERS\epfw.sys 14:30:33.0251 4696 epfw - ok 14:30:33.0267 4696 Epfwndis (66e61bc6c9f519a99275eb0f0e530bf4) C:\Windows\system32\DRIVERS\Epfwndis.sys 14:30:33.0267 4696 Epfwndis - ok 14:30:33.0282 4696 epfwwfp (f72c97f3d34ea5ec919c73e3901266bb) C:\Windows\system32\DRIVERS\epfwwfp.sys 14:30:33.0298 4696 epfwwfp - ok 14:30:33.0314 4696 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 14:30:33.0329 4696 ErrDev - ok 14:30:33.0345 4696 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 14:30:33.0376 4696 exfat - ok 14:30:33.0407 4696 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 14:30:33.0454 4696 fastfat - ok 14:30:33.0470 4696 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys 14:30:33.0485 4696 fdc - ok 14:30:33.0516 4696 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 14:30:33.0516 4696 FileInfo - ok 14:30:33.0532 4696 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 14:30:33.0579 4696 Filetrace - ok 14:30:33.0657 4696 FLASHSYS (5b314cc7640d091de8f3bc822490da28) C:\Program Files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys 14:30:33.0657 4696 FLASHSYS - ok 14:30:33.0672 4696 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys 14:30:33.0688 4696 flpydisk - ok 14:30:33.0735 4696 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 14:30:33.0750 4696 FltMgr - ok 14:30:33.0766 4696 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 14:30:33.0766 4696 FsDepends - ok 14:30:33.0782 4696 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys 14:30:33.0782 4696 Fs_Rec - ok 14:30:33.0797 4696 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 14:30:33.0797 4696 fvevol - ok 14:30:33.0828 4696 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys 14:30:33.0844 4696 gagp30kx - ok 14:30:33.0875 4696 GWHid (5c2cd67845d77e3bc968ef84e1090754) C:\Windows\system32\DRIVERS\GWHid.sys 14:30:33.0875 4696 GWHid - ok 14:30:33.0906 4696 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 14:30:33.0922 4696 hcw85cir - ok 14:30:33.0969 4696 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 14:30:34.0000 4696 HdAudAddService - ok 14:30:34.0016 4696 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys 14:30:34.0047 4696 HDAudBus - ok 14:30:34.0047 4696 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys 14:30:34.0062 4696 HidBatt - ok 14:30:34.0109 4696 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys 14:30:34.0156 4696 HidBth - ok 14:30:34.0156 4696 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys 14:30:34.0172 4696 HidIr - ok 14:30:34.0187 4696 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys 14:30:34.0203 4696 HidUsb - ok 14:30:34.0234 4696 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 14:30:34.0234 4696 HpSAMD - ok 14:30:34.0250 4696 HRMACPI - ok 14:30:34.0265 4696 HRMCFGSPC (1696a06c0ef55dfcd540b32556d3819a) C:\Windows\system32\DRIVERS\HRMCFGSPC.SYS 14:30:34.0281 4696 HRMCFGSPC - ok 14:30:34.0296 4696 HRMINTS (f58f8f2a11ce4a695c9333c416d0321f) C:\Windows\system32\DRIVERS\HRMINTS.SYS 14:30:34.0296 4696 HRMINTS - ok 14:30:34.0312 4696 HRMPORTS (6bc42dc759d42a4edca7452b4d08d870) C:\Windows\system32\DRIVERS\HRMPORTS.SYS 14:30:34.0328 4696 HRMPORTS - ok 14:30:34.0359 4696 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 14:30:34.0421 4696 HTTP - ok 14:30:34.0437 4696 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 14:30:34.0437 4696 hwpolicy - ok 14:30:34.0452 4696 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys 14:30:34.0468 4696 i8042prt - ok 14:30:34.0499 4696 iaStor (d1e30259353e7d8d1b713a76cddeb88b) C:\Windows\system32\DRIVERS\iaStor.sys 14:30:34.0530 4696 iaStor - ok 14:30:34.0562 4696 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 14:30:34.0577 4696 iaStorV - ok 14:30:34.0608 4696 ICCWDT (c1010add3ddae1196ed21057af7b2aae) C:\Windows\system32\DRIVERS\ICCWDT.sys 14:30:34.0624 4696 ICCWDT - ok 14:30:34.0640 4696 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys 14:30:34.0655 4696 iirsp - ok 14:30:34.0811 4696 IntcAzAudAddService (589b94a9b73a0e819ff873743a480834) C:\Windows\system32\drivers\RTKVHD64.sys 14:30:34.0842 4696 IntcAzAudAddService - ok 14:30:34.0858 4696 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 14:30:34.0874 4696 intelide - ok 14:30:34.0889 4696 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 14:30:34.0920 4696 intelppm - ok 14:30:34.0936 4696 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 14:30:34.0952 4696 IpFilterDriver - ok 14:30:34.0967 4696 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 14:30:34.0967 4696 IPMIDRV - ok 14:30:34.0998 4696 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 14:30:35.0045 4696 IPNAT - ok 14:30:35.0061 4696 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 14:30:35.0139 4696 IRENUM - ok 14:30:35.0139 4696 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 14:30:35.0154 4696 isapnp - ok 14:30:35.0170 4696 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 14:30:35.0186 4696 iScsiPrt - ok 14:30:35.0201 4696 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 14:30:35.0201 4696 kbdclass - ok 14:30:35.0232 4696 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys 14:30:35.0264 4696 kbdhid - ok 14:30:35.0295 4696 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys 14:30:35.0310 4696 KSecDD - ok 14:30:35.0342 4696 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys 14:30:35.0342 4696 KSecPkg - ok 14:30:35.0373 4696 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 14:30:35.0420 4696 ksthunk - ok 14:30:35.0435 4696 LGDDCDevice - ok 14:30:35.0435 4696 LGII2CDevice - ok 14:30:35.0451 4696 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 14:30:35.0544 4696 lltdio - ok 14:30:35.0560 4696 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys 14:30:35.0576 4696 LSI_FC - ok 14:30:35.0591 4696 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys 14:30:35.0607 4696 LSI_SAS - ok 14:30:35.0654 4696 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys 14:30:35.0669 4696 LSI_SAS2 - ok 14:30:35.0685 4696 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys 14:30:35.0700 4696 LSI_SCSI - ok 14:30:35.0716 4696 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 14:30:35.0778 4696 luafv - ok 14:30:35.0810 4696 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys 14:30:35.0810 4696 MBAMProtector - ok 14:30:35.0810 4696 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys 14:30:35.0825 4696 megasas - ok 14:30:35.0841 4696 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys 14:30:35.0856 4696 MegaSR - ok 14:30:35.0888 4696 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys 14:30:35.0888 4696 MEIx64 - ok 14:30:35.0919 4696 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 14:30:35.0966 4696 Modem - ok 14:30:35.0981 4696 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 14:30:36.0012 4696 monitor - ok 14:30:36.0028 4696 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 14:30:36.0044 4696 mouclass - ok 14:30:36.0059 4696 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 14:30:36.0075 4696 mouhid - ok 14:30:36.0106 4696 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 14:30:36.0106 4696 mountmgr - ok 14:30:36.0137 4696 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 14:30:36.0137 4696 mpio - ok 14:30:36.0168 4696 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 14:30:36.0200 4696 mpsdrv - ok 14:30:36.0231 4696 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 14:30:36.0262 4696 MRxDAV - ok 14:30:36.0293 4696 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 14:30:36.0324 4696 mrxsmb - ok 14:30:36.0340 4696 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 14:30:36.0371 4696 mrxsmb10 - ok 14:30:36.0387 4696 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 14:30:36.0402 4696 mrxsmb20 - ok 14:30:36.0418 4696 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 14:30:36.0434 4696 msahci - ok 14:30:36.0465 4696 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 14:30:36.0465 4696 msdsm - ok 14:30:36.0496 4696 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 14:30:36.0543 4696 Msfs - ok 14:30:36.0558 4696 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 14:30:36.0590 4696 mshidkmdf - ok 14:30:36.0590 4696 MSICDSetup - ok 14:30:36.0605 4696 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 14:30:36.0621 4696 msisadrv - ok 14:30:36.0636 4696 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 14:30:36.0668 4696 MSKSSRV - ok 14:30:36.0683 4696 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 14:30:36.0714 4696 MSPCLOCK - ok 14:30:36.0714 4696 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 14:30:36.0761 4696 MSPQM - ok 14:30:36.0792 4696 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 14:30:36.0792 4696 MsRPC - ok 14:30:36.0808 4696 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys 14:30:36.0824 4696 mssmbios - ok 14:30:36.0839 4696 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 14:30:36.0855 4696 MSTEE - ok 14:30:36.0870 4696 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys 14:30:36.0902 4696 MTConfig - ok 14:30:36.0933 4696 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 14:30:36.0948 4696 Mup - ok 14:30:36.0980 4696 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 14:30:37.0011 4696 NativeWifiP - ok 14:30:37.0026 4696 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 14:30:37.0042 4696 NDIS - ok 14:30:37.0058 4696 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 14:30:37.0104 4696 NdisCap - ok 14:30:37.0120 4696 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 14:30:37.0151 4696 NdisTapi - ok 14:30:37.0167 4696 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 14:30:37.0214 4696 Ndisuio - ok 14:30:37.0245 4696 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 14:30:37.0292 4696 NdisWan - ok 14:30:37.0307 4696 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 14:30:37.0338 4696 NDProxy - ok 14:30:37.0354 4696 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 14:30:37.0370 4696 NetBIOS - ok 14:30:37.0385 4696 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 14:30:37.0416 4696 NetBT - ok 14:30:37.0463 4696 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys 14:30:37.0463 4696 nfrd960 - ok 14:30:37.0494 4696 nmwcd (5fe6f8c05f0769bbb74afac11453b182) C:\Windows\system32\drivers\ccdcmbx64.sys 14:30:37.0526 4696 nmwcd - ok 14:30:37.0572 4696 nmwcdc (73c929945c0850b8d1fe2fea05fdf05d) C:\Windows\system32\drivers\ccdcmbox64.sys 14:30:37.0604 4696 nmwcdc - ok 14:30:37.0619 4696 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 14:30:37.0635 4696 Npfs - ok 14:30:37.0666 4696 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 14:30:37.0682 4696 nsiproxy - ok 14:30:37.0744 4696 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 14:30:37.0775 4696 Ntfs - ok 14:30:37.0806 4696 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 14:30:37.0838 4696 Null - ok 14:30:37.0869 4696 NVHDA (8d4aac74b571fc356560e5b308955e93) C:\Windows\system32\drivers\nvhda64v.sys 14:30:37.0884 4696 NVHDA - ok 14:30:38.0181 4696 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys 14:30:38.0306 4696 nvlddmkm - ok 14:30:38.0384 4696 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 14:30:38.0399 4696 nvraid - ok 14:30:38.0446 4696 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 14:30:38.0462 4696 nvstor - ok 14:30:38.0477 4696 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 14:30:38.0477 4696 nv_agp - ok 14:30:38.0493 4696 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 14:30:38.0524 4696 ohci1394 - ok 14:30:38.0555 4696 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys 14:30:38.0586 4696 Parport - ok 14:30:38.0618 4696 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys 14:30:38.0618 4696 partmgr - ok 14:30:38.0649 4696 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys 14:30:38.0680 4696 pccsmcfd - ok 14:30:38.0711 4696 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 14:30:38.0727 4696 pci - ok 14:30:38.0742 4696 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 14:30:38.0758 4696 pciide - ok 14:30:38.0774 4696 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys 14:30:38.0789 4696 pcmcia - ok 14:30:38.0820 4696 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 14:30:38.0820 4696 pcw - ok 14:30:38.0852 4696 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 14:30:38.0914 4696 PEAUTH - ok 14:30:38.0945 4696 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 14:30:38.0976 4696 PptpMiniport - ok 14:30:38.0992 4696 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys 14:30:39.0008 4696 Processor - ok 14:30:39.0039 4696 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 14:30:39.0101 4696 Psched - ok 14:30:39.0148 4696 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys 14:30:39.0179 4696 ql2300 - ok 14:30:39.0226 4696 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys 14:30:39.0242 4696 ql40xx - ok 14:30:39.0257 4696 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 14:30:39.0273 4696 QWAVEdrv - ok 14:30:39.0288 4696 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 14:30:39.0320 4696 RasAcd - ok 14:30:39.0335 4696 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 14:30:39.0351 4696 RasAgileVpn - ok 14:30:39.0382 4696 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 14:30:39.0429 4696 Rasl2tp - ok 14:30:39.0444 4696 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 14:30:39.0476 4696 RasPppoe - ok 14:30:39.0507 4696 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 14:30:39.0522 4696 RasSstp - ok 14:30:39.0554 4696 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 14:30:39.0569 4696 rdbss - ok 14:30:39.0585 4696 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 14:30:39.0616 4696 rdpbus - ok 14:30:39.0632 4696 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 14:30:39.0647 4696 RDPCDD - ok 14:30:39.0678 4696 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys 14:30:39.0710 4696 RDPDR - ok 14:30:39.0741 4696 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 14:30:39.0788 4696 RDPENCDD - ok 14:30:39.0803 4696 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 14:30:39.0850 4696 RDPREFMP - ok 14:30:39.0866 4696 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys 14:30:39.0897 4696 RDPWD - ok 14:30:39.0897 4696 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 14:30:39.0912 4696 rdyboost - ok 14:30:39.0944 4696 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys 14:30:39.0959 4696 RFCOMM - ok 14:30:39.0990 4696 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys 14:30:40.0022 4696 ROOTMODEM - ok 14:30:40.0037 4696 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 14:30:40.0068 4696 rspndr - ok 14:30:40.0100 4696 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys 14:30:40.0100 4696 RTL8167 - ok 14:30:40.0131 4696 RtNdPt60 (e16b7c030a05ef649b18fab0a93d871f) C:\Windows\system32\DRIVERS\RtNdPt60.sys 14:30:40.0131 4696 RtNdPt60 - ok 14:30:40.0146 4696 RTTEAMPT (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 14:30:40.0162 4696 RTTEAMPT - ok 14:30:40.0178 4696 RTVLANPT (b1018aa1b5735f5fa89fd4dadf4bea7a) C:\Windows\system32\DRIVERS\RtVlan60.sys 14:30:40.0178 4696 RTVLANPT - ok 14:30:40.0209 4696 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys 14:30:40.0240 4696 s3cap - ok 14:30:40.0256 4696 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 14:30:40.0271 4696 sbp2port - ok 14:30:40.0287 4696 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 14:30:40.0334 4696 scfilter - ok 14:30:40.0349 4696 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 14:30:40.0396 4696 secdrv - ok 14:30:40.0412 4696 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 14:30:40.0427 4696 Serenum - ok 14:30:40.0443 4696 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 14:30:40.0458 4696 Serial - ok 14:30:40.0474 4696 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys 14:30:40.0490 4696 sermouse - ok 14:30:40.0521 4696 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 14:30:40.0521 4696 sffdisk - ok 14:30:40.0536 4696 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 14:30:40.0552 4696 sffp_mmc - ok 14:30:40.0568 4696 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 14:30:40.0614 4696 sffp_sd - ok 14:30:40.0630 4696 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys 14:30:40.0646 4696 sfloppy - ok 14:30:40.0661 4696 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys 14:30:40.0677 4696 SiSRaid2 - ok 14:30:40.0692 4696 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys 14:30:40.0708 4696 SiSRaid4 - ok 14:30:40.0724 4696 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 14:30:40.0770 4696 Smb - ok 14:30:40.0802 4696 softehci (5da8039e58b3a557c6a744e476cdeb7f) C:\Windows\system32\DRIVERS\softehci.sys 14:30:40.0833 4696 softehci - ok 14:30:40.0848 4696 SOFTHIDUSBK (26d2b0ff718219809c0bc3a8b061c6ec) C:\Windows\system32\DRIVERS\SOFTHIDUSBK.SYS 14:30:40.0864 4696 SOFTHIDUSBK - ok 14:30:40.0911 4696 SOFTUSBK (e1702bbe8d31b6edd5c6881c80f123a8) C:\Windows\system32\DRIVERS\SOFTUSBK.SYS 14:30:40.0911 4696 SOFTUSBK - ok 14:30:40.0926 4696 SOFTUSBTESTHUB - ok 14:30:40.0926 4696 SOFTWADP - ok 14:30:40.0942 4696 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 14:30:40.0958 4696 spldr - ok 14:30:41.0020 4696 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys 14:30:41.0020 4696 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2 14:30:41.0020 4696 sptd ( LockedFile.Multi.Generic ) - warning 14:30:41.0020 4696 sptd - detected LockedFile.Multi.Generic (1) 14:30:41.0051 4696 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 14:30:41.0098 4696 srv - ok 14:30:41.0129 4696 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 14:30:41.0160 4696 srv2 - ok 14:30:41.0207 4696 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 14:30:41.0238 4696 srvnet - ok 14:30:41.0254 4696 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys 14:30:41.0270 4696 stexstor - ok 14:30:41.0316 4696 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys 14:30:41.0332 4696 storflt - ok 14:30:41.0348 4696 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys 14:30:41.0363 4696 storvsc - ok 14:30:41.0379 4696 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys 14:30:41.0379 4696 swenum - ok 14:30:41.0472 4696 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys 14:30:41.0504 4696 Tcpip - ok 14:30:41.0566 4696 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys 14:30:41.0597 4696 TCPIP6 - ok 14:30:41.0628 4696 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 14:30:41.0675 4696 tcpipreg - ok 14:30:41.0691 4696 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 14:30:41.0738 4696 TDPIPE - ok 14:30:41.0769 4696 Tdsshbecr (03e62cd83a62859f4f796434ee6c385e) C:\Windows\system32\DRIVERS\shbecr.sys 14:30:41.0800 4696 Tdsshbecr - ok 14:30:41.0816 4696 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys 14:30:41.0847 4696 TDTCP - ok 14:30:41.0862 4696 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 14:30:41.0925 4696 tdx - ok 14:30:41.0956 4696 TEAM (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 14:30:41.0956 4696 TEAM - ok 14:30:41.0972 4696 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys 14:30:41.0987 4696 TermDD - ok 14:30:42.0003 4696 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 14:30:42.0050 4696 tssecsrv - ok 14:30:42.0065 4696 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 14:30:42.0096 4696 TsUsbFlt - ok 14:30:42.0112 4696 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys 14:30:42.0143 4696 TsUsbGD - ok 14:30:42.0143 4696 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 14:30:42.0206 4696 tunnel - ok 14:30:42.0237 4696 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys 14:30:42.0237 4696 uagp35 - ok 14:30:42.0268 4696 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 14:30:42.0284 4696 udfs - ok 14:30:42.0315 4696 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 14:30:42.0315 4696 uliagpkx - ok 14:30:42.0346 4696 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys 14:30:42.0362 4696 umbus - ok 14:30:42.0377 4696 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys 14:30:42.0408 4696 UmPass - ok 14:30:42.0440 4696 upperdev (34afb83c7bba370e404e52cc2290350c) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys 14:30:42.0471 4696 upperdev - ok 14:30:42.0502 4696 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 14:30:42.0533 4696 usbccgp - ok 14:30:42.0549 4696 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 14:30:42.0564 4696 usbcir - ok 14:30:42.0596 4696 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys 14:30:42.0611 4696 usbehci - ok 14:30:42.0627 4696 usbehci_dsf (dc2b97b8865042fc17c82381ac426d1c) C:\Windows\system32\DRIVERS\usbehci_dsf.sys 14:30:42.0642 4696 usbehci_dsf - ok 14:30:42.0674 4696 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 14:30:42.0689 4696 usbhub - ok 14:30:42.0705 4696 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys 14:30:42.0736 4696 usbohci - ok 14:30:42.0767 4696 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 14:30:42.0783 4696 usbprint - ok 14:30:42.0814 4696 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys 14:30:42.0830 4696 usbscan - ok 14:30:42.0876 4696 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys 14:30:42.0892 4696 usbser - ok 14:30:42.0923 4696 UsbserFilt (aa75e1efbee7186b4cbaaacf1f15e6ca) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys 14:30:42.0939 4696 UsbserFilt - ok 14:30:42.0986 4696 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS 14:30:43.0017 4696 USBSTOR - ok 14:30:43.0032 4696 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys 14:30:43.0079 4696 usbuhci - ok 14:30:43.0079 4696 VComm - ok 14:30:43.0095 4696 VcommMgr - ok 14:30:43.0126 4696 VDiskBus (1d3d716e05caa17122de65d0dba4f6d7) C:\Windows\system32\DRIVERS\VDiskBus64.sys 14:30:43.0142 4696 VDiskBus - ok 14:30:43.0142 4696 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 14:30:43.0157 4696 vdrvroot - ok 14:30:43.0173 4696 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 14:30:43.0188 4696 vga - ok 14:30:43.0220 4696 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 14:30:43.0266 4696 VgaSave - ok 14:30:43.0313 4696 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 14:30:43.0313 4696 vhdmp - ok 14:30:43.0329 4696 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 14:30:43.0344 4696 viaide - ok 14:30:43.0376 4696 VL807 (f6627d3bdd1e4747ebb0b5e9f2fcb706) C:\Windows\system32\DRIVERS\VL807.sys 14:30:43.0391 4696 VL807 ( UnsignedFile.Multi.Generic ) - warning 14:30:43.0391 4696 VL807 - detected UnsignedFile.Multi.Generic (1) 14:30:43.0422 4696 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys 14:30:43.0438 4696 vmbus - ok 14:30:43.0469 4696 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys 14:30:43.0485 4696 VMBusHID - ok 14:30:43.0516 4696 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 14:30:43.0516 4696 volmgr - ok 14:30:43.0547 4696 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 14:30:43.0563 4696 volmgrx - ok 14:30:43.0563 4696 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 14:30:43.0578 4696 volsnap - ok 14:30:43.0594 4696 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys 14:30:43.0594 4696 vsmraid - ok 14:30:43.0610 4696 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys 14:30:43.0641 4696 vwifibus - ok 14:30:43.0672 4696 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys 14:30:43.0750 4696 WacomPen - ok 14:30:43.0750 4696 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 14:30:43.0781 4696 WANARP - ok 14:30:43.0781 4696 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 14:30:43.0812 4696 Wanarpv6 - ok 14:30:43.0844 4696 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys 14:30:43.0844 4696 Wd - ok 14:30:43.0859 4696 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 14:30:43.0859 4696 Wdf01000 - ok 14:30:43.0890 4696 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 14:30:43.0906 4696 WfpLwf - ok 14:30:43.0937 4696 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 14:30:43.0937 4696 WIMMount - ok 14:30:43.0984 4696 WinRing0_1_2_0 (0c0195c48b6b8582fa6f6373032118da) E:\Real_Temp3.60_www.INSTALKI.pl\WinRing0x64.sys 14:30:43.0984 4696 WinRing0_1_2_0 - ok 14:30:44.0031 4696 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys 14:30:44.0062 4696 WinUsb - ok 14:30:44.0093 4696 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys 14:30:44.0109 4696 WmiAcpi - ok 14:30:44.0140 4696 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 14:30:44.0171 4696 ws2ifsl - ok 14:30:44.0187 4696 WSOFTUSBK - ok 14:30:44.0187 4696 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 14:30:44.0202 4696 WudfPf - ok 14:30:44.0234 4696 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys 14:30:44.0249 4696 WUDFRd - ok 14:30:44.0296 4696 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 14:30:44.0421 4696 \Device\Harddisk0\DR0 - ok 14:30:44.0421 4696 Boot (0x1200) (596b5f9925ba890f00ce754536c27b1d) \Device\Harddisk0\DR0\Partition0 14:30:44.0421 4696 \Device\Harddisk0\DR0\Partition0 - ok 14:30:44.0452 4696 Boot (0x1200) (f6ad5e4b25c34b31f72cdddcc5437d1b) \Device\Harddisk0\DR0\Partition1 14:30:44.0452 4696 \Device\Harddisk0\DR0\Partition1 - ok 14:30:44.0483 4696 Boot (0x1200) (38d41339708f62b5de168d2a594b4ddd) \Device\Harddisk0\DR0\Partition2 14:30:44.0483 4696 \Device\Harddisk0\DR0\Partition2 - ok 14:30:44.0499 4696 Boot (0x1200) (f47de2c3dd2e33e0ba93658f18a85026) \Device\Harddisk0\DR0\Partition3 14:30:44.0499 4696 \Device\Harddisk0\DR0\Partition3 - ok 14:30:44.0499 4696 ============================================================ 14:30:44.0499 4696 Scan finished 14:30:44.0499 4696 ============================================================ 14:30:44.0514 1756 Detected object count: 2 14:30:44.0514 1756 Actual detected object count: 2 14:31:02.0985 1756 C:\Windows\System32\Drivers\sptd.sys - copied to quarantine 14:31:03.0016 1756 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine 14:31:03.0047 1756 C:\Windows\system32\DRIVERS\VL807.sys - copied to quarantine 14:31:03.0063 1756 VL807 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 14:31:04.0451 4164 Deinitialize success [/spoiler] TDSSKiller.2.7.14.0_18.03.2012_12.31.31_log [spoiler]12:31:31.0626 5276 TDSS rootkit removing tool 2.7.14.0 Feb 22 2012 16:54:49 12:31:35.0619 5276 ============================================================ 12:31:35.0619 5276 Current date / time: 2012/03/18 12:31:35.0619 12:31:35.0619 5276 SystemInfo: 12:31:35.0619 5276 12:31:35.0619 5276 OS Version: 6.1.7601 ServicePack: 1.0 12:31:35.0619 5276 Product type: Workstation 12:31:35.0619 5276 ComputerName: DAWID-KOMPUTER 12:31:35.0619 5276 UserName: Dawid 12:31:35.0619 5276 Windows directory: C:\Windows 12:31:35.0619 5276 System windows directory: C:\Windows 12:31:35.0619 5276 Running under WOW64 12:31:35.0619 5276 Processor architecture: Intel x64 12:31:35.0619 5276 Number of processors: 4 12:31:35.0619 5276 Page size: 0x1000 12:31:35.0619 5276 Boot type: Normal boot 12:31:35.0619 5276 ============================================================ 12:31:35.0991 5276 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 12:31:35.0996 5276 Drive \Device\Harddisk1\DR1 - Size: 0x39D2C0000 (14.46 Gb), SectorSize: 0x200, Cylinders: 0x75F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 12:31:35.0998 5276 \Device\Harddisk0\DR0: 12:31:35.0999 5276 MBR used 12:31:35.0999 5276 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 12:31:35.0999 5276 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1364F800 12:31:35.0999 5276 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13682000, BlocksNum 0x13682000 12:31:35.0999 5276 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x26D04000, BlocksNum 0x13681800 12:31:35.0999 5276 \Device\Harddisk1\DR1: 12:31:35.0999 5276 MBR used 12:31:36.0154 5276 Initialize success 12:31:36.0154 5276 ============================================================ 12:31:41.0816 5732 ============================================================ 12:31:41.0817 5732 Scan started 12:31:41.0817 5732 Mode: Manual; SigCheck; TDLFS; 12:31:41.0817 5732 ============================================================ 12:31:42.0344 5732 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 12:31:42.0491 5732 1394ohci - ok 12:31:42.0544 5732 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 12:31:42.0561 5732 ACPI - ok 12:31:42.0583 5732 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 12:31:42.0670 5732 AcpiPmi - ok 12:31:42.0713 5732 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys 12:31:42.0769 5732 adp94xx - ok 12:31:42.0822 5732 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys 12:31:42.0876 5732 adpahci - ok 12:31:42.0905 5732 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys 12:31:42.0913 5732 adpu320 - ok 12:31:42.0975 5732 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys 12:31:43.0052 5732 AFD - ok 12:31:43.0086 5732 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 12:31:43.0106 5732 agp440 - ok 12:31:43.0148 5732 AiChargerPlus (8b6625d53c18774f0102f690e285b5e8) C:\Windows\system32\DRIVERS\AiChargerPlus.sys 12:31:43.0208 5732 AiChargerPlus - ok 12:31:43.0238 5732 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 12:31:43.0255 5732 aliide - ok 12:31:43.0267 5732 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 12:31:43.0282 5732 amdide - ok 12:31:43.0302 5732 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys 12:31:43.0342 5732 AmdK8 - ok 12:31:43.0360 5732 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys 12:31:43.0393 5732 AmdPPM - ok 12:31:43.0431 5732 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 12:31:43.0452 5732 amdsata - ok 12:31:43.0474 5732 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys 12:31:43.0490 5732 amdsbs - ok 12:31:43.0506 5732 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 12:31:43.0518 5732 amdxata - ok 12:31:43.0553 5732 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 12:31:43.0729 5732 AppID - ok 12:31:43.0806 5732 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys 12:31:43.0825 5732 arc - ok 12:31:43.0838 5732 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys 12:31:43.0847 5732 arcsas - ok 12:31:43.0963 5732 ASFLTDrv.sys (2921131f9a111fd6c6d2c5e1e5b6b75c) C:\Program Files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys 12:31:43.0971 5732 ASFLTDrv.sys - ok 12:31:43.0976 5732 AsIO - ok 12:31:44.0008 5732 asmthub3 (954950d11ada98ac1b7ee3c770e4622c) C:\Windows\system32\DRIVERS\asmthub3.sys 12:31:44.0018 5732 asmthub3 - ok 12:31:44.0055 5732 asmtxhci (01dbb05db1db95803e3c9f2b49afe79c) C:\Windows\system32\DRIVERS\asmtxhci.sys 12:31:44.0084 5732 asmtxhci - ok 12:31:44.0118 5732 AsUpIO - ok 12:31:44.0143 5732 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 12:31:44.0299 5732 AsyncMac - ok 12:31:44.0365 5732 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 12:31:44.0389 5732 atapi - ok 12:31:44.0459 5732 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys 12:31:44.0533 5732 b06bdrv - ok 12:31:44.0585 5732 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 12:31:44.0626 5732 b57nd60a - ok 12:31:44.0665 5732 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 12:31:44.0720 5732 Beep - ok 12:31:44.0799 5732 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 12:31:44.0842 5732 blbdrive - ok 12:31:44.0872 5732 BlueletAudio - ok 12:31:44.0889 5732 BlueletSCOAudio - ok 12:31:44.0936 5732 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 12:31:45.0024 5732 bowser - ok 12:31:45.0042 5732 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys 12:31:45.0066 5732 BrFiltLo - ok 12:31:45.0086 5732 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys 12:31:45.0103 5732 BrFiltUp - ok 12:31:45.0134 5732 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 12:31:45.0179 5732 Brserid - ok 12:31:45.0222 5732 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 12:31:45.0264 5732 BrSerWdm - ok 12:31:45.0294 5732 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 12:31:45.0335 5732 BrUsbMdm - ok 12:31:45.0353 5732 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 12:31:45.0377 5732 BrUsbSer - ok 12:31:45.0394 5732 BT - ok 12:31:45.0471 5732 Btcsrusb (e0c1e6b70e0c626b37e643b799e434f3) C:\Windows\system32\Drivers\btcusb.sys 12:31:45.0482 5732 Btcsrusb - ok 12:31:45.0522 5732 BthAvrcp (832b121e4532919cc49f2438f1dcaa21) C:\Windows\system32\DRIVERS\BthAvrcp.sys 12:31:45.0535 5732 BthAvrcp - ok 12:31:45.0600 5732 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys 12:31:45.0636 5732 BthEnum - ok 12:31:45.0643 5732 BTHidEnum - ok 12:31:45.0661 5732 BTHidMgr - ok 12:31:45.0678 5732 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 12:31:45.0714 5732 BTHMODEM - ok 12:31:45.0747 5732 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys 12:31:45.0794 5732 BthPan - ok 12:31:45.0821 5732 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys 12:31:45.0875 5732 BTHPORT - ok 12:31:45.0925 5732 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys 12:31:45.0955 5732 BTHUSB - ok 12:31:45.0990 5732 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 12:31:46.0040 5732 cdfs - ok 12:31:46.0084 5732 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys 12:31:46.0125 5732 cdrom - ok 12:31:46.0198 5732 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys 12:31:46.0258 5732 circlass - ok 12:31:46.0296 5732 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 12:31:46.0349 5732 CLFS - ok 12:31:46.0433 5732 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys 12:31:46.0456 5732 CmBatt - ok 12:31:46.0482 5732 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 12:31:46.0498 5732 cmdide - ok 12:31:46.0540 5732 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys 12:31:46.0565 5732 CNG - ok 12:31:46.0614 5732 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys 12:31:46.0621 5732 Compbatt - ok 12:31:46.0644 5732 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys 12:31:46.0677 5732 CompositeBus - ok 12:31:46.0687 5732 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys 12:31:46.0698 5732 crcdisk - ok 12:31:46.0753 5732 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys 12:31:46.0814 5732 CSC - ok 12:31:46.0871 5732 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 12:31:46.0928 5732 DfsC - ok 12:31:46.0973 5732 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 12:31:47.0027 5732 discache - ok 12:31:47.0057 5732 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys 12:31:47.0084 5732 Disk - ok 12:31:47.0120 5732 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys 12:31:47.0154 5732 dmvsc - ok 12:31:47.0196 5732 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 12:31:47.0234 5732 drmkaud - ok 12:31:47.0305 5732 DSFKSVCS (4c639a503201e3f9fb001b840b934a3f) C:\Windows\system32\DRIVERS\dsfksvcs.sys 12:31:47.0323 5732 DSFKSVCS - ok 12:31:47.0341 5732 dsfroot (13699ba0680d8eeef67945f5a405610c) C:\Windows\system32\DRIVERS\dsfroot.sys 12:31:47.0348 5732 dsfroot - ok 12:31:47.0385 5732 dtsoftbus01 (400582b09e0bb557d0ec28a945150eeb) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 12:31:47.0397 5732 dtsoftbus01 - ok 12:31:47.0437 5732 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 12:31:47.0468 5732 DXGKrnl - ok 12:31:47.0515 5732 eamonm (aca3fe4f18a945b7bf2618a79f6f670b) C:\Windows\system32\DRIVERS\eamonm.sys 12:31:47.0544 5732 eamonm - ok 12:31:47.0640 5732 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys 12:31:47.0765 5732 ebdrv - ok 12:31:47.0812 5732 ehdrv (6672438bdcbfd87250d22112d458294d) C:\Windows\system32\DRIVERS\ehdrv.sys 12:31:47.0853 5732 ehdrv - ok 12:31:47.0899 5732 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys 12:31:47.0923 5732 elxstor - ok 12:31:47.0939 5732 epfw (443805b5b11c859ac8ca35297648ff0c) C:\Windows\system32\DRIVERS\epfw.sys 12:31:47.0951 5732 epfw - ok 12:31:47.0970 5732 Epfwndis (66e61bc6c9f519a99275eb0f0e530bf4) C:\Windows\system32\DRIVERS\Epfwndis.sys 12:31:47.0989 5732 Epfwndis - ok 12:31:48.0027 5732 epfwwfp (f72c97f3d34ea5ec919c73e3901266bb) C:\Windows\system32\DRIVERS\epfwwfp.sys 12:31:48.0045 5732 epfwwfp - ok 12:31:48.0060 5732 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 12:31:48.0078 5732 ErrDev - ok 12:31:48.0110 5732 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 12:31:48.0159 5732 exfat - ok 12:31:48.0185 5732 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 12:31:48.0238 5732 fastfat - ok 12:31:48.0259 5732 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys 12:31:48.0286 5732 fdc - ok 12:31:48.0312 5732 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 12:31:48.0327 5732 FileInfo - ok 12:31:48.0342 5732 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 12:31:48.0384 5732 Filetrace - ok 12:31:48.0465 5732 FLASHSYS (5b314cc7640d091de8f3bc822490da28) C:\Program Files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys 12:31:48.0490 5732 FLASHSYS - ok 12:31:48.0498 5732 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys 12:31:48.0512 5732 flpydisk - ok 12:31:48.0544 5732 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 12:31:48.0580 5732 FltMgr - ok 12:31:48.0607 5732 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 12:31:48.0622 5732 FsDepends - ok 12:31:48.0637 5732 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys 12:31:48.0650 5732 Fs_Rec - ok 12:31:48.0660 5732 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 12:31:48.0684 5732 fvevol - ok 12:31:48.0708 5732 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys 12:31:48.0735 5732 gagp30kx - ok 12:31:48.0785 5732 GWHid (5c2cd67845d77e3bc968ef84e1090754) C:\Windows\system32\DRIVERS\GWHid.sys 12:31:48.0809 5732 GWHid - ok 12:31:48.0817 5732 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 12:31:48.0843 5732 hcw85cir - ok 12:31:48.0893 5732 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 12:31:48.0920 5732 HdAudAddService - ok 12:31:48.0939 5732 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys 12:31:48.0966 5732 HDAudBus - ok 12:31:48.0973 5732 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys 12:31:49.0007 5732 HidBatt - ok 12:31:49.0030 5732 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys 12:31:49.0053 5732 HidBth - ok 12:31:49.0087 5732 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys 12:31:49.0111 5732 HidIr - ok 12:31:49.0136 5732 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys 12:31:49.0167 5732 HidUsb - ok 12:31:49.0199 5732 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 12:31:49.0212 5732 HpSAMD - ok 12:31:49.0236 5732 HRMACPI - ok 12:31:49.0267 5732 HRMCFGSPC (1696a06c0ef55dfcd540b32556d3819a) C:\Windows\system32\DRIVERS\HRMCFGSPC.SYS 12:31:49.0278 5732 HRMCFGSPC - ok 12:31:49.0293 5732 HRMINTS (f58f8f2a11ce4a695c9333c416d0321f) C:\Windows\system32\DRIVERS\HRMINTS.SYS 12:31:49.0316 5732 HRMINTS - ok 12:31:49.0331 5732 HRMPORTS (6bc42dc759d42a4edca7452b4d08d870) C:\Windows\system32\DRIVERS\HRMPORTS.SYS 12:31:49.0339 5732 HRMPORTS - ok 12:31:49.0361 5732 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 12:31:49.0411 5732 HTTP - ok 12:31:49.0428 5732 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 12:31:49.0441 5732 hwpolicy - ok 12:31:49.0467 5732 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys 12:31:49.0482 5732 i8042prt - ok 12:31:49.0513 5732 iaStor (d1e30259353e7d8d1b713a76cddeb88b) C:\Windows\system32\DRIVERS\iaStor.sys 12:31:49.0522 5732 iaStor - ok 12:31:49.0560 5732 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 12:31:49.0597 5732 iaStorV - ok 12:31:49.0639 5732 ICCWDT (c1010add3ddae1196ed21057af7b2aae) C:\Windows\system32\DRIVERS\ICCWDT.sys 12:31:49.0662 5732 ICCWDT - ok 12:31:49.0687 5732 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys 12:31:49.0693 5732 iirsp - ok 12:31:50.0056 5732 IntcAzAudAddService (589b94a9b73a0e819ff873743a480834) C:\Windows\system32\drivers\RTKVHD64.sys 12:31:50.0085 5732 IntcAzAudAddService - ok 12:31:50.0108 5732 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 12:31:50.0114 5732 intelide - ok 12:31:50.0141 5732 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 12:31:50.0154 5732 intelppm - ok 12:31:50.0177 5732 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 12:31:50.0198 5732 IpFilterDriver - ok 12:31:50.0276 5732 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 12:31:50.0292 5732 IPMIDRV - ok 12:31:50.0315 5732 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 12:31:50.0378 5732 IPNAT - ok 12:31:50.0405 5732 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 12:31:50.0454 5732 IRENUM - ok 12:31:50.0488 5732 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 12:31:50.0504 5732 isapnp - ok 12:31:50.0538 5732 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 12:31:50.0559 5732 iScsiPrt - ok 12:31:50.0578 5732 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 12:31:50.0584 5732 kbdclass - ok 12:31:50.0619 5732 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys 12:31:50.0649 5732 kbdhid - ok 12:31:50.0835 5732 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys 12:31:50.0848 5732 KSecDD - ok 12:31:50.0882 5732 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys 12:31:50.0902 5732 KSecPkg - ok 12:31:50.0919 5732 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 12:31:50.0960 5732 ksthunk - ok 12:31:50.0990 5732 LGDDCDevice - ok 12:31:50.0996 5732 LGII2CDevice - ok 12:31:51.0032 5732 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 12:31:51.0077 5732 lltdio - ok 12:31:51.0114 5732 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys 12:31:51.0138 5732 LSI_FC - ok 12:31:51.0156 5732 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys 12:31:51.0170 5732 LSI_SAS - ok 12:31:51.0191 5732 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys 12:31:51.0205 5732 LSI_SAS2 - ok 12:31:51.0221 5732 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys 12:31:51.0236 5732 LSI_SCSI - ok 12:31:51.0258 5732 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 12:31:51.0298 5732 luafv - ok 12:31:51.0377 5732 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys 12:31:51.0401 5732 MBAMProtector - ok 12:31:51.0447 5732 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys 12:31:51.0481 5732 megasas - ok 12:31:51.0550 5732 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys 12:31:51.0584 5732 MegaSR - ok 12:31:51.0610 5732 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys 12:31:51.0615 5732 MEIx64 - ok 12:31:51.0667 5732 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 12:31:51.0707 5732 Modem - ok 12:31:51.0746 5732 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 12:31:51.0774 5732 monitor - ok 12:31:51.0794 5732 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 12:31:51.0805 5732 mouclass - ok 12:31:51.0830 5732 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 12:31:51.0852 5732 mouhid - ok 12:31:51.0874 5732 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 12:31:51.0891 5732 mountmgr - ok 12:31:51.0918 5732 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 12:31:51.0929 5732 mpio - ok 12:31:51.0951 5732 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 12:31:52.0000 5732 mpsdrv - ok 12:31:52.0022 5732 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 12:31:52.0034 5732 MRxDAV - ok 12:31:52.0061 5732 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 12:31:52.0093 5732 mrxsmb - ok 12:31:52.0117 5732 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 12:31:52.0172 5732 mrxsmb10 - ok 12:31:52.0190 5732 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 12:31:52.0207 5732 mrxsmb20 - ok 12:31:52.0221 5732 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 12:31:52.0234 5732 msahci - ok 12:31:52.0260 5732 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 12:31:52.0275 5732 msdsm - ok 12:31:52.0307 5732 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 12:31:52.0336 5732 Msfs - ok 12:31:52.0356 5732 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 12:31:52.0401 5732 mshidkmdf - ok 12:31:52.0426 5732 MSICDSetup - ok 12:31:52.0446 5732 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 12:31:52.0458 5732 msisadrv - ok 12:31:52.0475 5732 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 12:31:52.0506 5732 MSKSSRV - ok 12:31:52.0513 5732 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 12:31:52.0548 5732 MSPCLOCK - ok 12:31:52.0554 5732 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 12:31:52.0594 5732 MSPQM - ok 12:31:52.0621 5732 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 12:31:52.0631 5732 MsRPC - ok 12:31:52.0649 5732 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys 12:31:52.0654 5732 mssmbios - ok 12:31:52.0667 5732 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 12:31:52.0689 5732 MSTEE - ok 12:31:52.0710 5732 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys 12:31:52.0737 5732 MTConfig - ok 12:31:52.0761 5732 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 12:31:52.0786 5732 Mup - ok 12:31:52.0819 5732 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 12:31:52.0865 5732 NativeWifiP - ok 12:31:52.0916 5732 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 12:31:52.0970 5732 NDIS - ok 12:31:52.0994 5732 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 12:31:53.0032 5732 NdisCap - ok 12:31:53.0065 5732 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 12:31:53.0086 5732 NdisTapi - ok 12:31:53.0103 5732 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 12:31:53.0134 5732 Ndisuio - ok 12:31:53.0158 5732 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 12:31:53.0199 5732 NdisWan - ok 12:31:53.0223 5732 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 12:31:53.0258 5732 NDProxy - ok 12:31:53.0277 5732 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 12:31:53.0318 5732 NetBIOS - ok 12:31:53.0341 5732 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 12:31:53.0378 5732 NetBT - ok 12:31:53.0471 5732 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys 12:31:53.0508 5732 nfrd960 - ok 12:31:53.0550 5732 nmwcd (5fe6f8c05f0769bbb74afac11453b182) C:\Windows\system32\drivers\ccdcmbx64.sys 12:31:53.0583 5732 nmwcd - ok 12:31:53.0646 5732 nmwcdc (73c929945c0850b8d1fe2fea05fdf05d) C:\Windows\system32\drivers\ccdcmbox64.sys 12:31:53.0689 5732 nmwcdc - ok 12:31:53.0712 5732 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 12:31:53.0756 5732 Npfs - ok 12:31:53.0772 5732 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 12:31:53.0808 5732 nsiproxy - ok 12:31:53.0867 5732 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 12:31:53.0934 5732 Ntfs - ok 12:31:53.0951 5732 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 12:31:54.0000 5732 Null - ok 12:31:54.0058 5732 NVHDA (8d4aac74b571fc356560e5b308955e93) C:\Windows\system32\drivers\nvhda64v.sys 12:31:54.0070 5732 NVHDA - ok 12:31:54.0394 5732 nvlddmkm (0eb204639119370f5f8f2871fbf4e14b) C:\Windows\system32\DRIVERS\nvlddmkm.sys 12:31:54.0532 5732 nvlddmkm - ok 12:31:54.0572 5732 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 12:31:54.0588 5732 nvraid - ok 12:31:54.0619 5732 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 12:31:54.0657 5732 nvstor - ok 12:31:54.0718 5732 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 12:31:54.0741 5732 nv_agp - ok 12:31:54.0755 5732 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 12:31:54.0780 5732 ohci1394 - ok 12:31:54.0805 5732 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys 12:31:54.0830 5732 Parport - ok 12:31:54.0844 5732 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys 12:31:54.0859 5732 partmgr - ok 12:31:54.0895 5732 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys 12:31:54.0932 5732 pccsmcfd - ok 12:31:54.0956 5732 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 12:31:55.0015 5732 pci - ok 12:31:55.0037 5732 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 12:31:55.0062 5732 pciide - ok 12:31:55.0084 5732 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys 12:31:55.0116 5732 pcmcia - ok 12:31:55.0142 5732 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 12:31:55.0169 5732 pcw - ok 12:31:55.0195 5732 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 12:31:55.0277 5732 PEAUTH - ok 12:31:55.0389 5732 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 12:31:55.0453 5732 PptpMiniport - ok 12:31:55.0474 5732 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys 12:31:55.0503 5732 Processor - ok 12:31:55.0526 5732 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 12:31:55.0564 5732 Psched - ok 12:31:55.0641 5732 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys 12:31:55.0679 5732 ql2300 - ok 12:31:55.0708 5732 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys 12:31:55.0717 5732 ql40xx - ok 12:31:55.0737 5732 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 12:31:55.0756 5732 QWAVEdrv - ok 12:31:55.0787 5732 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 12:31:55.0836 5732 RasAcd - ok 12:31:55.0878 5732 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 12:31:55.0913 5732 RasAgileVpn - ok 12:31:55.0935 5732 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 12:31:55.0990 5732 Rasl2tp - ok 12:31:56.0006 5732 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 12:31:56.0059 5732 RasPppoe - ok 12:31:56.0079 5732 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 12:31:56.0109 5732 RasSstp - ok 12:31:56.0138 5732 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 12:31:56.0198 5732 rdbss - ok 12:31:56.0213 5732 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 12:31:56.0248 5732 rdpbus - ok 12:31:56.0271 5732 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 12:31:56.0292 5732 RDPCDD - ok 12:31:56.0319 5732 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys 12:31:56.0375 5732 RDPDR - ok 12:31:56.0398 5732 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 12:31:56.0447 5732 RDPENCDD - ok 12:31:56.0462 5732 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 12:31:56.0498 5732 RDPREFMP - ok 12:31:56.0533 5732 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys 12:31:56.0564 5732 RDPWD - ok 12:31:56.0574 5732 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 12:31:56.0582 5732 rdyboost - ok 12:31:56.0664 5732 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys 12:31:56.0718 5732 RFCOMM - ok 12:31:56.0759 5732 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys 12:31:56.0808 5732 ROOTMODEM - ok 12:31:56.0830 5732 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 12:31:56.0879 5732 rspndr - ok 12:31:56.0904 5732 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys 12:31:56.0920 5732 RTL8167 - ok 12:31:56.0951 5732 RtNdPt60 (e16b7c030a05ef649b18fab0a93d871f) C:\Windows\system32\DRIVERS\RtNdPt60.sys 12:31:56.0972 5732 RtNdPt60 - ok 12:31:57.0006 5732 RTTEAMPT (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 12:31:57.0014 5732 RTTEAMPT - ok 12:31:57.0026 5732 RTVLANPT (b1018aa1b5735f5fa89fd4dadf4bea7a) C:\Windows\system32\DRIVERS\RtVlan60.sys 12:31:57.0046 5732 RTVLANPT - ok 12:31:57.0082 5732 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys 12:31:57.0113 5732 s3cap - ok 12:31:57.0140 5732 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 12:31:57.0167 5732 sbp2port - ok 12:31:57.0182 5732 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 12:31:57.0230 5732 scfilter - ok 12:31:57.0261 5732 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 12:31:57.0307 5732 secdrv - ok 12:31:57.0355 5732 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 12:31:57.0396 5732 Serenum - ok 12:31:57.0417 5732 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 12:31:57.0469 5732 Serial - ok 12:31:57.0500 5732 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys 12:31:57.0528 5732 sermouse - ok 12:31:57.0596 5732 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 12:31:57.0619 5732 sffdisk - ok 12:31:57.0638 5732 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 12:31:57.0681 5732 sffp_mmc - ok 12:31:57.0689 5732 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 12:31:57.0725 5732 sffp_sd - ok 12:31:57.0747 5732 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys 12:31:57.0783 5732 sfloppy - ok 12:31:57.0805 5732 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys 12:31:57.0847 5732 SiSRaid2 - ok 12:31:57.0871 5732 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys 12:31:57.0899 5732 SiSRaid4 - ok 12:31:57.0920 5732 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 12:31:57.0979 5732 Smb - ok 12:31:58.0041 5732 softehci (5da8039e58b3a557c6a744e476cdeb7f) C:\Windows\system32\DRIVERS\softehci.sys 12:31:58.0092 5732 softehci - ok 12:31:58.0129 5732 SOFTHIDUSBK (26d2b0ff718219809c0bc3a8b061c6ec) C:\Windows\system32\DRIVERS\SOFTHIDUSBK.SYS 12:31:58.0158 5732 SOFTHIDUSBK - ok 12:31:58.0191 5732 SOFTUSBK (e1702bbe8d31b6edd5c6881c80f123a8) C:\Windows\system32\DRIVERS\SOFTUSBK.SYS 12:31:58.0210 5732 SOFTUSBK - ok 12:31:58.0216 5732 SOFTUSBTESTHUB - ok 12:31:58.0222 5732 SOFTWADP - ok 12:31:58.0246 5732 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 12:31:58.0271 5732 spldr - ok 12:31:58.0354 5732 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 12:31:58.0444 5732 srv - ok 12:31:58.0481 5732 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 12:31:58.0507 5732 srv2 - ok 12:31:58.0573 5732 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 12:31:58.0639 5732 srvnet - ok 12:31:58.0689 5732 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys 12:31:58.0700 5732 stexstor - ok 12:31:58.0735 5732 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys 12:31:58.0746 5732 storflt - ok 12:31:58.0769 5732 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys 12:31:58.0795 5732 storvsc - ok 12:31:58.0814 5732 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys 12:31:58.0839 5732 swenum - ok 12:31:58.0905 5732 tap0901 (4ef44915e522f3ecd1a3ff540aa64126) C:\Windows\system32\DRIVERS\tap0901.sys 12:31:58.0953 5732 tap0901 - ok 12:31:59.0032 5732 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys 12:31:59.0127 5732 Tcpip - ok 12:31:59.0182 5732 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys 12:31:59.0215 5732 TCPIP6 - ok 12:31:59.0233 5732 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 12:31:59.0263 5732 tcpipreg - ok 12:31:59.0285 5732 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 12:31:59.0318 5732 TDPIPE - ok 12:31:59.0359 5732 Tdsshbecr (03e62cd83a62859f4f796434ee6c385e) C:\Windows\system32\DRIVERS\shbecr.sys 12:31:59.0377 5732 Tdsshbecr - ok 12:31:59.0394 5732 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys 12:31:59.0430 5732 TDTCP - ok 12:31:59.0467 5732 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 12:31:59.0533 5732 tdx - ok 12:31:59.0622 5732 TEAM (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 12:31:59.0626 5732 TEAM - ok 12:31:59.0649 5732 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys 12:31:59.0662 5732 TermDD - ok 12:31:59.0688 5732 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 12:31:59.0720 5732 tssecsrv - ok 12:31:59.0749 5732 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 12:31:59.0771 5732 TsUsbFlt - ok 12:31:59.0789 5732 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys 12:31:59.0815 5732 TsUsbGD - ok 12:31:59.0857 5732 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 12:31:59.0957 5732 tunnel - ok 12:31:59.0972 5732 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys 12:31:59.0986 5732 uagp35 - ok 12:32:00.0004 5732 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 12:32:00.0029 5732 udfs - ok 12:32:00.0043 5732 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 12:32:00.0057 5732 uliagpkx - ok 12:32:00.0071 5732 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys 12:32:00.0094 5732 umbus - ok 12:32:00.0111 5732 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys 12:32:00.0136 5732 UmPass - ok 12:32:00.0184 5732 upperdev (34afb83c7bba370e404e52cc2290350c) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys 12:32:00.0225 5732 upperdev - ok 12:32:00.0257 5732 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 12:32:00.0286 5732 usbccgp - ok 12:32:00.0303 5732 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 12:32:00.0317 5732 usbcir - ok 12:32:00.0333 5732 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys 12:32:00.0359 5732 usbehci - ok 12:32:00.0386 5732 usbehci_dsf (dc2b97b8865042fc17c82381ac426d1c) C:\Windows\system32\DRIVERS\usbehci_dsf.sys 12:32:00.0412 5732 usbehci_dsf - ok 12:32:00.0449 5732 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 12:32:00.0482 5732 usbhub - ok 12:32:00.0503 5732 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys 12:32:00.0605 5732 usbohci - ok 12:32:00.0629 5732 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 12:32:00.0655 5732 usbprint - ok 12:32:00.0779 5732 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys 12:32:00.0813 5732 usbscan - ok 12:32:00.0878 5732 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys 12:32:00.0903 5732 usbser - ok 12:32:00.0925 5732 UsbserFilt (aa75e1efbee7186b4cbaaacf1f15e6ca) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys 12:32:00.0961 5732 UsbserFilt - ok 12:32:00.0995 5732 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS 12:32:01.0003 5732 USBSTOR - ok 12:32:01.0037 5732 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys 12:32:01.0067 5732 usbuhci - ok 12:32:01.0092 5732 VComm - ok 12:32:01.0112 5732 VcommMgr - ok 12:32:01.0137 5732 VDiskBus (1d3d716e05caa17122de65d0dba4f6d7) C:\Windows\system32\DRIVERS\VDiskBus64.sys 12:32:01.0160 5732 VDiskBus - ok 12:32:01.0197 5732 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 12:32:01.0231 5732 vdrvroot - ok 12:32:01.0270 5732 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 12:32:01.0286 5732 vga - ok 12:32:01.0306 5732 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 12:32:01.0368 5732 VgaSave - ok 12:32:01.0434 5732 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 12:32:01.0462 5732 vhdmp - ok 12:32:01.0483 5732 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 12:32:01.0500 5732 viaide - ok 12:32:01.0539 5732 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys 12:32:01.0617 5732 vmbus - ok 12:32:01.0652 5732 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys 12:32:01.0675 5732 VMBusHID - ok 12:32:01.0702 5732 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 12:32:01.0723 5732 volmgr - ok 12:32:01.0749 5732 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 12:32:01.0765 5732 volmgrx - ok 12:32:01.0814 5732 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 12:32:01.0869 5732 volsnap - ok 12:32:01.0902 5732 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys 12:32:01.0932 5732 vsmraid - ok 12:32:01.0957 5732 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys 12:32:01.0987 5732 vwifibus - ok 12:32:02.0013 5732 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys 12:32:02.0035 5732 WacomPen - ok 12:32:02.0052 5732 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 12:32:02.0103 5732 WANARP - ok 12:32:02.0123 5732 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 12:32:02.0144 5732 Wanarpv6 - ok 12:32:02.0204 5732 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys 12:32:02.0216 5732 Wd - ok 12:32:02.0232 5732 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 12:32:02.0259 5732 Wdf01000 - ok 12:32:02.0281 5732 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 12:32:02.0309 5732 WfpLwf - ok 12:32:02.0333 5732 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 12:32:02.0346 5732 WIMMount - ok 12:32:02.0430 5732 WinRing0_1_2_0 (0c0195c48b6b8582fa6f6373032118da) E:\Real_Temp3.60_www.INSTALKI.pl\WinRing0x64.sys 12:32:02.0457 5732 WinRing0_1_2_0 - ok 12:32:02.0522 5732 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys 12:32:02.0559 5732 WinUsb - ok 12:32:02.0592 5732 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys 12:32:02.0600 5732 WmiAcpi - ok 12:32:02.0624 5732 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 12:32:02.0657 5732 ws2ifsl - ok 12:32:02.0667 5732 WSOFTUSBK - ok 12:32:02.0685 5732 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 12:32:02.0725 5732 WudfPf - ok 12:32:02.0745 5732 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys 12:32:02.0773 5732 WUDFRd - ok 12:32:02.0800 5732 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 12:32:02.0924 5732 \Device\Harddisk0\DR0 - ok 12:32:02.0929 5732 MBR (0x1B8) (00398b03933cb7580168d3028443248f) \Device\Harddisk1\DR1 12:32:11.0614 5732 \Device\Harddisk1\DR1 - ok 12:32:11.0617 5732 Boot (0x1200) (596b5f9925ba890f00ce754536c27b1d) \Device\Harddisk0\DR0\Partition0 12:32:11.0617 5732 \Device\Harddisk0\DR0\Partition0 - ok 12:32:11.0645 5732 Boot (0x1200) (f6ad5e4b25c34b31f72cdddcc5437d1b) \Device\Harddisk0\DR0\Partition1 12:32:11.0646 5732 \Device\Harddisk0\DR0\Partition1 - ok 12:32:11.0667 5732 Boot (0x1200) (38d41339708f62b5de168d2a594b4ddd) \Device\Harddisk0\DR0\Partition2 12:32:11.0669 5732 \Device\Harddisk0\DR0\Partition2 - ok 12:32:11.0689 5732 Boot (0x1200) (f47de2c3dd2e33e0ba93658f18a85026) \Device\Harddisk0\DR0\Partition3 12:32:11.0690 5732 \Device\Harddisk0\DR0\Partition3 - ok 12:32:11.0690 5732 ============================================================ 12:32:11.0690 5732 Scan finished 12:32:11.0690 5732 ============================================================ 12:32:11.0701 5756 Detected object count: 0 12:32:11.0701 5756 Actual detected object count: 0 12:32:45.0849 5188 Deinitialize success [/spoiler] TDSSKiller.2.7.14.0_18.03.2012_16.39.14_log [spoiler]16:39:14.0840 5272 TDSS rootkit removing tool 2.7.14.0 Feb 22 2012 16:54:49 16:39:16.0890 5272 Perform update action was selected 16:39:16.0892 5588 Deinitialize success [/spoiler] TDSSKiller.2.7.14.0_24.02.2012_14.34.50_log [spoiler]14:34:50.0475 4440 TDSS rootkit removing tool 2.7.14.0 Feb 22 2012 16:54:49 14:34:52.0488 4440 ============================================================ 14:34:52.0488 4440 Current date / time: 2012/02/24 14:34:52.0488 14:34:52.0488 4440 SystemInfo: 14:34:52.0488 4440 14:34:52.0488 4440 OS Version: 6.1.7601 ServicePack: 1.0 14:34:52.0488 4440 Product type: Workstation 14:34:52.0488 4440 ComputerName: DAWID-KOMPUTER 14:34:52.0488 4440 UserName: Dawid 14:34:52.0488 4440 Windows directory: C:\Windows 14:34:52.0488 4440 System windows directory: C:\Windows 14:34:52.0488 4440 Running under WOW64 14:34:52.0488 4440 Processor architecture: Intel x64 14:34:52.0488 4440 Number of processors: 4 14:34:52.0488 4440 Page size: 0x1000 14:34:52.0488 4440 Boot type: Normal boot 14:34:52.0488 4440 ============================================================ 14:34:52.0831 4440 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 14:34:52.0846 4440 \Device\Harddisk0\DR0: 14:34:52.0846 4440 MBR used 14:34:52.0846 4440 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 14:34:52.0846 4440 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1364F800 14:34:52.0846 4440 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13682000, BlocksNum 0x13682000 14:34:52.0846 4440 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x26D04000, BlocksNum 0x13681800 14:34:52.0987 4440 Initialize success 14:34:52.0987 4440 ============================================================ 14:34:56.0934 3656 ============================================================ 14:34:56.0934 3656 Scan started 14:34:56.0934 3656 Mode: Manual; SigCheck; TDLFS; 14:34:56.0934 3656 ============================================================ 14:34:57.0277 3656 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 14:34:57.0324 3656 1394ohci - ok 14:34:57.0370 3656 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 14:34:57.0386 3656 ACPI - ok 14:34:57.0417 3656 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 14:34:57.0433 3656 AcpiPmi - ok 14:34:57.0480 3656 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys 14:34:57.0495 3656 adp94xx - ok 14:34:57.0511 3656 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys 14:34:57.0526 3656 adpahci - ok 14:34:57.0542 3656 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys 14:34:57.0542 3656 adpu320 - ok 14:34:57.0604 3656 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys 14:34:57.0636 3656 AFD - ok 14:34:57.0667 3656 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 14:34:57.0667 3656 agp440 - ok 14:34:57.0714 3656 AiChargerPlus (8b6625d53c18774f0102f690e285b5e8) C:\Windows\system32\DRIVERS\AiChargerPlus.sys 14:34:57.0745 3656 AiChargerPlus - ok 14:34:57.0776 3656 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 14:34:57.0776 3656 aliide - ok 14:34:57.0792 3656 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 14:34:57.0792 3656 amdide - ok 14:34:57.0838 3656 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys 14:34:57.0854 3656 AmdK8 - ok 14:34:57.0870 3656 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys 14:34:57.0870 3656 AmdPPM - ok 14:34:57.0901 3656 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 14:34:57.0916 3656 amdsata - ok 14:34:57.0963 3656 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys 14:34:57.0994 3656 amdsbs - ok 14:34:58.0057 3656 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 14:34:58.0072 3656 amdxata - ok 14:34:58.0119 3656 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 14:34:58.0182 3656 AppID - ok 14:34:58.0244 3656 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys 14:34:58.0260 3656 arc - ok 14:34:58.0275 3656 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys 14:34:58.0291 3656 arcsas - ok 14:34:58.0431 3656 ASFLTDrv.sys (2921131f9a111fd6c6d2c5e1e5b6b75c) C:\Program Files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys 14:34:58.0447 3656 ASFLTDrv.sys - ok 14:34:58.0447 3656 AsIO - ok 14:34:58.0478 3656 asmthub3 (954950d11ada98ac1b7ee3c770e4622c) C:\Windows\system32\DRIVERS\asmthub3.sys 14:34:58.0478 3656 asmthub3 - ok 14:34:58.0525 3656 asmtxhci (01dbb05db1db95803e3c9f2b49afe79c) C:\Windows\system32\DRIVERS\asmtxhci.sys 14:34:58.0525 3656 asmtxhci - ok 14:34:58.0556 3656 AsUpIO - ok 14:34:58.0603 3656 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 14:34:58.0665 3656 AsyncMac - ok 14:34:58.0712 3656 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 14:34:58.0728 3656 atapi - ok 14:34:58.0790 3656 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys 14:34:58.0821 3656 b06bdrv - ok 14:34:58.0837 3656 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 14:34:58.0852 3656 b57nd60a - ok 14:34:58.0884 3656 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 14:34:58.0899 3656 Beep - ok 14:34:58.0962 3656 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 14:34:58.0962 3656 blbdrive - ok 14:34:59.0008 3656 BlueletAudio - ok 14:34:59.0024 3656 BlueletSCOAudio - ok 14:34:59.0071 3656 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 14:34:59.0086 3656 bowser - ok 14:34:59.0118 3656 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys 14:34:59.0133 3656 BrFiltLo - ok 14:34:59.0149 3656 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys 14:34:59.0164 3656 BrFiltUp - ok 14:34:59.0227 3656 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 14:34:59.0242 3656 Brserid - ok 14:34:59.0274 3656 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 14:34:59.0289 3656 BrSerWdm - ok 14:34:59.0305 3656 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 14:34:59.0320 3656 BrUsbMdm - ok 14:34:59.0336 3656 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 14:34:59.0352 3656 BrUsbSer - ok 14:34:59.0367 3656 BT - ok 14:34:59.0445 3656 Btcsrusb (e0c1e6b70e0c626b37e643b799e434f3) C:\Windows\system32\Drivers\btcusb.sys 14:34:59.0461 3656 Btcsrusb - ok 14:34:59.0492 3656 BthAvrcp (832b121e4532919cc49f2438f1dcaa21) C:\Windows\system32\DRIVERS\BthAvrcp.sys 14:34:59.0508 3656 BthAvrcp - ok 14:34:59.0570 3656 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys 14:34:59.0570 3656 BthEnum - ok 14:34:59.0586 3656 BTHidEnum - ok 14:34:59.0601 3656 BTHidMgr - ok 14:34:59.0632 3656 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 14:34:59.0664 3656 BTHMODEM - ok 14:34:59.0710 3656 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys 14:34:59.0726 3656 BthPan - ok 14:34:59.0757 3656 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys 14:34:59.0773 3656 BTHPORT - ok 14:34:59.0820 3656 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys 14:34:59.0820 3656 BTHUSB - ok 14:34:59.0851 3656 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 14:34:59.0882 3656 cdfs - ok 14:34:59.0944 3656 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys 14:34:59.0960 3656 cdrom - ok 14:34:59.0991 3656 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys 14:35:00.0007 3656 circlass - ok 14:35:00.0054 3656 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 14:35:00.0085 3656 CLFS - ok 14:35:00.0147 3656 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys 14:35:00.0147 3656 CmBatt - ok 14:35:00.0163 3656 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 14:35:00.0178 3656 cmdide - ok 14:35:00.0210 3656 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys 14:35:00.0225 3656 CNG - ok 14:35:00.0256 3656 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys 14:35:00.0256 3656 Compbatt - ok 14:35:00.0288 3656 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys 14:35:00.0303 3656 CompositeBus - ok 14:35:00.0319 3656 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys 14:35:00.0319 3656 crcdisk - ok 14:35:00.0366 3656 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys 14:35:00.0381 3656 CSC - ok 14:35:00.0412 3656 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 14:35:00.0428 3656 DfsC - ok 14:35:00.0522 3656 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 14:35:00.0537 3656 discache - ok 14:35:00.0584 3656 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys 14:35:00.0600 3656 Disk - ok 14:35:00.0646 3656 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys 14:35:00.0647 3656 dmvsc - ok 14:35:00.0694 3656 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 14:35:00.0694 3656 drmkaud - ok 14:35:00.0757 3656 DSFKSVCS (4c639a503201e3f9fb001b840b934a3f) C:\Windows\system32\DRIVERS\dsfksvcs.sys 14:35:00.0772 3656 DSFKSVCS - ok 14:35:00.0803 3656 dsfroot (13699ba0680d8eeef67945f5a405610c) C:\Windows\system32\DRIVERS\dsfroot.sys 14:35:00.0819 3656 dsfroot - ok 14:35:00.0850 3656 dtsoftbus01 (400582b09e0bb557d0ec28a945150eeb) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 14:35:00.0850 3656 dtsoftbus01 - ok 14:35:00.0913 3656 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 14:35:00.0928 3656 DXGKrnl - ok 14:35:00.0959 3656 eamonm (aca3fe4f18a945b7bf2618a79f6f670b) C:\Windows\system32\DRIVERS\eamonm.sys 14:35:00.0975 3656 eamonm - ok 14:35:01.0069 3656 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys 14:35:01.0100 3656 ebdrv - ok 14:35:01.0147 3656 ehdrv (6672438bdcbfd87250d22112d458294d) C:\Windows\system32\DRIVERS\ehdrv.sys 14:35:01.0162 3656 ehdrv - ok 14:35:01.0193 3656 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys 14:35:01.0209 3656 elxstor - ok 14:35:01.0225 3656 epfw (443805b5b11c859ac8ca35297648ff0c) C:\Windows\system32\DRIVERS\epfw.sys 14:35:01.0240 3656 epfw - ok 14:35:01.0256 3656 Epfwndis (66e61bc6c9f519a99275eb0f0e530bf4) C:\Windows\system32\DRIVERS\Epfwndis.sys 14:35:01.0256 3656 Epfwndis - ok 14:35:01.0287 3656 epfwwfp (f72c97f3d34ea5ec919c73e3901266bb) C:\Windows\system32\DRIVERS\epfwwfp.sys 14:35:01.0334 3656 epfwwfp - ok 14:35:01.0349 3656 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 14:35:01.0365 3656 ErrDev - ok 14:35:01.0396 3656 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 14:35:01.0412 3656 exfat - ok 14:35:01.0443 3656 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 14:35:01.0474 3656 fastfat - ok 14:35:01.0505 3656 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys 14:35:01.0505 3656 fdc - ok 14:35:01.0537 3656 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 14:35:01.0537 3656 FileInfo - ok 14:35:01.0552 3656 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 14:35:01.0583 3656 Filetrace - ok 14:35:01.0661 3656 FLASHSYS (5b314cc7640d091de8f3bc822490da28) C:\Program Files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys 14:35:01.0661 3656 FLASHSYS - ok 14:35:01.0677 3656 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys 14:35:01.0693 3656 flpydisk - ok 14:35:01.0708 3656 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 14:35:01.0739 3656 FltMgr - ok 14:35:01.0771 3656 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 14:35:01.0802 3656 FsDepends - ok 14:35:01.0802 3656 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys 14:35:01.0817 3656 Fs_Rec - ok 14:35:01.0833 3656 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 14:35:01.0833 3656 fvevol - ok 14:35:01.0880 3656 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys 14:35:01.0911 3656 gagp30kx - ok 14:35:01.0942 3656 GWHid (5c2cd67845d77e3bc968ef84e1090754) C:\Windows\system32\DRIVERS\GWHid.sys 14:35:01.0942 3656 GWHid - ok 14:35:01.0958 3656 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 14:35:01.0958 3656 hcw85cir - ok 14:35:02.0005 3656 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 14:35:02.0020 3656 HdAudAddService - ok 14:35:02.0036 3656 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys 14:35:02.0051 3656 HDAudBus - ok 14:35:02.0051 3656 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys 14:35:02.0067 3656 HidBatt - ok 14:35:02.0083 3656 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys 14:35:02.0098 3656 HidBth - ok 14:35:02.0129 3656 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys 14:35:02.0145 3656 HidIr - ok 14:35:02.0207 3656 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys 14:35:02.0207 3656 HidUsb - ok 14:35:02.0270 3656 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 14:35:02.0285 3656 HpSAMD - ok 14:35:02.0301 3656 HRMACPI - ok 14:35:02.0348 3656 HRMCFGSPC (1696a06c0ef55dfcd540b32556d3819a) C:\Windows\system32\DRIVERS\HRMCFGSPC.SYS 14:35:02.0363 3656 HRMCFGSPC - ok 14:35:02.0379 3656 HRMINTS (f58f8f2a11ce4a695c9333c416d0321f) C:\Windows\system32\DRIVERS\HRMINTS.SYS 14:35:02.0395 3656 HRMINTS - ok 14:35:02.0426 3656 HRMPORTS (6bc42dc759d42a4edca7452b4d08d870) C:\Windows\system32\DRIVERS\HRMPORTS.SYS 14:35:02.0426 3656 HRMPORTS - ok 14:35:02.0457 3656 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 14:35:02.0504 3656 HTTP - ok 14:35:02.0535 3656 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 14:35:02.0551 3656 hwpolicy - ok 14:35:02.0582 3656 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys 14:35:02.0613 3656 i8042prt - ok 14:35:02.0660 3656 iaStor (d1e30259353e7d8d1b713a76cddeb88b) C:\Windows\system32\DRIVERS\iaStor.sys 14:35:02.0675 3656 iaStor - ok 14:35:02.0738 3656 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 14:35:02.0753 3656 iaStorV - ok 14:35:02.0785 3656 ICCWDT (c1010add3ddae1196ed21057af7b2aae) C:\Windows\system32\DRIVERS\ICCWDT.sys 14:35:02.0785 3656 ICCWDT - ok 14:35:02.0816 3656 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys 14:35:02.0831 3656 iirsp - ok 14:35:03.0003 3656 IntcAzAudAddService (589b94a9b73a0e819ff873743a480834) C:\Windows\system32\drivers\RTKVHD64.sys 14:35:03.0019 3656 IntcAzAudAddService - ok 14:35:03.0050 3656 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 14:35:03.0050 3656 intelide - ok 14:35:03.0081 3656 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 14:35:03.0097 3656 intelppm - ok 14:35:03.0112 3656 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 14:35:03.0143 3656 IpFilterDriver - ok 14:35:03.0159 3656 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 14:35:03.0159 3656 IPMIDRV - ok 14:35:03.0190 3656 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 14:35:03.0206 3656 IPNAT - ok 14:35:03.0221 3656 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 14:35:03.0237 3656 IRENUM - ok 14:35:03.0253 3656 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 14:35:03.0253 3656 isapnp - ok 14:35:03.0284 3656 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 14:35:03.0284 3656 iScsiPrt - ok 14:35:03.0299 3656 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 14:35:03.0315 3656 kbdclass - ok 14:35:03.0346 3656 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys 14:35:03.0362 3656 kbdhid - ok 14:35:03.0377 3656 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys 14:35:03.0393 3656 KSecDD - ok 14:35:03.0409 3656 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys 14:35:03.0409 3656 KSecPkg - ok 14:35:03.0424 3656 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 14:35:03.0455 3656 ksthunk - ok 14:35:03.0471 3656 LGDDCDevice - ok 14:35:03.0487 3656 LGII2CDevice - ok 14:35:03.0502 3656 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 14:35:03.0533 3656 lltdio - ok 14:35:03.0580 3656 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys 14:35:03.0611 3656 LSI_FC - ok 14:35:03.0674 3656 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys 14:35:03.0674 3656 LSI_SAS - ok 14:35:03.0705 3656 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys 14:35:03.0736 3656 LSI_SAS2 - ok 14:35:03.0783 3656 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys 14:35:03.0814 3656 LSI_SCSI - ok 14:35:03.0861 3656 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 14:35:03.0908 3656 luafv - ok 14:35:04.0001 3656 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys 14:35:04.0033 3656 MBAMProtector - ok 14:35:04.0095 3656 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys 14:35:04.0126 3656 megasas - ok 14:35:04.0142 3656 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys 14:35:04.0157 3656 MegaSR - ok 14:35:04.0189 3656 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys 14:35:04.0189 3656 MEIx64 - ok 14:35:04.0220 3656 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 14:35:04.0251 3656 Modem - ok 14:35:04.0282 3656 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 14:35:04.0298 3656 monitor - ok 14:35:04.0329 3656 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 14:35:04.0329 3656 mouclass - ok 14:35:04.0360 3656 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 14:35:04.0360 3656 mouhid - ok 14:35:04.0376 3656 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 14:35:04.0376 3656 mountmgr - ok 14:35:04.0407 3656 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 14:35:04.0407 3656 mpio - ok 14:35:04.0423 3656 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 14:35:04.0454 3656 mpsdrv - ok 14:35:04.0469 3656 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 14:35:04.0485 3656 MRxDAV - ok 14:35:04.0516 3656 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 14:35:04.0516 3656 mrxsmb - ok 14:35:04.0547 3656 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 14:35:04.0547 3656 mrxsmb10 - ok 14:35:04.0563 3656 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 14:35:04.0579 3656 mrxsmb20 - ok 14:35:04.0594 3656 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 14:35:04.0594 3656 msahci - ok 14:35:04.0625 3656 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 14:35:04.0641 3656 msdsm - ok 14:35:04.0657 3656 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 14:35:04.0688 3656 Msfs - ok 14:35:04.0703 3656 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 14:35:04.0719 3656 mshidkmdf - ok 14:35:04.0750 3656 MSICDSetup - ok 14:35:04.0766 3656 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 14:35:04.0766 3656 msisadrv - ok 14:35:04.0797 3656 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 14:35:04.0813 3656 MSKSSRV - ok 14:35:04.0828 3656 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 14:35:04.0844 3656 MSPCLOCK - ok 14:35:04.0844 3656 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 14:35:04.0875 3656 MSPQM - ok 14:35:04.0891 3656 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 14:35:04.0906 3656 MsRPC - ok 14:35:04.0922 3656 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys 14:35:04.0922 3656 mssmbios - ok 14:35:04.0937 3656 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 14:35:04.0953 3656 MSTEE - ok 14:35:04.0969 3656 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys 14:35:04.0984 3656 MTConfig - ok 14:35:05.0000 3656 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 14:35:05.0015 3656 Mup - ok 14:35:05.0047 3656 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 14:35:05.0062 3656 NativeWifiP - ok 14:35:05.0093 3656 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 14:35:05.0109 3656 NDIS - ok 14:35:05.0140 3656 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 14:35:05.0156 3656 NdisCap - ok 14:35:05.0187 3656 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 14:35:05.0218 3656 NdisTapi - ok 14:35:05.0249 3656 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 14:35:05.0265 3656 Ndisuio - ok 14:35:05.0281 3656 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 14:35:05.0312 3656 NdisWan - ok 14:35:05.0327 3656 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 14:35:05.0374 3656 NDProxy - ok 14:35:05.0390 3656 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 14:35:05.0421 3656 NetBIOS - ok 14:35:05.0421 3656 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 14:35:05.0452 3656 NetBT - ok 14:35:05.0561 3656 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys 14:35:05.0561 3656 nfrd960 - ok 14:35:05.0624 3656 nmwcd (5fe6f8c05f0769bbb74afac11453b182) C:\Windows\system32\drivers\ccdcmbx64.sys 14:35:05.0639 3656 nmwcd - ok 14:35:05.0702 3656 nmwcdc (73c929945c0850b8d1fe2fea05fdf05d) C:\Windows\system32\drivers\ccdcmbox64.sys 14:35:05.0749 3656 nmwcdc - ok 14:35:05.0795 3656 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 14:35:05.0811 3656 Npfs - ok 14:35:05.0873 3656 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 14:35:05.0905 3656 nsiproxy - ok 14:35:05.0983 3656 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 14:35:06.0014 3656 Ntfs - ok 14:35:06.0029 3656 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 14:35:06.0045 3656 Null - ok 14:35:06.0107 3656 NVHDA (8d4aac74b571fc356560e5b308955e93) C:\Windows\system32\drivers\nvhda64v.sys 14:35:06.0107 3656 NVHDA - ok 14:35:06.0419 3656 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys 14:35:06.0560 3656 nvlddmkm - ok 14:35:06.0591 3656 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 14:35:06.0607 3656 nvraid - ok 14:35:06.0638 3656 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 14:35:06.0653 3656 nvstor - ok 14:35:06.0700 3656 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 14:35:06.0716 3656 nv_agp - ok 14:35:06.0731 3656 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 14:35:06.0747 3656 ohci1394 - ok 14:35:06.0794 3656 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys 14:35:06.0794 3656 Parport - ok 14:35:06.0809 3656 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys 14:35:06.0825 3656 partmgr - ok 14:35:06.0856 3656 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys 14:35:06.0856 3656 pccsmcfd - ok 14:35:06.0872 3656 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 14:35:06.0903 3656 pci - ok 14:35:06.0919 3656 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 14:35:06.0934 3656 pciide - ok 14:35:06.0965 3656 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys 14:35:06.0997 3656 pcmcia - ok 14:35:07.0028 3656 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 14:35:07.0059 3656 pcw - ok 14:35:07.0075 3656 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 14:35:07.0121 3656 PEAUTH - ok 14:35:07.0215 3656 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 14:35:07.0262 3656 PptpMiniport - ok 14:35:07.0293 3656 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys 14:35:07.0293 3656 Processor - ok 14:35:07.0324 3656 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 14:35:07.0340 3656 Psched - ok 14:35:07.0402 3656 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys 14:35:07.0449 3656 ql2300 - ok 14:35:07.0480 3656 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys 14:35:07.0480 3656 ql40xx - ok 14:35:07.0511 3656 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 14:35:07.0511 3656 QWAVEdrv - ok 14:35:07.0527 3656 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 14:35:07.0558 3656 RasAcd - ok 14:35:07.0574 3656 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 14:35:07.0589 3656 RasAgileVpn - ok 14:35:07.0621 3656 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 14:35:07.0636 3656 Rasl2tp - ok 14:35:07.0652 3656 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 14:35:07.0667 3656 RasPppoe - ok 14:35:07.0683 3656 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 14:35:07.0714 3656 RasSstp - ok 14:35:07.0730 3656 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 14:35:07.0761 3656 rdbss - ok 14:35:07.0777 3656 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 14:35:07.0808 3656 rdpbus - ok 14:35:07.0839 3656 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 14:35:07.0855 3656 RDPCDD - ok 14:35:07.0886 3656 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys 14:35:07.0886 3656 RDPDR - ok 14:35:07.0917 3656 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 14:35:07.0933 3656 RDPENCDD - ok 14:35:07.0948 3656 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 14:35:07.0979 3656 RDPREFMP - ok 14:35:07.0995 3656 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys 14:35:08.0026 3656 RDPWD - ok 14:35:08.0026 3656 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 14:35:08.0042 3656 rdyboost - ok 14:35:08.0167 3656 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys 14:35:08.0198 3656 RFCOMM - ok 14:35:08.0229 3656 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys 14:35:08.0260 3656 ROOTMODEM - ok 14:35:08.0291 3656 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 14:35:08.0307 3656 rspndr - ok 14:35:08.0354 3656 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys 14:35:08.0369 3656 RTL8167 - ok 14:35:08.0401 3656 RtNdPt60 (e16b7c030a05ef649b18fab0a93d871f) C:\Windows\system32\DRIVERS\RtNdPt60.sys 14:35:08.0401 3656 RtNdPt60 - ok 14:35:08.0432 3656 RTTEAMPT (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 14:35:08.0432 3656 RTTEAMPT - ok 14:35:08.0447 3656 RTVLANPT (b1018aa1b5735f5fa89fd4dadf4bea7a) C:\Windows\system32\DRIVERS\RtVlan60.sys 14:35:08.0447 3656 RTVLANPT - ok 14:35:08.0494 3656 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys 14:35:08.0510 3656 s3cap - ok 14:35:08.0541 3656 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 14:35:08.0557 3656 sbp2port - ok 14:35:08.0572 3656 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 14:35:08.0635 3656 scfilter - ok 14:35:08.0697 3656 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 14:35:08.0744 3656 secdrv - ok 14:35:08.0822 3656 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 14:35:08.0837 3656 Serenum - ok 14:35:08.0900 3656 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 14:35:08.0915 3656 Serial - ok 14:35:08.0947 3656 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys 14:35:08.0978 3656 sermouse - ok 14:35:09.0025 3656 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 14:35:09.0056 3656 sffdisk - ok 14:35:09.0071 3656 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 14:35:09.0071 3656 sffp_mmc - ok 14:35:09.0087 3656 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 14:35:09.0103 3656 sffp_sd - ok 14:35:09.0103 3656 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys 14:35:09.0118 3656 sfloppy - ok 14:35:09.0134 3656 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys 14:35:09.0134 3656 SiSRaid2 - ok 14:35:09.0149 3656 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys 14:35:09.0149 3656 SiSRaid4 - ok 14:35:09.0165 3656 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 14:35:09.0196 3656 Smb - ok 14:35:09.0259 3656 softehci (5da8039e58b3a557c6a744e476cdeb7f) C:\Windows\system32\DRIVERS\softehci.sys 14:35:09.0274 3656 softehci - ok 14:35:09.0290 3656 SOFTHIDUSBK (26d2b0ff718219809c0bc3a8b061c6ec) C:\Windows\system32\DRIVERS\SOFTHIDUSBK.SYS 14:35:09.0305 3656 SOFTHIDUSBK - ok 14:35:09.0352 3656 SOFTUSBK (e1702bbe8d31b6edd5c6881c80f123a8) C:\Windows\system32\DRIVERS\SOFTUSBK.SYS 14:35:09.0368 3656 SOFTUSBK - ok 14:35:09.0368 3656 SOFTUSBTESTHUB - ok 14:35:09.0383 3656 SOFTWADP - ok 14:35:09.0399 3656 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 14:35:09.0415 3656 spldr - ok 14:35:09.0477 3656 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys 14:35:09.0477 3656 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2 14:35:09.0477 3656 sptd ( LockedFile.Multi.Generic ) - warning 14:35:09.0477 3656 sptd - detected LockedFile.Multi.Generic (1) 14:35:09.0524 3656 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 14:35:09.0539 3656 srv - ok 14:35:09.0571 3656 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 14:35:09.0586 3656 srv2 - ok 14:35:09.0633 3656 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 14:35:09.0649 3656 srvnet - ok 14:35:09.0695 3656 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys 14:35:09.0695 3656 stexstor - ok 14:35:09.0742 3656 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys 14:35:09.0758 3656 storflt - ok 14:35:09.0789 3656 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys 14:35:09.0805 3656 storvsc - ok 14:35:09.0820 3656 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys 14:35:09.0820 3656 swenum - ok 14:35:09.0929 3656 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys 14:35:09.0976 3656 Tcpip - ok 14:35:10.0039 3656 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys 14:35:10.0085 3656 TCPIP6 - ok 14:35:10.0101 3656 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 14:35:10.0117 3656 tcpipreg - ok 14:35:10.0148 3656 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 14:35:10.0163 3656 TDPIPE - ok 14:35:10.0210 3656 Tdsshbecr (03e62cd83a62859f4f796434ee6c385e) C:\Windows\system32\DRIVERS\shbecr.sys 14:35:10.0226 3656 Tdsshbecr - ok 14:35:10.0241 3656 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys 14:35:10.0273 3656 TDTCP - ok 14:35:10.0304 3656 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 14:35:10.0335 3656 tdx - ok 14:35:10.0382 3656 TEAM (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 14:35:10.0382 3656 TEAM - ok 14:35:10.0397 3656 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys 14:35:10.0429 3656 TermDD - ok 14:35:10.0475 3656 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 14:35:10.0507 3656 tssecsrv - ok 14:35:10.0522 3656 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 14:35:10.0538 3656 TsUsbFlt - ok 14:35:10.0553 3656 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys 14:35:10.0569 3656 TsUsbGD - ok 14:35:10.0569 3656 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 14:35:10.0600 3656 tunnel - ok 14:35:10.0631 3656 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys 14:35:10.0647 3656 uagp35 - ok 14:35:10.0663 3656 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 14:35:10.0694 3656 udfs - ok 14:35:10.0725 3656 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 14:35:10.0741 3656 uliagpkx - ok 14:35:10.0756 3656 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys 14:35:10.0772 3656 umbus - ok 14:35:10.0803 3656 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys 14:35:10.0819 3656 UmPass - ok 14:35:10.0865 3656 upperdev (34afb83c7bba370e404e52cc2290350c) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys 14:35:10.0897 3656 upperdev - ok 14:35:10.0912 3656 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 14:35:10.0928 3656 usbccgp - ok 14:35:10.0943 3656 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 14:35:10.0959 3656 usbcir - ok 14:35:10.0975 3656 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys 14:35:10.0975 3656 usbehci - ok 14:35:11.0006 3656 usbehci_dsf (dc2b97b8865042fc17c82381ac426d1c) C:\Windows\system32\DRIVERS\usbehci_dsf.sys 14:35:11.0006 3656 usbehci_dsf - ok 14:35:11.0037 3656 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 14:35:11.0053 3656 usbhub - ok 14:35:11.0068 3656 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys 14:35:11.0084 3656 usbohci - ok 14:35:11.0115 3656 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 14:35:11.0115 3656 usbprint - ok 14:35:11.0146 3656 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys 14:35:11.0162 3656 usbscan - ok 14:35:11.0224 3656 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys 14:35:11.0240 3656 usbser - ok 14:35:11.0287 3656 UsbserFilt (aa75e1efbee7186b4cbaaacf1f15e6ca) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys 14:35:11.0302 3656 UsbserFilt - ok 14:35:11.0349 3656 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS 14:35:11.0365 3656 USBSTOR - ok 14:35:11.0411 3656 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys 14:35:11.0411 3656 usbuhci - ok 14:35:11.0443 3656 VComm - ok 14:35:11.0458 3656 VcommMgr - ok 14:35:11.0505 3656 VDiskBus (1d3d716e05caa17122de65d0dba4f6d7) C:\Windows\system32\DRIVERS\VDiskBus64.sys 14:35:11.0521 3656 VDiskBus - ok 14:35:11.0552 3656 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 14:35:11.0583 3656 vdrvroot - ok 14:35:11.0630 3656 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 14:35:11.0645 3656 vga - ok 14:35:11.0661 3656 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 14:35:11.0708 3656 VgaSave - ok 14:35:11.0755 3656 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 14:35:11.0770 3656 vhdmp - ok 14:35:11.0786 3656 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 14:35:11.0801 3656 viaide - ok 14:35:11.0833 3656 VL807 (f6627d3bdd1e4747ebb0b5e9f2fcb706) C:\Windows\system32\DRIVERS\VL807.sys 14:35:11.0848 3656 VL807 ( UnsignedFile.Multi.Generic ) - warning 14:35:11.0848 3656 VL807 - detected UnsignedFile.Multi.Generic (1) 14:35:11.0879 3656 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys 14:35:11.0895 3656 vmbus - ok 14:35:11.0926 3656 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys 14:35:11.0926 3656 VMBusHID - ok 14:35:11.0957 3656 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 14:35:11.0973 3656 volmgr - ok 14:35:12.0004 3656 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 14:35:12.0020 3656 volmgrx - ok 14:35:12.0020 3656 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 14:35:12.0035 3656 volsnap - ok 14:35:12.0082 3656 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys 14:35:12.0098 3656 vsmraid - ok 14:35:12.0113 3656 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys 14:35:12.0129 3656 vwifibus - ok 14:35:12.0145 3656 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys 14:35:12.0160 3656 WacomPen - ok 14:35:12.0176 3656 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 14:35:12.0207 3656 WANARP - ok 14:35:12.0207 3656 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 14:35:12.0238 3656 Wanarpv6 - ok 14:35:12.0269 3656 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys 14:35:12.0269 3656 Wd - ok 14:35:12.0285 3656 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 14:35:12.0301 3656 Wdf01000 - ok 14:35:12.0347 3656 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 14:35:12.0363 3656 WfpLwf - ok 14:35:12.0394 3656 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 14:35:12.0394 3656 WIMMount - ok 14:35:12.0488 3656 WinRing0_1_2_0 (0c0195c48b6b8582fa6f6373032118da) E:\Real_Temp3.60_www.INSTALKI.pl\WinRing0x64.sys 14:35:12.0488 3656 WinRing0_1_2_0 - ok 14:35:12.0550 3656 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys 14:35:12.0566 3656 WinUsb - ok 14:35:12.0597 3656 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys 14:35:12.0597 3656 WmiAcpi - ok 14:35:12.0644 3656 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 14:35:12.0691 3656 ws2ifsl - ok 14:35:12.0691 3656 WSOFTUSBK - ok 14:35:12.0737 3656 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 14:35:12.0769 3656 WudfPf - ok 14:35:12.0831 3656 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys 14:35:12.0878 3656 WUDFRd - ok 14:35:12.0925 3656 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 14:35:13.0050 3656 \Device\Harddisk0\DR0 - ok 14:35:13.0050 3656 Boot (0x1200) (596b5f9925ba890f00ce754536c27b1d) \Device\Harddisk0\DR0\Partition0 14:35:13.0050 3656 \Device\Harddisk0\DR0\Partition0 - ok 14:35:13.0096 3656 Boot (0x1200) (f6ad5e4b25c34b31f72cdddcc5437d1b) \Device\Harddisk0\DR0\Partition1 14:35:13.0096 3656 \Device\Harddisk0\DR0\Partition1 - ok 14:35:13.0112 3656 Boot (0x1200) (38d41339708f62b5de168d2a594b4ddd) \Device\Harddisk0\DR0\Partition2 14:35:13.0112 3656 \Device\Harddisk0\DR0\Partition2 - ok 14:35:13.0143 3656 Boot (0x1200) (f47de2c3dd2e33e0ba93658f18a85026) \Device\Harddisk0\DR0\Partition3 14:35:13.0143 3656 \Device\Harddisk0\DR0\Partition3 - ok 14:35:13.0143 3656 ============================================================ 14:35:13.0143 3656 Scan finished 14:35:13.0143 3656 ============================================================ 14:35:13.0159 4984 Detected object count: 2 14:35:13.0159 4984 Actual detected object count: 2 14:35:41.0114 4984 C:\Windows\System32\Drivers\sptd.sys - copied to quarantine 14:35:41.0161 4984 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine 14:35:41.0192 4984 C:\Windows\system32\DRIVERS\VL807.sys - copied to quarantine 14:35:41.0192 4984 VL807 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 14:35:44.0359 1524 Deinitialize success [/spoiler] TDSSKiller.2.7.14.0_26.02.2012_13.13.18_log [spoiler]13:13:18.0528 6072 TDSS rootkit removing tool 2.7.14.0 Feb 22 2012 16:54:49 13:13:18.0751 6072 ============================================================ 13:13:18.0751 6072 Current date / time: 2012/02/26 13:13:18.0751 13:13:18.0751 6072 SystemInfo: 13:13:18.0751 6072 13:13:18.0751 6072 OS Version: 6.1.7601 ServicePack: 1.0 13:13:18.0751 6072 Product type: Workstation 13:13:18.0751 6072 ComputerName: DAWID-KOMPUTER 13:13:18.0751 6072 UserName: Dawid 13:13:18.0751 6072 Windows directory: C:\Windows 13:13:18.0751 6072 System windows directory: C:\Windows 13:13:18.0751 6072 Running under WOW64 13:13:18.0751 6072 Processor architecture: Intel x64 13:13:18.0751 6072 Number of processors: 4 13:13:18.0751 6072 Page size: 0x1000 13:13:18.0752 6072 Boot type: Normal boot 13:13:18.0752 6072 ============================================================ 13:13:19.0105 6072 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 13:13:19.0110 6072 \Device\Harddisk0\DR0: 13:13:19.0110 6072 MBR used 13:13:19.0110 6072 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 13:13:19.0110 6072 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1364F800 13:13:19.0110 6072 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13682000, BlocksNum 0x13682000 13:13:19.0110 6072 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x26D04000, BlocksNum 0x13681800 13:13:19.0279 6072 Initialize success 13:13:19.0279 6072 ============================================================ 13:13:26.0748 4248 ============================================================ 13:13:26.0748 4248 Scan started 13:13:26.0748 4248 Mode: Manual; SigCheck; TDLFS; 13:13:26.0748 4248 ============================================================ 13:13:27.0366 4248 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 13:13:27.0473 4248 1394ohci - ok 13:13:27.0530 4248 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 13:13:27.0543 4248 ACPI - ok 13:13:27.0569 4248 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 13:13:27.0632 4248 AcpiPmi - ok 13:13:27.0687 4248 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys 13:13:27.0708 4248 adp94xx - ok 13:13:27.0749 4248 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys 13:13:27.0767 4248 adpahci - ok 13:13:27.0807 4248 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys 13:13:27.0822 4248 adpu320 - ok 13:13:27.0901 4248 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys 13:13:27.0979 4248 AFD - ok 13:13:28.0012 4248 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 13:13:28.0019 4248 agp440 - ok 13:13:28.0086 4248 AiChargerPlus (8b6625d53c18774f0102f690e285b5e8) C:\Windows\system32\DRIVERS\AiChargerPlus.sys 13:13:28.0121 4248 AiChargerPlus - ok 13:13:28.0176 4248 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 13:13:28.0187 4248 aliide - ok 13:13:28.0205 4248 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 13:13:28.0215 4248 amdide - ok 13:13:28.0252 4248 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys 13:13:28.0309 4248 AmdK8 - ok 13:13:28.0322 4248 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys 13:13:28.0360 4248 AmdPPM - ok 13:13:28.0393 4248 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 13:13:28.0405 4248 amdsata - ok 13:13:28.0461 4248 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys 13:13:28.0475 4248 amdsbs - ok 13:13:28.0492 4248 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 13:13:28.0518 4248 amdxata - ok 13:13:28.0576 4248 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 13:13:28.0722 4248 AppID - ok 13:13:28.0780 4248 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys 13:13:28.0792 4248 arc - ok 13:13:28.0813 4248 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys 13:13:28.0825 4248 arcsas - ok 13:13:28.0973 4248 ASFLTDrv.sys (2921131f9a111fd6c6d2c5e1e5b6b75c) C:\Program Files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys 13:13:28.0982 4248 ASFLTDrv.sys - ok 13:13:28.0987 4248 AsIO - ok 13:13:29.0018 4248 asmthub3 (954950d11ada98ac1b7ee3c770e4622c) C:\Windows\system32\DRIVERS\asmthub3.sys 13:13:29.0028 4248 asmthub3 - ok 13:13:29.0065 4248 asmtxhci (01dbb05db1db95803e3c9f2b49afe79c) C:\Windows\system32\DRIVERS\asmtxhci.sys 13:13:29.0079 4248 asmtxhci - ok 13:13:29.0101 4248 AsUpIO - ok 13:13:29.0140 4248 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 13:13:29.0275 4248 AsyncMac - ok 13:13:29.0309 4248 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 13:13:29.0334 4248 atapi - ok 13:13:29.0398 4248 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys 13:13:29.0459 4248 b06bdrv - ok 13:13:29.0488 4248 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 13:13:29.0541 4248 b57nd60a - ok 13:13:29.0567 4248 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 13:13:29.0613 4248 Beep - ok 13:13:29.0672 4248 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 13:13:29.0691 4248 blbdrive - ok 13:13:29.0726 4248 BlueletAudio - ok 13:13:29.0743 4248 BlueletSCOAudio - ok 13:13:29.0790 4248 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 13:13:29.0820 4248 bowser - ok 13:13:29.0836 4248 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys 13:13:29.0873 4248 BrFiltLo - ok 13:13:29.0897 4248 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys 13:13:29.0910 4248 BrFiltUp - ok 13:13:29.0929 4248 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 13:13:29.0948 4248 Brserid - ok 13:13:29.0968 4248 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 13:13:29.0994 4248 BrSerWdm - ok 13:13:30.0016 4248 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 13:13:30.0049 4248 BrUsbMdm - ok 13:13:30.0063 4248 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 13:13:30.0090 4248 BrUsbSer - ok 13:13:30.0105 4248 BT - ok 13:13:30.0191 4248 Btcsrusb (e0c1e6b70e0c626b37e643b799e434f3) C:\Windows\system32\Drivers\btcusb.sys 13:13:30.0201 4248 Btcsrusb - ok 13:13:30.0244 4248 BthAvrcp (832b121e4532919cc49f2438f1dcaa21) C:\Windows\system32\DRIVERS\BthAvrcp.sys 13:13:30.0251 4248 BthAvrcp - ok 13:13:30.0298 4248 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys 13:13:30.0323 4248 BthEnum - ok 13:13:30.0330 4248 BTHidEnum - ok 13:13:30.0359 4248 BTHidMgr - ok 13:13:30.0388 4248 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 13:13:30.0429 4248 BTHMODEM - ok 13:13:30.0481 4248 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys 13:13:30.0516 4248 BthPan - ok 13:13:30.0545 4248 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys 13:13:30.0588 4248 BTHPORT - ok 13:13:30.0624 4248 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys 13:13:30.0637 4248 BTHUSB - ok 13:13:30.0664 4248 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 13:13:30.0717 4248 cdfs - ok 13:13:30.0758 4248 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys 13:13:30.0797 4248 cdrom - ok 13:13:30.0824 4248 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys 13:13:30.0880 4248 circlass - ok 13:13:30.0909 4248 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 13:13:30.0937 4248 CLFS - ok 13:13:30.0988 4248 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys 13:13:31.0010 4248 CmBatt - ok 13:13:31.0024 4248 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 13:13:31.0029 4248 cmdide - ok 13:13:31.0063 4248 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys 13:13:31.0077 4248 CNG - ok 13:13:31.0108 4248 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys 13:13:31.0113 4248 Compbatt - ok 13:13:31.0150 4248 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys 13:13:31.0183 4248 CompositeBus - ok 13:13:31.0200 4248 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys 13:13:31.0210 4248 crcdisk - ok 13:13:31.0271 4248 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys 13:13:31.0325 4248 CSC - ok 13:13:31.0353 4248 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 13:13:31.0406 4248 DfsC - ok 13:13:31.0515 4248 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 13:13:31.0545 4248 discache - ok 13:13:31.0599 4248 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys 13:13:31.0605 4248 Disk - ok 13:13:31.0638 4248 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys 13:13:31.0656 4248 dmvsc - ok 13:13:31.0688 4248 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 13:13:31.0711 4248 drmkaud - ok 13:13:31.0774 4248 DSFKSVCS (4c639a503201e3f9fb001b840b934a3f) C:\Windows\system32\DRIVERS\dsfksvcs.sys 13:13:31.0788 4248 DSFKSVCS - ok 13:13:31.0817 4248 dsfroot (13699ba0680d8eeef67945f5a405610c) C:\Windows\system32\DRIVERS\dsfroot.sys 13:13:31.0823 4248 dsfroot - ok 13:13:31.0855 4248 dtsoftbus01 (400582b09e0bb557d0ec28a945150eeb) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 13:13:31.0868 4248 dtsoftbus01 - ok 13:13:31.0908 4248 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 13:13:31.0938 4248 DXGKrnl - ok 13:13:31.0973 4248 eamonm (aca3fe4f18a945b7bf2618a79f6f670b) C:\Windows\system32\DRIVERS\eamonm.sys 13:13:31.0981 4248 eamonm - ok 13:13:32.0070 4248 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys 13:13:32.0164 4248 ebdrv - ok 13:13:32.0210 4248 ehdrv (6672438bdcbfd87250d22112d458294d) C:\Windows\system32\DRIVERS\ehdrv.sys 13:13:32.0215 4248 ehdrv - ok 13:13:32.0259 4248 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys 13:13:32.0271 4248 elxstor - ok 13:13:32.0289 4248 epfw (443805b5b11c859ac8ca35297648ff0c) C:\Windows\system32\DRIVERS\epfw.sys 13:13:32.0302 4248 epfw - ok 13:13:32.0321 4248 Epfwndis (66e61bc6c9f519a99275eb0f0e530bf4) C:\Windows\system32\DRIVERS\Epfwndis.sys 13:13:32.0325 4248 Epfwndis - ok 13:13:32.0366 4248 epfwwfp (f72c97f3d34ea5ec919c73e3901266bb) C:\Windows\system32\DRIVERS\epfwwfp.sys 13:13:32.0398 4248 epfwwfp - ok 13:13:32.0422 4248 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 13:13:32.0440 4248 ErrDev - ok 13:13:32.0482 4248 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 13:13:32.0546 4248 exfat - ok 13:13:32.0584 4248 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 13:13:32.0646 4248 fastfat - ok 13:13:32.0693 4248 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys 13:13:32.0709 4248 fdc - ok 13:13:32.0734 4248 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 13:13:32.0747 4248 FileInfo - ok 13:13:32.0764 4248 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 13:13:32.0797 4248 Filetrace - ok 13:13:32.0874 4248 FLASHSYS (5b314cc7640d091de8f3bc822490da28) C:\Program Files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys 13:13:32.0886 4248 FLASHSYS - ok 13:13:32.0893 4248 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys 13:13:32.0899 4248 flpydisk - ok 13:13:32.0917 4248 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 13:13:32.0926 4248 FltMgr - ok 13:13:32.0943 4248 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 13:13:32.0949 4248 FsDepends - ok 13:13:32.0955 4248 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys 13:13:32.0968 4248 Fs_Rec - ok 13:13:32.0977 4248 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 13:13:32.0985 4248 fvevol - ok 13:13:33.0034 4248 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys 13:13:33.0045 4248 gagp30kx - ok 13:13:33.0099 4248 GWHid (5c2cd67845d77e3bc968ef84e1090754) C:\Windows\system32\DRIVERS\GWHid.sys 13:13:33.0107 4248 GWHid - ok 13:13:33.0124 4248 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 13:13:33.0146 4248 hcw85cir - ok 13:13:33.0195 4248 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 13:13:33.0233 4248 HdAudAddService - ok 13:13:33.0265 4248 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys 13:13:33.0292 4248 HDAudBus - ok 13:13:33.0299 4248 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys 13:13:33.0310 4248 HidBatt - ok 13:13:33.0332 4248 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys 13:13:33.0356 4248 HidBth - ok 13:13:33.0375 4248 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys 13:13:33.0384 4248 HidIr - ok 13:13:33.0427 4248 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys 13:13:33.0458 4248 HidUsb - ok 13:13:33.0489 4248 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 13:13:33.0500 4248 HpSAMD - ok 13:13:33.0514 4248 HRMACPI - ok 13:13:33.0552 4248 HRMCFGSPC (1696a06c0ef55dfcd540b32556d3819a) C:\Windows\system32\DRIVERS\HRMCFGSPC.SYS 13:13:33.0564 4248 HRMCFGSPC - ok 13:13:33.0587 4248 HRMINTS (f58f8f2a11ce4a695c9333c416d0321f) C:\Windows\system32\DRIVERS\HRMINTS.SYS 13:13:33.0597 4248 HRMINTS - ok 13:13:33.0609 4248 HRMPORTS (6bc42dc759d42a4edca7452b4d08d870) C:\Windows\system32\DRIVERS\HRMPORTS.SYS 13:13:33.0618 4248 HRMPORTS - ok 13:13:33.0652 4248 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 13:13:33.0727 4248 HTTP - ok 13:13:33.0769 4248 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 13:13:33.0776 4248 hwpolicy - ok 13:13:33.0793 4248 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys 13:13:33.0803 4248 i8042prt - ok 13:13:33.0841 4248 iaStor (d1e30259353e7d8d1b713a76cddeb88b) C:\Windows\system32\DRIVERS\iaStor.sys 13:13:33.0860 4248 iaStor - ok 13:13:33.0910 4248 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 13:13:33.0922 4248 iaStorV - ok 13:13:33.0996 4248 ICCWDT (c1010add3ddae1196ed21057af7b2aae) C:\Windows\system32\DRIVERS\ICCWDT.sys 13:13:34.0005 4248 ICCWDT - ok 13:13:34.0037 4248 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys 13:13:34.0050 4248 iirsp - ok 13:13:34.0233 4248 IntcAzAudAddService (589b94a9b73a0e819ff873743a480834) C:\Windows\system32\drivers\RTKVHD64.sys 13:13:34.0286 4248 IntcAzAudAddService - ok 13:13:34.0314 4248 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 13:13:34.0324 4248 intelide - ok 13:13:34.0341 4248 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 13:13:34.0390 4248 intelppm - ok 13:13:34.0407 4248 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 13:13:34.0439 4248 IpFilterDriver - ok 13:13:34.0456 4248 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 13:13:34.0464 4248 IPMIDRV - ok 13:13:34.0496 4248 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 13:13:34.0526 4248 IPNAT - ok 13:13:34.0543 4248 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 13:13:34.0609 4248 IRENUM - ok 13:13:34.0622 4248 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 13:13:34.0629 4248 isapnp - ok 13:13:34.0649 4248 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 13:13:34.0658 4248 iScsiPrt - ok 13:13:34.0675 4248 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 13:13:34.0681 4248 kbdclass - ok 13:13:34.0717 4248 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys 13:13:34.0732 4248 kbdhid - ok 13:13:34.0765 4248 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys 13:13:34.0771 4248 KSecDD - ok 13:13:34.0788 4248 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys 13:13:34.0795 4248 KSecPkg - ok 13:13:34.0811 4248 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 13:13:34.0840 4248 ksthunk - ok 13:13:34.0872 4248 LGDDCDevice - ok 13:13:34.0878 4248 LGII2CDevice - ok 13:13:34.0910 4248 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 13:13:34.0992 4248 lltdio - ok 13:13:35.0044 4248 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys 13:13:35.0068 4248 LSI_FC - ok 13:13:35.0110 4248 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys 13:13:35.0117 4248 LSI_SAS - ok 13:13:35.0134 4248 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys 13:13:35.0139 4248 LSI_SAS2 - ok 13:13:35.0188 4248 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys 13:13:35.0200 4248 LSI_SCSI - ok 13:13:35.0224 4248 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 13:13:35.0278 4248 luafv - ok 13:13:35.0349 4248 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys 13:13:35.0358 4248 MBAMProtector - ok 13:13:35.0378 4248 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys 13:13:35.0404 4248 megasas - ok 13:13:35.0431 4248 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys 13:13:35.0441 4248 MegaSR - ok 13:13:35.0470 4248 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys 13:13:35.0474 4248 MEIx64 - ok 13:13:35.0561 4248 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 13:13:35.0608 4248 Modem - ok 13:13:35.0640 4248 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 13:13:35.0666 4248 monitor - ok 13:13:35.0710 4248 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 13:13:35.0722 4248 mouclass - ok 13:13:35.0748 4248 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 13:13:35.0774 4248 mouhid - ok 13:13:35.0804 4248 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 13:13:35.0815 4248 mountmgr - ok 13:13:35.0836 4248 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 13:13:35.0845 4248 mpio - ok 13:13:35.0869 4248 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 13:13:35.0912 4248 mpsdrv - ok 13:13:35.0941 4248 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 13:13:35.0974 4248 MRxDAV - ok 13:13:36.0003 4248 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 13:13:36.0036 4248 mrxsmb - ok 13:13:36.0059 4248 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 13:13:36.0094 4248 mrxsmb10 - ok 13:13:36.0109 4248 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 13:13:36.0116 4248 mrxsmb20 - ok 13:13:36.0140 4248 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 13:13:36.0166 4248 msahci - ok 13:13:36.0190 4248 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 13:13:36.0202 4248 msdsm - ok 13:13:36.0236 4248 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 13:13:36.0272 4248 Msfs - ok 13:13:36.0298 4248 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 13:13:36.0335 4248 mshidkmdf - ok 13:13:36.0357 4248 MSICDSetup - ok 13:13:36.0377 4248 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 13:13:36.0400 4248 msisadrv - ok 13:13:36.0429 4248 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 13:13:36.0486 4248 MSKSSRV - ok 13:13:36.0493 4248 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 13:13:36.0531 4248 MSPCLOCK - ok 13:13:36.0539 4248 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 13:13:36.0572 4248 MSPQM - ok 13:13:36.0599 4248 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 13:13:36.0608 4248 MsRPC - ok 13:13:36.0627 4248 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys 13:13:36.0633 4248 mssmbios - ok 13:13:36.0658 4248 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 13:13:36.0686 4248 MSTEE - ok 13:13:36.0700 4248 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys 13:13:36.0723 4248 MTConfig - ok 13:13:36.0738 4248 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 13:13:36.0750 4248 Mup - ok 13:13:36.0797 4248 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 13:13:36.0817 4248 NativeWifiP - ok 13:13:36.0845 4248 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 13:13:36.0862 4248 NDIS - ok 13:13:36.0876 4248 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 13:13:36.0911 4248 NdisCap - ok 13:13:36.0936 4248 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 13:13:36.0957 4248 NdisTapi - ok 13:13:36.0973 4248 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 13:13:37.0005 4248 Ndisuio - ok 13:13:37.0028 4248 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 13:13:37.0074 4248 NdisWan - ok 13:13:37.0089 4248 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 13:13:37.0109 4248 NDProxy - ok 13:13:37.0124 4248 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 13:13:37.0164 4248 NetBIOS - ok 13:13:37.0187 4248 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 13:13:37.0224 4248 NetBT - ok 13:13:37.0317 4248 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys 13:13:37.0349 4248 nfrd960 - ok 13:13:37.0396 4248 nmwcd (5fe6f8c05f0769bbb74afac11453b182) C:\Windows\system32\drivers\ccdcmbx64.sys 13:13:37.0421 4248 nmwcd - ok 13:13:37.0487 4248 nmwcdc (73c929945c0850b8d1fe2fea05fdf05d) C:\Windows\system32\drivers\ccdcmbox64.sys 13:13:37.0523 4248 nmwcdc - ok 13:13:37.0545 4248 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 13:13:37.0578 4248 Npfs - ok 13:13:37.0596 4248 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 13:13:37.0646 4248 nsiproxy - ok 13:13:37.0713 4248 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 13:13:37.0746 4248 Ntfs - ok 13:13:37.0784 4248 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 13:13:37.0840 4248 Null - ok 13:13:37.0903 4248 NVHDA (8d4aac74b571fc356560e5b308955e93) C:\Windows\system32\drivers\nvhda64v.sys 13:13:37.0915 4248 NVHDA - ok 13:13:38.0229 4248 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys 13:13:38.0361 4248 nvlddmkm - ok 13:13:38.0406 4248 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 13:13:38.0412 4248 nvraid - ok 13:13:38.0452 4248 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 13:13:38.0465 4248 nvstor - ok 13:13:38.0527 4248 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 13:13:38.0539 4248 nv_agp - ok 13:13:38.0553 4248 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 13:13:38.0582 4248 ohci1394 - ok 13:13:38.0627 4248 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys 13:13:38.0653 4248 Parport - ok 13:13:38.0677 4248 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys 13:13:38.0684 4248 partmgr - ok 13:13:38.0704 4248 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys 13:13:38.0719 4248 pccsmcfd - ok 13:13:38.0741 4248 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 13:13:38.0749 4248 pci - ok 13:13:38.0774 4248 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 13:13:38.0779 4248 pciide - ok 13:13:38.0797 4248 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys 13:13:38.0805 4248 pcmcia - ok 13:13:38.0819 4248 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 13:13:38.0824 4248 pcw - ok 13:13:38.0858 4248 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 13:13:38.0903 4248 PEAUTH - ok 13:13:39.0018 4248 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 13:13:39.0094 4248 PptpMiniport - ok 13:13:39.0115 4248 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys 13:13:39.0133 4248 Processor - ok 13:13:39.0155 4248 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 13:13:39.0207 4248 Psched - ok 13:13:39.0283 4248 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys 13:13:39.0324 4248 ql2300 - ok 13:13:39.0362 4248 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys 13:13:39.0374 4248 ql40xx - ok 13:13:39.0402 4248 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 13:13:39.0415 4248 QWAVEdrv - ok 13:13:39.0440 4248 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 13:13:39.0466 4248 RasAcd - ok 13:13:39.0495 4248 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 13:13:39.0516 4248 RasAgileVpn - ok 13:13:39.0552 4248 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 13:13:39.0623 4248 Rasl2tp - ok 13:13:39.0659 4248 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 13:13:39.0686 4248 RasPppoe - ok 13:13:39.0709 4248 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 13:13:39.0738 4248 RasSstp - ok 13:13:39.0781 4248 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 13:13:39.0836 4248 rdbss - ok 13:13:39.0872 4248 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 13:13:39.0890 4248 rdpbus - ok 13:13:39.0924 4248 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 13:13:39.0959 4248 RDPCDD - ok 13:13:40.0009 4248 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys 13:13:40.0033 4248 RDPDR - ok 13:13:40.0051 4248 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 13:13:40.0103 4248 RDPENCDD - ok 13:13:40.0127 4248 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 13:13:40.0177 4248 RDPREFMP - ok 13:13:40.0202 4248 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys 13:13:40.0228 4248 RDPWD - ok 13:13:40.0237 4248 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 13:13:40.0244 4248 rdyboost - ok 13:13:40.0305 4248 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys 13:13:40.0344 4248 RFCOMM - ok 13:13:40.0364 4248 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys 13:13:40.0401 4248 ROOTMODEM - ok 13:13:40.0420 4248 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 13:13:40.0458 4248 rspndr - ok 13:13:40.0486 4248 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys 13:13:40.0494 4248 RTL8167 - ok 13:13:40.0520 4248 RtNdPt60 (e16b7c030a05ef649b18fab0a93d871f) C:\Windows\system32\DRIVERS\RtNdPt60.sys 13:13:40.0528 4248 RtNdPt60 - ok 13:13:40.0563 4248 RTTEAMPT (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 13:13:40.0571 4248 RTTEAMPT - ok 13:13:40.0583 4248 RTVLANPT (b1018aa1b5735f5fa89fd4dadf4bea7a) C:\Windows\system32\DRIVERS\RtVlan60.sys 13:13:40.0590 4248 RTVLANPT - ok 13:13:40.0627 4248 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys 13:13:40.0646 4248 s3cap - ok 13:13:40.0674 4248 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 13:13:40.0685 4248 sbp2port - ok 13:13:40.0716 4248 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 13:13:40.0763 4248 scfilter - ok 13:13:40.0817 4248 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 13:13:40.0861 4248 secdrv - ok 13:13:40.0908 4248 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 13:13:40.0935 4248 Serenum - ok 13:13:40.0963 4248 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 13:13:40.0995 4248 Serial - ok 13:13:41.0021 4248 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys 13:13:41.0042 4248 sermouse - ok 13:13:41.0105 4248 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 13:13:41.0130 4248 sffdisk - ok 13:13:41.0147 4248 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 13:13:41.0156 4248 sffp_mmc - ok 13:13:41.0163 4248 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 13:13:41.0193 4248 sffp_sd - ok 13:13:41.0208 4248 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys 13:13:41.0216 4248 sfloppy - ok 13:13:41.0230 4248 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys 13:13:41.0235 4248 SiSRaid2 - ok 13:13:41.0248 4248 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys 13:13:41.0261 4248 SiSRaid4 - ok 13:13:41.0285 4248 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 13:13:41.0344 4248 Smb - ok 13:13:41.0406 4248 softehci (5da8039e58b3a557c6a744e476cdeb7f) C:\Windows\system32\DRIVERS\softehci.sys 13:13:41.0437 4248 softehci - ok 13:13:41.0470 4248 SOFTHIDUSBK (26d2b0ff718219809c0bc3a8b061c6ec) C:\Windows\system32\DRIVERS\SOFTHIDUSBK.SYS 13:13:41.0502 4248 SOFTHIDUSBK - ok 13:13:41.0545 4248 SOFTUSBK (e1702bbe8d31b6edd5c6881c80f123a8) C:\Windows\system32\DRIVERS\SOFTUSBK.SYS 13:13:41.0569 4248 SOFTUSBK - ok 13:13:41.0575 4248 SOFTUSBTESTHUB - ok 13:13:41.0582 4248 SOFTWADP - ok 13:13:41.0602 4248 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 13:13:41.0615 4248 spldr - ok 13:13:41.0678 4248 sptd (d519ad2de7968cd2b47fea807c5b29b2) C:\Windows\System32\Drivers\sptd.sys 13:13:41.0678 4248 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: d519ad2de7968cd2b47fea807c5b29b2 13:13:41.0678 4248 sptd ( LockedFile.Multi.Generic ) - warning 13:13:41.0679 4248 sptd - detected LockedFile.Multi.Generic (1) 13:13:41.0719 4248 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 13:13:41.0762 4248 srv - ok 13:13:41.0800 4248 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 13:13:41.0829 4248 srv2 - ok 13:13:41.0855 4248 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 13:13:41.0885 4248 srvnet - ok 13:13:41.0922 4248 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys 13:13:41.0929 4248 stexstor - ok 13:13:41.0980 4248 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys 13:13:41.0992 4248 storflt - ok 13:13:42.0014 4248 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys 13:13:42.0024 4248 storvsc - ok 13:13:42.0039 4248 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys 13:13:42.0049 4248 swenum - ok 13:13:42.0145 4248 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys 13:13:42.0206 4248 Tcpip - ok 13:13:42.0253 4248 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys 13:13:42.0276 4248 TCPIP6 - ok 13:13:42.0298 4248 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 13:13:42.0329 4248 tcpipreg - ok 13:13:42.0354 4248 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 13:13:42.0412 4248 TDPIPE - ok 13:13:42.0461 4248 Tdsshbecr (03e62cd83a62859f4f796434ee6c385e) C:\Windows\system32\DRIVERS\shbecr.sys 13:13:42.0471 4248 Tdsshbecr - ok 13:13:42.0494 4248 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys 13:13:42.0522 4248 TDTCP - ok 13:13:42.0592 4248 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 13:13:42.0639 4248 tdx - ok 13:13:42.0711 4248 TEAM (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 13:13:42.0718 4248 TEAM - ok 13:13:42.0758 4248 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys 13:13:42.0769 4248 TermDD - ok 13:13:42.0813 4248 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 13:13:42.0863 4248 tssecsrv - ok 13:13:42.0911 4248 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 13:13:42.0918 4248 TsUsbFlt - ok 13:13:42.0950 4248 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys 13:13:42.0982 4248 TsUsbGD - ok 13:13:43.0003 4248 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 13:13:43.0073 4248 tunnel - ok 13:13:43.0086 4248 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys 13:13:43.0092 4248 uagp35 - ok 13:13:43.0118 4248 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 13:13:43.0142 4248 udfs - ok 13:13:43.0182 4248 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 13:13:43.0195 4248 uliagpkx - ok 13:13:43.0211 4248 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys 13:13:43.0233 4248 umbus - ok 13:13:43.0249 4248 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys 13:13:43.0275 4248 UmPass - ok 13:13:43.0307 4248 upperdev (34afb83c7bba370e404e52cc2290350c) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys 13:13:43.0329 4248 upperdev - ok 13:13:43.0359 4248 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 13:13:43.0366 4248 usbccgp - ok 13:13:43.0405 4248 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 13:13:43.0429 4248 usbcir - ok 13:13:43.0447 4248 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys 13:13:43.0462 4248 usbehci - ok 13:13:43.0489 4248 usbehci_dsf (dc2b97b8865042fc17c82381ac426d1c) C:\Windows\system32\DRIVERS\usbehci_dsf.sys 13:13:43.0511 4248 usbehci_dsf - ok 13:13:43.0539 4248 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 13:13:43.0560 4248 usbhub - ok 13:13:43.0581 4248 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys 13:13:43.0607 4248 usbohci - ok 13:13:43.0647 4248 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 13:13:43.0664 4248 usbprint - ok 13:13:43.0701 4248 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys 13:13:43.0722 4248 usbscan - ok 13:13:43.0782 4248 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys 13:13:43.0794 4248 usbser - ok 13:13:43.0839 4248 UsbserFilt (aa75e1efbee7186b4cbaaacf1f15e6ca) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys 13:13:43.0872 4248 UsbserFilt - ok 13:13:43.0906 4248 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS 13:13:43.0917 4248 USBSTOR - ok 13:13:43.0939 4248 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys 13:13:43.0953 4248 usbuhci - ok 13:13:43.0979 4248 VComm - ok 13:13:44.0011 4248 VcommMgr - ok 13:13:44.0059 4248 VDiskBus (1d3d716e05caa17122de65d0dba4f6d7) C:\Windows\system32\DRIVERS\VDiskBus64.sys 13:13:44.0066 4248 VDiskBus - ok 13:13:44.0089 4248 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 13:13:44.0113 4248 vdrvroot - ok 13:13:44.0132 4248 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 13:13:44.0140 4248 vga - ok 13:13:44.0156 4248 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 13:13:44.0190 4248 VgaSave - ok 13:13:44.0211 4248 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 13:13:44.0219 4248 vhdmp - ok 13:13:44.0237 4248 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 13:13:44.0250 4248 viaide - ok 13:13:44.0277 4248 VL807 (f6627d3bdd1e4747ebb0b5e9f2fcb706) C:\Windows\system32\DRIVERS\VL807.sys 13:13:44.0290 4248 VL807 ( UnsignedFile.Multi.Generic ) - warning 13:13:44.0290 4248 VL807 - detected UnsignedFile.Multi.Generic (1) 13:13:44.0329 4248 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys 13:13:44.0342 4248 vmbus - ok 13:13:44.0358 4248 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys 13:13:44.0386 4248 VMBusHID - ok 13:13:44.0417 4248 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 13:13:44.0455 4248 volmgr - ok 13:13:44.0493 4248 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 13:13:44.0512 4248 volmgrx - ok 13:13:44.0522 4248 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 13:13:44.0531 4248 volsnap - ok 13:13:44.0560 4248 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys 13:13:44.0566 4248 vsmraid - ok 13:13:44.0581 4248 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys 13:13:44.0615 4248 vwifibus - ok 13:13:44.0635 4248 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys 13:13:44.0661 4248 WacomPen - ok 13:13:44.0687 4248 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 13:13:44.0728 4248 WANARP - ok 13:13:44.0731 4248 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 13:13:44.0756 4248 Wanarpv6 - ok 13:13:44.0791 4248 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys 13:13:44.0796 4248 Wd - ok 13:13:44.0808 4248 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 13:13:44.0834 4248 Wdf01000 - ok 13:13:44.0877 4248 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 13:13:44.0910 4248 WfpLwf - ok 13:13:44.0932 4248 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 13:13:44.0944 4248 WIMMount - ok 13:13:45.0028 4248 WinRing0_1_2_0 (0c0195c48b6b8582fa6f6373032118da) E:\Real_Temp3.60_www.INSTALKI.pl\WinRing0x64.sys 13:13:45.0038 4248 WinRing0_1_2_0 - ok 13:13:45.0096 4248 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys 13:13:45.0125 4248 WinUsb - ok 13:13:45.0174 4248 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys 13:13:45.0188 4248 WmiAcpi - ok 13:13:45.0231 4248 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 13:13:45.0254 4248 ws2ifsl - ok 13:13:45.0263 4248 WSOFTUSBK - ok 13:13:45.0272 4248 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 13:13:45.0299 4248 WudfPf - ok 13:13:45.0331 4248 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys 13:13:45.0352 4248 WUDFRd - ok 13:13:45.0386 4248 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 13:13:45.0511 4248 \Device\Harddisk0\DR0 - ok 13:13:45.0514 4248 Boot (0x1200) (596b5f9925ba890f00ce754536c27b1d) \Device\Harddisk0\DR0\Partition0 13:13:45.0514 4248 \Device\Harddisk0\DR0\Partition0 - ok 13:13:45.0542 4248 Boot (0x1200) (f6ad5e4b25c34b31f72cdddcc5437d1b) \Device\Harddisk0\DR0\Partition1 13:13:45.0544 4248 \Device\Harddisk0\DR0\Partition1 - ok 13:13:45.0565 4248 Boot (0x1200) (38d41339708f62b5de168d2a594b4ddd) \Device\Harddisk0\DR0\Partition2 13:13:45.0566 4248 \Device\Harddisk0\DR0\Partition2 - ok 13:13:45.0586 4248 Boot (0x1200) (f47de2c3dd2e33e0ba93658f18a85026) \Device\Harddisk0\DR0\Partition3 13:13:45.0588 4248 \Device\Harddisk0\DR0\Partition3 - ok 13:13:45.0588 4248 ============================================================ 13:13:45.0588 4248 Scan finished 13:13:45.0588 4248 ============================================================ 13:13:45.0601 6028 Detected object count: 2 13:13:45.0601 6028 Actual detected object count: 2 13:13:50.0418 6028 C:\Windows\System32\Drivers\sptd.sys - copied to quarantine 13:13:50.0463 6028 HKLM\SYSTEM\ControlSet001\services\sptd - will be deleted on reboot 13:13:50.0485 6028 HKLM\SYSTEM\ControlSet002\services\sptd - will be deleted on reboot 13:13:50.0518 6028 C:\Windows\System32\Drivers\sptd.sys - will be deleted on reboot 13:13:50.0518 6028 sptd ( LockedFile.Multi.Generic ) - User select action: Delete 13:13:50.0555 6028 C:\Windows\system32\DRIVERS\VL807.sys - copied to quarantine 13:13:50.0560 6028 HKLM\SYSTEM\ControlSet001\services\VL807 - will be deleted on reboot 13:13:50.0574 6028 HKLM\SYSTEM\ControlSet002\services\VL807 - will be deleted on reboot 13:13:50.0575 6028 C:\Windows\system32\DRIVERS\VL807.sys - will be deleted on reboot 13:13:50.0575 6028 VL807 ( UnsignedFile.Multi.Generic ) - User select action: Delete 13:14:01.0181 6048 Deinitialize success [/spoiler] TDSSKiller.2.7.20.0_18.03.2012_16.46.10_log [spoiler]16:46:10.0763 3672 TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43 16:46:11.0162 3672 ============================================================ 16:46:11.0162 3672 Current date / time: 2012/03/18 16:46:11.0162 16:46:11.0162 3672 SystemInfo: 16:46:11.0162 3672 16:46:11.0162 3672 OS Version: 6.1.7601 ServicePack: 1.0 16:46:11.0162 3672 Product type: Workstation 16:46:11.0162 3672 ComputerName: DAWID-KOMPUTER 16:46:11.0162 3672 UserName: Dawid 16:46:11.0162 3672 Windows directory: C:\Windows 16:46:11.0162 3672 System windows directory: C:\Windows 16:46:11.0162 3672 Running under WOW64 16:46:11.0163 3672 Processor architecture: Intel x64 16:46:11.0163 3672 Number of processors: 4 16:46:11.0163 3672 Page size: 0x1000 16:46:11.0163 3672 Boot type: Normal boot 16:46:11.0163 3672 ============================================================ 16:46:11.0616 3672 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 16:46:11.0622 3672 Drive \Device\Harddisk1\DR6 - Size: 0x39D2C0000 (14.46 Gb), SectorSize: 0x200, Cylinders: 0x75F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 16:46:11.0625 3672 \Device\Harddisk0\DR0: 16:46:11.0625 3672 MBR used 16:46:11.0625 3672 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 16:46:11.0625 3672 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1364F800 16:46:11.0625 3672 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13682000, BlocksNum 0x13682000 16:46:11.0625 3672 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x26D04000, BlocksNum 0x13681800 16:46:11.0625 3672 \Device\Harddisk1\DR6: 16:46:11.0626 3672 MBR used 16:46:11.0779 3672 Initialize success 16:46:11.0779 3672 ============================================================ 16:46:17.0663 5720 ============================================================ 16:46:17.0663 5720 Scan started 16:46:17.0663 5720 Mode: Manual; SigCheck; TDLFS; 16:46:17.0663 5720 ============================================================ 16:46:19.0817 5720 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 16:46:19.0877 5720 1394ohci - ok 16:46:19.0992 5720 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 16:46:20.0009 5720 ACPI - ok 16:46:20.0116 5720 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 16:46:20.0148 5720 AcpiPmi - ok 16:46:20.0569 5720 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys 16:46:20.0606 5720 adp94xx - ok 16:46:20.0680 5720 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys 16:46:20.0713 5720 adpahci - ok 16:46:20.0750 5720 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys 16:46:20.0764 5720 adpu320 - ok 16:46:20.0856 5720 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys 16:46:20.0884 5720 AFD - ok 16:46:20.0919 5720 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 16:46:20.0947 5720 agp440 - ok 16:46:20.0981 5720 AiChargerPlus (8b6625d53c18774f0102f690e285b5e8) C:\Windows\system32\DRIVERS\AiChargerPlus.sys 16:46:21.0048 5720 AiChargerPlus - ok 16:46:21.0108 5720 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 16:46:21.0120 5720 aliide - ok 16:46:21.0197 5720 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 16:46:21.0209 5720 amdide - ok 16:46:21.0808 5720 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys 16:46:21.0838 5720 AmdK8 - ok 16:46:21.0913 5720 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys 16:46:21.0942 5720 AmdPPM - ok 16:46:21.0973 5720 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 16:46:22.0010 5720 amdsata - ok 16:46:22.0052 5720 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys 16:46:22.0066 5720 amdsbs - ok 16:46:22.0107 5720 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 16:46:22.0119 5720 amdxata - ok 16:46:22.0203 5720 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 16:46:22.0261 5720 AppID - ok 16:46:22.0384 5720 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys 16:46:22.0406 5720 arc - ok 16:46:22.0428 5720 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys 16:46:22.0436 5720 arcsas - ok 16:46:22.0577 5720 ASFLTDrv.sys (2921131f9a111fd6c6d2c5e1e5b6b75c) C:\Program Files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys 16:46:22.0582 5720 ASFLTDrv.sys - ok 16:46:22.0586 5720 AsIO - ok 16:46:22.0682 5720 asmthub3 (954950d11ada98ac1b7ee3c770e4622c) C:\Windows\system32\DRIVERS\asmthub3.sys 16:46:22.0692 5720 asmthub3 - ok 16:46:22.0729 5720 asmtxhci (01dbb05db1db95803e3c9f2b49afe79c) C:\Windows\system32\DRIVERS\asmtxhci.sys 16:46:22.0759 5720 asmtxhci - ok 16:46:22.0822 5720 AsUpIO - ok 16:46:22.0925 5720 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 16:46:22.0966 5720 AsyncMac - ok 16:46:23.0015 5720 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 16:46:23.0041 5720 atapi - ok 16:46:23.0182 5720 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys 16:46:23.0218 5720 b06bdrv - ok 16:46:23.0259 5720 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 16:46:23.0291 5720 b57nd60a - ok 16:46:23.0327 5720 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 16:46:23.0362 5720 Beep - ok 16:46:23.0472 5720 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 16:46:23.0502 5720 blbdrive - ok 16:46:24.0152 5720 BlueletAudio - ok 16:46:24.0207 5720 BlueletSCOAudio - ok 16:46:24.0270 5720 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 16:46:24.0314 5720 bowser - ok 16:46:24.0364 5720 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys 16:46:24.0381 5720 BrFiltLo - ok 16:46:24.0396 5720 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys 16:46:24.0413 5720 BrFiltUp - ok 16:46:24.0432 5720 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 16:46:24.0465 5720 Brserid - ok 16:46:24.0495 5720 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 16:46:24.0511 5720 BrSerWdm - ok 16:46:24.0531 5720 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 16:46:24.0547 5720 BrUsbMdm - ok 16:46:24.0567 5720 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 16:46:24.0574 5720 BrUsbSer - ok 16:46:24.0595 5720 BT - ok 16:46:24.0672 5720 Btcsrusb (e0c1e6b70e0c626b37e643b799e434f3) C:\Windows\system32\Drivers\btcusb.sys 16:46:24.0677 5720 Btcsrusb - ok 16:46:24.0735 5720 BthAvrcp (832b121e4532919cc49f2438f1dcaa21) C:\Windows\system32\DRIVERS\BthAvrcp.sys 16:46:24.0741 5720 BthAvrcp - ok 16:46:24.0802 5720 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys 16:46:24.0856 5720 BthEnum - ok 16:46:24.0944 5720 BTHidEnum - ok 16:46:25.0040 5720 BTHidMgr - ok 16:46:25.0156 5720 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 16:46:25.0186 5720 BTHMODEM - ok 16:46:25.0297 5720 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys 16:46:25.0315 5720 BthPan - ok 16:46:25.0504 5720 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys 16:46:25.0540 5720 BTHPORT - ok 16:46:25.0727 5720 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys 16:46:25.0756 5720 BTHUSB - ok 16:46:25.0923 5720 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 16:46:25.0966 5720 cdfs - ok 16:46:26.0174 5720 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys 16:46:26.0204 5720 cdrom - ok 16:46:26.0828 5720 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys 16:46:26.0846 5720 circlass - ok 16:46:27.0021 5720 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 16:46:27.0068 5720 CLFS - ok 16:46:27.0267 5720 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys 16:46:27.0283 5720 CmBatt - ok 16:46:27.0555 5720 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 16:46:27.0581 5720 cmdide - ok 16:46:27.0807 5720 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys 16:46:27.0850 5720 CNG - ok 16:46:28.0023 5720 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys 16:46:28.0035 5720 Compbatt - ok 16:46:28.0185 5720 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys 16:46:28.0203 5720 CompositeBus - ok 16:46:28.0348 5720 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys 16:46:28.0353 5720 crcdisk - ok 16:46:28.0642 5720 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys 16:46:28.0691 5720 CSC - ok 16:46:28.0905 5720 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 16:46:28.0942 5720 DfsC - ok 16:46:29.0114 5720 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 16:46:29.0165 5720 discache - ok 16:46:29.0330 5720 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys 16:46:29.0356 5720 Disk - ok 16:46:29.0501 5720 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys 16:46:29.0527 5720 dmvsc - ok 16:46:29.0721 5720 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 16:46:29.0754 5720 drmkaud - ok 16:46:30.0009 5720 DSFKSVCS (4c639a503201e3f9fb001b840b934a3f) C:\Windows\system32\DRIVERS\dsfksvcs.sys 16:46:30.0022 5720 DSFKSVCS - ok 16:46:30.0514 5720 dsfroot (13699ba0680d8eeef67945f5a405610c) C:\Windows\system32\DRIVERS\dsfroot.sys 16:46:30.0520 5720 dsfroot - ok 16:46:30.0702 5720 dtsoftbus01 (400582b09e0bb557d0ec28a945150eeb) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 16:46:30.0716 5720 dtsoftbus01 - ok 16:46:30.0899 5720 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 16:46:30.0924 5720 DXGKrnl - ok 16:46:31.0060 5720 eamonm (aca3fe4f18a945b7bf2618a79f6f670b) C:\Windows\system32\DRIVERS\eamonm.sys 16:46:31.0089 5720 eamonm - ok 16:46:31.0389 5720 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys 16:46:31.0429 5720 ebdrv - ok 16:46:31.0610 5720 ehdrv (6672438bdcbfd87250d22112d458294d) C:\Windows\system32\DRIVERS\ehdrv.sys 16:46:31.0645 5720 ehdrv - ok 16:46:31.0864 5720 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys 16:46:31.0885 5720 elxstor - ok 16:46:32.0049 5720 epfw (443805b5b11c859ac8ca35297648ff0c) C:\Windows\system32\DRIVERS\epfw.sys 16:46:32.0076 5720 epfw - ok 16:46:32.0224 5720 Epfwndis (66e61bc6c9f519a99275eb0f0e530bf4) C:\Windows\system32\DRIVERS\Epfwndis.sys 16:46:32.0262 5720 Epfwndis - ok 16:46:32.0449 5720 epfwwfp (f72c97f3d34ea5ec919c73e3901266bb) C:\Windows\system32\DRIVERS\epfwwfp.sys 16:46:32.0480 5720 epfwwfp - ok 16:46:32.0637 5720 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 16:46:32.0667 5720 ErrDev - ok 16:46:33.0129 5720 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 16:46:33.0185 5720 exfat - ok 16:46:33.0363 5720 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 16:46:33.0420 5720 fastfat - ok 16:46:33.0616 5720 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys 16:46:33.0652 5720 fdc - ok 16:46:33.0897 5720 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 16:46:33.0924 5720 FileInfo - ok 16:46:34.0083 5720 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 16:46:34.0128 5720 Filetrace - ok 16:46:34.0207 5720 FLASHSYS (5b314cc7640d091de8f3bc822490da28) C:\Program Files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys 16:46:34.0226 5720 FLASHSYS - ok 16:46:34.0385 5720 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys 16:46:34.0400 5720 flpydisk - ok 16:46:34.0573 5720 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 16:46:34.0611 5720 FltMgr - ok 16:46:34.0792 5720 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 16:46:34.0818 5720 FsDepends - ok 16:46:34.0978 5720 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys 16:46:35.0004 5720 Fs_Rec - ok 16:46:35.0228 5720 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 16:46:35.0258 5720 fvevol - ok 16:46:35.0601 5720 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys 16:46:35.0640 5720 gagp30kx - ok 16:46:35.0978 5720 GWHid (5c2cd67845d77e3bc968ef84e1090754) C:\Windows\system32\DRIVERS\GWHid.sys 16:46:36.0002 5720 GWHid - ok 16:46:36.0483 5720 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 16:46:36.0497 5720 hcw85cir - ok 16:46:37.0034 5720 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 16:46:37.0057 5720 HdAudAddService - ok 16:46:37.0728 5720 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys 16:46:37.0746 5720 HDAudBus - ok 16:46:37.0941 5720 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys 16:46:37.0975 5720 HidBatt - ok 16:46:38.0119 5720 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys 16:46:38.0153 5720 HidBth - ok 16:46:38.0441 5720 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys 16:46:38.0488 5720 HidIr - ok 16:46:38.0814 5720 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys 16:46:38.0841 5720 HidUsb - ok 16:46:39.0045 5720 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 16:46:39.0057 5720 HpSAMD - ok 16:46:39.0153 5720 HRMACPI - ok 16:46:39.0257 5720 HRMCFGSPC (1696a06c0ef55dfcd540b32556d3819a) C:\Windows\system32\DRIVERS\HRMCFGSPC.SYS 16:46:39.0270 5720 HRMCFGSPC - ok 16:46:39.0391 5720 HRMINTS (f58f8f2a11ce4a695c9333c416d0321f) C:\Windows\system32\DRIVERS\HRMINTS.SYS 16:46:39.0431 5720 HRMINTS - ok 16:46:39.0705 5720 HRMPORTS (6bc42dc759d42a4edca7452b4d08d870) C:\Windows\system32\DRIVERS\HRMPORTS.SYS 16:46:39.0721 5720 HRMPORTS - ok 16:46:40.0229 5720 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 16:46:40.0272 5720 HTTP - ok 16:46:40.0438 5720 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 16:46:40.0461 5720 hwpolicy - ok 16:46:40.0489 5720 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys 16:46:40.0508 5720 i8042prt - ok 16:46:40.0549 5720 iaStor (d1e30259353e7d8d1b713a76cddeb88b) C:\Windows\system32\DRIVERS\iaStor.sys 16:46:40.0567 5720 iaStor - ok 16:46:40.0618 5720 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 16:46:40.0636 5720 iaStorV - ok 16:46:40.0673 5720 ICCWDT (c1010add3ddae1196ed21057af7b2aae) C:\Windows\system32\DRIVERS\ICCWDT.sys 16:46:40.0697 5720 ICCWDT - ok 16:46:40.0733 5720 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys 16:46:40.0741 5720 iirsp - ok 16:46:40.0845 5720 IntcAzAudAddService (589b94a9b73a0e819ff873743a480834) C:\Windows\system32\drivers\RTKVHD64.sys 16:46:40.0889 5720 IntcAzAudAddService - ok 16:46:40.0926 5720 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 16:46:40.0932 5720 intelide - ok 16:46:40.0983 5720 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 16:46:40.0990 5720 intelppm - ok 16:46:41.0018 5720 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 16:46:41.0056 5720 IpFilterDriver - ok 16:46:41.0105 5720 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 16:46:41.0112 5720 IPMIDRV - ok 16:46:41.0145 5720 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 16:46:41.0191 5720 IPNAT - ok 16:46:41.0235 5720 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 16:46:41.0256 5720 IRENUM - ok 16:46:41.0294 5720 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 16:46:41.0311 5720 isapnp - ok 16:46:41.0332 5720 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 16:46:41.0351 5720 iScsiPrt - ok 16:46:41.0384 5720 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 16:46:41.0395 5720 kbdclass - ok 16:46:41.0425 5720 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys 16:46:41.0440 5720 kbdhid - ok 16:46:41.0485 5720 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys 16:46:41.0497 5720 KSecDD - ok 16:46:41.0520 5720 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys 16:46:41.0540 5720 KSecPkg - ok 16:46:41.0557 5720 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 16:46:41.0594 5720 ksthunk - ok 16:46:41.0688 5720 LGDDCDevice - ok 16:46:41.0696 5720 LGII2CDevice - ok 16:46:41.0742 5720 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 16:46:41.0802 5720 lltdio - ok 16:46:41.0872 5720 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys 16:46:41.0900 5720 LSI_FC - ok 16:46:41.0938 5720 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys 16:46:41.0965 5720 LSI_SAS - ok 16:46:41.0986 5720 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys 16:46:42.0012 5720 LSI_SAS2 - ok 16:46:42.0052 5720 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys 16:46:42.0079 5720 LSI_SCSI - ok 16:46:42.0124 5720 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 16:46:42.0166 5720 luafv - ok 16:46:42.0290 5720 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys 16:46:42.0315 5720 MBAMProtector - ok 16:46:42.0397 5720 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys 16:46:42.0436 5720 megasas - ok 16:46:42.0500 5720 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys 16:46:42.0529 5720 MegaSR - ok 16:46:42.0572 5720 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys 16:46:42.0576 5720 MEIx64 - ok 16:46:42.0629 5720 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 16:46:42.0650 5720 Modem - ok 16:46:42.0684 5720 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 16:46:42.0692 5720 monitor - ok 16:46:42.0708 5720 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 16:46:42.0713 5720 mouclass - ok 16:46:42.0744 5720 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 16:46:42.0751 5720 mouhid - ok 16:46:42.0776 5720 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 16:46:42.0789 5720 mountmgr - ok 16:46:42.0807 5720 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 16:46:42.0816 5720 mpio - ok 16:46:42.0841 5720 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 16:46:42.0869 5720 mpsdrv - ok 16:46:42.0888 5720 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 16:46:42.0899 5720 MRxDAV - ok 16:46:42.0927 5720 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 16:46:42.0942 5720 mrxsmb - ok 16:46:42.0970 5720 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 16:46:43.0008 5720 mrxsmb10 - ok 16:46:43.0044 5720 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 16:46:43.0059 5720 mrxsmb20 - ok 16:46:43.0075 5720 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 16:46:43.0087 5720 msahci - ok 16:46:43.0114 5720 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 16:46:43.0127 5720 msdsm - ok 16:46:43.0161 5720 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 16:46:43.0182 5720 Msfs - ok 16:46:43.0210 5720 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 16:46:43.0247 5720 mshidkmdf - ok 16:46:43.0293 5720 MSICDSetup - ok 16:46:43.0311 5720 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 16:46:43.0328 5720 msisadrv - ok 16:46:43.0353 5720 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 16:46:43.0377 5720 MSKSSRV - ok 16:46:43.0384 5720 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 16:46:43.0406 5720 MSPCLOCK - ok 16:46:43.0413 5720 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 16:46:43.0440 5720 MSPQM - ok 16:46:43.0500 5720 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 16:46:43.0518 5720 MsRPC - ok 16:46:43.0539 5720 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys 16:46:43.0547 5720 mssmbios - ok 16:46:43.0553 5720 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 16:46:43.0578 5720 MSTEE - ok 16:46:43.0600 5720 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys 16:46:43.0607 5720 MTConfig - ok 16:46:43.0627 5720 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 16:46:43.0639 5720 Mup - ok 16:46:43.0697 5720 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 16:46:43.0708 5720 NativeWifiP - ok 16:46:43.0755 5720 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 16:46:43.0772 5720 NDIS - ok 16:46:43.0800 5720 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 16:46:43.0828 5720 NdisCap - ok 16:46:43.0859 5720 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 16:46:43.0880 5720 NdisTapi - ok 16:46:43.0897 5720 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 16:46:43.0918 5720 Ndisuio - ok 16:46:43.0976 5720 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 16:46:44.0029 5720 NdisWan - ok 16:46:44.0257 5720 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 16:46:44.0319 5720 NDProxy - ok 16:46:44.0599 5720 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 16:46:44.0656 5720 NetBIOS - ok 16:46:45.0240 5720 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 16:46:45.0281 5720 NetBT - ok 16:46:45.0597 5720 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys 16:46:45.0638 5720 nfrd960 - ok 16:46:46.0108 5720 nmwcd (5fe6f8c05f0769bbb74afac11453b182) C:\Windows\system32\drivers\ccdcmbx64.sys 16:46:46.0162 5720 nmwcd - ok 16:46:46.0942 5720 nmwcdc (73c929945c0850b8d1fe2fea05fdf05d) C:\Windows\system32\drivers\ccdcmbox64.sys 16:46:46.0975 5720 nmwcdc - ok 16:46:47.0601 5720 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 16:46:47.0642 5720 Npfs - ok 16:46:48.0165 5720 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 16:46:48.0194 5720 nsiproxy - ok 16:46:48.0448 5720 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 16:46:48.0476 5720 Ntfs - ok 16:46:48.0907 5720 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 16:46:49.0043 5720 Null - ok 16:46:49.0555 5720 NVHDA (8d4aac74b571fc356560e5b308955e93) C:\Windows\system32\drivers\nvhda64v.sys 16:46:49.0567 5720 NVHDA - ok 16:46:50.0049 5720 nvlddmkm (0eb204639119370f5f8f2871fbf4e14b) C:\Windows\system32\DRIVERS\nvlddmkm.sys 16:46:50.0189 5720 nvlddmkm - ok 16:46:50.0310 5720 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 16:46:50.0338 5720 nvraid - ok 16:46:50.0367 5720 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 16:46:50.0411 5720 nvstor - ok 16:46:50.0514 5720 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 16:46:50.0539 5720 nv_agp - ok 16:46:50.0552 5720 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 16:46:50.0568 5720 ohci1394 - ok 16:46:50.0602 5720 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys 16:46:50.0616 5720 Parport - ok 16:46:50.0640 5720 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys 16:46:50.0653 5720 partmgr - ok 16:46:50.0860 5720 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys 16:46:50.0878 5720 pccsmcfd - ok 16:46:51.0317 5720 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 16:46:51.0347 5720 pci - ok 16:46:51.0829 5720 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 16:46:51.0847 5720 pciide - ok 16:46:51.0888 5720 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys 16:46:51.0903 5720 pcmcia - ok 16:46:51.0923 5720 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 16:46:51.0936 5720 pcw - ok 16:46:51.0962 5720 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 16:46:51.0995 5720 PEAUTH - ok 16:46:52.0207 5720 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 16:46:52.0251 5720 PptpMiniport - ok 16:46:52.0266 5720 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys 16:46:52.0282 5720 Processor - ok 16:46:52.0331 5720 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 16:46:52.0360 5720 Psched - ok 16:46:52.0435 5720 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys 16:46:52.0465 5720 ql2300 - ok 16:46:52.0501 5720 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys 16:46:52.0507 5720 ql40xx - ok 16:46:52.0530 5720 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 16:46:52.0547 5720 QWAVEdrv - ok 16:46:52.0567 5720 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 16:46:52.0596 5720 RasAcd - ok 16:46:52.0646 5720 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 16:46:52.0669 5720 RasAgileVpn - ok 16:46:52.0703 5720 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 16:46:52.0741 5720 Rasl2tp - ok 16:46:52.0955 5720 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 16:46:52.0977 5720 RasPppoe - ok 16:46:53.0100 5720 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 16:46:53.0130 5720 RasSstp - ok 16:46:53.0351 5720 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 16:46:53.0374 5720 rdbss - ok 16:46:53.0606 5720 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 16:46:53.0633 5720 rdpbus - ok 16:46:53.0843 5720 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 16:46:53.0864 5720 RDPCDD - ok 16:46:53.0988 5720 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys 16:46:54.0041 5720 RDPDR - ok 16:46:54.0258 5720 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 16:46:54.0280 5720 RDPENCDD - ok 16:46:54.0598 5720 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 16:46:54.0621 5720 RDPREFMP - ok 16:46:54.0847 5720 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys 16:46:54.0873 5720 RDPWD - ok 16:46:55.0107 5720 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 16:46:55.0115 5720 rdyboost - ok 16:46:55.0376 5720 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys 16:46:55.0404 5720 RFCOMM - ok 16:46:55.0651 5720 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys 16:46:55.0673 5720 ROOTMODEM - ok 16:46:55.0902 5720 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 16:46:55.0947 5720 rspndr - ok 16:46:56.0170 5720 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys 16:46:56.0191 5720 RTL8167 - ok 16:46:56.0421 5720 RtNdPt60 (e16b7c030a05ef649b18fab0a93d871f) C:\Windows\system32\DRIVERS\RtNdPt60.sys 16:46:56.0445 5720 RtNdPt60 - ok 16:46:57.0099 5720 RTTEAMPT (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 16:46:57.0104 5720 RTTEAMPT - ok 16:46:57.0335 5720 RTVLANPT (b1018aa1b5735f5fa89fd4dadf4bea7a) C:\Windows\system32\DRIVERS\RtVlan60.sys 16:46:57.0348 5720 RTVLANPT - ok 16:46:57.0583 5720 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys 16:46:57.0591 5720 s3cap - ok 16:46:57.0846 5720 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 16:46:57.0859 5720 sbp2port - ok 16:46:58.0272 5720 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 16:46:58.0318 5720 scfilter - ok 16:46:58.0867 5720 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 16:46:58.0916 5720 secdrv - ok 16:46:59.0177 5720 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 16:46:59.0205 5720 Serenum - ok 16:46:59.0587 5720 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 16:46:59.0634 5720 Serial - ok 16:46:59.0873 5720 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys 16:46:59.0899 5720 sermouse - ok 16:47:00.0137 5720 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 16:47:00.0167 5720 sffdisk - ok 16:47:00.0311 5720 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 16:47:00.0344 5720 sffp_mmc - ok 16:47:00.0577 5720 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 16:47:00.0589 5720 sffp_sd - ok 16:47:00.0829 5720 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys 16:47:00.0857 5720 sfloppy - ok 16:47:01.0139 5720 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys 16:47:01.0180 5720 SiSRaid2 - ok 16:47:01.0420 5720 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys 16:47:01.0440 5720 SiSRaid4 - ok 16:47:01.0781 5720 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 16:47:01.0820 5720 Smb - ok 16:47:02.0082 5720 softehci (5da8039e58b3a557c6a744e476cdeb7f) C:\Windows\system32\DRIVERS\softehci.sys 16:47:02.0121 5720 softehci - ok 16:47:02.0338 5720 SOFTHIDUSBK (26d2b0ff718219809c0bc3a8b061c6ec) C:\Windows\system32\DRIVERS\SOFTHIDUSBK.SYS 16:47:02.0353 5720 SOFTHIDUSBK - ok 16:47:02.0989 5720 SOFTUSBK (e1702bbe8d31b6edd5c6881c80f123a8) C:\Windows\system32\DRIVERS\SOFTUSBK.SYS 16:47:03.0011 5720 SOFTUSBK - ok 16:47:03.0236 5720 SOFTUSBTESTHUB - ok 16:47:03.0379 5720 SOFTWADP - ok 16:47:03.0739 5720 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 16:47:03.0765 5720 spldr - ok 16:47:04.0051 5720 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 16:47:04.0128 5720 srv - ok 16:47:04.0396 5720 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 16:47:04.0413 5720 srv2 - ok 16:47:04.0631 5720 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 16:47:04.0645 5720 srvnet - ok 16:47:04.0902 5720 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys 16:47:04.0913 5720 stexstor - ok 16:47:05.0212 5720 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys 16:47:05.0223 5720 storflt - ok 16:47:05.0474 5720 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys 16:47:05.0500 5720 storvsc - ok 16:47:05.0711 5720 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys 16:47:05.0737 5720 swenum - ok 16:47:06.0114 5720 tap0901 (4ef44915e522f3ecd1a3ff540aa64126) C:\Windows\system32\DRIVERS\tap0901.sys 16:47:06.0140 5720 tap0901 - ok 16:47:06.0410 5720 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys 16:47:06.0458 5720 Tcpip - ok 16:47:06.0698 5720 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys 16:47:06.0726 5720 TCPIP6 - ok 16:47:06.0922 5720 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 16:47:06.0949 5720 tcpipreg - ok 16:47:07.0539 5720 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 16:47:07.0564 5720 TDPIPE - ok 16:47:07.0780 5720 Tdsshbecr (03e62cd83a62859f4f796434ee6c385e) C:\Windows\system32\DRIVERS\shbecr.sys 16:47:07.0804 5720 Tdsshbecr - ok 16:47:08.0016 5720 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys 16:47:08.0039 5720 TDTCP - ok 16:47:08.0271 5720 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 16:47:08.0304 5720 tdx - ok 16:47:08.0535 5720 TEAM (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 16:47:08.0542 5720 TEAM - ok 16:47:08.0778 5720 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys 16:47:08.0805 5720 TermDD - ok 16:47:09.0045 5720 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 16:47:09.0082 5720 tssecsrv - ok 16:47:09.0335 5720 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 16:47:09.0368 5720 TsUsbFlt - ok 16:47:09.0566 5720 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys 16:47:09.0580 5720 TsUsbGD - ok 16:47:09.0761 5720 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 16:47:09.0807 5720 tunnel - ok 16:47:10.0001 5720 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys 16:47:10.0028 5720 uagp35 - ok 16:47:10.0249 5720 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 16:47:10.0277 5720 udfs - ok 16:47:10.0469 5720 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 16:47:10.0492 5720 uliagpkx - ok 16:47:10.0664 5720 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys 16:47:10.0694 5720 umbus - ok 16:47:10.0836 5720 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys 16:47:10.0864 5720 UmPass - ok 16:47:11.0211 5720 upperdev (34afb83c7bba370e404e52cc2290350c) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys 16:47:11.0253 5720 upperdev - ok 16:47:11.0437 5720 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 16:47:11.0457 5720 usbccgp - ok 16:47:11.0964 5720 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 16:47:11.0982 5720 usbcir - ok 16:47:12.0066 5720 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys 16:47:12.0094 5720 usbehci - ok 16:47:12.0143 5720 usbehci_dsf (dc2b97b8865042fc17c82381ac426d1c) C:\Windows\system32\DRIVERS\usbehci_dsf.sys 16:47:12.0176 5720 usbehci_dsf - ok 16:47:12.0217 5720 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 16:47:12.0233 5720 usbhub - ok 16:47:12.0248 5720 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys 16:47:12.0261 5720 usbohci - ok 16:47:12.0302 5720 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 16:47:12.0317 5720 usbprint - ok 16:47:12.0343 5720 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys 16:47:12.0352 5720 usbscan - ok 16:47:12.0431 5720 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys 16:47:12.0445 5720 usbser - ok 16:47:12.0474 5720 UsbserFilt (aa75e1efbee7186b4cbaaacf1f15e6ca) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys 16:47:12.0495 5720 UsbserFilt - ok 16:47:12.0525 5720 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS 16:47:12.0544 5720 USBSTOR - ok 16:47:12.0578 5720 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys 16:47:12.0590 5720 usbuhci - ok 16:47:12.0610 5720 VComm - ok 16:47:12.0666 5720 VcommMgr - ok 16:47:12.0714 5720 VDiskBus (1d3d716e05caa17122de65d0dba4f6d7) C:\Windows\system32\DRIVERS\VDiskBus64.sys 16:47:12.0736 5720 VDiskBus - ok 16:47:12.0774 5720 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 16:47:12.0806 5720 vdrvroot - ok 16:47:12.0835 5720 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 16:47:12.0844 5720 vga - ok 16:47:12.0858 5720 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 16:47:12.0887 5720 VgaSave - ok 16:47:12.0914 5720 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 16:47:12.0929 5720 vhdmp - ok 16:47:12.0940 5720 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 16:47:12.0952 5720 viaide - ok 16:47:12.0996 5720 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys 16:47:13.0028 5720 vmbus - ok 16:47:13.0049 5720 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys 16:47:13.0062 5720 VMBusHID - ok 16:47:13.0123 5720 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 16:47:13.0159 5720 volmgr - ok 16:47:13.0206 5720 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 16:47:13.0215 5720 volmgrx - ok 16:47:13.0224 5720 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 16:47:13.0242 5720 volsnap - ok 16:47:13.0262 5720 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys 16:47:13.0276 5720 vsmraid - ok 16:47:13.0294 5720 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys 16:47:13.0309 5720 vwifibus - ok 16:47:13.0338 5720 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys 16:47:13.0344 5720 WacomPen - ok 16:47:13.0381 5720 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 16:47:13.0409 5720 WANARP - ok 16:47:13.0412 5720 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 16:47:13.0432 5720 Wanarpv6 - ok 16:47:13.0457 5720 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys 16:47:13.0464 5720 Wd - ok 16:47:13.0476 5720 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 16:47:13.0487 5720 Wdf01000 - ok 16:47:13.0834 5720 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 16:47:13.0885 5720 WfpLwf - ok 16:47:14.0223 5720 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 16:47:14.0241 5720 WIMMount - ok 16:47:14.0319 5720 WinRing0_1_2_0 (0c0195c48b6b8582fa6f6373032118da) E:\Real_Temp3.60_www.INSTALKI.pl\WinRing0x64.sys 16:47:14.0332 5720 WinRing0_1_2_0 - ok 16:47:14.0544 5720 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys 16:47:14.0574 5720 WinUsb - ok 16:47:14.0650 5720 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys 16:47:14.0662 5720 WmiAcpi - ok 16:47:14.0706 5720 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 16:47:14.0753 5720 ws2ifsl - ok 16:47:14.0763 5720 WSOFTUSBK - ok 16:47:14.0791 5720 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 16:47:14.0819 5720 WudfPf - ok 16:47:14.0851 5720 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys 16:47:14.0879 5720 WUDFRd - ok 16:47:14.0906 5720 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 16:47:15.0082 5720 \Device\Harddisk0\DR0 - ok 16:47:15.0086 5720 MBR (0x1B8) (00398b03933cb7580168d3028443248f) \Device\Harddisk1\DR6 16:47:23.0692 5720 \Device\Harddisk1\DR6 - ok 16:47:23.0735 5720 Boot (0x1200) (596b5f9925ba890f00ce754536c27b1d) \Device\Harddisk0\DR0\Partition0 16:47:23.0736 5720 \Device\Harddisk0\DR0\Partition0 - ok 16:47:23.0750 5720 Boot (0x1200) (f6ad5e4b25c34b31f72cdddcc5437d1b) \Device\Harddisk0\DR0\Partition1 16:47:23.0751 5720 \Device\Harddisk0\DR0\Partition1 - ok 16:47:23.0772 5720 Boot (0x1200) (38d41339708f62b5de168d2a594b4ddd) \Device\Harddisk0\DR0\Partition2 16:47:23.0773 5720 \Device\Harddisk0\DR0\Partition2 - ok 16:47:23.0794 5720 Boot (0x1200) (f47de2c3dd2e33e0ba93658f18a85026) \Device\Harddisk0\DR0\Partition3 16:47:23.0795 5720 \Device\Harddisk0\DR0\Partition3 - ok 16:47:23.0795 5720 ============================================================ 16:47:23.0795 5720 Scan finished 16:47:23.0795 5720 ============================================================ 16:47:23.0806 3448 Detected object count: 0 16:47:23.0806 3448 Actual detected object count: 0 16:47:27.0933 6840 Deinitialize success [/spoiler] TDSSKiller.2.7.20.0_18.06.2012_12.10.17_log [spoiler]12:10:17.0722 2300 TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43 12:10:19.0735 2300 ============================================================ 12:10:19.0735 2300 Current date / time: 2012/06/18 12:10:19.0735 12:10:19.0735 2300 SystemInfo: 12:10:19.0735 2300 12:10:19.0735 2300 OS Version: 6.1.7601 ServicePack: 1.0 12:10:19.0735 2300 Product type: Workstation 12:10:19.0735 2300 ComputerName: DAWID-KOMPUTER 12:10:19.0735 2300 UserName: Dawid 12:10:19.0735 2300 Windows directory: C:\Windows 12:10:19.0735 2300 System windows directory: C:\Windows 12:10:19.0735 2300 Running under WOW64 12:10:19.0735 2300 Processor architecture: Intel x64 12:10:19.0735 2300 Number of processors: 4 12:10:19.0735 2300 Page size: 0x1000 12:10:19.0735 2300 Boot type: Normal boot 12:10:19.0735 2300 ============================================================ 12:10:20.0312 2300 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 12:10:20.0405 2300 \Device\Harddisk0\DR0: 12:10:20.0405 2300 MBR used 12:10:20.0405 2300 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 12:10:20.0405 2300 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1364F800 12:10:20.0405 2300 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13682000, BlocksNum 0x13682000 12:10:20.0405 2300 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x26D04000, BlocksNum 0x13681800 12:10:20.0561 2300 Initialize success 12:10:20.0561 2300 ============================================================ 12:10:27.0333 5708 ============================================================ 12:10:27.0333 5708 Scan started 12:10:27.0333 5708 Mode: Manual; 12:10:27.0333 5708 ============================================================ 12:10:27.0863 5708 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys 12:10:27.0879 5708 1394ohci - ok 12:10:27.0910 5708 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys 12:10:27.0910 5708 ACPI - ok 12:10:27.0941 5708 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys 12:10:27.0957 5708 AcpiPmi - ok 12:10:28.0066 5708 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys 12:10:28.0082 5708 adp94xx - ok 12:10:28.0113 5708 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys 12:10:28.0144 5708 adpahci - ok 12:10:28.0175 5708 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys 12:10:28.0191 5708 adpu320 - ok 12:10:28.0253 5708 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys 12:10:28.0285 5708 AFD - ok 12:10:28.0363 5708 afw (e8f8475359bbb2e6f236f273f439f85e) C:\Windows\system32\DRIVERS\afw.sys 12:10:28.0363 5708 afw - ok 12:10:28.0425 5708 afwcore (8192052d7ca7c6ad4939dd5d50d7bcf3) C:\Windows\system32\drivers\afwcore.sys 12:10:28.0425 5708 afwcore - ok 12:10:28.0441 5708 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys 12:10:28.0456 5708 agp440 - ok 12:10:28.0487 5708 AiChargerPlus (8b6625d53c18774f0102f690e285b5e8) C:\Windows\system32\DRIVERS\AiChargerPlus.sys 12:10:28.0487 5708 AiChargerPlus - ok 12:10:28.0519 5708 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys 12:10:28.0550 5708 aliide - ok 12:10:28.0565 5708 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys 12:10:28.0565 5708 amdide - ok 12:10:28.0597 5708 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys 12:10:28.0597 5708 AmdK8 - ok 12:10:28.0628 5708 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys 12:10:28.0643 5708 AmdPPM - ok 12:10:28.0690 5708 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys 12:10:28.0721 5708 amdsata - ok 12:10:28.0753 5708 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys 12:10:28.0753 5708 amdsbs - ok 12:10:28.0784 5708 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys 12:10:28.0784 5708 amdxata - ok 12:10:28.0831 5708 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys 12:10:28.0862 5708 AppID - ok 12:10:28.0877 5708 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys 12:10:28.0877 5708 arc - ok 12:10:28.0893 5708 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys 12:10:28.0893 5708 arcsas - ok 12:10:29.0018 5708 ASFLTDrv.sys (2921131f9a111fd6c6d2c5e1e5b6b75c) C:\Program Files (x86)\ASUS\Disk Unlocker\ASFLTDrv64.sys 12:10:29.0018 5708 ASFLTDrv.sys - ok 12:10:29.0049 5708 AsIO - ok 12:10:29.0158 5708 asmthub3 (954950d11ada98ac1b7ee3c770e4622c) C:\Windows\system32\DRIVERS\asmthub3.sys 12:10:29.0158 5708 asmthub3 - ok 12:10:29.0205 5708 asmtxhci (01dbb05db1db95803e3c9f2b49afe79c) C:\Windows\system32\DRIVERS\asmtxhci.sys 12:10:29.0221 5708 asmtxhci - ok 12:10:29.0236 5708 AsUpIO - ok 12:10:29.0299 5708 ASWFilt (ec0164a4ef5210f9f83fc2b54651ee61) C:\Windows\system32\Filt\ASWFilt64.dll 12:10:29.0299 5708 ASWFilt - ok 12:10:29.0361 5708 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys 12:10:29.0377 5708 AsyncMac - ok 12:10:29.0392 5708 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys 12:10:29.0408 5708 atapi - ok 12:10:29.0470 5708 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys 12:10:29.0470 5708 b06bdrv - ok 12:10:29.0501 5708 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys 12:10:29.0533 5708 b57nd60a - ok 12:10:29.0548 5708 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys 12:10:29.0548 5708 Beep - ok 12:10:29.0626 5708 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys 12:10:29.0642 5708 blbdrive - ok 12:10:29.0673 5708 BlueletAudio - ok 12:10:29.0689 5708 BlueletSCOAudio - ok 12:10:29.0751 5708 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys 12:10:29.0767 5708 bowser - ok 12:10:29.0813 5708 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys 12:10:29.0813 5708 BrFiltLo - ok 12:10:29.0829 5708 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys 12:10:29.0829 5708 BrFiltUp - ok 12:10:29.0876 5708 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys 12:10:29.0891 5708 Brserid - ok 12:10:29.0938 5708 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys 12:10:29.0954 5708 BrSerWdm - ok 12:10:29.0969 5708 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys 12:10:29.0969 5708 BrUsbMdm - ok 12:10:29.0985 5708 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys 12:10:29.0985 5708 BrUsbSer - ok 12:10:30.0001 5708 BT - ok 12:10:30.0063 5708 Btcsrusb (e0c1e6b70e0c626b37e643b799e434f3) C:\Windows\system32\Drivers\btcusb.sys 12:10:30.0079 5708 Btcsrusb - ok 12:10:30.0125 5708 BthAvrcp (832b121e4532919cc49f2438f1dcaa21) C:\Windows\system32\DRIVERS\BthAvrcp.sys 12:10:30.0125 5708 BthAvrcp - ok 12:10:30.0188 5708 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\DRIVERS\BthEnum.sys 12:10:30.0203 5708 BthEnum - ok 12:10:30.0203 5708 BTHidEnum - ok 12:10:30.0235 5708 BTHidMgr - ok 12:10:30.0250 5708 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys 12:10:30.0266 5708 BTHMODEM - ok 12:10:30.0313 5708 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys 12:10:30.0313 5708 BthPan - ok 12:10:30.0344 5708 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\system32\Drivers\BTHport.sys 12:10:30.0375 5708 BTHPORT - ok 12:10:30.0437 5708 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\system32\Drivers\BTHUSB.sys 12:10:30.0453 5708 BTHUSB - ok 12:10:30.0484 5708 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys 12:10:30.0500 5708 cdfs - ok 12:10:30.0531 5708 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys 12:10:30.0547 5708 cdrom - ok 12:10:30.0640 5708 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys 12:10:30.0640 5708 circlass - ok 12:10:30.0687 5708 CisUtMonitor (887a9970e711232e2c93f0fd343a1c9d) C:\Windows\system32\DRIVERS\CisUtMonitor.sys 12:10:30.0703 5708 CisUtMonitor - ok 12:10:30.0734 5708 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys 12:10:30.0781 5708 CLFS - ok 12:10:30.0827 5708 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys 12:10:30.0827 5708 CmBatt - ok 12:10:30.0843 5708 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys 12:10:30.0859 5708 cmdide - ok 12:10:30.0905 5708 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys 12:10:30.0921 5708 CNG - ok 12:10:30.0937 5708 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys 12:10:30.0937 5708 Compbatt - ok 12:10:30.0968 5708 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys 12:10:30.0968 5708 CompositeBus - ok 12:10:31.0046 5708 cpuz135 - ok 12:10:31.0077 5708 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys 12:10:31.0077 5708 crcdisk - ok 12:10:31.0124 5708 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys 12:10:31.0139 5708 CSC - ok 12:10:31.0171 5708 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys 12:10:31.0171 5708 DfsC - ok 12:10:31.0233 5708 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys 12:10:31.0264 5708 discache - ok 12:10:31.0295 5708 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys 12:10:31.0311 5708 Disk - ok 12:10:31.0342 5708 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys 12:10:31.0342 5708 dmvsc - ok 12:10:31.0405 5708 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys 12:10:31.0420 5708 drmkaud - ok 12:10:31.0483 5708 DSFKSVCS (4c639a503201e3f9fb001b840b934a3f) C:\Windows\system32\DRIVERS\dsfksvcs.sys 12:10:31.0483 5708 DSFKSVCS - ok 12:10:31.0514 5708 dsfroot (13699ba0680d8eeef67945f5a405610c) C:\Windows\system32\DRIVERS\dsfroot.sys 12:10:31.0514 5708 dsfroot - ok 12:10:31.0576 5708 dtsoftbus01 (400582b09e0bb557d0ec28a945150eeb) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 12:10:31.0576 5708 dtsoftbus01 - ok 12:10:31.0639 5708 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys 12:10:31.0639 5708 DXGKrnl - ok 12:10:31.0717 5708 eamonm (aca3fe4f18a945b7bf2618a79f6f670b) C:\Windows\system32\DRIVERS\eamonm.sys 12:10:31.0732 5708 eamonm - ok 12:10:31.0873 5708 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys 12:10:31.0982 5708 ebdrv - ok 12:10:32.0044 5708 ehdrv (6672438bdcbfd87250d22112d458294d) C:\Windows\system32\DRIVERS\ehdrv.sys 12:10:32.0075 5708 ehdrv - ok 12:10:32.0138 5708 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys 12:10:32.0153 5708 elxstor - ok 12:10:32.0216 5708 epfw (443805b5b11c859ac8ca35297648ff0c) C:\Windows\system32\DRIVERS\epfw.sys 12:10:32.0247 5708 epfw - ok 12:10:32.0309 5708 Epfwndis (66e61bc6c9f519a99275eb0f0e530bf4) C:\Windows\system32\DRIVERS\Epfwndis.sys 12:10:32.0325 5708 Epfwndis - ok 12:10:32.0387 5708 epfwwfp (f72c97f3d34ea5ec919c73e3901266bb) C:\Windows\system32\DRIVERS\epfwwfp.sys 12:10:32.0403 5708 epfwwfp - ok 12:10:32.0419 5708 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys 12:10:32.0434 5708 ErrDev - ok 12:10:32.0481 5708 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys 12:10:32.0497 5708 exfat - ok 12:10:32.0512 5708 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys 12:10:32.0528 5708 fastfat - ok 12:10:32.0559 5708 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys 12:10:32.0590 5708 fdc - ok 12:10:32.0621 5708 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys 12:10:32.0621 5708 FileInfo - ok 12:10:32.0637 5708 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys 12:10:32.0653 5708 Filetrace - ok 12:10:32.0731 5708 FLASHSYS (5b314cc7640d091de8f3bc822490da28) C:\Program Files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys 12:10:32.0746 5708 FLASHSYS - ok 12:10:32.0777 5708 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys 12:10:32.0777 5708 flpydisk - ok 12:10:32.0793 5708 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys 12:10:32.0824 5708 FltMgr - ok 12:10:32.0840 5708 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys 12:10:32.0855 5708 FsDepends - ok 12:10:32.0871 5708 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys 12:10:32.0887 5708 Fs_Rec - ok 12:10:32.0933 5708 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys 12:10:32.0949 5708 fvevol - ok 12:10:32.0980 5708 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys 12:10:32.0996 5708 gagp30kx - ok 12:10:33.0043 5708 GWHid (5c2cd67845d77e3bc968ef84e1090754) C:\Windows\system32\DRIVERS\GWHid.sys 12:10:33.0058 5708 GWHid - ok 12:10:33.0089 5708 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys 12:10:33.0089 5708 hcw85cir - ok 12:10:33.0136 5708 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys 12:10:33.0136 5708 HdAudAddService - ok 12:10:33.0183 5708 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys 12:10:33.0183 5708 HDAudBus - ok 12:10:33.0199 5708 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys 12:10:33.0214 5708 HidBatt - ok 12:10:33.0245 5708 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys 12:10:33.0261 5708 HidBth - ok 12:10:33.0292 5708 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys 12:10:33.0308 5708 HidIr - ok 12:10:33.0339 5708 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys 12:10:33.0339 5708 HidUsb - ok 12:10:33.0370 5708 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys 12:10:33.0370 5708 HpSAMD - ok 12:10:33.0386 5708 HRMACPI - ok 12:10:33.0433 5708 HRMCFGSPC (1696a06c0ef55dfcd540b32556d3819a) C:\Windows\system32\DRIVERS\HRMCFGSPC.SYS 12:10:33.0433 5708 HRMCFGSPC - ok 12:10:33.0448 5708 HRMINTS (f58f8f2a11ce4a695c9333c416d0321f) C:\Windows\system32\DRIVERS\HRMINTS.SYS 12:10:33.0464 5708 HRMINTS - ok 12:10:33.0495 5708 HRMPORTS (6bc42dc759d42a4edca7452b4d08d870) C:\Windows\system32\DRIVERS\HRMPORTS.SYS 12:10:33.0495 5708 HRMPORTS - ok 12:10:33.0526 5708 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys 12:10:33.0526 5708 HTTP - ok 12:10:33.0573 5708 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys 12:10:33.0589 5708 hwpolicy - ok 12:10:33.0620 5708 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys 12:10:33.0620 5708 i8042prt - ok 12:10:33.0667 5708 iaStor (d1e30259353e7d8d1b713a76cddeb88b) C:\Windows\system32\DRIVERS\iaStor.sys 12:10:33.0667 5708 iaStor - ok 12:10:33.0729 5708 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys 12:10:33.0760 5708 iaStorV - ok 12:10:33.0791 5708 ICCWDT (c1010add3ddae1196ed21057af7b2aae) C:\Windows\system32\DRIVERS\ICCWDT.sys 12:10:33.0807 5708 ICCWDT - ok 12:10:33.0823 5708 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys 12:10:33.0823 5708 iirsp - ok 12:10:33.0916 5708 IntcAzAudAddService (589b94a9b73a0e819ff873743a480834) C:\Windows\system32\drivers\RTKVHD64.sys 12:10:33.0916 5708 IntcAzAudAddService - ok 12:10:33.0947 5708 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys 12:10:33.0947 5708 intelide - ok 12:10:33.0994 5708 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys 12:10:33.0994 5708 intelppm - ok 12:10:34.0041 5708 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys 12:10:34.0041 5708 IpFilterDriver - ok 12:10:34.0103 5708 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys 12:10:34.0103 5708 IPMIDRV - ok 12:10:34.0119 5708 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys 12:10:34.0135 5708 IPNAT - ok 12:10:34.0150 5708 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys 12:10:34.0166 5708 IRENUM - ok 12:10:34.0197 5708 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys 12:10:34.0213 5708 isapnp - ok 12:10:34.0244 5708 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys 12:10:34.0259 5708 iScsiPrt - ok 12:10:34.0291 5708 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys 12:10:34.0291 5708 kbdclass - ok 12:10:34.0322 5708 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys 12:10:34.0322 5708 kbdhid - ok 12:10:34.0353 5708 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys 12:10:34.0369 5708 KSecDD - ok 12:10:34.0384 5708 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys 12:10:34.0400 5708 KSecPkg - ok 12:10:34.0415 5708 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys 12:10:34.0431 5708 ksthunk - ok 12:10:34.0462 5708 LGDDCDevice - ok 12:10:34.0462 5708 LGII2CDevice - ok 12:10:34.0509 5708 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys 12:10:34.0525 5708 lltdio - ok 12:10:34.0571 5708 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys 12:10:34.0587 5708 LSI_FC - ok 12:10:34.0603 5708 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys 12:10:34.0603 5708 LSI_SAS - ok 12:10:34.0618 5708 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys 12:10:34.0634 5708 LSI_SAS2 - ok 12:10:34.0634 5708 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys 12:10:34.0649 5708 LSI_SCSI - ok 12:10:34.0681 5708 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys 12:10:34.0696 5708 luafv - ok 12:10:34.0774 5708 LVRS64 (0c85b2b6fb74b36a251792d45e0ef860) C:\Windows\system32\DRIVERS\lvrs64.sys 12:10:34.0790 5708 LVRS64 - ok 12:10:34.0930 5708 LVUVC64 (ff3a488924b0032b1a9ca6948c1fa9e8) C:\Windows\system32\DRIVERS\lvuvc64.sys 12:10:34.0946 5708 LVUVC64 - ok 12:10:34.0993 5708 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys 12:10:35.0024 5708 megasas - ok 12:10:35.0024 5708 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys 12:10:35.0039 5708 MegaSR - ok 12:10:35.0086 5708 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys 12:10:35.0102 5708 MEIx64 - ok 12:10:35.0149 5708 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys 12:10:35.0149 5708 Modem - ok 12:10:35.0164 5708 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys 12:10:35.0180 5708 monitor - ok 12:10:35.0211 5708 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys 12:10:35.0211 5708 mouclass - ok 12:10:35.0227 5708 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys 12:10:35.0242 5708 mouhid - ok 12:10:35.0273 5708 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys 12:10:35.0289 5708 mountmgr - ok 12:10:35.0336 5708 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys 12:10:35.0336 5708 mpio - ok 12:10:35.0367 5708 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys 12:10:35.0383 5708 mpsdrv - ok 12:10:35.0383 5708 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys 12:10:35.0398 5708 MRxDAV - ok 12:10:35.0445 5708 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys 12:10:35.0445 5708 mrxsmb - ok 12:10:35.0476 5708 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys 12:10:35.0492 5708 mrxsmb10 - ok 12:10:35.0507 5708 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys 12:10:35.0507 5708 mrxsmb20 - ok 12:10:35.0523 5708 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys 12:10:35.0539 5708 msahci - ok 12:10:35.0539 5708 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys 12:10:35.0554 5708 msdsm - ok 12:10:35.0601 5708 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys 12:10:35.0601 5708 Msfs - ok 12:10:35.0601 5708 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys 12:10:35.0601 5708 mshidkmdf - ok 12:10:35.0632 5708 MSICDSetup - ok 12:10:35.0664 5708 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys 12:10:35.0695 5708 msisadrv - ok 12:10:35.0726 5708 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys 12:10:35.0726 5708 MSKSSRV - ok 12:10:35.0742 5708 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys 12:10:35.0742 5708 MSPCLOCK - ok 12:10:35.0788 5708 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys 12:10:35.0804 5708 MSPQM - ok 12:10:35.0835 5708 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys 12:10:35.0835 5708 MsRPC - ok 12:10:35.0898 5708 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys 12:10:35.0898 5708 mssmbios - ok 12:10:35.0929 5708 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys 12:10:35.0929 5708 MSTEE - ok 12:10:35.0944 5708 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys 12:10:35.0944 5708 MTConfig - ok 12:10:35.0960 5708 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys 12:10:35.0960 5708 Mup - ok 12:10:36.0007 5708 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys 12:10:36.0038 5708 NativeWifiP - ok 12:10:36.0100 5708 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys 12:10:36.0132 5708 NDIS - ok 12:10:36.0163 5708 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys 12:10:36.0178 5708 NdisCap - ok 12:10:36.0225 5708 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys 12:10:36.0225 5708 NdisTapi - ok 12:10:36.0272 5708 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys 12:10:36.0288 5708 Ndisuio - ok 12:10:36.0303 5708 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys 12:10:36.0319 5708 NdisWan - ok 12:10:36.0366 5708 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys 12:10:36.0397 5708 NDProxy - ok 12:10:36.0412 5708 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys 12:10:36.0412 5708 NetBIOS - ok 12:10:36.0428 5708 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys 12:10:36.0444 5708 NetBT - ok 12:10:36.0584 5708 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys 12:10:36.0615 5708 nfrd960 - ok 12:10:36.0709 5708 nmwcd (5fe6f8c05f0769bbb74afac11453b182) C:\Windows\system32\drivers\ccdcmbx64.sys 12:10:36.0740 5708 nmwcd - ok 12:10:36.0771 5708 nmwcdc (73c929945c0850b8d1fe2fea05fdf05d) C:\Windows\system32\drivers\ccdcmbox64.sys 12:10:36.0787 5708 nmwcdc - ok 12:10:36.0802 5708 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys 12:10:36.0818 5708 Npfs - ok 12:10:36.0834 5708 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys 12:10:36.0849 5708 nsiproxy - ok 12:10:36.0896 5708 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys 12:10:36.0927 5708 Ntfs - ok 12:10:36.0958 5708 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys 12:10:36.0974 5708 Null - ok 12:10:37.0005 5708 NVHDA (102806b360d0e6bc6e55bf47ef655d43) C:\Windows\system32\drivers\nvhda64v.sys 12:10:37.0005 5708 NVHDA - ok 12:10:37.0317 5708 nvlddmkm (ba0b4889c40380a01ecdf84c227a89c9) C:\Windows\system32\DRIVERS\nvlddmkm.sys 12:10:37.0364 5708 nvlddmkm - ok 12:10:37.0426 5708 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys 12:10:37.0442 5708 nvraid - ok 12:10:37.0504 5708 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys 12:10:37.0536 5708 nvstor - ok 12:10:37.0614 5708 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys 12:10:37.0629 5708 nv_agp - ok 12:10:37.0629 5708 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys 12:10:37.0645 5708 ohci1394 - ok 12:10:37.0676 5708 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys 12:10:37.0676 5708 Parport - ok 12:10:37.0707 5708 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys 12:10:37.0723 5708 partmgr - ok 12:10:37.0801 5708 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys 12:10:37.0816 5708 pccsmcfd - ok 12:10:37.0848 5708 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys 12:10:37.0863 5708 pci - ok 12:10:37.0879 5708 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys 12:10:37.0879 5708 pciide - ok 12:10:37.0894 5708 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys 12:10:37.0910 5708 pcmcia - ok 12:10:37.0957 5708 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys 12:10:37.0972 5708 pcw - ok 12:10:38.0004 5708 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys 12:10:38.0035 5708 PEAUTH - ok 12:10:38.0175 5708 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys 12:10:38.0238 5708 PptpMiniport - ok 12:10:38.0253 5708 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys 12:10:38.0253 5708 Processor - ok 12:10:38.0284 5708 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys 12:10:38.0284 5708 Psched - ok 12:10:38.0347 5708 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys 12:10:38.0378 5708 ql2300 - ok 12:10:38.0378 5708 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys 12:10:38.0378 5708 ql40xx - ok 12:10:38.0409 5708 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys 12:10:38.0409 5708 QWAVEdrv - ok 12:10:38.0425 5708 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys 12:10:38.0425 5708 RasAcd - ok 12:10:38.0456 5708 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys 12:10:38.0456 5708 RasAgileVpn - ok 12:10:38.0487 5708 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys 12:10:38.0503 5708 Rasl2tp - ok 12:10:38.0550 5708 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys 12:10:38.0550 5708 RasPppoe - ok 12:10:38.0565 5708 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys 12:10:38.0581 5708 RasSstp - ok 12:10:38.0612 5708 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys 12:10:38.0612 5708 rdbss - ok 12:10:38.0628 5708 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys 12:10:38.0643 5708 rdpbus - ok 12:10:38.0659 5708 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys 12:10:38.0659 5708 RDPCDD - ok 12:10:38.0690 5708 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys 12:10:38.0706 5708 RDPDR - ok 12:10:38.0721 5708 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys 12:10:38.0721 5708 RDPENCDD - ok 12:10:38.0752 5708 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys 12:10:38.0752 5708 RDPREFMP - ok 12:10:38.0799 5708 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys 12:10:38.0830 5708 RDPWD - ok 12:10:38.0830 5708 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys 12:10:38.0830 5708 rdyboost - ok 12:10:38.0893 5708 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys 12:10:38.0924 5708 RFCOMM - ok 12:10:38.0955 5708 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys 12:10:38.0955 5708 ROOTMODEM - ok 12:10:38.0986 5708 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys 12:10:38.0986 5708 rspndr - ok 12:10:39.0018 5708 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys 12:10:39.0033 5708 RTL8167 - ok 12:10:39.0142 5708 RtNdPt60 (e16b7c030a05ef649b18fab0a93d871f) C:\Windows\system32\DRIVERS\RtNdPt60.sys 12:10:39.0158 5708 RtNdPt60 - ok 12:10:39.0189 5708 RTTEAMPT (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 12:10:39.0189 5708 RTTEAMPT - ok 12:10:39.0205 5708 RTVLANPT (b1018aa1b5735f5fa89fd4dadf4bea7a) C:\Windows\system32\DRIVERS\RtVlan60.sys 12:10:39.0220 5708 RTVLANPT - ok 12:10:39.0252 5708 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys 12:10:39.0252 5708 s3cap - ok 12:10:39.0330 5708 SandBox (e030b2cac592bc41f52d4b1775f40aec) C:\Windows\system32\drivers\SandBox64.sys 12:10:39.0345 5708 SandBox - ok 12:10:39.0376 5708 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys 12:10:39.0376 5708 sbp2port - ok 12:10:39.0454 5708 SCDEmu (c81eb41e9ffc35560e5025891dc01a6e) C:\Windows\system32\drivers\SCDEmu.sys 12:10:39.0470 5708 SCDEmu - ok 12:10:39.0486 5708 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys 12:10:39.0501 5708 scfilter - ok 12:10:39.0532 5708 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys 12:10:39.0548 5708 secdrv - ok 12:10:39.0579 5708 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys 12:10:39.0579 5708 Serenum - ok 12:10:39.0610 5708 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys 12:10:39.0642 5708 Serial - ok 12:10:39.0657 5708 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys 12:10:39.0673 5708 sermouse - ok 12:10:39.0735 5708 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys 12:10:39.0766 5708 sffdisk - ok 12:10:39.0782 5708 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys 12:10:39.0798 5708 sffp_mmc - ok 12:10:39.0813 5708 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys 12:10:39.0813 5708 sffp_sd - ok 12:10:39.0829 5708 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys 12:10:39.0844 5708 sfloppy - ok 12:10:39.0876 5708 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys 12:10:39.0907 5708 SiSRaid2 - ok 12:10:39.0938 5708 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys 12:10:39.0954 5708 SiSRaid4 - ok 12:10:40.0000 5708 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys 12:10:40.0000 5708 Smb - ok 12:10:40.0063 5708 softehci (5da8039e58b3a557c6a744e476cdeb7f) C:\Windows\system32\DRIVERS\softehci.sys 12:10:40.0078 5708 softehci - ok 12:10:40.0110 5708 SOFTHIDUSBK (26d2b0ff718219809c0bc3a8b061c6ec) C:\Windows\system32\DRIVERS\SOFTHIDUSBK.SYS 12:10:40.0125 5708 SOFTHIDUSBK - ok 12:10:40.0156 5708 SOFTUSBK (e1702bbe8d31b6edd5c6881c80f123a8) C:\Windows\system32\DRIVERS\SOFTUSBK.SYS 12:10:40.0172 5708 SOFTUSBK - ok 12:10:40.0188 5708 SOFTUSBTESTHUB - ok 12:10:40.0219 5708 SOFTWADP - ok 12:10:40.0266 5708 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys 12:10:40.0281 5708 spldr - ok 12:10:40.0344 5708 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys 12:10:40.0406 5708 srv - ok 12:10:40.0437 5708 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys 12:10:40.0453 5708 srv2 - ok 12:10:40.0484 5708 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys 12:10:40.0484 5708 srvnet - ok 12:10:40.0531 5708 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys 12:10:40.0531 5708 stexstor - ok 12:10:40.0593 5708 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys 12:10:40.0593 5708 storflt - ok 12:10:40.0640 5708 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys 12:10:40.0671 5708 storvsc - ok 12:10:40.0687 5708 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys 12:10:40.0702 5708 swenum - ok 12:10:40.0812 5708 tap0901 (f9be29d5e097f03f81d3cd12b794cb66) C:\Windows\system32\DRIVERS\tap0901.sys 12:10:40.0843 5708 tap0901 - ok 12:10:40.0921 5708 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys 12:10:40.0952 5708 Tcpip - ok 12:10:40.0999 5708 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys 12:10:41.0014 5708 TCPIP6 - ok 12:10:41.0014 5708 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys 12:10:41.0014 5708 tcpipreg - ok 12:10:41.0046 5708 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys 12:10:41.0046 5708 TDPIPE - ok 12:10:41.0108 5708 Tdsshbecr (03e62cd83a62859f4f796434ee6c385e) C:\Windows\system32\DRIVERS\shbecr.sys 12:10:41.0108 5708 Tdsshbecr - ok 12:10:41.0155 5708 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys 12:10:41.0155 5708 TDTCP - ok 12:10:41.0170 5708 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys 12:10:41.0186 5708 tdx - ok 12:10:41.0264 5708 TEAM (1de78f5008120cd79b34c12394dcd493) C:\Windows\system32\DRIVERS\RtTeam60.sys 12:10:41.0264 5708 TEAM - ok 12:10:41.0295 5708 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys 12:10:41.0311 5708 TermDD - ok 12:10:41.0358 5708 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys 12:10:41.0358 5708 tssecsrv - ok 12:10:41.0389 5708 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys 12:10:41.0389 5708 TsUsbFlt - ok 12:10:41.0420 5708 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys 12:10:41.0420 5708 TsUsbGD - ok 12:10:41.0498 5708 TuneUpUtilitiesDrv (dcc94c51d27c7ec0dadeca8f64c94fcf) C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys 12:10:41.0498 5708 TuneUpUtilitiesDrv - ok 12:10:41.0529 5708 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys 12:10:41.0545 5708 tunnel - ok 12:10:41.0560 5708 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys 12:10:41.0560 5708 uagp35 - ok 12:10:41.0576 5708 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys 12:10:41.0576 5708 udfs - ok 12:10:41.0607 5708 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys 12:10:41.0607 5708 uliagpkx - ok 12:10:41.0623 5708 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys 12:10:41.0638 5708 umbus - ok 12:10:41.0654 5708 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys 12:10:41.0654 5708 UmPass - ok 12:10:41.0732 5708 upperdev (34afb83c7bba370e404e52cc2290350c) C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys 12:10:41.0748 5708 upperdev - ok 12:10:41.0826 5708 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys 12:10:41.0841 5708 usbaudio - ok 12:10:41.0888 5708 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys 12:10:41.0904 5708 usbccgp - ok 12:10:41.0935 5708 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys 12:10:41.0935 5708 usbcir - ok 12:10:41.0966 5708 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys 12:10:41.0982 5708 usbehci - ok 12:10:42.0013 5708 usbehci_dsf (dc2b97b8865042fc17c82381ac426d1c) C:\Windows\system32\DRIVERS\usbehci_dsf.sys 12:10:42.0044 5708 usbehci_dsf - ok 12:10:42.0075 5708 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys 12:10:42.0091 5708 usbhub - ok 12:10:42.0122 5708 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys 12:10:42.0122 5708 usbohci - ok 12:10:42.0138 5708 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys 12:10:42.0153 5708 usbprint - ok 12:10:42.0184 5708 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys 12:10:42.0184 5708 usbscan - ok 12:10:42.0262 5708 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys 12:10:42.0278 5708 usbser - ok 12:10:42.0325 5708 UsbserFilt (aa75e1efbee7186b4cbaaacf1f15e6ca) C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys 12:10:42.0340 5708 UsbserFilt - ok 12:10:42.0372 5708 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS 12:10:42.0403 5708 USBSTOR - ok 12:10:42.0434 5708 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys 12:10:42.0434 5708 usbuhci - ok 12:10:42.0496 5708 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys 12:10:42.0512 5708 usbvideo - ok 12:10:42.0559 5708 VComm - ok 12:10:42.0590 5708 VcommMgr - ok 12:10:42.0637 5708 VDiskBus (1d3d716e05caa17122de65d0dba4f6d7) C:\Windows\system32\DRIVERS\VDiskBus64.sys 12:10:42.0668 5708 VDiskBus - ok 12:10:42.0715 5708 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys 12:10:42.0746 5708 vdrvroot - ok 12:10:42.0824 5708 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys 12:10:42.0824 5708 vga - ok 12:10:42.0840 5708 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys 12:10:42.0855 5708 VgaSave - ok 12:10:42.0902 5708 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys 12:10:42.0918 5708 vhdmp - ok 12:10:42.0949 5708 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys 12:10:42.0949 5708 viaide - ok 12:10:42.0996 5708 VL807 (f6627d3bdd1e4747ebb0b5e9f2fcb706) C:\Windows\system32\DRIVERS\VL807.sys 12:10:43.0011 5708 VL807 - ok 12:10:43.0058 5708 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys 12:10:43.0074 5708 vmbus - ok 12:10:43.0089 5708 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys 12:10:43.0105 5708 VMBusHID - ok 12:10:43.0136 5708 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys 12:10:43.0152 5708 volmgr - ok 12:10:43.0167 5708 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys 12:10:43.0183 5708 volmgrx - ok 12:10:43.0198 5708 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys 12:10:43.0245 5708 volsnap - ok 12:10:43.0292 5708 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys 12:10:43.0308 5708 vsmraid - ok 12:10:43.0339 5708 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys 12:10:43.0354 5708 vwifibus - ok 12:10:43.0401 5708 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys 12:10:43.0401 5708 WacomPen - ok 12:10:43.0432 5708 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 12:10:43.0448 5708 WANARP - ok 12:10:43.0448 5708 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys 12:10:43.0448 5708 Wanarpv6 - ok 12:10:43.0510 5708 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys 12:10:43.0510 5708 Wd - ok 12:10:43.0526 5708 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys 12:10:43.0542 5708 Wdf01000 - ok 12:10:43.0588 5708 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys 12:10:43.0604 5708 WfpLwf - ok 12:10:43.0620 5708 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys 12:10:43.0620 5708 WIMMount - ok 12:10:43.0682 5708 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys 12:10:43.0682 5708 WinUsb - ok 12:10:43.0729 5708 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys 12:10:43.0744 5708 WmiAcpi - ok 12:10:43.0807 5708 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys 12:10:43.0822 5708 ws2ifsl - ok 12:10:43.0838 5708 WSOFTUSBK - ok 12:10:43.0885 5708 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys 12:10:43.0916 5708 WudfPf - ok 12:10:43.0963 5708 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys 12:10:43.0994 5708 WUDFRd - ok 12:10:44.0041 5708 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 12:10:44.0103 5708 \Device\Harddisk0\DR0 - ok 12:10:44.0103 5708 Boot (0x1200) (596b5f9925ba890f00ce754536c27b1d) \Device\Harddisk0\DR0\Partition0 12:10:44.0103 5708 \Device\Harddisk0\DR0\Partition0 - ok 12:10:44.0119 5708 Boot (0x1200) (f6ad5e4b25c34b31f72cdddcc5437d1b) \Device\Harddisk0\DR0\Partition1 12:10:44.0119 5708 \Device\Harddisk0\DR0\Partition1 - ok 12:10:44.0134 5708 Boot (0x1200) (38d41339708f62b5de168d2a594b4ddd) \Device\Harddisk0\DR0\Partition2 12:10:44.0134 5708 \Device\Harddisk0\DR0\Partition2 - ok 12:10:44.0166 5708 Boot (0x1200) (f47de2c3dd2e33e0ba93658f18a85026) \Device\Harddisk0\DR0\Partition3 12:10:44.0166 5708 \Device\Harddisk0\DR0\Partition3 - ok 12:10:44.0166 5708 ============================================================ 12:10:44.0166 5708 Scan finished 12:10:44.0166 5708 ============================================================ 12:10:44.0181 5736 Detected object count: 0 12:10:44.0181 5736 Actual detected object count: 0 12:10:49.0485 5664 Deinitialize success [/spoiler] Chcecie bonus (HuskyInstallerLog) ? Widze ze jest problem z dodawaniem wiekszych postow.
Natsuki Kuga komentarz 1 stycznia 2014 komentarz 1 stycznia 2014 Chcecie bonus (HuskyInstallerLog) ? Nie, nie musisz dodawać. 13:13:50.0418 6028 C:\Windows\System32\Drivers\sptd.sys - copied to quarantine 13:13:50.0463 6028 HKLM\SYSTEM\ControlSet001\services\sptd - will be deleted on reboot 13:13:50.0485 6028 HKLM\SYSTEM\ControlSet002\services\sptd - will be deleted on reboot 13:13:50.0518 6028 C:\Windows\System32\Drivers\sptd.sys - will be deleted on reboot 13:13:50.0518 6028 sptd ( LockedFile.Multi.Generic ) - User select action: Delete Nie ma sensu tego usuwać, bo to jest false positive - ten sterownik to składnik programu Daemon Tools. Jak system zachowuje się w trybie awaryjnym? Czy w HDTune w zakładce error scan jest jakiś czerwony kwadrat? Pokaż jeszcze screen z zakładki Benchmark.
Dawid_Dj komentarz 2 stycznia 2014 Autor komentarz 2 stycznia 2014 W trybie awaryjnym pracował przez ok. godzinę i nie zauważyłem żadnego problemu. Sprawdze to chyba jeszcze jutro. Wszystkie kwadraty były zielone. Dodam jeszcze ze w trybie awaryjnym HD Tune Pro wyświetlał się normalnie a źle to robi na załączonym screenie.
Dawid_Dj komentarz 8 stycznia 2014 Autor komentarz 8 stycznia 2014 (edytowane) Musze sie wam zwiezyc. Jakieś 2 dni temu mialem problem z logowaniem. Przez caly czas byl wyswietlany napis "zapraszamy!". Musialem zalogowac sie w trybie awaryjnym (udalo sie bez problemu). Wlaczylem konto goscia. Uruchomilem komputer ponownie i bez problemu zalogowalem sie na moje konto. Wylaczylem konto goscia i jest po staremu. Reasumujac konto goscia wlaczylem niepotrzebnie. Dzisiaj mialem inny problem. "uśpiłem" komputer. Po godzinie chcialem go wlaczyc no i nie udalo sie... Komp chodzi ale ani klawa ani monitor nie reaguja. Po ktoryms resecie uslyszalem 3 dzwieki. Po ponownym resecie (albo 2 resety dalej) uslyszalem 3 beepy i po chwile znowu 3 i koniec. Na plycie palila sie czerwona dioda od ram'u. Przeczytalem na necie ze to problem z ram'em wiec pokombinowalem czyli zmienilem sloty ram'u oraz zresetowalem bios. W koncu wszystko jakos zadzialalo chociaz cos mnie niepokoi. Tak pomiedzy tym logiem windowsa przy uruchamianiu a ekranem logowania klawiatura na chwile sie wylacza. Wczesniej chyba tego nie mialem ale po chwili wszystko wraca do normy. Poobserwuje to. Dodam jeszcze ze pare dni temu wrocilem spowrotem do podkrecenia procka tak jak mialem to wczesniej przez parnascie miesiecy przed resetem opisanym kilka postow wyzej. Teraz boje sie go podkrecic :/
Dawid_Dj komentarz 17 stycznia 2014 Autor komentarz 17 stycznia 2014 Pomożecie?? Ostatnio mialem tez blue screena. Po zainstalowanych aktualizacjach przy uruchamianiu kompa mialem cos takiego. Nie wiem dokladnie w jakiej fazie mi sie pojawil.
Youki komentarz 17 stycznia 2014 komentarz 17 stycznia 2014 Odinstaluj ASUS Al Charger czy coś podobnego.
Dawid_Dj komentarz 21 stycznia 2014 Autor komentarz 21 stycznia 2014 Pomożecie? Zauważyłem rowniez ze komp mi sie nie tnie gdy gram w gre. Gdy korzystam z firefoxa to mam problem. W najblizszym czasie sprawdze jak bedzie z chrome.
Youki komentarz 21 stycznia 2014 komentarz 21 stycznia 2014 Tak to. Pokaż jeszcze profilaktycznie temperatury w spoczynku i pod obciążeniem za pomocą programu HWmonitor.
Dawid_Dj komentarz 26 stycznia 2014 Autor komentarz 26 stycznia 2014 w spoczynku [spoiler]Hardware monitor Nuvoton NCT6776 Voltage 0 1.06 Volts [0x85] (CPU VCORE) Voltage 1 1.01 Volts [0x7E] (VIN1) Voltage 2 3.38 Volts [0xD3] (AVCC) Voltage 3 3.38 Volts [0xD3] (3VCC) Voltage 4 1.01 Volts [0x7E] (VIN4) Voltage 6 0.82 Volts [0x67] (VIN6) Temperature 0 22°C (71°F) [0x16] (SYSTIN) Temperature 1 66°C (150°F) [0x84] (CPUTIN) Temperature 2 66°C (149°F) [0x83] (AUXTIN) Temperature 3 39°C (102°F) [0x27] (TMPIN3) Fan 1 915 RPM [0x393] (CPUFANIN) Fan 2 1159 RPM [0x487] (AUXFANIN0) Hardware monitor NVIDIA NVAPI Voltage 0 0.95 Volts [0x3B6] (VIN0) Temperature 0 29°C (84°F) [0x1D] (TMPIN0) Fan 0 1470 RPM [0x5BE] (FANIN0) Fan PWM 0 40 pc [0x28] (FANPWMIN0) Processor 1 ID = 0 Number of cores 4 (max 8) Number of threads 4 (max 16) Name Intel Core i5 2500K Codename Sandy Bridge Specification Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz Package (platform ID) Socket 1155 LGA (0x1) CPUID 6.A.7 Extended CPUID 6.2A Core Stepping D2 Technology 32 nm TDP Limit 95 Watts Tjmax 98.0 °C Core Speed 3309.9 MHz Multiplier x Bus Speed 33.0 x 100.3 MHz Stock frequency 3300 MHz Instructions sets MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1, SSE4.2, EM64T, VT-x, AES, AVX L1 Data cache 4 x 32 KBytes, 8-way set associative, 64-byte line size L1 Instruction cache 4 x 32 KBytes, 8-way set associative, 64-byte line size L2 cache 4 x 256 KBytes, 8-way set associative, 64-byte line size L3 cache 6 MBytes, 12-way set associative, 64-byte line size FID/VID Control yes Turbo Mode supported, enabled Max non-turbo ratio 33x Max turbo ratio 37x Max efficiency ratio 16x Min Power 60 Watts O/C bins unlimited Ratio 1 core 37x Ratio 2 cores 36x Ratio 3 cores 35x Ratio 4 cores 34x TSC 3310.8 MHz APERF 3488.0 MHz MPERF 3233.6 MHz[/spoiler] pod obciążeniem [spoiler]Hardware monitor Nuvoton NCT6776 Voltage 0 0.94 Volts [0x75] (CPU VCORE) Voltage 1 1.01 Volts [0x7E] (VIN1) Voltage 2 3.36 Volts [0xD2] (AVCC) Voltage 3 3.38 Volts [0xD3] (3VCC) Voltage 4 1.01 Volts [0x7E] (VIN4) Voltage 6 0.85 Volts [0x6A] (VIN6) Temperature 0 26°C (78°F) [0x1A] (SYSTIN) Temperature 1 84°C (182°F) [0xA7] (CPUTIN) Temperature 2 58°C (136°F) [0x74] (AUXTIN) Temperature 3 45°C (113°F) [0x2D] (TMPIN3) Fan 1 1169 RPM [0x491] (CPUFANIN) Fan 2 1158 RPM [0x486] (AUXFANIN0) Hardware monitor NVIDIA NVAPI Voltage 0 0.95 Volts [0x3B6] (VIN0) Temperature 0 52°C (125°F) [0x34] (TMPIN0) Fan 0 2730 RPM [0xAAA] (FANIN0) Fan PWM 0 55 pc [0x37] (FANPWMIN0) Processor 1 ID = 0 Number of cores 4 (max 8) Number of threads 4 (max 16) Name Intel Core i5 2500K Codename Sandy Bridge Specification Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz Package (platform ID) Socket 1155 LGA (0x1) CPUID 6.A.7 Extended CPUID 6.2A Core Stepping D2 Technology 32 nm TDP Limit 95 Watts Tjmax 98.0 °C Core Speed 1604.8 MHz Multiplier x Bus Speed 16.0 x 100.3 MHz Stock frequency 3300 MHz Instructions sets MMX, SSE, SSE2, SSE3, SSSE3, SSE4.1, SSE4.2, EM64T, VT-x, AES, AVX L1 Data cache 4 x 32 KBytes, 8-way set associative, 64-byte line size L1 Instruction cache 4 x 32 KBytes, 8-way set associative, 64-byte line size L2 cache 4 x 256 KBytes, 8-way set associative, 64-byte line size L3 cache 6 MBytes, 12-way set associative, 64-byte line size FID/VID Control yes Turbo Mode supported, enabled Max non-turbo ratio 33x Max turbo ratio 37x Max efficiency ratio 16x Min Power 60 Watts O/C bins unlimited Ratio 1 core 37x Ratio 2 cores 36x Ratio 3 cores 35x Ratio 4 cores 34x TSC 3310.9 MHz APERF 3411.2 MHz MPERF 3310.7 MHz[/spoiler]
Dawid_Dj komentarz 26 stycznia 2014 Autor komentarz 26 stycznia 2014 w spoczynku Po kilku minutach grania, zaraz po wylaczeniu gry
Youki komentarz 26 stycznia 2014 komentarz 26 stycznia 2014 Do W najblizszym czasie sprawdze jak bedzie z chrome. I jak ?
Dawid_Dj komentarz 31 stycznia 2014 Autor komentarz 31 stycznia 2014 Kilka dni bylo spoko az tu nagle znowu zaczal zamulac...
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.