Miner virus - zbytky

[vyosek]

Poprosim o log z RSIT http://forum.viry.cz/viewtopic.php?f=24&t=130784

[jura1]

Logfile of random's system information tool 1.09 (written by random/random)
Run by DusanPC at 2013-08-19 23:01:58
Microsoft Windows 8 Pro
System drive C: has 81 GB (66%) free of 122 GB
Total RAM: 8173 MB (75% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:02:00, on 19. 8. 2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16537)
Boot mode: Normal

Running processes:
C:\Windows\vVX1000.exe
C:\Program Files\WinFast\WFDTV\WFWIZ.exe
C:\Program Files (x86)\Origin\Origin.exe
C:\Users\DusanPC\AppData\Roaming\uTorrent\uTorrent.exe
C:\Users\DusanPC\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\DusanPC.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [WinFastDTV] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFDTV\WFWIZ.exe
O4 - HKCU\..\Run: [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [Viber] "C:\Users\DusanPC\AppData\Local\Viber\Viber.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\DusanPC\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - Startup: Dropbox.lnk = DusanPC\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Volání kliknutím v Lyncu - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AppleChargerSrv - Unknown owner - C:\Windows\system32\AppleChargerSrv.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - D:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @oem24.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\Windows\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10826 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
taskeng.exe {4C5F174D-D089-49AB-BE7D-720364F6443D}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
"C:\Program Files\Microsoft LifeCam\MSCamS64.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe"
"C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe"
C:\Windows\system32\viakaraokesrv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-92a79d54-3438-42a3-ab32-a907f5304352 -SystemEventPortName:HostProcess-381bc157-7dd3-4c7d-8152-a7d78e511bfc -IoCancelEventPortName:HostProcess-e274a1b8-05ce-41d5-9d6a-bd2c907589d4 -NonStateChangingEventPortName:HostProcess-e8fb2ab7-821a-4b2b-92b9-84a3ebf080e1 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:cc46b6c9-1a6b-4e8b-89c8-316cdad09133 -DeviceGroupId:WpdFsGroup
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-29981ceb-efc6-4176-b48f-8d945888bda7 -SystemEventPortName:HostProcess-9758b395-2a49-45ac-aade-248d931d464f -IoCancelEventPortName:HostProcess-ada11484-2d17-4bec-8c0f-42ae1965a912 -NonStateChangingEventPortName:HostProcess-9882b26e-ac05-41a1-9ab1-811eb8f8dc30 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:0a0d8f8b-f890-4e76-9003-780246ccbb30 -DeviceGroupId:WudfDefaultDevicePool
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
taskhostex.exe
C:\Windows\Explorer.EXE
"C:\Windows\vVX1000.exe"
"C:\Program Files\WinFast\WFDTV\WFWIZ.exe"
"C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
"C:\Users\DusanPC\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Users\DusanPC\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files\WinFast\WFDTV\DTVSchdl.exe"
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="6012.0.1376402478\1111888708" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,20 --gpu-vendor-id=0x1002 --gpu-device-id=0x68b8 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=12.104.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_24/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/ --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="6012.2.303289309\1350977577" /prefetch:673131151
"C:\Program Files\HWiNFO64\HWiNFO64.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_24/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="6012.3.860606551\618493229" /prefetch:673131151
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_24/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="6012.4.1209721015\1303559442" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials=ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderDisabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-1-Percent/group_24/UMA-Uniformity-Trial-10-Percent/group_07/UMA-Uniformity-Trial-20-Percent/default/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/ --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="6012.5.64864182\538540137" /prefetch:673131151
"C:\Users\DusanPC\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-02 205416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office15\URLREDIR.DLL [2012-10-02 877720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2012-10-02 2322576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-02 139368]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-07-31 463272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL [2012-10-02 704664]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2012-10-02 1720976]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-07-31 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-05-09 242496]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-05-09 198688]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VX1000"=C:\Windows\vVX1000.exe [2010-05-20 762736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WinFast Schedule"=C:\Program Files\WinFast\WFDTV\WFWIZ.exe [2012-08-28 2916352]
"EADM"=C:\Program Files (x86)\Origin\Origin.exe [2013-07-30 3549528]
"Viber"=C:\Users\DusanPC\AppData\Local\Viber\Viber.exe [2013-07-07 912904]
"uTorrent"=C:\Users\DusanPC\AppData\Roaming\uTorrent\uTorrent.exe [2013-08-10 888152]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-06-21 19875432]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LifeCam"=C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [2010-05-20 119152]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2012-08-09 5263504]
"WinFastDTV"=C:\Program Files\WinFast\WFDTV\DTVSchdl.exe [2012-09-10 101888]
"ArcSoft Connection Service"=C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27 207424]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-03-28 642656]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-05-09 4858968]

C:\Users\DusanPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\DusanPC\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-08-17 11:15:54 ----D---- C:\FRST
2013-08-16 10:55:35 ----D---- C:\Users\DusanPC\AppData\Roaming\Malwarebytes
2013-08-16 10:55:25 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-16 10:55:25 ----A---- C:\Windows\system32\drivers\mbam.sys
2013-08-16 10:39:42 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-08-16 10:38:26 ----D---- C:\ProgramData\Malwarebytes
2013-08-16 00:17:10 ----D---- C:\rsit
2013-08-16 00:06:23 ----D---- C:\Program Files\trend micro
2013-08-15 23:23:40 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-08-15 23:23:40 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-08-15 23:23:39 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-08-15 23:23:39 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-08-15 23:23:38 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-08-15 23:23:38 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-08-15 23:23:38 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-08-15 23:23:38 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-08-15 23:23:38 ----A---- C:\Windows\system32\aswBoot.exe
2013-08-15 23:23:17 ----A---- C:\Windows\avastSS.scr
2013-08-15 23:23:05 ----D---- C:\Program Files\AVAST Software
2013-08-15 23:22:44 ----D---- C:\ProgramData\AVAST Software
2013-08-15 22:09:17 ----D---- C:\ProgramData\ATI
2013-08-15 22:07:30 ----A---- C:\ProgramData\LaunchURL.bat
2013-08-15 22:07:24 ----D---- C:\Program Files (x86)\AMD AVT
2013-08-15 20:38:57 ----D---- C:\Users\DusanPC\AppData\Roaming\ATI
2013-08-15 20:38:49 ----D---- C:\ProgramData\AMD
2013-08-15 20:38:43 ----D---- C:\Program Files\Common Files\ATI Technologies
2013-08-15 20:38:33 ----D---- C:\Program Files (x86)\ATI Technologies
2013-08-15 20:38:28 ----D---- C:\Program Files\ATI Technologies
2013-08-15 20:38:27 ----D---- C:\Program Files\ATI
2013-08-15 20:15:16 ----D---- C:\AMD
2013-08-15 20:09:04 ----D---- C:\AMD_AppSDKWebVersion
2013-08-15 14:45:39 ----SHD---- C:\Config.Msi
2013-08-15 13:29:33 ----D---- C:\Users\DusanPC\AppData\Roaming\poclbm
2013-08-15 13:16:54 ----D---- C:\Users\DusanPC\AppData\Roaming\Litecoin
2013-08-15 13:15:42 ----D---- C:\Program Files (x86)\Litecoin
2013-08-12 09:39:53 ----D---- C:\ProgramData\AskPartnerNetwork
2013-08-12 09:39:53 ----D---- C:\Program Files (x86)\AskPartnerNetwork
2013-08-12 09:39:49 ----D---- C:\ProgramData\APN
2013-08-12 09:39:41 ----D---- C:\Program Files (x86)\DsNET Corp
2013-08-09 14:25:49 ----D---- C:\Program Files\WinRAR
2013-08-08 22:06:24 ----D---- C:\SWSetup
2013-08-07 21:33:43 ----D---- C:\ProgramData\Logs
2013-08-05 23:39:35 ----D---- C:\Users\DusanPC\AppData\Roaming\DRPSu
2013-08-05 23:38:29 ----D---- C:\DriverPack Solution
2013-08-05 11:42:07 ----D---- C:\Users\DusanPC\AppData\Roaming\ViberPC
2013-08-01 17:53:23 ----D---- C:\Windows\SYSWOW64\xlive
2013-08-01 17:53:23 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-07-31 19:36:29 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-07-31 19:36:28 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-07-31 19:36:28 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-07-31 19:36:28 ----A---- C:\Windows\SYSWOW64\java.exe
2013-07-31 19:36:25 ----D---- C:\Program Files (x86)\Java
2013-07-31 10:00:46 ----D---- C:\Program Files (x86)\HDDGURU LLF Tool
2013-07-31 09:48:11 ----D---- C:\Users\DusanPC\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2013-07-30 18:37:16 ----D---- C:\Program Files (x86)\Etron Technology
2013-07-30 18:36:18 ----D---- C:\CIMTEMP
2013-07-30 12:54:46 ----D---- C:\Windows\Acronis
2013-07-28 13:39:10 ----D---- C:\Program Files (x86)\Seagate
2013-07-27 20:46:44 ----A---- C:\Windows\system32\drivers\HWiNFO64A.SYS
2013-07-27 20:43:08 ----D---- C:\Program Files\HWiNFO64
2013-07-27 20:19:25 ----D---- C:\Program Files (x86)\AMD APP
2013-07-27 20:19:00 ----D---- C:\Windows\LastGood
2013-07-27 20:10:00 ----D---- C:\Windows\LastGood.Tmp
2013-07-27 13:20:35 ----D---- C:\Users\DusanPC\AppData\Roaming\HD Tune Pro
2013-07-27 13:07:16 ----D---- C:\Program Files (x86)\HD Tune Pro
2013-07-26 23:49:58 ----D---- C:\Program Files (x86)\CrystalDiskInfo
2013-07-26 23:44:59 ----D---- C:\Windows\system32\appmgmt
2013-07-26 22:37:22 ----D---- C:\ProgramData\Solidshield
2013-07-26 22:24:57 ----D---- C:\ProgramData\EA Core
2013-07-26 13:43:36 ----D---- C:\Users\DusanPC\AppData\Roaming\Origin
2013-07-26 13:43:36 ----D---- C:\Program Files (x86)\Origin Games
2013-07-26 13:41:30 ----D---- C:\ProgramData\Origin
2013-07-26 13:41:30 ----D---- C:\ProgramData\Electronic Arts
2013-07-26 13:41:29 ----D---- C:\Program Files (x86)\Origin
2013-07-25 21:39:35 ----D---- C:\Fraps
2013-07-25 19:11:26 ----D---- C:\Users\DusanPC\AppData\Roaming\TeamViewer
2013-07-25 19:11:11 ----D---- C:\Program Files (x86)\TeamViewer
2013-07-25 18:08:03 ----A---- C:\Windows\system32\drivers\pneteth.sys
2013-07-25 18:06:17 ----D---- C:\Program Files (x86)\PdaNet for Android
2013-07-24 16:33:53 ----A---- C:\Windows\system32\FNTCACHE.DAT
2013-07-23 15:35:45 ----D---- C:\Users\DusanPC\AppData\Roaming\vlc
2013-07-23 15:35:36 ----D---- C:\Program Files (x86)\VideoLAN
2013-07-23 15:28:28 ----D---- C:\Program Files\MediaInfo
2013-07-20 21:55:02 ----A---- C:\Windows\SYSWOW64\pbsvc_bc2.exe
2013-07-20 19:20:19 ----D---- C:\ProgramData\Sun
2013-07-20 19:20:19 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-07-20 19:20:19 ----A---- C:\Windows\SYSWOW64\deployJava1.dll

[jura1]

2013-07-20 18:23:14 ----D---- C:\Users\DusanPC\AppData\Roaming\Audacity
2013-07-20 18:22:37 ----D---- C:\Program Files (x86)\Audacity
2013-07-20 13:21:16 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-07-20 13:21:00 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-07-20 13:21:00 ----A---- C:\Windows\system32\audiosrv.dll
2013-07-20 13:21:00 ----A---- C:\Windows\explorer.exe
2013-07-20 13:20:59 ----A---- C:\Windows\system32\winresume.exe
2013-07-20 13:20:59 ----A---- C:\Windows\system32\winload.exe
2013-07-20 13:20:59 ----A---- C:\Windows\system32\vdsutil.dll
2013-07-20 13:20:59 ----A---- C:\Windows\system32\vds.exe
2013-07-20 13:20:58 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-07-20 13:20:58 ----A---- C:\Windows\SYSWOW64\samlib.dll
2013-07-20 13:20:58 ----A---- C:\Windows\SYSWOW64\mscms.dll
2013-07-20 13:20:58 ----A---- C:\Windows\SYSWOW64\mfcore.dll
2013-07-20 13:20:58 ----A---- C:\Windows\SYSWOW64\mfasfsrcsnk.dll
2013-07-20 13:20:58 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-07-20 13:20:58 ----A---- C:\Windows\system32\mscms.dll
2013-07-20 13:20:58 ----A---- C:\Windows\system32\mfcore.dll
2013-07-20 13:20:58 ----A---- C:\Windows\system32\mfasfsrcsnk.dll
2013-07-20 13:20:58 ----A---- C:\Windows\system32\MbaeParserTask.exe
2013-07-20 13:20:57 ----A---- C:\Windows\system32\wwansvc.dll
2013-07-20 13:20:57 ----A---- C:\Windows\system32\DeviceSetupManager.dll
2013-07-20 13:20:54 ----A---- C:\Windows\SYSWOW64\dwmcore.dll
2013-07-20 13:20:54 ----A---- C:\Windows\system32\samsrv.dll
2013-07-20 13:20:54 ----A---- C:\Windows\system32\samlib.dll
2013-07-20 13:20:54 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-07-20 13:20:54 ----A---- C:\Windows\system32\dwmcore.dll
2013-07-20 13:20:53 ----A---- C:\Windows\system32\drivers\volsnap.sys
2013-07-20 13:20:53 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-07-20 13:20:53 ----A---- C:\Windows\system32\drivers\sdbus.sys
2013-07-20 13:20:53 ----A---- C:\Windows\system32\drivers\dumpsd.sys
2013-07-20 13:20:53 ----A---- C:\Windows\system32\drivers\BthAvrcpTg.sys
2013-07-20 13:20:52 ----A---- C:\Windows\system32\drivers\USBXHCI.SYS
2013-07-20 13:20:52 ----A---- C:\Windows\system32\drivers\UCX01000.SYS
2013-07-20 13:20:38 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-07-20 13:20:26 ----A---- C:\Windows\SYSWOW64\newdev.exe
2013-07-20 13:20:26 ----A---- C:\Windows\SYSWOW64\newdev.dll
2013-07-20 13:20:26 ----A---- C:\Windows\SYSWOW64\ndadmin.exe
2013-07-20 13:20:26 ----A---- C:\Windows\system32\newdev.exe
2013-07-20 13:20:26 ----A---- C:\Windows\system32\newdev.dll
2013-07-20 13:20:26 ----A---- C:\Windows\system32\ndadmin.exe
2013-07-20 13:19:57 ----A---- C:\Windows\SYSWOW64\twinapi.dll
2013-07-20 13:19:53 ----A---- C:\Windows\SYSWOW64\VAN.dll
2013-07-20 13:19:53 ----A---- C:\Windows\system32\VAN.dll
2013-07-20 13:19:52 ----A---- C:\Windows\system32\mmcss.dll
2013-07-20 13:19:52 ----A---- C:\Windows\system32\DAFWSD.dll
2013-07-20 13:19:52 ----A---- C:\Windows\system32\avrt.dll
2013-07-20 13:19:49 ----A---- C:\Windows\SYSWOW64\batmeter.dll
2013-07-20 13:19:49 ----A---- C:\Windows\SYSWOW64\avrt.dll
2013-07-20 13:19:49 ----A---- C:\Windows\system32\batmeter.dll
2013-07-20 13:19:48 ----A---- C:\Windows\SYSWOW64\RacEngn.dll
2013-07-20 13:19:48 ----A---- C:\Windows\system32\RacEngn.dll
2013-07-20 13:19:47 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2013-07-20 13:19:47 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2013-07-20 13:19:47 ----A---- C:\Windows\SYSWOW64\perfctrs.dll
2013-07-20 13:19:47 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2013-07-20 13:19:47 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2013-07-20 13:19:46 ----A---- C:\Windows\SYSWOW64\perfproc.dll
2013-07-20 13:19:46 ----A---- C:\Windows\SYSWOW64\perfos.dll
2013-07-20 13:19:46 ----A---- C:\Windows\SYSWOW64\perfnet.dll
2013-07-20 13:19:46 ----A---- C:\Windows\SYSWOW64\perfdisk.dll
2013-07-20 13:19:45 ----A---- C:\Windows\SYSWOW64\vsstrace.dll
2013-07-20 13:19:45 ----A---- C:\Windows\SYSWOW64\vssapi.dll
2013-07-20 13:19:45 ----A---- C:\Windows\SYSWOW64\taskeng.exe
2013-07-20 13:19:45 ----A---- C:\Windows\SYSWOW64\MMDevAPI.dll
2013-07-20 13:19:45 ----A---- C:\Windows\SYSWOW64\eventcls.dll
2013-07-20 13:19:44 ----A---- C:\Windows\system32\twinapi.dll
2013-07-20 13:19:44 ----A---- C:\Windows\system32\MUILanguageCleanup.dll
2013-07-20 13:19:44 ----A---- C:\Windows\system32\lpremove.exe
2013-07-20 13:19:44 ----A---- C:\Windows\system32\lpksetupproxyserv.dll
2013-07-20 13:19:44 ----A---- C:\Windows\system32\lpksetup.exe
2013-07-20 13:19:44 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2013-07-20 13:19:43 ----A---- C:\Windows\SYSWOW64\propsys.dll
2013-07-20 13:19:43 ----A---- C:\Windows\system32\propsys.dll
2013-07-20 13:19:39 ----A---- C:\Windows\system32\drivers\ws2ifsl.sys
2013-07-20 13:19:38 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-07-20 13:19:37 ----A---- C:\Windows\system32\shimeng.dll
2013-07-20 13:19:37 ----A---- C:\Windows\system32\setbcdlocale.dll
2013-07-20 13:19:37 ----A---- C:\Windows\system32\sdbinst.exe
2013-07-20 13:19:37 ----A---- C:\Windows\system32\drvinst.exe
2013-07-20 13:19:37 ----A---- C:\Windows\system32\bcdsrv.dll
2013-07-20 13:19:37 ----A---- C:\Windows\system32\apphelp.dll
2013-07-20 13:19:37 ----A---- C:\Windows\system32\aelupsvc.dll
2013-07-20 13:19:36 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-07-20 13:19:36 ----A---- C:\Windows\system32\perfproc.dll
2013-07-20 13:19:36 ----A---- C:\Windows\system32\perfos.dll
2013-07-20 13:19:36 ----A---- C:\Windows\system32\perfnet.dll
2013-07-20 13:19:36 ----A---- C:\Windows\system32\perfdisk.dll
2013-07-20 13:19:36 ----A---- C:\Windows\system32\perfctrs.dll
2013-07-20 13:19:36 ----A---- C:\Windows\system32\microsoft-windows-kernel-power-events.dll
2013-07-20 13:19:31 ----A---- C:\Windows\system32\vsstrace.dll
2013-07-20 13:19:31 ----A---- C:\Windows\system32\vssapi.dll
2013-07-20 13:19:31 ----A---- C:\Windows\system32\TpmTasks.dll
2013-07-20 13:19:31 ----A---- C:\Windows\system32\taskeng.exe
2013-07-20 13:19:31 ----A---- C:\Windows\system32\MMDevAPI.dll
2013-07-20 13:19:31 ----A---- C:\Windows\system32\eventcls.dll
2013-07-20 13:19:30 ----A---- C:\Windows\system32\fveapibase.dll
2013-07-20 13:19:30 ----A---- C:\Windows\system32\fveapi.dll
2013-07-20 13:19:30 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-07-20 13:19:30 ----A---- C:\Windows\system32\drivers\dumpfve.sys
2013-07-20 13:19:27 ----A---- C:\Windows\system32\WpcMon.exe
2013-07-20 13:19:27 ----A---- C:\Windows\system32\drivers\csc.sys
2013-07-20 13:19:27 ----A---- C:\Windows\system32\CscMig.dll
2013-07-20 13:19:23 ----A---- C:\Windows\SYSWOW64\Windows.Media.Streaming.dll
2013-07-20 13:19:23 ----A---- C:\Windows\system32\Windows.Media.Streaming.dll
2013-07-20 13:19:22 ----A---- C:\Windows\SYSWOW64\mfsrcsnk.dll
2013-07-20 13:19:22 ----A---- C:\Windows\SYSWOW64\MFPlay.dll
2013-07-20 13:19:22 ----A---- C:\Windows\system32\mfsrcsnk.dll
2013-07-20 13:19:22 ----A---- C:\Windows\system32\MFPlay.dll
2013-07-20 13:19:21 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2013-07-20 13:19:21 ----A---- C:\Windows\SYSWOW64\mfsvr.dll
2013-07-20 13:19:21 ----A---- C:\Windows\system32\msvproc.dll
2013-07-20 13:19:21 ----A---- C:\Windows\system32\mfsvr.dll
2013-07-20 13:19:19 ----A---- C:\Windows\SYSWOW64\mfh264enc.dll
2013-07-20 13:19:19 ----A---- C:\Windows\system32\mfh264enc.dll
2013-07-20 13:19:14 ----A---- C:\Windows\SYSWOW64\webio.dll
2013-07-20 13:19:14 ----A---- C:\Windows\SYSWOW64\IPHLPAPI.DLL
2013-07-20 13:19:14 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2013-07-20 13:19:10 ----A---- C:\Windows\SYSWOW64\WinTypes.dll
2013-07-20 13:19:10 ----A---- C:\Windows\SYSWOW64\svchost.exe
2013-07-20 13:19:10 ----A---- C:\Windows\SYSWOW64\SettingSyncHost.exe
2013-07-20 13:19:10 ----A---- C:\Windows\SYSWOW64\combase.dll
2013-07-20 13:19:10 ----A---- C:\Windows\system32\SettingSyncHost.exe
2013-07-20 13:19:07 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2013-07-20 13:19:07 ----A---- C:\Windows\SYSWOW64\wlidcredprov.dll
2013-07-20 13:19:07 ----A---- C:\Windows\SYSWOW64\provcore.dll
2013-07-20 13:19:07 ----A---- C:\Windows\system32\WWAHost.exe
2013-07-20 13:19:07 ----A---- C:\Windows\system32\wlidcredprov.dll
2013-07-20 13:19:07 ----A---- C:\Windows\system32\provcore.dll
2013-07-20 13:19:07 ----A---- C:\Windows\system32\DevPropMgr.dll
2013-07-20 13:19:06 ----A---- C:\Windows\SYSWOW64\MsSpellCheckingFacility.dll
2013-07-20 13:19:06 ----A---- C:\Windows\system32\wpnprv.dll
2013-07-20 13:19:06 ----A---- C:\Windows\system32\ProximityService.dll
2013-07-20 13:19:06 ----A---- C:\Windows\system32\MsSpellCheckingFacility.dll
2013-07-20 13:19:05 ----A---- C:\Windows\SYSWOW64\WinSATAPI.dll
2013-07-20 13:19:05 ----A---- C:\Windows\SYSWOW64\PackageStateRoaming.dll
2013-07-20 13:19:05 ----A---- C:\Windows\system32\WinSATAPI.dll
2013-07-20 13:19:05 ----A---- C:\Windows\system32\WinSAT.exe
2013-07-20 13:19:05 ----A---- C:\Windows\system32\PackageStateRoaming.dll
2013-07-20 13:19:05 ----A---- C:\Windows\system32\dwm.exe
2013-07-20 13:19:04 ----A---- C:\Windows\system32\uDWM.dll
2013-07-20 13:19:02 ----A---- C:\Windows\SYSWOW64\user32.dll
2013-07-20 13:19:01 ----A---- C:\Windows\system32\winsrv.dll
2013-07-20 13:19:01 ----A---- C:\Windows\system32\user32.dll
2013-07-20 13:18:59 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-07-20 13:18:59 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-07-20 13:18:59 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-07-20 13:18:58 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-07-20 13:18:58 ----A---- C:\Windows\system32\dxgi.dll
2013-07-20 13:18:58 ----A---- C:\Windows\system32\d3d11.dll
2013-07-20 13:18:58 ----A---- C:\Windows\system32\d3d10warp.dll
2013-07-20 13:18:58 ----A---- C:\Windows\system32\d2d1.dll
2013-07-20 13:18:57 ----A---- C:\Windows\SYSWOW64\WSClient.dll
2013-07-20 13:18:57 ----A---- C:\Windows\SYSWOW64\OEMLicense.dll
2013-07-20 13:18:57 ----A---- C:\Windows\system32\WSService.dll
2013-07-20 13:18:56 ----A---- C:\Windows\SYSWOW64\WSSync.dll
2013-07-20 13:18:56 ----A---- C:\Windows\system32\WSSync.dll
2013-07-20 13:18:56 ----A---- C:\Windows\system32\WSClient.dll
2013-07-20 13:18:56 ----A---- C:\Windows\system32\OEMLicense.dll
2013-07-20 13:18:53 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-07-20 13:18:53 ----A---- C:\Windows\system32\drivers\msgpioclx.sys
2013-07-20 13:18:52 ----A---- C:\Windows\system32\WinTypes.dll
2013-07-20 13:18:52 ----A---- C:\Windows\system32\wintrust.dll
2013-07-20 13:18:52 ----A---- C:\Windows\system32\webio.dll
2013-07-20 13:18:52 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2013-07-20 13:18:52 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-07-20 13:18:52 ----A---- C:\Windows\system32\dnsapi.dll
2013-07-20 13:18:52 ----A---- C:\Windows\system32\combase.dll
2013-07-20 13:18:51 ----A---- C:\Windows\system32\umpo.dll
2013-07-20 13:18:51 ----A---- C:\Windows\system32\svchost.exe
2013-07-20 13:18:51 ----A---- C:\Windows\system32\services.exe
2013-07-20 13:18:50 ----A---- C:\Windows\system32\sspisrv.dll
2013-07-20 13:18:50 ----A---- C:\Windows\system32\sspicli.dll
2013-07-20 13:18:50 ----A---- C:\Windows\system32\RpcEpMap.dll
2013-07-20 13:18:50 ----A---- C:\Windows\system32\lsass.exe
2013-07-20 13:18:50 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-07-20 13:18:46 ----A---- C:\Windows\system32\drivers\hdaudbus.sys
2013-07-20 13:18:44 ----A---- C:\Windows\system32\drivers\acpi.sys
2013-07-20 13:18:41 ----A---- C:\Windows\system32\drivers\evbda.sys
2013-07-20 13:18:41 ----A---- C:\Windows\system32\drivers\bxvbda.sys
2013-07-20 13:18:17 ----A---- C:\Windows\SYSWOW64\mfnetcore.dll
2013-07-20 13:18:17 ----A---- C:\Windows\SYSWOW64\mfmpeg2srcsnk.dll
2013-07-20 13:18:17 ----A---- C:\Windows\system32\mfnetcore.dll
2013-07-20 13:18:17 ----A---- C:\Windows\system32\mfmpeg2srcsnk.dll
2013-07-20 13:18:16 ----A---- C:\Windows\SYSWOW64\mfnetsrc.dll
2013-07-20 13:18:16 ----A---- C:\Windows\system32\mfnetsrc.dll
2013-07-20 13:17:41 ----A---- C:\Windows\SYSWOW64\dskquota.dll
2013-07-20 13:17:41 ----A---- C:\Windows\system32\dskquota.dll
2013-07-20 13:17:20 ----A---- C:\Windows\system32\hal.dll
2013-07-20 13:17:03 ----A---- C:\Windows\SYSWOW64\Windows.UI.Immersive.dll
2013-07-20 13:17:03 ----A---- C:\Windows\system32\Windows.UI.Immersive.dll
2013-07-20 13:17:02 ----A---- C:\Windows\SYSWOW64\AppxSip.dll
2013-07-20 13:17:02 ----A---- C:\Windows\system32\AppxSip.dll
2013-07-20 13:16:58 ----A---- C:\Windows\system32\ListSvc.dll
2013-07-20 13:16:57 ----A---- C:\Windows\SYSWOW64\usercpl.dll
2013-07-20 13:16:57 ----A---- C:\Windows\system32\usercpl.dll
2013-07-20 13:16:56 ----A---- C:\Windows\SYSWOW64\SHCore.dll
2013-07-20 13:16:56 ----A---- C:\Windows\system32\SHCore.dll
2013-07-20 13:16:55 ----A---- C:\Windows\SYSWOW64\wfapigp.dll
2013-07-20 13:16:55 ----A---- C:\Windows\SYSWOW64\FirewallAPI.dll
2013-07-20 13:16:55 ----A---- C:\Windows\system32\wfapigp.dll
2013-07-20 13:16:55 ----A---- C:\Windows\system32\MPSSVC.dll
2013-07-20 13:16:55 ----A---- C:\Windows\system32\icfupgd.dll
2013-07-20 13:16:55 ----A---- C:\Windows\system32\FirewallAPI.dll
2013-07-20 13:16:55 ----A---- C:\Windows\system32\drivers\mpsdrv.sys
2013-07-20 13:16:53 ----A---- C:\Windows\SYSWOW64\PCPKsp.dll
2013-07-20 13:16:53 ----A---- C:\Windows\system32\PCPKsp.dll
2013-07-20 13:16:53 ----A---- C:\Windows\system32\microsoft-windows-pdc.dll
2013-07-20 13:16:53 ----A---- C:\Windows\system32\BdeUISrv.exe
2013-07-20 13:16:53 ----A---- C:\Windows\system32\bdesvc.dll
2013-07-20 13:16:44 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2013-07-20 13:16:43 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-07-20 13:16:43 ----A---- C:\Windows\SYSWOW64\dhcpcsvc.dll
2013-07-20 13:16:43 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-07-20 13:16:43 ----A---- C:\Windows\SYSWOW64\dhcpcore.dll
2013-07-20 13:16:40 ----A---- C:\Windows\SYSWOW64\Windows.Storage.Compression.dll
2013-07-20 13:16:40 ----A---- C:\Windows\system32\Windows.Storage.Compression.dll
2013-07-20 13:16:40 ----A---- C:\Windows\system32\SpaceControl.dll
2013-07-20 13:16:40 ----A---- C:\Windows\system32\drivers\dam.sys
2013-07-20 13:16:39 ----A---- C:\Windows\SYSWOW64\mfplat.dll
2013-07-20 13:16:39 ----A---- C:\Windows\system32\mfplat.dll
2013-07-20 13:16:36 ----A---- C:\Windows\SYSWOW64\kbdhebl3.dll
2013-07-20 13:16:36 ----A---- C:\Windows\SYSWOW64\input.dll
2013-07-20 13:16:36 ----A---- C:\Windows\system32\kbdhebl3.dll
2013-07-20 13:16:36 ----A---- C:\Windows\system32\input.dll
2013-07-20 13:16:36 ----A---- C:\Windows\system32\FntCache.dll
2013-07-20 13:16:35 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2013-07-20 13:16:35 ----A---- C:\Windows\system32\StructuredQuery.dll
2013-07-20 13:16:34 ----A---- C:\Windows\system32\winlogon.exe
2013-07-20 13:16:34 ----A---- C:\Windows\system32\dhcpcsvc.dll
2013-07-20 13:16:33 ----A---- C:\Windows\system32\mswsock.dll
2013-07-20 13:16:33 ----A---- C:\Windows\system32\lsasrv.dll
2013-07-20 13:16:33 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-07-20 13:16:33 ----A---- C:\Windows\system32\drivers\cng.sys
2013-07-20 13:16:33 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-07-20 13:16:33 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-07-20 13:16:33 ----A---- C:\Windows\system32\dhcpcore.dll
2013-07-20 13:16:32 ----A---- C:\Windows\system32\drivers\usbscan.sys
2013-07-20 13:16:32 ----A---- C:\Windows\system32\drivers\netio.sys
2013-07-20 13:16:31 ----A---- C:\Windows\system32\WMALFXGFXDSP.dll
2013-07-20 13:16:31 ----A---- C:\Windows\system32\SysFxUI.dll
2013-07-20 13:16:31 ----A---- C:\Windows\system32\drivers\sdstor.sys
2013-07-20 13:16:31 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-07-20 13:16:31 ----A---- C:\Windows\system32\drivers\drmkaud.sys
2013-07-20 13:16:31 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-07-20 13:16:30 ----A---- C:\Windows\system32\drivers\battc.sys
2013-07-20 13:16:11 ----A---- C:\Windows\system32\sppwinob.dll
2013-07-20 13:15:57 ----A---- C:\Windows\SYSWOW64\UserLanguagesCpl.dll
2013-07-20 13:15:57 ----A---- C:\Windows\system32\UserLanguagesCpl.dll
2013-07-20 13:15:56 ----A---- C:\Windows\SYSWOW64\WebcamUi.dll
2013-07-20 13:15:56 ----A---- C:\Windows\SYSWOW64\vds_ps.dll
2013-07-20 13:15:56 ----A---- C:\Windows\SYSWOW64\Taskmgr.exe
2013-07-20 13:15:56 ----A---- C:\Windows\SYSWOW64\storagewmi.dll
2013-07-20 13:15:56 ----A---- C:\Windows\system32\WebcamUi.dll
2013-07-20 13:15:55 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2013-07-20 13:15:55 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2013-07-20 13:15:55 ----A---- C:\Windows\system32\vds_ps.dll
2013-07-20 13:15:55 ----A---- C:\Windows\system32\Taskmgr.exe
2013-07-20 13:15:55 ----A---- C:\Windows\system32\storagewmi.dll
2013-07-20 13:15:55 ----A---- C:\Windows\system32\nshwfp.dll
2013-07-20 13:15:55 ----A---- C:\Windows\system32\IKEEXT.DLL
2013-07-20 13:15:55 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2013-07-20 13:15:55 ----A---- C:\Windows\system32\BFE.DLL
2013-07-20 13:15:54 ----A---- C:\Windows\system32\vdsldr.exe
2013-07-20 13:15:54 ----A---- C:\Windows\system32\rfxvmt.dll
2013-07-20 13:15:54 ----A---- C:\Windows\system32\rdpudd.dll
2013-07-20 13:15:54 ----A---- C:\Windows\system32\rdpcorets.dll
2013-07-20 13:15:54 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-07-20 13:15:53 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2013-07-20 13:15:53 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-07-20 13:15:53 ----A---- C:\Windows\system32\wpnapps.dll
2013-07-20 13:15:53 ----A---- C:\Windows\system32\mstsc.exe
2013-07-20 13:15:30 ----A---- C:\Windows\SYSWOW64\KBDKURD.DLL
2013-07-20 13:15:30 ----A---- C:\Windows\SYSWOW64\Display.dll
2013-07-20 13:15:30 ----A---- C:\Windows\system32\KBDKURD.DLL
2013-07-20 13:15:30 ----A---- C:\Windows\system32\Display.dll
2013-07-20 13:15:28 ----D---- C:\Users\DusanPC\AppData\Roaming\PACE Anti-Piracy
2013-07-20 13:15:28 ----D---- C:\ProgramData\PACE Anti-Piracy
2013-07-20 13:15:22 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-07-20 13:15:22 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.Store.dll
2013-07-20 13:15:22 ----A---- C:\Windows\system32\WSShared.dll
2013-07-20 13:15:22 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-07-20 13:15:22 ----A---- C:\Windows\system32\Windows.ApplicationModel.Store.dll
2013-07-20 13:15:21 ----A---- C:\Windows\SYSWOW64\WSShared.dll
2013-07-20 13:14:45 ----A---- C:\Windows\SYSWOW64\glcndFilter.dll
2013-07-20 13:14:44 ----A---- C:\Windows\system32\glcndFilter.dll
2013-07-20 13:14:43 ----A---- C:\Windows\system32\rdpclip.exe
2013-07-20 13:14:39 ----A---- C:\Windows\SYSWOW64\ole32.dll
2013-07-20 13:14:39 ----A---- C:\Windows\system32\ole32.dll
2013-07-20 13:14:39 ----A---- C:\Windows\system32\localspl.dll
2013-07-20 13:14:38 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2013-07-20 13:14:38 ----A---- C:\Windows\SYSWOW64\WcnApi.dll
2013-07-20 13:14:38 ----A---- C:\Windows\SYSWOW64\MFCaptureEngine.dll
2013-07-20 13:14:38 ----A---- C:\Windows\SYSWOW64\fdWCN.dll
2013-07-20 13:14:38 ----A---- C:\Windows\system32\MFCaptureEngine.dll
2013-07-20 13:14:37 ----A---- C:\Windows\SYSWOW64\wlansec.dll
2013-07-20 13:14:37 ----A---- C:\Windows\SYSWOW64\wlanmsm.dll
2013-07-20 13:14:37 ----A---- C:\Windows\SYSWOW64\wlanhlp.dll
2013-07-20 13:14:37 ----A---- C:\Windows\SYSWOW64\wlanapi.dll
2013-07-20 13:14:37 ----A---- C:\Windows\SYSWOW64\wfdprov.dll
2013-07-20 13:14:37 ----A---- C:\Windows\system32\wlanmsm.dll
2013-07-20 13:14:37 ----A---- C:\Windows\system32\wlanhlp.dll
2013-07-20 13:14:37 ----A---- C:\Windows\system32\wlanapi.dll
2013-07-20 13:14:37 ----A---- C:\Windows\system32\wfdprov.dll
2013-07-20 13:14:37 ----A---- C:\Windows\system32\WcnEapPeerProxy.dll
2013-07-20 13:14:37 ----A---- C:\Windows\system32\WcnEapAuthProxy.dll
2013-07-20 13:14:37 ----A---- C:\Windows\system32\wcncsvc.dll
2013-07-20 13:14:37 ----A---- C:\Windows\system32\WcnApi.dll
2013-07-20 13:14:37 ----A---- C:\Windows\system32\fdWCN.dll
2013-07-20 13:14:37 ----A---- C:\Windows\system32\dafWCN.dll
2013-07-20 13:14:36 ----A---- C:\Windows\system32\wlansvc.dll
2013-07-20 13:14:36 ----A---- C:\Windows\system32\wlansec.dll
2013-07-20 13:14:30 ----A---- C:\Windows\system32\winhttp.dll
2013-07-20 13:14:30 ----A---- C:\Windows\HelpPane.exe
2013-07-20 13:14:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-07-20 13:14:29 ----A---- C:\Windows\system32\KernelBase.dll
2013-07-20 13:14:29 ----A---- C:\Windows\system32\drivers\afd.sys
2013-07-20 13:14:25 ----A---- C:\Windows\system32\iscsilog.dll
2013-07-20 13:14:25 ----A---- C:\Windows\system32\drivers\processr.sys
2013-07-20 13:14:25 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2013-07-20 13:14:25 ----A---- C:\Windows\system32\drivers\intelppm.sys
2013-07-20 13:14:25 ----A---- C:\Windows\system32\drivers\fxppm.sys
2013-07-20 13:14:25 ----A---- C:\Windows\system32\drivers\amdppm.sys
2013-07-20 13:14:25 ----A---- C:\Windows\system32\drivers\amdk8.sys
2013-07-20 13:09:09 ----D---- C:\Program Files (x86)\Adobe Story
2013-07-20 13:08:24 ----N---- C:\Windows\system32\drivers\cdralw2k.sys
2013-07-20 13:08:24 ----N---- C:\Windows\system32\drivers\cdr4_xp.sys
2013-07-20 13:08:24 ----D---- C:\Program Files (x86)\My Company Name
2013-07-20 12:22:29 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2013-07-20 12:22:28 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe
2013-07-20 12:18:48 ----D---- C:\ProgramData\McAfee
2013-07-20 12:14:22 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-07-20 12:14:22 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-07-20 12:14:22 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-07-20 12:14:22 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-07-20 12:14:22 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-07-20 12:14:22 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-07-20 12:14:22 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-07-20 12:14:22 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-07-20 12:14:21 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-07-20 12:14:21 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-07-20 12:14:21 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-07-20 12:14:21 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-07-20 12:14:21 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2013-07-20 12:14:21 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-07-20 12:14:21 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-07-20 12:14:21 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-07-20 12:14:21 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-07-20 12:14:21 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-07-20 12:14:21 ----A---- C:\Windows\system32\D3DX9_43.dll
2013-07-20 12:14:21 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-07-20 12:13:58 ----D---- C:\Windows\SYSWOW64\directx
2013-07-20 00:16:31 ----D---- C:\ProgramData\Minnetonka Audio Software
2013-07-20 00:15:38 ----D---- C:\ProgramData\FLEXnet
2013-07-20 00:14:26 ----D---- C:\Program Files\CCleaner

======List of files/folders modified in the last 1 month======

2013-08-19 22:45:14 ----D---- C:\Windows\Temp
2013-08-19 22:31:29 ----D---- C:\Users\DusanPC\AppData\Roaming\Dropbox
2013-08-19 22:31:20 ----D---- C:\Windows\Prefetch
2013-08-19 22:31:09 ----D---- C:\Users\DusanPC\AppData\Roaming\Skype
2013-08-19 22:23:07 ----SHD---- C:\$Recycle.Bin
2013-08-19 22:00:00 ----D---- C:\Windows\system32\sru
2013-08-19 19:56:04 ----D---- C:\Windows\SysWOW64
2013-08-19 19:54:42 ----D---- C:\Program Files (x86)\Steam
2013-08-19 19:07:28 ----RD---- C:\Windows\System32
2013-08-19 19:07:28 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-08-19 09:14:05 ----D---- C:\Windows\Microsoft.NET
2013-08-19 09:02:12 ----D---- C:\Windows\Tasks
2013-08-19 09:02:12 ----D---- C:\Windows\system32\drivers\etc
2013-08-19 09:02:12 ----D---- C:\Windows\Inf
2013-08-17 11:15:56 ----D---- C:\Windows
2013-08-16 10:55:25 ----RD---- C:\Program Files (x86)
2013-08-16 10:55:25 ----D---- C:\Windows\system32\Drivers
2013-08-16 10:48:42 ----D---- C:\Windows\system32\config
2013-08-16 10:39:42 ----HD---- C:\ProgramData
2013-08-16 00:06:23 ----RD---- C:\Program Files
2013-08-15 23:23:40 ----D---- C:\Windows\system32\DriverStore
2013-08-15 23:23:38 ----D---- C:\Windows\system32\Tasks
2013-08-15 23:23:36 ----SHD---- C:\Windows\Installer
2013-08-15 23:23:36 ----D---- C:\Windows\WinSxS
2013-08-15 23:13:13 ----D---- C:\ProgramData\MFAData
2013-08-15 23:12:44 ----HD---- C:\Windows\ELAMBKUP
2013-08-15 23:12:16 ----SHD---- C:\System Volume Information
2013-08-15 22:07:24 ----D---- C:\Program Files (x86)\Common Files
2013-08-15 22:05:19 ----D---- C:\Windows\system32\catroot
2013-08-15 20:56:16 ----D---- C:\Windows\LiveKernelReports
2013-08-15 20:38:43 ----D---- C:\Program Files\Common Files
2013-08-15 20:37:06 ----D---- C:\Windows\system32\catroot2
2013-08-15 15:02:09 ----D---- C:\Windows\SYSWOW64\drivers
2013-08-15 14:46:45 ----DC---- C:\Windows\system32\DRVSTORE
2013-08-15 08:43:20 ----D---- C:\Windows\AUInstallAgent
2013-08-15 08:43:08 ----HD---- C:\Program Files\WindowsApps
2013-08-11 15:21:57 ----D---- C:\Windows\system32\NDF
2013-08-07 21:33:47 ----AD---- C:\ProgramData\TEMP
2013-08-05 23:38:00 ----D---- C:\Windows\system32\wbem
2013-08-01 17:57:02 ----SD---- C:\ProgramData\Microsoft
2013-08-01 17:54:13 ----D---- C:\Windows\Logs
2013-07-31 09:48:11 ----D---- C:\Users\DusanPC\AppData\Roaming\Adobe
2013-07-31 09:48:08 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2013-07-31 09:39:34 ----RD---- C:\Users
2013-07-30 18:37:17 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-07-27 00:38:48 ----D---- C:\PerfLogs
2013-07-27 00:38:42 ----D---- C:\Windows\SYSWOW64\en-US
2013-07-26 23:46:04 ----D---- C:\Windows\Panther
2013-07-26 23:46:04 ----D---- C:\Windows\debug
2013-07-26 14:35:48 ----D---- C:\Users\DusanPC\AppData\Roaming\DAEMON Tools Lite
2013-07-25 19:11:13 ----RSD---- C:\Windows\Fonts
2013-07-25 17:11:43 ----D---- C:\Windows\system32\drivers\UMDF
2013-07-25 11:24:34 ----D---- C:\ProgramData\Adobe
2013-07-23 00:07:42 ----RSD---- C:\Windows\assembly
2013-07-21 13:53:37 ----D---- C:\Windows\rescache
2013-07-20 23:42:07 ----D---- C:\ProgramData\ArcSoft
2013-07-20 20:36:16 ----SHD---- C:\Boot
2013-07-20 20:34:25 ----D---- C:\Windows\system32\Boot
2013-07-20 20:34:22 ----D---- C:\Windows\ToastData
2013-07-20 20:34:19 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-07-20 20:34:19 ----D---- C:\Program Files\Windows Media Player
2013-07-20 20:34:19 ----D---- C:\Program Files (x86)\Windows Media Player
2013-07-20 20:34:15 ----RD---- C:\Windows\ImmersiveControlPanel
2013-07-20 20:34:15 ----D---- C:\Windows\system32\migration
2013-07-20 20:34:15 ----D---- C:\Windows\system32\cs-CZ
2013-07-20 20:34:14 ----D---- C:\Windows\system32\oobe
2013-07-20 20:34:08 ----D---- C:\Windows\apppatch
2013-07-20 20:34:05 ----D---- C:\Windows\SYSWOW64\wbem
2013-07-20 20:34:00 ----D---- C:\Windows\system32\en-US
2013-07-20 20:33:57 ----D---- C:\Windows\PolicyDefinitions
2013-07-20 17:35:09 ----D---- C:\Program Files (x86)\GIGABYTE
2013-07-20 13:47:43 ----D---- C:\Program Files (x86)\Adobe
2013-07-20 13:23:28 ----D---- C:\Program Files\Adobe
2013-07-20 13:21:35 ----D---- C:\Windows\CbsTemp
2013-07-20 13:14:27 ----D---- C:\ProgramData\Package Cache
2013-07-20 13:12:43 ----D---- C:\Program Files\Common Files\Adobe
2013-07-20 13:08:24 ----SD---- C:\Users\DusanPC\AppData\Roaming\Microsoft
2013-07-20 12:22:26 ----D---- C:\Windows\system32\LogFiles

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\Windows\System32\drivers\ACPI.sys [2013-07-20 425192]
R0 acpiex;Microsoft ACPIEx Driver; C:\Windows\System32\Drivers\acpiex.sys [2012-07-26 77040]
R0 amdkmafd;@oem4.inf,%AMDKMAFD_svcdesc%;AMD Audio Bus Lower Filter; C:\Windows\System32\drivers\amdkmafd.sys [2012-09-23 21160]
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-05-09 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-15 189936]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\Windows\System32\drivers\CLFS.sys [2012-07-26 361200]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2013-07-20 562392]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\Windows\System32\drivers\disk.sys [2012-07-26 102640]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\System32\drivers\fileinfo.sys [2012-07-26 71920]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\Windows\system32\drivers\fltmgr.sys [2012-07-26 374512]
R0 fltsrv;Acronis Storage Filter Management; C:\Windows\system32\DRIVERS\fltsrv.sys [2013-08-02 132704]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2013-07-20 465128]
R0 KSecDD;KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [2013-07-20 100072]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2013-07-20 172264]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\Windows\System32\drivers\mountmgr.sys [2012-07-26 93936]
R0 msisadrv;msisadrv; C:\Windows\System32\drivers\msisadrv.sys [2012-07-26 17136]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\Windows\System32\Drivers\mup.sys [2012-07-26 83696]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\Windows\system32\drivers\ndis.sys [2013-07-20 997632]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\Windows\System32\drivers\partmgr.sys [2013-07-19 91880]
R0 pci;@machine.inf,%pci_svcdesc%;PCI Bus Driver; C:\Windows\System32\drivers\pci.sys [2012-07-26 234224]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2012-07-26 52464]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\Windows\system32\drivers\pdc.sys [2013-07-19 69864]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2012-07-26 217328]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2013-07-19 310368]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\Windows\System32\drivers\spaceport.sys [2013-07-19 284416]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-07-20 564824]
R0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\Windows\System32\drivers\storahci.sys [2013-07-19 77544]
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\Windows\System32\drivers\tcpip.sys [2013-07-20 2233600]
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\Windows\System32\drivers\vdrvroot.sys [2012-07-26 36080]
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\Windows\System32\drivers\volmgr.sys [2012-07-26 83184]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys [2012-07-26 378608]
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\Windows\System32\drivers\volsnap.sys [2013-07-20 327936]
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\Windows\system32\drivers\Wdf01000.sys [2013-07-19 785504]
R0 WFPLWFS;@%SystemRoot%\System32\drivers\wfplwfs.sys,-6000; C:\Windows\system32\DRIVERS\wfplwfs.sys [2012-07-26 96496]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\Windows\system32\drivers\afd.sys [2013-07-20 560640]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2012-10-25 22680]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-05-09 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-15 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-15 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-05-09 64288]
R1 BasicDisplay;BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [2012-07-26 48640]
R1 BasicRender;BasicRender; C:\Windows\System32\drivers\BasicRender.sys [2012-07-26 29696]
R1 Beep;Beep; C:\Windows\system32\drivers\Beep.sys [2012-07-26 7680]
R1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\Windows\System32\drivers\cdrom.sys [2012-07-26 174080]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2013-07-20 571392]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\Windows\System32\Drivers\dfsc.sys [2012-07-26 118784]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2012-07-26 50688]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\C:\Windows\system32\drivers\HWiNFO64A.SYS [2013-07-27 31136]
R1 Msfs;Msfs; C:\Windows\system32\drivers\Msfs.sys [2012-07-26 26112]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\Windows\System32\drivers\mssmbios.sys [2012-07-26 37616]
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\Windows\system32\DRIVERS\netbios.sys [2012-07-26 46080]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\Windows\System32\DRIVERS\netbt.sys [2012-07-26 331776]
R1 Npfs;Npfs; C:\Windows\system32\drivers\Npfs.sys [2012-07-26 49152]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\Windows\System32\drivers\npsvctrig.sys [2012-07-26 23552]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2012-07-26 34304]
R1 Null;Null; C:\Windows\system32\drivers\Null.sys [2012-07-26 5632]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\Windows\system32\DRIVERS\pacer.sys [2012-07-26 145408]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\Windows\system32\DRIVERS\rdbss.sys [2013-07-19 427520]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2012-07-26 117248]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2013-07-19 83456]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-05-09 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-05-09 80816]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\Windows\system32\DRIVERS\lltdio.sys [2012-07-26 60416]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2012-07-26 134144]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\Windows\system32\drivers\Ndu.sys [2012-07-26 97792]
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2013-07-19 805376]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\Windows\system32\DRIVERS\rspndr.sys [2012-07-26 78848]
R2 secdrv;Security Driver; C:\Windows\system32\drivers\secdrv.sys [2012-07-26 23040]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2012-07-26 45056]
R3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\Windows\System32\drivers\1394ohci.sys [2012-07-26 226304]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-03-29 11658752]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-03-29 581120]
R3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\Windows\System32\drivers\amdppm.sys [2013-07-20 88064]
R3 AtiHDAudioService;@oem3.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW86.sys [2013-04-23 98744]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2012-07-26 101888]
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\Windows\System32\drivers\CompositeBus.sys [2012-07-26 36352]
R3 condrv;Console Driver; C:\Windows\System32\drivers\condrv.sys [2012-07-26 33792]
R3 CX88VID;@oem8.inf,%CX23880.DeviceDesc%;WinFast CX2388x AvStream Driver; C:\Windows\system32\drivers\cxavsvid.sys [2007-09-19 469248]
R3 dot4;@oem12.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
R3 Dot4Print;@oem13.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\Windows\System32\drivers\Dot4Prt.sys [2012-10-19 27040]
R3 dot4usb;@oem12.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2013-07-19 1455368]
R3 EtronHub3;@oem6.inf,%Etron_HUB3.DriverDesc%;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2012-08-07 65152]
R3 EtronXHCI;@oem6.inf,%Etron_XHCI.DriverDesc%;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2012-08-07 88832]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 33856]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Ovladač sběrnice Microsoft UAA pro zvuk High Definition Audio; C:\Windows\System32\drivers\HDAudBus.sys [2013-07-20 71168]
R3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\Windows\System32\drivers\hidusb.sys [2013-07-19 27648]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\Windows\system32\drivers\HTTP.sys [2013-07-19 861184]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\Windows\System32\drivers\kbdclass.sys [2012-07-26 48368]
R3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\Windows\System32\drivers\kbdhid.sys [2012-07-26 29184]
R3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Miniport ladění jádra společnosti Microsoft (NDIS 6.20); C:\Windows\system32\DRIVERS\kdnic.sys [2012-07-26 18432]
R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys [2012-07-26 21376]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver Service; C:\Windows\System32\drivers\monitor.sys [2013-07-19 30720]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\Windows\System32\drivers\mouclass.sys [2012-07-26 45808]
R3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\Windows\System32\drivers\mouhid.sys [2013-07-19 26112]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2013-07-20 74752]
R3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\Windows\system32\DRIVERS\mrxsmb.sys [2013-07-19 370688]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2012-07-26 279552]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2013-07-19 215552]
R3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\Windows\system32\DRIVERS\mslldp.sys [2012-07-26 68608]
R3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2012-07-26 6912]
R3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\Windows\system32\DRIVERS\ndistapi.sys [2013-07-19 25088]
R3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
R3 NDProxy;NDIS Proxy; C:\Windows\system32\drivers\NDProxy.sys [2013-07-19 60416]
R3 Ntfs;Ntfs; C:\Windows\system32\drivers\Ntfs.sys [2013-07-19 1933544]
R3 PptpMiniport;@%systemroot%\system32\rascfg.dll,-32006; C:\Windows\system32\DRIVERS\raspptp.sys [2012-07-26 114176]
R3 RasAgileVpn;@netavpna.inf,%Svc-Mp-AgileVpn-DispName%;Připojení WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2012-07-26 68608]
R3 Rasl2tp;@%systemroot%\system32\rascfg.dll,-32005; C:\Windows\system32\DRIVERS\rasl2tp.sys [2012-07-26 124928]
R3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\Windows\system32\DRIVERS\raspppoe.sys [2012-07-26 81920]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2012-07-26 92672]
R3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\Windows\System32\drivers\rdpbus.sys [2012-07-26 22528]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2013-07-20 27880]
R3 RTL8168;@oem5.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\Windows\system32\DRIVERS\Rt630x64.sys [2012-06-12 683664]
R3 Serenum;@msports.inf,%Serenum.SVCDESC%;Ovladač filtru Serenum; C:\Windows\System32\drivers\serenum.sys [2012-07-26 23040]
R3 Serial;@msports.inf,%Serial.SVCDESC%;Ovladač sériového portu; C:\Windows\System32\drivers\serial.sys [2012-07-26 76800]
R3 srv;@%systemroot%\system32\srvsvc.dll,-102; C:\Windows\System32\DRIVERS\srv.sys [2012-07-26 416768]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2013-07-19 623104]
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2013-07-19 247808]
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\Windows\System32\drivers\swenum.sys [2012-07-26 13680]
R3 TPM;@tpm.inf,%TPM%;TPM; C:\Windows\system32\drivers\tpm.sys [2013-07-19 148712]
R3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Microsoft Tunnel Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunnel.sys [2012-07-26 149504]
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\Windows\System32\drivers\umbus.sys [2012-07-26 48128]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;Ovladač zvuků USB (WDM); C:\Windows\system32\drivers\usbaudio.sys [2012-07-26 121856]
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Microsoft USB Generic Parent Driver; C:\Windows\System32\drivers\usbccgp.sys [2012-07-26 120832]
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\Windows\System32\drivers\usbehci.sys [2013-07-19 79080]
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Ovladač standardního rozbočovače USB; C:\Windows\System32\drivers\usbhub.sys [2013-07-19 496872]
R3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\Windows\System32\drivers\usbohci.sys [2013-07-19 27136]
R3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\Windows\System32\drivers\usbprint.sys [2012-07-26 25600]
R3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\Windows\System32\drivers\usbscan.sys [2013-07-20 43008]
R3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;USB Mass Storage Driver; C:\Windows\System32\drivers\USBSTOR.SYS [2012-07-26 119024]
R3 VIAHdAudAddService;@oem24.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2012-08-03 2206352]
R3 VX1000;@oem20.inf,%SERVICE_DISPLAY_NAME%;VX-1000; C:\Windows\system32\DRIVERS\VX1000.sys [2010-05-20 2060144]
S0 3ware;3ware; C:\Windows\System32\drivers\3ware.sys [2012-07-26 106736]
S0 adp94xx;adp94xx; C:\Windows\System32\drivers\adp94xx.sys [2012-07-26 492272]
S0 adpahci;adpahci; C:\Windows\System32\drivers\adpahci.sys [2012-07-26 340720]
S0 adpu320;adpu320; C:\Windows\System32\drivers\adpu320.sys [2012-07-26 184048]
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\Windows\System32\drivers\agp440.sys [2012-07-26 63216]
S0 amd_sata;amd_sata; C:\Windows\System32\drivers\amd_sata.sys [2012-07-23 79528]
S0 amd_xata;amd_xata; C:\Windows\System32\drivers\amd_xata.sys [2012-07-23 26280]
S0 amdsata;amdsata; C:\Windows\System32\drivers\amdsata.sys [2012-07-26 76016]
S0 amdsbs;amdsbs; C:\Windows\System32\drivers\amdsbs.sys [2012-07-26 258288]
S0 amdxata;amdxata; C:\Windows\System32\drivers\amdxata.sys [2012-07-26 26352]
S0 arc;arc; C:\Windows\System32\drivers\arc.sys [2012-07-26 104688]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Windows Inbox Miniport Driver; C:\Windows\System32\drivers\arcsas.sys [2012-07-26 108272]
S0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\Windows\System32\drivers\atapi.sys [2012-07-26 25840]
S0 b06bdrv;@netbvbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II VBD; C:\Windows\System32\drivers\bxvbda.sys [2013-07-20 533224]
S0 ebdrv;@netevbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\System32\drivers\evbda.sys [2013-07-20 3265256]
S0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\Windows\System32\drivers\EhStorClass.sys [2012-07-26 81136]
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\Windows\System32\drivers\EhStorTcgDrv.sys [2012-07-26 113904]
S0 gagp30kx;@machine.inf,%gagp30kx_svcdesc%;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\System32\drivers\gagp30kx.sys [2012-07-26 66800]
S0 HpSAMD;HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [2012-07-26 64752]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2012-07-26 24816]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\Windows\System32\drivers\iaStorV.sys [2012-07-26 411888]
S0 iirsp;iirsp; C:\Windows\System32\drivers\iirsp.sys [2012-07-26 45296]
S0 intelide;intelide; C:\Windows\System32\drivers\intelide.sys [2012-07-26 18672]
S0 isapnp;isapnp; C:\Windows\System32\drivers\isapnp.sys [2012-07-26 22256]
S0 LSI_SAS;LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [2012-07-26 108784]
S0 LSI_SAS2;LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [2012-07-26 92400]
S0 LSI_SCSI;LSI_SCSI; C:\Windows\System32\drivers\lsi_scsi.sys [2012-07-26 116976]
S0 LSI_SSS;LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [2012-07-26 81136]
S0 megasas;megasas; C:\Windows\System32\drivers\megasas.sys [2012-07-26 51952]
S0 MegaSR;MegaSR; C:\Windows\System32\drivers\MegaSR.sys [2012-07-26 353008]
S0 mvumis;mvumis; C:\Windows\System32\drivers\mvumis.sys [2012-07-26 64240]
S0 nfrd960;nfrd960; C:\Windows\System32\drivers\nfrd960.sys [2012-07-26 52464]
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\Windows\System32\drivers\nv_agp.sys [2012-07-26 125168]
S0 nvraid;nvraid; C:\Windows\System32\drivers\nvraid.sys [2012-07-26 150256]
S0 nvstor;nvstor; C:\Windows\System32\drivers\nvstor.sys [2012-07-26 168176]
S0 pciide;pciide; C:\Windows\System32\drivers\pciide.sys [2012-07-26 14064]
S0 pcmcia;pcmcia; C:\Windows\System32\drivers\pcmcia.sys [2012-07-26 237808]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\Windows\System32\drivers\sbp2port.sys [2012-07-26 107760]
S0 SiSRaid2;SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [2012-07-26 44784]
S0 SiSRaid4;SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [2012-07-26 81648]
S0 stexstor;stexstor; C:\Windows\System32\drivers\stexstor.sys [2012-07-26 30960]
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys [2012-07-26 45160]
S0 storvsc;storvsc; C:\Windows\System32\drivers\storvsc.sys [2012-07-26 37992]
S0 uagp35;@machine.inf,%uagp35_svcdesc%;Microsoft AGPv3.5 Filter; C:\Windows\System32\drivers\uagp35.sys [2012-07-26 65776]
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\Windows\System32\drivers\uliagpkx.sys [2012-07-26 66800]
S0 viaide;viaide; C:\Windows\System32\drivers\viaide.sys [2012-07-26 19184]
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\System32\drivers\vmbus.sys [2012-07-26 137832]
S0 vsmraid;vsmraid; C:\Windows\System32\drivers\vsmraid.sys [2012-07-26 164080]
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage Controller Windows Driver; C:\Windows\System32\drivers\vstxraid.sys [2012-07-26 322800]
S0 Wd;@wd.inf,%WdServiceDisplayName%;Microsoft Watchdog Timer Driver; C:\Windows\System32\drivers\wd.sys [2012-07-26 23792]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\Windows\system32\drivers\dam.sys [2013-07-20 58088]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\Windows\System32\drivers\acpipagr.sys [2012-07-26 10240]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\Windows\System32\drivers\acpipmi.sys [2012-07-26 12288]
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\Windows\System32\drivers\acpitime.sys [2012-07-26 10752]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\Windows\System32\drivers\amdk8.sys [2013-07-20 90624]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2012-07-26 79360]
S3 AsyncMac;@%systemroot%\system32\rascfg.dll,-32000; C:\Windows\system32\DRIVERS\asyncmac.sys [2012-07-26 26624]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\Windows\System32\drivers\BthAvrcpTg.sys [2013-07-20 37632]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\Windows\System32\drivers\bthhfenum.sys [2012-07-26 51200]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\Windows\System32\drivers\BthHFHid.sys [2013-07-19 29952]
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\Windows\System32\drivers\bthmodem.sys [2012-07-26 65536]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\Windows\System32\drivers\circlass.sys [2012-07-26 45056]
S3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\Windows\System32\drivers\CmBatt.sys [2012-07-26 25600]
S3 dg_ssudbus;@oem26.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-06-04 103448]
S3 dmvsc;dmvsc; C:\Windows\System32\drivers\dmvsc.sys [2012-07-26 33280]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Microsoft Trusted Audio Drivers; C:\Windows\system32\drivers\drmkaud.sys [2013-07-20 5632]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\Windows\System32\drivers\errdev.sys [2012-07-26 10240]
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2013-08-05 25640]
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2012-07-26 194560]
S3 fastfat;FAT12/16/32 File System Driver; C:\Windows\system32\drivers\fastfat.sys [2012-07-26 210672]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\Windows\System32\drivers\fdc.sys [2012-07-26 30720]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2012-07-26 34816]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\Windows\System32\drivers\flpydisk.sys [2012-07-26 24576]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2012-07-26 57584]
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\Windows\System32\drivers\fxppm.sys [2013-07-20 22528]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2013-08-05 25640]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V Generation Counter; C:\Windows\System32\drivers\vmgencounter.sys [2012-07-26 12288]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\Windows\System32\Drivers\msgpioclx.sys [2013-07-20 120040]
S3 GVTDrv64;GVTDrv64; \??\C:\Windows\GVTDrv64.sys [2013-08-05 30528]
S3 HdAudAddService;@hdaudio.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2013-07-19 341504]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\Windows\System32\drivers\HidBatt.sys [2012-07-26 27136]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\Windows\System32\drivers\hidbth.sys [2013-07-19 95744]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\Windows\System32\drivers\hidi2c.sys [2013-07-19 39936]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\Windows\System32\drivers\hidir.sys [2012-07-26 46080]
S3 hyperkbd;hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [2012-07-26 11776]
S3 HyperVideo;HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [2012-07-26 24576]
S3 i8042prt;@msmouse.inf,%i8042prt.SvcDesc%;PS/2 Keyboard and Mouse Port Driver; C:\Windows\System32\drivers\i8042prt.sys [2012-07-26 112640]
S3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\Windows\System32\drivers\intelppm.sys [2013-07-20 89088]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\Windows\system32\DRIVERS\ipfltdrv.sys [2012-07-26 89088]
S3 IPMIDRV;IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [2012-07-26 78336]
S3 IPNAT;IP Network Address Translator; C:\Windows\System32\drivers\ipnat.sys [2012-07-26 145920]
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\Windows\system32\drivers\irenum.sys [2012-07-26 17920]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\Windows\System32\drivers\msiscsi.sys [2013-07-20 277736]
S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2013-04-04 25928]
S3 Modem;Modem; C:\Windows\system32\drivers\modem.sys [2012-07-26 40448]
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\Windows\system32\drivers\mrxdav.sys [2012-07-26 141312]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2012-07-26 129536]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;GPIO Buttons Driver; C:\Windows\System32\drivers\msgpiowin32.sys [2013-07-19 28904]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2012-07-26 8704]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\Windows\System32\drivers\mshidumdf.sys [2012-07-26 10752]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2012-07-26 11008]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2012-07-26 7168]
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2012-07-26 390896]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2012-07-26 8192]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\Windows\System32\drivers\MTConfig.sys [2012-07-26 14848]
S3 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\Windows\system32\DRIVERS\nwifi.sys [2012-07-26 427520]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\Windows\system32\DRIVERS\ndiscap.sys [2012-07-26 46592]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [2012-07-26 126464]
S3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\Windows\system32\DRIVERS\ndisuio.sys [2012-07-26 58880]
S3 NDISWANLEGACY;@%systemroot%\system32\rascfg.dll,-32014; C:\Windows\system32\DRIVERS\ndiswan.sys [2012-07-26 174080]
S3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\Windows\System32\drivers\parport.sys [2012-07-26 105984]
S3 pneteth;@oem30.inf,%pneteth.Service.DispName%;PdaNet Broadband; C:\Windows\system32\DRIVERS\pneteth.sys [2011-11-25 15360]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\Windows\System32\drivers\processr.sys [2013-07-20 87552]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2012-07-26 46592]
S3 RasAcd;Remote Access Auto Connection Driver; C:\Windows\System32\DRIVERS\rasacd.sys [2012-07-26 16384]
S3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\Windows\System32\drivers\rdpdr.sys [2012-07-26 179712]
S3 RDPWD;RDP Winstation Driver; C:\Windows\system32\drivers\RDPWD.sys [2012-07-26 208384]
S3 s3cap;s3cap; C:\Windows\System32\drivers\vms3cap.sys [2012-07-26 7168]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2012-07-26 36864]
S3 sdbus;sdbus; C:\Windows\System32\drivers\sdbus.sys [2013-07-20 194816]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\Windows\System32\drivers\sdstor.sys [2013-07-20 56552]
S3 SerCx;Serial UART Support Library; C:\Windows\system32\drivers\SerCx.sys [2012-07-26 62976]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\Windows\System32\drivers\sermouse.sys [2012-07-26 27136]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\Windows\System32\drivers\sfloppy.sys [2012-07-26 16896]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\Windows\system32\drivers\SpbCx.sys [2012-07-26 59392]
S3 ssudmdm;@oem35.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-06-04 203672]
S3 storvsp;storvsp; C:\Windows\System32\drivers\storvsp.sys [2012-07-26 67584]
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2013-07-20 2233600]
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\Windows\System32\drivers\terminpt.sys [2012-07-26 36592]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-07-26 57344]
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\Windows\System32\drivers\TsUsbGD.sys [2012-07-26 30208]
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\Windows\System32\drivers\uaspstor.sys [2012-07-26 97008]
S3 UCX01000;USB Controller Extension; C:\Windows\System32\drivers\ucx01000.sys [2013-07-20 213248]
S3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Microsoft UMPass Driver; C:\Windows\System32\drivers\umpass.sys [2012-07-26 11776]
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\Windows\System32\drivers\usbcir.sys [2012-07-26 99328]
S3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\Windows\System32\drivers\UsbHub3.sys [2013-07-19 446720]
S3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\System32\drivers\usbuhci.sys [2013-07-19 32256]
S3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\Windows\System32\drivers\USBXHCI.SYS [2013-07-20 337152]
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\Windows\system32\drivers\VerifierExt.sys [2012-07-26 106224]
S3 vhdmp;vhdmp; C:\Windows\System32\drivers\vhdmp.sys [2013-07-19 495336]
S3 Vid;Vid; C:\Windows\System32\drivers\Vid.sys [2012-07-26 203776]
S3 VMBusHID;VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [2012-07-26 22144]
S3 vmbusr;@%SystemRoot%\system32\vmbusres.dll,-1001; C:\Windows\System32\drivers\vmbusr.sys [2012-07-26 117248]
S3 vpci;@wvpci.inf,%vpci.SVCDESC%;Microsoft Hyper-V Virtual PCI Bus; C:\Windows\System32\drivers\vpci.sys [2012-07-26 67824]
S3 vpcivsp;@wvpcivsp.inf,%vpcivsp.SVCDESC%;Microsoft Hyper-V PCI Server; C:\Windows\System32\drivers\vpcivsp.sys [2012-07-26 66048]
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2012-07-26 24064]
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\Windows\System32\drivers\wacompen.sys [2012-07-26 27008]
S3 Wanarp;@%systemroot%\system32\rascfg.dll,-32011; C:\Windows\system32\DRIVERS\wanarp.sys [2013-07-19 83456]
S3 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\Windows\system32\drivers\WdBoot.sys [2013-07-19 35232]
S3 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\Windows\system32\drivers\WdFilter.sys [2013-07-19 230904]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2012-07-26 33520]
S4 cdfs;CD/DVD File System Reader; C:\Windows\system32\DRIVERS\cdfs.sys [2012-07-26 108544]
S4 udfs;udfs; C:\Windows\system32\DRIVERS\udfs.sys [2012-07-26 321024]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-11 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-03-29 241152]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-03-28 361984]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-05-09 46808]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 Browser;@%systemroot%\system32\browser.dll,-100; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 DcomLaunch;@combase.dll,-5012; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 Dnscache;@%SystemRoot%\System32\dnsapi.dll,-101; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 EventSystem;@comres.dll,-2450; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2013-06-28 2470736]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 LanmanServer;@%systemroot%\system32\srvsvc.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 LanmanWorkstation;@%systemroot%\system32\wkssvc.dll,-100; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 lmhosts;@%SystemRoot%\system32\lmhsvc.dll,-101; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 MSCamSvc;MSCamSvc; C:\Program Files\Microsoft LifeCam\MSCamS64.exe [2010-05-20 199536]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-07-20 76888]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 RpcSs;@combase.dll,-5010; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\Windows\system32\lsass.exe [2013-07-20 35840]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 ShellHWDetection;@%SystemRoot%\System32\shsvcs.dll,-12288; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 Spooler;@%systemroot%\system32\spoolsv.exe,-1; C:\Windows\System32\spoolsv.exe [2012-07-26 769024]
R2 stisvc;@%SystemRoot%\system32\wiaservc.dll,-9; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R2 TeamViewer8;TeamViewer 8; C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-07-08 4153184]
R2 Themes;@%SystemRoot%\System32\themeservice.dll,-8192; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 TrkWks;@%SystemRoot%\system32\trkwks.dll,-1; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2004-12-13 49152]
R2 VIAKaraokeService;@oem24.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service; C:\Windows\system32\viakaraokesrv.exe [2012-08-03 27792]
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 DeviceAssociationService;@%SystemRoot%\system32\das.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2012-07-06 43616]
R3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 SSDPSRV;@%systemroot%\system32\ssdpsrv.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\Windows\system32\svchost.exe [2013-07-20 29696]
R3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2013-07-20 29696]
R3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-19 116648]
S2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
S2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S2 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-06-21 162408]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2012-07-26 4881408]
S2 Správce výběru OS;Aktivátor Správce výběru OS Acronis; D:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2011-12-12 2156952]
S3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 ALG;@%SystemRoot%\system32\Alg.exe,-112; C:\Windows\System32\alg.exe [2012-07-26 94208]
S3 AllUserInstallAgent;@%SystemRoot%\System32\AUInstallAgent.dll,-101; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 AppleChargerSrv;AppleChargerSrv; C:\Windows\system32\AppleChargerSrv.exe [2010-04-07 31272]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 COMSysApp;@comres.dll,-947; C:\Windows\system32\dllhost.exe [2012-07-26 10752]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 dot3svc;@%systemroot%\system32\dot3svc.dll,-1102; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 DsmSvc;@%SystemRoot%\system32\DeviceSetupManager.dll,-1000; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 Eaphost;@%systemroot%\system32\eapsvc.dll,-1; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2013-07-20 35840]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2012-07-26 669696]
S3 fhsvc;@%systemroot%\system32\fhsvc.dll,-101; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-07-19 655624]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-19 116648]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2013-07-20 35840]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 MSDTC;@comres.dll,-2797; C:\Windows\System32\msdtc.exe [2012-07-26 144384]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\Windows\system32\msiexec.exe [2012-07-26 124416]
S3 napagent;@%SystemRoot%\system32\qagentrt.dll,-6; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\Windows\system32\lsass.exe [2013-07-20 35840]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-09 178760]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2012-07-26 20992]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 PrintNotify;@C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll,-1; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\Windows\system32\locator.exe [2012-07-26 9728]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 seclogon;@%SystemRoot%\system32\seclogon.dll,-7001; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2012-07-26 14848]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-07-27 563624]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 swprv;@%SystemRoot%\System32\swprv.dll,-103; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 TapiSrv;@%SystemRoot%\system32\tapisrv.dll,-10100; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 TermService;@%SystemRoot%\System32\termsrv.dll,-268; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2013-07-19 98304]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2012-07-26 40960]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 upnphost;@%systemroot%\system32\upnphost.dll,-213; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2013-07-20 35840]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2013-07-20 680960]
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 vmicrdv;@%systemroot%\system32\vmicres.dll,-601; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 vmicshutdown;@%systemroot%\system32\vmicres.dll,-301; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 VSS;@%systemroot%\system32\vssvc.exe,-102; C:\Windows\system32\vssvc.exe [2013-07-19 1483776]
S3 W32Time;@%SystemRoot%\system32\w32time.dll,-200; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2012-07-26 1616896]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S4 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S4 BITS;@%SystemRoot%\system32\qmgr.dll,-1000; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-12 139696]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\Windows\System32\svchost.exe [2013-07-20 29696]
S4 RemoteRegistry;@regsvc.dll,-1; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S4 SCardSvr;@%SystemRoot%\System32\SCardSvr.dll,-1; C:\Windows\system32\svchost.exe [2013-07-20 29696]
S4 SharedAccess;@%SystemRoot%\system32\ipnathlp.dll,-106; C:\Windows\System32\svchost.exe [2013-07-20 29696]

-----------------EOF-----------------

[vyosek]

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

• Pokud ho havet blokuje, pouzijte jeden z nasledujicich - i ty prejmenovane

  Rkill EXE:
  http://download.bleepingcomputer.com/grinler/rkill.exe
  
  Rkill iExplore.exe:
  http://download.bleepingcomputer.com/gr ... xplore.exe
  
  Rkill uSeRiNiT.exe:
  http://download.bleepingcomputer.com/gr ... eRiNiT.exe
  
  Rkill WiNlOgOn.exe:
  http://download.bleepingcomputer.com/gr ... NlOgOn.exe

• Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
• Spustte tradicne dvojklikem - program probehne do par sekund a ukonci i svou cinnost
• RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
• Na plose vznikne log Rkill.txt ten mi sem vlozte
• Ted nerestartujte PC - prisli byste o ucinek RKillu

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

• Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
• Pokud mate Win XP spustte pod uctem Spravce\Administratora
• Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
• Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
• Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
• Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
• Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
• Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
• Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

[jura1]

Rkill 2.6.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/20/2013 08:05:16 AM in x64 mode.
Windows Version: Windows 8 Pro

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

* Reparse Point/Junctions Found (Most likely legitimate)!

* C:\Windows\SoftwareDistribution => D:\SSD\WindowsUpdate [Dir]

Checking Windows Service Integrity:

* BFE (BFE) is not Running.
Startup Type set to: Disabled

* MpsSvc (MpsSvc) is not Running.
Startup Type set to: Automatic

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 08/20/2013 08:05:21 AM
Execution time: 0 hours(s), 0 minute(s), and 4 seconds(s)

[jura1]

ComboFix 13-08-19.02 - DusanPC . 08. 2013 8:07.1.6 - x64
Microsoft Windows 8 Pro 6.2.9200.0.1250.420.1029.18.8173.6631 [GMT 2:00]
Spuštěný z: c:\users\DusanPC\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\DusanPC\AppData\Local\Tempsetup_fraps.exe
c:\users\DusanPC\AppData\Roaming\poclbm
c:\users\DusanPC\AppData\Roaming\poclbm\poclbm_scrypt.ini
c:\windows\SysWow64\frapsvid.dll
f:\images\_PAlbTN
f:\images\_PAlbTN\Audi RSQ.jpg_160x120
f:\images\_PAlbTN\Fotografie0406.jpg_160x120
f:\images\_PAlbTN\Kocour.jpg_160x120
f:\images\_PAlbTN\Kocour2.jpg_160x120
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-07-20 do 2013-08-20 )))))))))))))))))))))))))))))))
.
.
2013-08-20 06:11 . 2013-08-20 06:11 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-08-17 09:15 . 2013-08-17 09:15 -------- d-----w- C:\FRST
2013-08-16 08:55 . 2013-08-16 08:55 -------- d-----w- c:\users\DusanPC\AppData\Roaming\Malwarebytes
2013-08-16 08:55 . 2013-08-16 08:55 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-08-16 08:55 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-08-16 08:39 . 2013-08-16 08:55 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2013-08-16 08:38 . 2013-08-16 08:38 -------- d-----w- c:\programdata\Malwarebytes
2013-08-15 22:17 . 2013-08-15 22:17 -------- d-----w- C:\rsit
2013-08-15 22:06 . 2013-08-19 21:02 -------- d-----w- c:\program files\trend micro
2013-08-15 21:23 . 2013-08-15 21:23 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-08-15 21:23 . 2013-05-09 08:59 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-08-15 21:23 . 2013-05-09 08:59 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-08-15 21:23 . 2013-05-09 08:59 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-08-15 21:23 . 2013-08-15 21:23 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-08-15 21:23 . 2013-08-15 21:23 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-08-15 21:23 . 2013-05-09 08:59 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-08-15 21:23 . 2013-05-09 08:59 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-08-15 21:23 . 2013-05-09 08:58 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-08-15 21:23 . 2013-05-09 08:58 41664 ----a-w- c:\windows\avastSS.scr
2013-08-15 21:23 . 2013-08-15 21:23 -------- d-----w- c:\program files\AVAST Software
2013-08-15 21:22 . 2013-08-15 21:23 -------- d-----w- c:\programdata\AVAST Software
2013-08-15 21:12 . 2013-08-15 21:13 -------- d-----w- c:\users\DusanPC\AppData\Local\Avg2013
2013-08-15 20:09 . 2013-08-15 20:09 -------- d-----w- c:\programdata\ATI
2013-08-15 20:07 . 2013-08-15 20:07 141 ----a-w- c:\programdata\LaunchURL.bat
2013-08-15 20:07 . 2013-08-15 20:07 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2013-08-15 20:07 . 2013-08-15 20:07 -------- d-----w- c:\program files (x86)\AMD AVT
2013-08-15 18:39 . 2013-08-15 18:39 -------- d-----w- c:\users\DusanPC\AppData\Local\AMD
2013-08-15 18:38 . 2013-08-15 18:38 -------- d-----w- c:\users\DusanPC\AppData\Roaming\ATI
2013-08-15 18:38 . 2013-08-15 20:07 -------- d-----w- c:\programdata\AMD
2013-08-15 18:38 . 2013-08-15 18:38 -------- d-----w- c:\program files\Common Files\ATI Technologies
2013-08-15 18:38 . 2013-08-15 18:38 -------- d-----w- c:\program files (x86)\ATI Technologies
2013-08-15 18:38 . 2013-08-15 20:07 -------- d-----w- c:\program files\ATI Technologies
2013-08-15 18:38 . 2013-08-15 18:38 -------- d-----w- c:\program files\ATI
2013-08-15 18:32 . 2013-08-15 18:32 -------- d-----w- c:\users\DusanPC\AppData\Local\ATI
2013-08-15 18:15 . 2013-08-15 18:15 -------- d-----w- C:\AMD
2013-08-15 11:16 . 2013-08-16 21:41 -------- d-----w- c:\users\DusanPC\AppData\Roaming\Litecoin
2013-08-15 11:15 . 2013-08-15 11:15 -------- d-----w- c:\program files (x86)\Litecoin
2013-08-12 07:42 . 2013-08-12 07:42 -------- d-----w- c:\users\DusanPC\aTubeCatcher
2013-08-12 07:39 . 2013-08-12 07:39 -------- d-----w- c:\programdata\AskPartnerNetwork
2013-08-12 07:39 . 2013-08-12 07:39 -------- d-----w- c:\program files (x86)\AskPartnerNetwork
2013-08-12 07:39 . 2013-08-12 07:39 -------- d-----w- c:\programdata\APN
2013-08-12 07:39 . 2013-08-12 07:39 -------- d-----w- c:\program files (x86)\DsNET Corp
2013-08-11 15:30 . 2013-08-11 15:30 -------- d-----w- c:\users\DusanPC\AppData\Local\SKIDROW
2013-08-09 12:25 . 2013-08-09 12:26 -------- d-----w- c:\program files\WinRAR
2013-08-08 20:06 . 2013-08-08 20:06 -------- d-----w- C:\SWSetup
2013-08-08 10:34 . 2013-08-08 10:34 -------- d-----w- c:\users\DusanPC\AppData\Local\Facebook
2013-08-07 19:33 . 2013-08-07 19:33 -------- d-----w- c:\programdata\Logs
2013-08-05 21:39 . 2013-08-05 21:39 -------- d-----w- c:\users\DusanPC\AppData\Roaming\DRPSu
2013-08-05 21:38 . 2013-08-05 21:38 -------- d-----w- c:\users\DusanPC\.aria2
2013-08-05 21:38 . 2013-08-05 21:38 -------- d-----w- C:\DriverPack Solution
2013-08-05 21:38 . 2013-08-05 21:38 -------- d-----w- c:\windows\system32\wbem\Framework
2013-08-05 09:42 . 2013-08-20 06:12 -------- d-----w- c:\users\DusanPC\AppData\Roaming\ViberPC
2013-08-05 09:41 . 2013-08-20 06:12 -------- d-----w- c:\users\DusanPC\AppData\Local\Viber
2013-08-01 15:53 . 2013-08-01 15:57 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2013-08-01 15:53 . 2013-08-01 15:53 -------- d-----w- c:\windows\SysWow64\xlive
2013-07-31 17:36 . 2013-07-31 17:36 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-07-31 17:36 . 2013-07-31 17:36 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-07-31 17:36 . 2013-07-31 17:36 -------- d-----w- c:\program files (x86)\Java
2013-07-31 08:00 . 2013-07-31 08:00 -------- d-----w- c:\program files (x86)\HDDGURU LLF Tool
2013-07-31 07:48 . 2013-07-31 07:48 -------- d-----w- c:\users\DusanPC\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2013-07-31 07:45 . 2013-07-31 07:45 -------- d-----w- c:\users\Default\AppData\Roaming\TuneUp Software
2013-07-30 16:37 . 2013-07-30 16:37 -------- d-----w- c:\program files (x86)\Etron Technology
2013-07-30 16:36 . 2013-07-30 16:36 -------- d-----w- C:\CIMTEMP
2013-07-30 10:54 . 2013-08-02 21:46 -------- d-----w- c:\windows\Acronis
2013-07-30 10:35 . 2013-07-30 10:35 -------- d-----w- c:\users\DusanPC\AppData\Local\Rockstar Games
2013-07-28 11:39 . 2013-07-28 11:39 -------- d-----w- c:\program files (x86)\Seagate
2013-07-28 11:38 . 2013-07-28 11:38 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-07-27 18:46 . 2013-07-27 18:46 31136 ----a-w- c:\windows\system32\drivers\HWiNFO64A.SYS
2013-07-27 18:43 . 2013-07-27 18:43 -------- d-----w- c:\program files\HWiNFO64
2013-07-27 18:19 . 2013-08-15 18:32 -------- d-----w- c:\program files (x86)\AMD APP
2013-07-27 18:19 . 2013-08-15 20:05 -------- d-----w- c:\windows\LastGood
2013-07-27 11:20 . 2013-07-31 07:58 -------- d-----w- c:\users\DusanPC\AppData\Roaming\HD Tune Pro
2013-07-27 11:07 . 2013-07-27 11:07 -------- d-----w- c:\program files (x86)\HD Tune Pro
2013-07-26 21:49 . 2013-07-26 21:50 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2013-07-26 21:44 . 2013-08-03 21:31 -------- d-----w- c:\windows\system32\appmgmt
2013-07-26 20:37 . 2013-08-05 16:25 -------- d-----w- c:\programdata\Solidshield
2013-07-26 20:24 . 2013-07-26 20:24 -------- d-----w- c:\programdata\EA Core
2013-07-26 11:43 . 2013-07-30 07:45 -------- d-----w- c:\users\DusanPC\AppData\Roaming\Origin
2013-07-26 11:43 . 2013-07-26 11:43 -------- d-----w- c:\program files (x86)\Origin Games
2013-07-26 11:43 . 2013-07-30 07:45 -------- d-----w- c:\users\DusanPC\AppData\Local\Origin
2013-07-26 11:41 . 2013-08-17 11:43 -------- d-----w- c:\programdata\Origin
2013-07-26 11:41 . 2013-07-26 11:41 -------- d-----w- c:\programdata\Electronic Arts
2013-07-26 11:41 . 2013-08-20 06:12 -------- d-----w- c:\program files (x86)\Origin
2013-07-25 19:39 . 2013-07-25 19:39 -------- d-----w- C:\Fraps
2013-07-25 17:11 . 2013-07-26 12:56 -------- d-----w- c:\users\DusanPC\AppData\Roaming\TeamViewer
2013-07-25 17:11 . 2013-07-25 17:11 -------- d-----w- c:\program files (x86)\TeamViewer
2013-07-25 16:08 . 2011-11-24 23:25 15360 ----a-w- c:\windows\system32\drivers\pneteth.sys
2013-07-25 16:06 . 2013-07-25 16:08 -------- d-----w- c:\program files (x86)\PdaNet for Android
2013-07-25 14:52 . 2013-07-25 15:50 -------- d-----w- c:\users\DusanPC\.android
2013-07-23 13:35 . 2013-08-18 23:38 -------- d-----w- c:\users\DusanPC\AppData\Roaming\vlc
2013-07-23 13:35 . 2013-07-23 13:35 -------- d-----w- c:\program files (x86)\VideoLAN
2013-07-23 13:28 . 2013-07-23 13:28 -------- d-----w- c:\program files\MediaInfo
2013-07-22 22:20 . 2013-08-02 18:51 -------- d-----w- c:\users\DusanPC\AppData\Local\dxhr
2013-07-22 22:07 . 2013-07-22 22:07 -------- d-----w- c:\users\DusanPC\AppData\Local\28050
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-19 17:56 . 2013-07-20 10:23 282296 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-08-19 17:56 . 2013-07-20 10:22 282296 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-08-19 17:54 . 2013-07-20 10:22 215128 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-08-05 17:44 . 2013-07-19 12:42 25640 ----a-w- c:\windows\etdrv.sys
2013-08-05 17:44 . 2013-07-19 12:41 30528 ----a-w- c:\windows\GVTDrv64.sys
2013-08-05 17:44 . 2013-07-19 12:29 25640 ----a-w- c:\windows\gdrv.sys
2013-08-02 21:46 . 2013-07-19 14:04 132704 ----a-w- c:\windows\system32\drivers\fltsrv.sys
2013-07-31 17:36 . 2013-07-20 17:20 867240 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-07-31 17:36 . 2013-07-20 17:20 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-07-20 20:04 . 2013-07-20 10:22 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-07-20 19:55 . 2013-07-20 19:55 2434856 ----a-w- c:\windows\SysWow64\pbsvc_bc2.exe
2013-07-20 16:16 . 2013-07-19 16:05 564824 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-07-20 11:21 . 2013-07-20 11:21 997632 ----a-w- c:\windows\system32\drivers\ndis.sys
2013-07-20 11:21 . 2013-07-20 11:21 785408 ----a-w- c:\windows\system32\audiosrv.dll
2013-07-20 11:21 . 2013-07-20 11:21 2391280 ----a-w- c:\windows\explorer.exe
2013-07-20 11:21 . 2013-07-20 11:21 2106176 ----a-w- c:\windows\SysWow64\explorer.exe
2013-07-20 11:20 . 2013-07-20 11:20 680960 ----a-w- c:\windows\system32\vds.exe
2013-07-20 11:20 . 2013-07-20 11:20 190976 ----a-w- c:\windows\system32\vdsutil.dll
2013-07-20 11:20 . 2013-07-20 11:20 1403296 ----a-w- c:\windows\system32\winload.efi
2013-07-20 11:20 . 2013-07-20 11:20 1271584 ----a-w- c:\windows\system32\winload.exe
2013-07-20 11:20 . 2013-07-20 11:20 1217352 ----a-w- c:\windows\system32\winresume.efi
2013-07-20 11:20 . 2013-07-20 11:20 1093904 ----a-w- c:\windows\system32\winresume.exe
2013-07-20 11:20 . 2013-07-20 11:20 850944 ----a-w- c:\windows\SysWow64\mfasfsrcsnk.dll
2013-07-20 11:20 . 2013-07-20 11:20 80896 ----a-w- c:\windows\system32\MbaeParserTask.exe
2013-07-20 11:20 . 2013-07-20 11:20 67584 ----a-w- c:\windows\SysWow64\samlib.dll
2013-07-20 11:20 . 2013-07-20 11:20 583168 ----a-w- c:\windows\system32\mscms.dll
2013-07-20 11:20 . 2013-07-20 11:20 523264 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-07-20 11:20 . 2013-07-20 11:20 493056 ----a-w- c:\windows\SysWow64\mscms.dll
2013-07-20 11:20 . 2013-07-20 11:20 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2013-07-20 11:20 . 2013-07-20 11:20 1527808 ----a-w- c:\windows\system32\mfcore.dll
2013-07-20 11:20 . 2013-07-20 11:20 1453568 ----a-w- c:\windows\SysWow64\mfcore.dll
2013-07-20 11:20 . 2013-07-20 11:20 1048576 ----a-w- c:\windows\system32\mfasfsrcsnk.dll
2013-07-20 11:20 . 2013-07-20 11:20 446976 ----a-w- c:\windows\system32\wwansvc.dll
2013-07-20 11:20 . 2013-07-20 11:20 207872 ----a-w- c:\windows\system32\DeviceSetupManager.dll
2013-07-20 11:20 . 2013-07-20 11:20 729600 ----a-w- c:\windows\system32\samsrv.dll
2013-07-20 11:20 . 2013-07-20 11:20 6987008 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-07-20 11:20 . 2013-07-20 11:20 2219520 ----a-w- c:\windows\system32\dwmcore.dll
2013-07-20 11:20 . 2013-07-20 11:20 1842176 ----a-w- c:\windows\SysWow64\dwmcore.dll
2013-07-20 11:20 . 2013-07-20 11:20 106496 ----a-w- c:\windows\system32\samlib.dll
2013-07-20 11:20 . 2013-07-20 11:20 37632 ----a-w- c:\windows\system32\drivers\BthAvrcpTg.sys
2013-07-20 11:20 . 2013-07-20 11:20 327936 ----a-w- c:\windows\system32\drivers\volsnap.sys
2013-07-20 11:20 . 2013-07-20 11:20 2233600 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-07-20 11:20 . 2013-07-20 11:20 194816 ----a-w- c:\windows\system32\drivers\sdbus.sys
2013-07-20 11:20 . 2013-07-20 11:20 125184 ----a-w- c:\windows\system32\drivers\dumpsd.sys
2013-07-20 11:20 . 2013-07-20 11:20 337152 ----a-w- c:\windows\system32\drivers\USBXHCI.SYS
2013-07-20 11:20 . 2013-07-20 11:20 213248 ----a-w- c:\windows\system32\drivers\UCX01000.SYS
2013-07-20 11:20 . 2013-07-20 11:20 68608 ----a-w- c:\windows\system32\wwanprotdim.dll
2013-07-20 11:20 . 2013-07-20 11:20 76288 ----a-w- c:\windows\system32\newdev.exe
2013-07-20 11:20 . 2013-07-20 11:20 75264 ----a-w- c:\windows\system32\ndadmin.exe
2013-07-20 11:20 . 2013-07-20 11:20 74240 ----a-w- c:\windows\SysWow64\newdev.exe
2013-07-20 11:20 . 2013-07-20 11:20 73728 ----a-w- c:\windows\SysWow64\ndadmin.exe
2013-07-20 11:20 . 2013-07-20 11:20 301568 ----a-w- c:\windows\system32\newdev.dll
2013-07-20 11:20 . 2013-07-20 11:20 275968 ----a-w- c:\windows\SysWow64\newdev.dll
2013-07-20 11:19 . 2013-07-20 11:19 509952 ----a-w- c:\windows\SysWow64\twinapi.dll
2013-07-20 11:19 . 2013-07-20 11:19 541184 ----a-w- c:\windows\system32\VAN.dll
2013-07-20 11:19 . 2013-07-20 11:19 480768 ----a-w- c:\windows\SysWow64\VAN.dll
2013-07-20 11:19 . 2013-07-20 11:19 80896 ----a-w- c:\windows\system32\mmcss.dll
2013-07-20 11:19 . 2013-07-20 11:19 27280 ----a-w- c:\windows\system32\avrt.dll
2013-07-20 11:19 . 2013-07-20 11:19 156672 ----a-w- c:\windows\system32\DAFWSD.dll
2013-07-20 11:19 . 2013-07-20 11:19 751104 ----a-w- c:\windows\system32\appwiz.cpl
2013-07-20 11:19 . 2013-07-20 11:19 670208 ----a-w- c:\windows\SysWow64\appwiz.cpl
2013-07-20 11:19 . 2013-07-20 11:19 23656 ----a-w- c:\windows\SysWow64\avrt.dll
2013-07-20 11:19 . 2013-07-20 11:19 2016256 ----a-w- c:\windows\system32\batmeter.dll
2013-07-20 11:19 . 2013-07-20 11:19 2007040 ----a-w- c:\windows\SysWow64\batmeter.dll
2013-07-20 11:19 . 2013-07-20 11:19 1739264 ----a-w- c:\windows\system32\RacEngn.dll
2013-07-20 11:19 . 2013-07-20 11:19 1369600 ----a-w- c:\windows\SysWow64\RacEngn.dll
2013-07-20 11:19 . 2013-07-20 11:19 80384 ----a-w- c:\windows\SysWow64\drvinst.exe
2013-07-20 11:19 . 2013-07-20 11:19 675840 ----a-w- c:\windows\SysWow64\apphelp.dll
2013-07-20 11:19 . 2013-07-20 11:19 5632 ----a-w- c:\windows\SysWow64\shimeng.dll
2013-07-20 11:19 . 2013-07-20 11:19 39424 ----a-w- c:\windows\SysWow64\perfctrs.dll
2013-07-20 11:19 . 2013-07-20 11:19 21504 ----a-w- c:\windows\SysWow64\sdbinst.exe
2013-07-20 11:19 . 2013-07-20 11:19 34816 ----a-w- c:\windows\SysWow64\perfproc.dll
2013-07-20 11:19 . 2013-07-20 11:19 33792 ----a-w- c:\windows\SysWow64\perfos.dll
2013-07-20 11:19 . 2013-07-20 11:19 31232 ----a-w- c:\windows\SysWow64\perfdisk.dll
2013-07-20 11:19 . 2013-07-20 11:19 21504 ----a-w- c:\windows\SysWow64\perfnet.dll
2013-07-20 11:19 . 2013-07-20 11:19 52224 ----a-w- c:\windows\SysWow64\vsstrace.dll
2013-07-20 11:19 . 2013-07-20 11:19 307192 ----a-w- c:\windows\SysWow64\MMDevAPI.dll
2013-07-20 11:19 . 2013-07-20 11:19 239616 ----a-w- c:\windows\SysWow64\taskeng.exe
2013-07-20 11:19 . 2013-07-20 11:19 15360 ----a-w- c:\windows\SysWow64\eventcls.dll
2013-07-20 11:19 . 2013-07-20 11:19 1196032 ----a-w- c:\windows\SysWow64\vssapi.dll
2013-07-20 11:19 . 2013-07-20 11:19 92160 ----a-w- c:\windows\system32\lpremove.exe
2013-07-20 11:19 . 2013-07-20 11:19 8704 ----a-w- c:\windows\system32\lpksetupproxyserv.dll
2013-07-20 11:19 . 2013-07-20 11:19 699392 ----a-w- c:\windows\system32\twinapi.dll
2013-07-20 11:19 . 2013-07-20 11:19 627712 ----a-w- c:\windows\system32\lpksetup.exe
2013-07-20 11:19 . 2013-07-20 11:19 37888 ----a-w- c:\windows\system32\LangCleanupSysprepAction.dll
2013-07-20 11:19 . 2013-07-20 11:19 13824 ----a-w- c:\windows\system32\MUILanguageCleanup.dll
2013-07-20 11:19 . 2013-07-20 11:19 1400832 ----a-w- c:\windows\system32\propsys.dll
2013-07-20 11:19 . 2013-07-20 11:19 1137152 ----a-w- c:\windows\SysWow64\propsys.dll
2013-07-20 11:19 . 2013-07-20 11:19 22528 ----a-w- c:\windows\system32\drivers\ws2ifsl.sys
2013-07-20 11:19 . 2013-07-20 11:19 98816 ----a-w- c:\windows\SysWow64\sspicli.dll
2013-07-20 11:19 . 2013-07-20 11:19 92672 ----a-w- c:\windows\system32\drvinst.exe
2013-07-20 11:19 . 2013-07-20 11:19 6656 ----a-w- c:\windows\system32\shimeng.dll
2013-07-20 11:19 . 2013-07-20 11:19 65536 ----a-w- c:\windows\system32\setbcdlocale.dll
2013-07-20 11:19 . 2013-07-20 11:19 634880 ----a-w- c:\windows\system32\apphelp.dll
2013-07-20 11:19 . 2013-07-20 11:19 25088 ----a-w- c:\windows\system32\sdbinst.exe
2013-07-20 11:19 . 2013-07-20 11:19 190976 ----a-w- c:\windows\system32\aelupsvc.dll
2013-07-20 11:19 . 2013-07-20 11:19 180736 ----a-w- c:\windows\system32\bcdsrv.dll
2013-07-20 11:19 . 2013-07-20 11:19 44544 ----a-w- c:\windows\system32\perfctrs.dll
2013-07-20 11:19 . 2013-07-20 11:19 37888 ----a-w- c:\windows\system32\perfproc.dll
2013-07-20 11:19 . 2013-07-20 11:19 34816 ----a-w- c:\windows\system32\perfdisk.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-02 03:38 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-02 03:38 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-02 03:38 1720976 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17 130736 ----a-w- c:\users\DusanPC\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17 130736 ----a-w- c:\users\DusanPC\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17 130736 ----a-w- c:\users\DusanPC\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WinFast Schedule"="c:\program files\WinFast\WFDTV\WFWIZ.exe" [2012-08-28 2916352]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2013-07-30 3549528]
"Viber"="c:\users\DusanPC\AppData\Local\Viber\Viber.exe" [2013-07-07 912904]
"uTorrent"="c:\users\DusanPC\AppData\Roaming\uTorrent\uTorrent.exe" [2013-08-10 888152]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-06-21 19875432]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"LifeCam"="c:\program files (x86)\Microsoft LifeCam\LifeExp.exe" [2010-05-20 119152]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2012-08-09 5263504]
"WinFastDTV"="c:\program files\WinFast\WFDTV\DTVSchdl.exe" [2012-09-10 101888]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-28 642656]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
.
c:\users\DusanPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\DusanPC\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2013-6-5 27370808]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"PromptOnSecureDesktop"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
.
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 amd_sata;amd_sata;c:\windows\System32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x]
R3 amd_xata;amd_xata;c:\windows\System32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 etdrv;etdrv;c:\windows\etdrv.sys;c:\windows\etdrv.sys [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys;c:\windows\GVTDrv64.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 pneteth;PdaNet Broadband;c:\windows\system32\DRIVERS\pneteth.sys;c:\windows\SYSNATIVE\DRIVERS\pneteth.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 vmicheartbeat;vmicheartbeat;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys;c:\windows\SYSNATIVE\DRIVERS\fltsrv.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO64A.SYS;c:\windows\SYSNATIVE\drivers\HWiNFO64A.SYS [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe;c:\windows\SYSNATIVE\viakaraokesrv.exe [x]
S3 amdkmafd;AMD Audio Bus Lower Filter;c:\windows\System32\drivers\amdkmafd.sys;c:\windows\SYSNATIVE\drivers\amdkmafd.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW86.sys;c:\windows\SYSNATIVE\drivers\AtihdW86.sys [x]
S3 CX88VID;WinFast CX2388x AvStream Driver;c:\windows\system32\drivers\cxavsvid.sys;c:\windows\SYSNATIVE\drivers\cxavsvid.sys [x]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\System32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\System32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-07-31 18:43 1173456 ----a-w- c:\program files (x86)\Google\Chrome\Application\28.0.1500.95\Installer\chrmstp.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A6EADE66-0000-0000-484E-7E8A45000000}]
2013-05-11 10:37 215264 ----a-w- c:\program files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-02 03:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-02 03:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-02 03:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17 164016 ----a-w- c:\users\DusanPC\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17 164016 ----a-w- c:\users\DusanPC\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17 164016 ----a-w- c:\users\DusanPC\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-06-05 17:17 164016 ----a-w- c:\users\DusanPC\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VX1000"="c:\windows\vVX1000.exe" [2010-05-20 762736]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do Microsoft Excelu - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000
IE: Od&eslat do OneNotu - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 10.0.0.140
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_bc2.exe
AddRemove-{46CDDE4F-31B2-47D1-8245-932679506882}_is1 - k:\lost planet 2\Uninstall\unins000.exe
.
.
Binary file temp00 matches
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
c:\users\DusanPC\AppData\Roaming\Dropbox\bin\Dropbox.exe
.
**************************************************************************
.
Celkový čas: 2013-08-20 08:15:55 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-08-20 06:15
.
Před spuštěním: 84 826 353 664 bytes free
Po spuštění: 84 573 159 424 bytes free
.
- - End Of File - - AE9180E4A711411092B4C01AA997F664
A36C5E4F47E84449FF07ED3517B43A31

[jura1]

Problém přetrvává :/
Děkuji

[vyosek]

Stahnete SytemLook http://jpshortstuff.247fixes.com/SystemLook_x64.exe a ulozte jej na plochu

• Do okna vlozte skript nize

• Kód: Vybrat vše

  :regfind
  bfgmi*.vbs

• Kliknete na Look
• Tlacitko Look se zmeni na Scanning a zsedne
• Pockejte pokud se tlacitko Scanning opet nezmeni na Look - tak poznate ze SystemLook dokoncil svou praci
• Vyskoci na Vas log s nazvem SystemLook (pripadne bude ulozen na plose), jeho obsah mi sem vlozte

[jura1]

SystemLook 30.07.11 by jpshortstuff
Log created at 17:18 on 20/08/2013 by DusanPC
Administrator - Elevation successful

========== regfind ==========

Searching for "bfgmi*.vbs"
No data found.

-= EOF =-

[vyosek]

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
• Zaskrtnete okenko Pro vsechny uzivatele
• Zaskrtnete okenko Kontrola na havet "LOP"
• Zaskrtnete okenko Kontrola na havet "Purity"
• Stari souboru zmente z 30 dnu na 7 dnu
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  CREATERESTOREPOINT
  
  netsvcs
  drivers32
  savembr:0
  
  /md5start
  atapi.sys
  autochk.exe
  cdrom.sys
  explorer.exe
  hal.dll
  scecli.dll
  services.exe
  svchost.exe
  tcpip.sys
  userinit.exe
  winlogon.exe
  /md5stop
  
  %systemroot%*.* /U /s
  %SYSTEMDRIVE%\*.exe
  %ALLUSERSPROFILE%\Application Data\*.
  %ALLUSERSPROFILE%\Application Data\*.exe /s
  %APPDATA%\*.
  %APPDATA%\*.exe /s
  %systemroot%\*. /mp /s
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\Tasks\*.job
  %systemroot%\system32\drivers\*.sys /lockedfiles
  %systemroot%\System32\config\*.sav
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\system32\drivers\*.sys /3
  %systemroot%\system32\*.* /3
  %SYSTEMDRIVE%\*.exe
  
  HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
  
  %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
  %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
  %PROGRAMFILES%\Opera\opera.exe /md5
  %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
  
  %SystemDrive%\PhysicalMBR.bin /md5 
  
  *crack* /s
  *keygen* /s
  *loader* /s

• Kliknete na tlacitko Prohledat
• Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
• Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

[jura1]

OTL logfile created on: 21. 8. 2013 8:49:16 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\DusanPC\Downloads
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy

7,98 Gb Total Physical Memory | 6,66 Gb Available Physical Memory | 83,45% Memory free
7,98 Gb Paging File | 6,48 Gb Available in Paging File | 81,16% Paging File free
Paging file location(s): [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119,24 Gb Total Space | 78,24 Gb Free Space | 65,61% Space Free | Partition Type: NTFS
Drive D: | 97,66 Gb Total Space | 78,22 Gb Free Space | 80,10% Space Free | Partition Type: NTFS
Drive F: | 1765,36 Gb Total Space | 979,13 Gb Free Space | 55,46% Space Free | Partition Type: NTFS

Computer Name: DPC | User Name: DusanPC | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2013/08/21 08:47:26 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\DusanPC\Downloads\OTL.exe
PRC - [2013/08/20 21:13:52 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2013/08/10 08:39:35 | 000,888,152 | ---- | M] (BitTorrent Inc.) -- C:\Users\DusanPC\AppData\Roaming\uTorrent\uTorrent.exe
PRC - [2013/07/30 09:45:45 | 003,549,528 | ---- | M] (Electronic Arts) -- C:\Program Files (x86)\Origin\Origin.exe
PRC - [2013/07/19 19:27:36 | 000,375,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
PRC - [2013/07/08 13:09:10 | 004,153,184 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2013/07/07 15:38:18 | 000,912,904 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\Viber.exe
PRC - [2013/06/05 19:28:40 | 027,370,808 | ---- | M] (Dropbox, Inc.) -- C:\Users\DusanPC\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2013/05/11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/05/09 10:58:30 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013/05/09 10:58:30 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2012/09/10 11:12:46 | 000,101,888 | ---- | M] (Leadtek Research Inc.) -- C:\Program Files\WinFast\WFDTV\DTVSchdl.exe
PRC - [2012/08/28 17:12:00 | 002,916,352 | ---- | M] (Leadtek Research Inc.) -- C:\Program Files\WinFast\WFDTV\WFWIZ.exe
PRC - [2010/10/27 19:17:52 | 000,207,424 | ---- | M] (ArcSoft Inc.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
PRC - [2010/05/20 15:26:28 | 000,762,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\vVX1000.exe
PRC - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2004/12/13 04:34:32 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe


========== Modules (No Company Name) ==========

MOD - [2013/07/30 09:45:46 | 000,062,976 | ---- | M] () -- C:\Program Files (x86)\Origin\tufao.dll
MOD - [2013/07/07 15:38:18 | 000,912,904 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\Viber.exe
MOD - [2013/07/07 15:38:04 | 012,583,936 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\libViber.dll
MOD - [2013/04/30 11:55:43 | 000,282,112 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\imageformats\qtiff.dll
MOD - [2013/04/30 11:55:42 | 000,218,624 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\imageformats\qmng.dll
MOD - [2013/04/30 11:55:40 | 000,015,360 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\imageformats\qwbmp.dll
MOD - [2013/04/30 11:55:35 | 000,015,872 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\imageformats\qtga.dll
MOD - [2013/04/30 11:53:47 | 000,016,384 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\imageformats\qsvg.dll
MOD - [2013/04/30 11:53:30 | 000,821,760 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\platforms\qwindows.dll
MOD - [2013/04/30 11:53:07 | 000,205,312 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\imageformats\qjpeg.dll
MOD - [2013/04/30 11:53:04 | 000,021,504 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\imageformats\qico.dll
MOD - [2013/04/30 11:52:59 | 000,022,016 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\imageformats\qgif.dll
MOD - [2013/04/30 11:52:56 | 000,557,056 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\sqldrivers\qsqlite.dll
MOD - [2013/04/30 11:48:58 | 000,060,416 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\libEGL.dll
MOD - [2013/04/30 11:48:55 | 000,679,936 | ---- | M] () -- C:\Users\DusanPC\AppData\Local\Viber\3.1.0.887\libGLESv2.dll
MOD - [2013/03/13 22:48:52 | 024,978,944 | ---- | M] () -- C:\Users\DusanPC\AppData\Roaming\Dropbox\bin\libcef.dll
MOD - [2012/11/14 01:32:50 | 003,558,400 | ---- | M] () -- C:\Users\DusanPC\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
MOD - [2010/11/15 11:05:26 | 000,073,728 | ---- | M] () -- C:\Program Files\WinFast\WFDTV\RCConfig\RCKeysInfoIO.dll
MOD - [2009/04/01 14:07:12 | 000,303,188 | ---- | M] () -- C:\Program Files\WinFast\WFDTV\RTL283XACCESS.dll
MOD - [2008/12/02 11:04:26 | 000,007,680 | ---- | M] () -- C:\Program Files\WinFast\WFDTV\WIZLANGCZE.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013/07/20 13:20:57 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/07/20 13:18:57 | 002,367,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/07/19 19:46:30 | 001,964,544 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013/07/19 19:46:29 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2013/07/19 19:36:08 | 000,180,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/07/19 19:36:08 | 000,171,008 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/07/19 19:23:49 | 000,470,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/07/19 19:23:48 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/07/19 19:20:48 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/07/19 19:20:47 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2013/07/19 19:20:18 | 000,014,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2013/05/09 10:58:30 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013/03/29 03:34:18 | 000,241,152 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013/03/28 22:30:42 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2012/08/03 07:29:02 | 000,027,792 | ---- | M] (VIA Technologies, Inc.) [Auto | Running] -- C:\Windows\SysNative\ViakaraokeSrv.exe -- (VIAKaraokeService)
SRV:64bit: - [2012/07/26 05:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2012/07/26 05:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2012/07/26 05:07:42 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2012/07/26 05:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2012/07/26 05:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2012/07/26 05:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2012/07/26 05:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2012/07/26 05:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012/07/26 05:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2012/07/26 05:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2012/07/26 05:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2012/07/26 05:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV:64bit: - [2012/07/26 05:05:04 | 000,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2012/07/26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2012/07/26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2012/07/26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2012/07/26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2012/07/26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2012/07/26 02:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2010/05/20 15:26:28 | 000,199,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft LifeCam\MSCamS64.exe -- (MSCamSvc)
SRV:64bit: - [2010/04/07 01:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV - [2013/08/20 21:13:52 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2013/07/27 00:46:24 | 000,563,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/07/19 20:23:38 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2013/07/08 13:09:10 | 004,153,184 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2013/06/28 14:02:04 | 002,470,736 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2013/06/21 09:53:36 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/26 05:30:05 | 002,675,200 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012/07/26 05:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2011/12/12 11:06:06 | 002,156,952 | ---- | M] () [Auto | Stopped] -- D:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe -- (Správce výběru OS)
SRV - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2004/12/13 04:34:32 | 000,049,152 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/08/15 23:23:49 | 001,030,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2013/08/15 23:23:49 | 000,378,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2013/08/15 23:23:49 | 000,189,936 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2013/08/02 23:46:22 | 000,132,704 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\fltsrv.sys -- (fltsrv)
DRV:64bit: - [2013/07/27 20:46:44 | 000,031,136 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\HWiNFO64A.SYS -- (HWiNFO32)
DRV:64bit: - [2013/07/20 18:16:17 | 000,564,824 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\sptd.sys -- (sptd)
DRV:64bit: - [2013/07/20 13:20:53 | 000,194,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/07/20 13:20:53 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/07/20 13:20:52 | 000,337,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/07/20 13:20:52 | 000,213,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/07/20 13:18:53 | 000,120,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/07/20 13:18:41 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/07/20 13:18:41 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/07/20 13:16:40 | 000,058,088 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
DRV:64bit: - [2013/07/20 13:16:31 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2013/07/20 13:15:54 | 000,027,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2013/07/20 13:14:25 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/07/19 19:46:28 | 000,028,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/07/19 19:36:05 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/07/19 19:36:05 | 000,077,544 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/07/19 19:27:34 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/07/19 19:23:44 | 000,446,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/07/19 19:23:44 | 000,284,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/07/19 19:20:35 | 000,069,864 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/07/19 19:20:34 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/07/19 19:20:18 | 000,230,904 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2013/07/19 19:20:18 | 000,035,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2013/07/19 16:04:50 | 000,310,368 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\snapman.sys -- (snapman)
DRV:64bit: - [2013/06/04 09:15:02 | 000,103,448 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\ssudbus.sys -- (dg_ssudbus)
DRV:64bit: - [2013/06/04 09:15:00 | 000,203,672 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\ssudmdm.sys -- (ssudmdm)
DRV:64bit: - [2013/05/09 10:59:07 | 000,072,016 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013/05/09 10:59:07 | 000,065,336 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013/05/09 10:59:07 | 000,064,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2013/05/09 10:59:06 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\Drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013/05/09 10:59:06 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2013/04/23 13:38:22 | 000,098,744 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\AtihdW86.sys -- (AtiHDAudioService)
DRV:64bit: - [2013/03/29 04:35:02 | 011,658,752 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013/03/29 03:09:44 | 000,581,120 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012/10/25 18:01:20 | 000,022,680 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2012/09/23 04:17:22 | 000,021,160 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\amdkmafd.sys -- (amdkmafd)
DRV:64bit: - [2012/08/07 09:09:00 | 000,088,832 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\EtronXHCI.sys -- (EtronXHCI)
DRV:64bit: - [2012/08/07 09:09:00 | 000,065,152 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\EtronHub3.sys -- (EtronHub3)
DRV:64bit: - [2012/08/03 07:28:42 | 002,206,352 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:64bit: - [2012/07/26 07:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012/07/26 07:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
DRV:64bit: - [2012/07/26 07:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2012/07/26 07:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2012/07/26 07:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2012/07/26 07:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2012/07/26 07:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2012/07/26 07:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2012/07/26 07:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2012/07/26 07:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2012/07/26 07:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2012/07/26 07:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2012/07/26 07:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2012/07/26 07:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2012/07/26 07:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
DRV:64bit: - [2012/07/26 07:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2012/07/26 07:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2012/07/26 06:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2012/07/26 06:54:34 | 000,096,496 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2012/07/26 06:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
DRV:64bit: - [2012/07/26 05:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012/07/26 04:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2012/07/26 04:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2012/07/26 04:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2012/07/26 04:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2012/07/26 04:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2012/07/26 04:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2012/07/26 04:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2012/07/26 04:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2012/07/26 04:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2012/07/26 04:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2012/07/26 04:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2012/07/26 04:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2012/07/26 04:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2012/07/26 04:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012/07/26 04:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2012/07/26 04:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2012/07/26 04:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/26 04:25:26 | 000,203,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Vid.sys -- (Vid)
DRV:64bit: - [2012/07/26 04:25:22 | 000,067,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\storvsp.sys -- (storvsp)
DRV:64bit: - [2012/07/26 04:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2012/07/26 04:25:12 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmbusr.sys -- (vmbusr)
DRV:64bit: - [2012/07/26 04:25:12 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpcivsp.sys -- (vpcivsp)
DRV:64bit: - [2012/07/26 04:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2012/07/26 04:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2012/07/26 04:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2012/07/23 19:35:12 | 000,079,528 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2012/07/23 19:35:12 | 000,026,280 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2012/06/12 15:41:22 | 000,683,664 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2012/04/09 10:13:58 | 000,057,472 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2)
DRV:64bit: - [2011/11/25 01:25:52 | 000,015,360 | ---- | M] (June Fabrics Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\pneteth.sys -- (pneteth)
DRV:64bit: - [2010/05/20 15:26:28 | 002,060,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\VX1000.sys -- (VX1000)
DRV:64bit: - [2009/07/09 03:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/03/18 18:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\hamachi.sys -- (hamachi)
DRV:64bit: - [2007/09/19 18:22:24 | 000,469,248 | ---- | M] (Leadtek Research Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\cxavsvid.sys -- (CX88VID)
DRV - [2013/08/05 19:44:24 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\etdrv.sys -- (etdrv)
DRV - [2013/08/05 19:44:21 | 000,030,528 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\GVTDrv64.sys -- (GVTDrv64)
DRV - [2013/08/05 19:44:21 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-776548361-1994592381-1427622990-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-776548361-1994592381-1427622990-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-776548361-1994592381-1427622990-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.1.7: C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.7: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\facebook.com/fbDesktopPlugin: C:\Users\DusanPC\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)


[2012/10/02 05:43:54 | 000,034,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.seznam.cz/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\pdf.dll
CHR - plugin: Microsoft Office 2013 (Enabled) = C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - plugin: Microsoft Office 2013 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
CHR - Extension: Angry Birds = C:\Users\DusanPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Dokumenty Google = C:\Users\DusanPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\DusanPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\DusanPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\DusanPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: AdBlock = C:\Users\DusanPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.4_0\
CHR - Extension: Windows Media Player Extension for HTML5 = C:\Users\DusanPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0\
CHR - Extension: Google Play = C:\Users\DusanPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi\3.0_0\
CHR - Extension: Gmail = C:\Users\DusanPC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013/08/20 08:12:20 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [VX1000] C:\Windows\vVX1000.exe (Microsoft Corporation)
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [LifeCam] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [WinFastDTV] C:\Program Files\WinFast\WFDTV\DTVSchdl.exe (Leadtek Research Inc.)
O4 - HKU\S-1-5-21-776548361-1994592381-1427622990-1001..\Run: [EADM] C:\Program Files (x86)\Origin\Origin.exe (Electronic Arts)
O4 - HKU\S-1-5-21-776548361-1994592381-1427622990-1001..\Run: [uTorrent] C:\Users\DusanPC\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - HKU\S-1-5-21-776548361-1994592381-1427622990-1001..\Run: [Viber] C:\Users\DusanPC\AppData\Local\Viber\Viber.exe ()
O4 - HKU\S-1-5-21-776548361-1994592381-1427622990-1001..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFDTV\WFWIZ.exe (Leadtek Research Inc.)
O4 - Startup: C:\Users\DusanPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\DusanPC\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-776548361-1994592381-1427622990-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-776548361-1994592381-1427622990-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3C2B819D-B71D-4191-BC0F-7B243EC0CA35}: DhcpNameServer = 10.0.0.140
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:64bit: SystemEventsBroker - C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation)
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FMVC - C:\Windows\SysWow64\fmcodec.DLL (Fox Magic Software)
Drivers32: VIDC.FPS1 - frapsvid.dll File not found
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2013/08/20 23:22:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Space 3
[2013/08/20 21:51:23 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\AppData\Local\Criterion Games
[2013/08/20 21:51:03 | 000,000,000 | RH-D | C] -- C:\Users\DusanPC\AppData\Roaming\SecuROM
[2013/08/20 21:03:48 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\Documents\EA Games
[2013/08/20 21:02:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2013/08/20 21:02:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2013/08/20 21:02:15 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\AGEIA
[2013/08/20 20:45:23 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\Documents\Battlefield 3
[2013/08/20 20:41:33 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\AppData\Local\ESN
[2013/08/20 20:41:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Battlelog Web Plugins
[2013/08/20 20:39:19 | 000,000,000 | ---D | C] -- C:\ProgramData\EA Logs
[2013/08/20 20:39:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 3
[2013/08/20 20:39:07 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller
[2013/08/20 19:56:55 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\Documents\ViberDownloads
[2013/08/20 08:14:32 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/08/20 08:11:01 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013/08/20 08:06:07 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013/08/20 08:06:07 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013/08/20 08:06:07 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2013/08/20 08:06:07 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013/08/20 08:05:49 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/08/20 08:05:35 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013/08/20 08:05:09 | 001,898,112 | ---- | C] (Bleeping Computer, LLC) -- C:\Users\DusanPC\Desktop\WiNlOgOn.exe
[2013/08/20 08:03:13 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\Desktop\rkill
[2013/08/19 17:20:45 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\Desktop\hsdbfihbdfs
[2013/08/17 11:15:54 | 000,000,000 | ---D | C] -- C:\FRST
[2013/08/17 11:15:33 | 001,575,580 | ---- | C] (Farbar) -- C:\Users\DusanPC\Desktop\FRST64.exe
[2013/08/16 10:55:35 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\AppData\Roaming\Malwarebytes
[2013/08/16 10:39:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
[2013/08/16 10:38:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/08/16 00:17:10 | 000,000,000 | ---D | C] -- C:\rsit
[2013/08/16 00:06:23 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013/08/15 23:23:40 | 000,378,944 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013/08/15 23:23:40 | 000,033,400 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013/08/15 23:23:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2013/08/15 23:23:39 | 000,072,016 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013/08/15 23:23:39 | 000,064,288 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013/08/15 23:23:38 | 001,030,952 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013/08/15 23:23:38 | 000,287,840 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2013/08/15 23:23:38 | 000,080,816 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013/08/15 23:23:17 | 000,041,664 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/08/15 23:23:05 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013/08/15 23:22:44 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2013/08/15 23:12:47 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\AppData\Local\Avg2013
[2013/08/15 22:09:17 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2013/08/15 22:07:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
[2013/08/15 22:07:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
[2013/08/15 22:07:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
[2013/08/15 20:39:05 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\AppData\Local\AMD
[2013/08/15 20:38:57 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\AppData\Roaming\ATI
[2013/08/15 20:38:49 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2013/08/15 20:38:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2013/08/15 20:38:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2013/08/15 20:38:28 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2013/08/15 20:38:27 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2013/08/15 20:32:56 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\AppData\Local\ATI
[2013/08/15 20:15:16 | 000,000,000 | ---D | C] -- C:\AMD
[2013/08/15 20:09:04 | 000,000,000 | ---D | C] -- C:\AMD_AppSDKWebVersion
[2013/08/15 14:45:39 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2013/08/15 14:21:38 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\Documents\AMD APP
[2013/08/15 13:16:54 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\AppData\Roaming\Litecoin
[2013/08/15 13:15:45 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Litecoin
[2013/08/15 13:15:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Litecoin
[2013/08/14 21:47:32 | 000,000,000 | ---D | C] -- C:\Users\DusanPC\Desktop\SKIDROW
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2013/08/21 08:50:24 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013/08/21 08:45:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/08/21 00:02:17 | 4285,116,416 | -HS- | M] () -- C:\hiberfil.sys
[2013/08/20 23:22:49 | 000,000,788 | ---- | M] () -- C:\Users\Public\Desktop\Dead Space 3.lnk
[2013/08/20 22:38:09 | 000,290,184 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2013/08/20 22:38:09 | 000,290,184 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2013/08/20 22:37:57 | 000,280,904 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2013/08/20 21:13:52 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2013/08/20 20:39:25 | 002,601,752 | ---- | M] () -- C:\Windows\SysWow64\pbsvc_moh.exe
[2013/08/20 20:39:08 | 000,000,766 | ---- | M] () -- C:\Users\Public\Desktop\Battlefield 3.lnk
[2013/08/20 20:38:35 | 000,000,221 | ---- | M] () -- C:\Users\DusanPC\Desktop\Medal of Honor(TM) Multiplayer.url
[2013/08/20 18:34:44 | 000,023,720 | ---- | M] () -- C:\Users\DusanPC\steam.png
[2013/08/20 18:34:14 | 000,034,590 | ---- | M] () -- C:\Users\DusanPC\origin.png
[2013/08/20 08:34:21 | 001,542,408 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2013/08/20 08:34:21 | 000,988,572 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/08/20 08:34:21 | 000,421,706 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2013/08/20 08:34:21 | 000,398,270 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/08/20 08:34:21 | 000,005,430 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/08/20 08:12:20 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013/08/20 08:05:07 | 001,898,112 | ---- | M] (Bleeping Computer, LLC) -- C:\Users\DusanPC\Desktop\WiNlOgOn.exe
[2013/08/16 22:41:11 | 001,575,580 | ---- | M] (Farbar) -- C:\Users\DusanPC\Desktop\FRST64.exe
[2013/08/16 00:09:15 | 000,007,233 | ---- | M] () -- C:\Users\DusanPC\Desktop\script.png
[2013/08/15 23:23:49 | 001,030,952 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013/08/15 23:23:49 | 000,378,944 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013/08/15 23:23:49 | 000,189,936 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013/08/15 23:23:49 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys.sum
[2013/08/15 23:23:49 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswSP.sys.sum
[2013/08/15 23:23:49 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswSnx.sys.sum
[2013/08/15 23:23:38 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013/08/15 22:07:30 | 000,000,141 | ---- | M] () -- C:\ProgramData\LaunchURL.bat
[2013/08/15 14:27:21 | 000,207,580 | ---- | M] () -- C:\Users\DusanPC\Desktop\Bez názvu.png
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/08/21 08:50:24 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013/08/20 23:22:49 | 000,000,788 | ---- | C] () -- C:\Users\Public\Desktop\Dead Space 3.lnk
[2013/08/20 21:03:03 | 002,601,752 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_moh.exe
[2013/08/20 20:39:08 | 000,000,766 | ---- | C] () -- C:\Users\Public\Desktop\Battlefield 3.lnk
[2013/08/20 20:38:35 | 000,000,221 | ---- | C] () -- C:\Users\DusanPC\Desktop\Medal of Honor(TM) Multiplayer.url
[2013/08/20 18:34:44 | 000,023,720 | ---- | C] () -- C:\Users\DusanPC\steam.png
[2013/08/20 18:34:14 | 000,034,590 | ---- | C] () -- C:\Users\DusanPC\origin.png
[2013/08/20 08:06:07 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/08/20 08:06:07 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/08/20 08:06:07 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/08/20 08:06:07 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/08/20 08:06:07 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/08/16 00:09:15 | 000,007,233 | ---- | C] () -- C:\Users\DusanPC\Desktop\script.png
[2013/08/15 23:23:49 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys.sum
[2013/08/15 23:23:49 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswSP.sys.sum
[2013/08/15 23:23:49 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswSnx.sys.sum
[2013/08/15 23:23:38 | 000,189,936 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013/08/15 23:23:38 | 000,065,336 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013/08/15 23:23:38 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2013/08/15 22:07:30 | 000,000,141 | ---- | C] () -- C:\ProgramData\LaunchURL.bat
[2013/08/15 14:27:21 | 000,207,580 | ---- | C] () -- C:\Users\DusanPC\Desktop\Bez názvu.png
[2013/08/05 20:49:21 | 000,003,584 | ---- | C] () -- C:\Users\DusanPC\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/07/31 10:00:47 | 000,000,001 | ---- | C] () -- C:\Users\DusanPC\AppData\Local\llftool.4.05.agreement
[2013/07/25 21:39:51 | 000,000,000 | ---- | C] () -- C:\Users\DusanPC\regbcm
[2013/07/22 18:57:03 | 000,000,916 | ---- | C] () -- C:\Users\DusanPC\Desktop.pem
[2013/07/20 21:55:02 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2013/07/20 13:18:57 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2013/07/20 12:22:29 | 000,290,184 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2013/07/20 12:22:28 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2013/07/19 22:20:47 | 000,001,050 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/07/19 16:10:17 | 000,000,017 | ---- | C] () -- C:\Users\DusanPC\AppData\Local\resmon.resmoncfg
[2013/07/19 14:41:58 | 000,030,528 | ---- | C] () -- C:\Windows\GVTDrv64.sys
[2013/07/19 13:32:58 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013/03/29 04:13:14 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013/03/29 04:13:12 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2012/11/27 01:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012/07/28 03:39:50 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012/07/28 03:39:50 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012/07/26 10:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2012/07/26 10:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2012/07/26 09:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012/07/26 03:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2012/07/25 22:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012/07/25 22:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2012/06/02 16:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2011/09/28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011/09/13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat

========== ZeroAccess Check ==========

[2013/07/20 12:14:15 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[jura1]

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/19 19:25:09 | 019,758,592 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/19 19:25:08 | 017,561,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012/07/26 05:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012/07/26 05:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012/07/26 05:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/07/31 09:45:20 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2013/07/31 09:45:20 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2013/07/19 15:49:52 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\.minecraft
[2013/07/19 15:50:42 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\.techniclauncher
[2013/07/26 00:37:38 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Audacity
[2013/07/26 14:35:48 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\DAEMON Tools Lite
[2013/08/21 08:46:08 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Dropbox
[2013/08/05 23:39:58 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\DRPSu
[2013/07/31 09:58:07 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\HD Tune Pro
[2013/08/16 23:41:25 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Litecoin
[2013/07/30 09:45:54 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Origin
[2013/07/20 13:15:28 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\PACE Anti-Piracy
[2013/07/31 09:48:11 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2013/07/26 14:56:33 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\TeamViewer
[2013/07/19 18:02:49 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\TuneUp Software
[2013/07/19 15:51:13 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\uTorrent
[2013/08/21 08:45:45 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\ViberPC

========== Purity Check ==========



========== Custom Scans ==========

< >
[2012/07/26 09:22:10 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT

< >

< MD5 for: ATAPI.SYS >
[2012/07/26 07:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\erdnt\cache64\atapi.sys
[2012/07/26 07:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\SysNative\drivers\atapi.sys
[2012/07/26 07:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_69660e2be041f47b\atapi.sys
[2012/07/26 07:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_b733d17ea1e7f604\atapi.sys
[2012/07/26 07:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.2.9200.16384_none_3601cf7eab4e0493\atapi.sys
[2012/07/26 07:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.2.9200.16548_none_36311422ab29f479\atapi.sys
[2012/07/26 07:00:48 | 000,025,840 | ---- | M] (Microsoft Corporation) MD5=A721FF570C2387E383BDDEA9632863C9 -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.2.9200.20652_none_36a9df45c455182a\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2013/07/19 19:24:15 | 000,793,088 | ---- | M] (Microsoft Corporation) MD5=61ADD65C9D1E2EAF8BB080A4D6AAB055 -- C:\Windows\SysWOW64\autochk.exe
[2013/07/19 19:24:15 | 000,793,088 | ---- | M] (Microsoft Corporation) MD5=61ADD65C9D1E2EAF8BB080A4D6AAB055 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16612_none_dee8adbc92f0e8e0\autochk.exe
[2013/07/28 12:13:29 | 000,000,619 | ---- | M] () MD5=84D28659FAAFA61ED8B6B655EA16684B -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.20717_none_df774bf9ac0a075d\autochk.exe
[2013/07/26 10:27:39 | 000,000,596 | ---- | M] () MD5=A130512D120466747D94E434AC4A4510 -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.20717_none_3b95e77d64677893\autochk.exe
[2013/07/28 12:13:28 | 000,034,714 | ---- | M] () MD5=B2E8C9583552897A66ECAFF887131418 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16384_none_de9ef92a9327e7b0\autochk.exe
[2013/07/26 10:27:39 | 000,040,790 | ---- | M] () MD5=CDDD7D67EA6633FF8881C425637D2C04 -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16384_none_3abd94ae4b8558e6\autochk.exe
[2013/07/19 19:24:14 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=E47235E8DF26CA48DA189ACFD756329C -- C:\Windows\SysNative\autochk.exe
[2013/07/19 19:24:14 | 000,888,320 | ---- | M] (Microsoft Corporation) MD5=E47235E8DF26CA48DA189ACFD756329C -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.2.9200.16612_none_3b0749404b4e5a16\autochk.exe

< MD5 for: CDROM.SYS >
[2012/07/26 04:26:36 | 000,174,080 | ---- | M] (Microsoft Corporation) MD5=339BFF85D788268752DA8C9644B188EE -- C:\Windows\SysNative\drivers\cdrom.sys
[2012/07/26 04:26:36 | 000,174,080 | ---- | M] (Microsoft Corporation) MD5=339BFF85D788268752DA8C9644B188EE -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_cf04adb457be1724\cdrom.sys
[2012/07/26 04:26:36 | 000,174,080 | ---- | M] (Microsoft Corporation) MD5=339BFF85D788268752DA8C9644B188EE -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.2.9200.16384_none_b87303472d8ba041\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2013/07/26 11:16:53 | 000,191,929 | ---- | M] () MD5=086F00CA41A76772CC1D35C6352667D8 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20534_none_b592a71650d677ed\explorer.exe
[2013/07/26 10:34:05 | 000,217,360 | ---- | M] () MD5=09353583FF8B181C77D33F9EF9EFAF01 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20733_none_ab3d00461c7696e9\explorer.exe
[2013/07/20 13:21:00 | 002,391,280 | ---- | M] (Microsoft Corporation) MD5=0E8E6463F81C80AFBED533E0F1F8895D -- C:\Windows\erdnt\cache86\explorer.exe
[2013/07/20 13:21:00 | 002,391,280 | ---- | M] (Microsoft Corporation) MD5=0E8E6463F81C80AFBED533E0F1F8895D -- C:\Windows\explorer.exe
[2013/07/20 13:21:00 | 002,391,280 | ---- | M] (Microsoft Corporation) MD5=0E8E6463F81C80AFBED533E0F1F8895D -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16628_none_aac334d9034c59e1\explorer.exe
[2013/07/26 10:33:59 | 000,221,955 | ---- | M] () MD5=2E37F0E82BDB06DE04FC6611FA58CA8D -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16384_none_aa7e4e770380a4b6\explorer.exe
[2013/07/26 11:16:46 | 000,193,351 | ---- | M] () MD5=7DB54C4CC99FCDA642923197452C6181 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16384_none_b4d2f8c937e166b1\explorer.exe
[2013/07/26 10:34:01 | 000,220,310 | ---- | M] () MD5=8B48DE5480E87935222404BFD89D3995 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16433_none_aab35faf0358fcd1\explorer.exe
[2013/07/26 10:34:03 | 000,220,321 | ---- | M] () MD5=94D060E360DC2F446D5A227DDA846248 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20534_none_ab3dfcc41c75b5f2\explorer.exe
[2013/07/26 11:16:49 | 000,191,911 | ---- | M] () MD5=ADF7523A459EE9DB07E3C12AEB9DDD6A -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16433_none_b5080a0137b9becc\explorer.exe
[2013/07/26 11:16:56 | 000,190,101 | ---- | M] () MD5=D997B7853017A18F1A0A5B5C1D135752 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.20733_none_b591aa9850d758e4\explorer.exe
[2013/07/20 13:21:00 | 002,106,176 | ---- | M] (Microsoft Corporation) MD5=EAFE46B0292D2BD2467835E2ACF717CC -- C:\Windows\SysWOW64\explorer.exe
[2013/07/20 13:21:00 | 002,106,176 | ---- | M] (Microsoft Corporation) MD5=EAFE46B0292D2BD2467835E2ACF717CC -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.2.9200.16628_none_b517df2b37ad1bdc\explorer.exe

< MD5 for: HAL.DLL >
[2013/07/26 10:34:52 | 000,011,988 | ---- | M] () MD5=6445144FC7B5A27ED16B6B2925650986 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16384_none_03f29a08e36e6d4c\hal.dll
[2013/07/26 10:34:53 | 000,001,310 | ---- | M] () MD5=6CB0D01C4279FDE04C0B46C319355E2F -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.20521_none_04ba1763fc5e1692\hal.dll
[2013/07/26 10:34:53 | 000,002,020 | ---- | M] () MD5=B323A750084D82163D1E4378B6B1FAC5 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.20544_none_04a77869fc6b9a79\hal.dll
[2013/07/26 10:34:53 | 000,001,298 | ---- | M] () MD5=DA156A4C657B96C4AC8268CC69D69B7A -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16420_none_042f7a4ee3415d71\hal.dll
[2013/07/20 13:17:20 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=F021625F422966AD31F95CC494F7D188 -- C:\Windows\SysNative\hal.dll
[2013/07/20 13:17:20 | 000,396,008 | ---- | M] (Microsoft Corporation) MD5=F021625F422966AD31F95CC494F7D188 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.2.9200.16442_none_041bdb0ae34fc801\hal.dll

< MD5 for: SCECLI.DLL >
[2012/07/26 05:07:07 | 000,224,768 | ---- | M] (Microsoft Corporation) MD5=4F6E1CA672370A9BCAC049CE3AB7F666 -- C:\Windows\erdnt\cache64\scecli.dll
[2012/07/26 05:07:07 | 000,224,768 | ---- | M] (Microsoft Corporation) MD5=4F6E1CA672370A9BCAC049CE3AB7F666 -- C:\Windows\SysNative\scecli.dll
[2012/07/26 05:07:07 | 000,224,768 | ---- | M] (Microsoft Corporation) MD5=4F6E1CA672370A9BCAC049CE3AB7F666 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.2.9200.16384_none_90d789c062dfa509\scecli.dll
[2012/07/26 05:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows\erdnt\cache86\scecli.dll
[2012/07/26 05:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows\SysWOW64\scecli.dll
[2012/07/26 05:19:52 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=B95DC83FF580DD92F487C2F4D0854B6A -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.2.9200.16384_none_9b2c341297406704\scecli.dll

< MD5 for: SERVICES.EXE >
[2013/07/26 10:52:33 | 000,038,189 | ---- | M] () MD5=3ECE99A39AFFFB0D1AA1FCAD1DD9061F -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.16384_none_97e26cd38667756c\services.exe
[2013/07/20 13:18:51 | 000,410,624 | ---- | M] (Microsoft Corporation) MD5=8F226143046435C75C033B0C52E90FFE -- C:\Windows\erdnt\cache64\services.exe
[2013/07/20 13:18:51 | 000,410,624 | ---- | M] (Microsoft Corporation) MD5=8F226143046435C75C033B0C52E90FFE -- C:\Windows\SysNative\services.exe
[2013/07/20 13:18:51 | 000,410,624 | ---- | M] (Microsoft Corporation) MD5=8F226143046435C75C033B0C52E90FFE -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.16420_none_981f4d19863a6591\services.exe
[2013/07/26 10:52:34 | 000,001,252 | ---- | M] () MD5=9D7471C0B130DD3D3ACAABB3094AD127 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.2.9200.20521_none_98a9ea2e9f571eb2\services.exe

< MD5 for: SVCHOST.EXE >
[2013/07/26 10:53:35 | 000,002,873 | ---- | M] () MD5=23E3DF4C0FA8D5DC387073AE23FB36CC -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16384_none_0e8501058f11f3dc\svchost.exe
[2013/07/28 12:23:32 | 000,003,208 | ---- | M] () MD5=252BA023F9078D88BC6E77A2EFA573E3 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16384_none_b2666581d6b482a6\svchost.exe
[2013/07/28 12:23:32 | 000,000,583 | ---- | M] () MD5=56E9DB5D6A1A91EA15A55C3A655A098D -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.20521_none_b32de2dcefa42bec\svchost.exe
[2013/07/20 13:19:10 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=A46DC432F81473F526E3994AA483E366 -- C:\Windows\erdnt\cache86\svchost.exe
[2013/07/20 13:19:10 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=A46DC432F81473F526E3994AA483E366 -- C:\Windows\SysWOW64\svchost.exe
[2013/07/20 13:19:10 | 000,023,040 | ---- | M] (Microsoft Corporation) MD5=A46DC432F81473F526E3994AA483E366 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16420_none_b2a345c7d68772cb\svchost.exe
[2013/07/26 10:53:35 | 000,000,609 | ---- | M] () MD5=A54B6842B53BD3DC7CB06FE831201546 -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.20521_none_0f4c7e60a8019d22\svchost.exe
[2013/07/20 13:18:51 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=EDE27EACE742EE2888C5DD36400A2EC0 -- C:\Windows\erdnt\cache64\svchost.exe
[2013/07/20 13:18:51 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=EDE27EACE742EE2888C5DD36400A2EC0 -- C:\Windows\SysNative\svchost.exe
[2013/07/20 13:18:51 | 000,029,696 | ---- | M] (Microsoft Corporation) MD5=EDE27EACE742EE2888C5DD36400A2EC0 -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.2.9200.16420_none_0ec1e14b8ee4e401\svchost.exe

< MD5 for: TCPIP.SYS >
[2013/07/26 11:02:01 | 000,247,287 | ---- | M] () MD5=05E2AC82FC74A23AA257B868E3A37691 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16548_none_0c16fe5af00666d3\tcpip.sys
[2013/07/20 13:20:53 | 002,233,600 | ---- | M] (Microsoft Corporation) MD5=0D05E0147C1329C53AAF97882DEDD96A -- C:\Windows\erdnt\cache64\tcpip.sys
[2013/07/20 13:20:53 | 002,233,600 | ---- | M] (Microsoft Corporation) MD5=0D05E0147C1329C53AAF97882DEDD96A -- C:\Windows\SysNative\drivers\tcpip.sys
[2013/07/20 13:20:53 | 002,233,600 | ---- | M] (Microsoft Corporation) MD5=0D05E0147C1329C53AAF97882DEDD96A -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16628_none_0c2ca018eff62c18\tcpip.sys
[2013/07/26 11:01:51 | 000,369,552 | ---- | M] () MD5=28B1D69BA87E88FDAEFB8B47905A082E -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16384_none_0be7b9b6f02a76ed\tcpip.sys
[2013/07/26 11:02:13 | 000,365,916 | ---- | M] () MD5=4610B72259856966B6A9FC0DE96B8E4D -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20652_none_0c8fc97e09318a84\tcpip.sys
[2013/07/26 11:02:10 | 000,368,114 | ---- | M] () MD5=5FF6F0A7183D357DB19D5A771D02EE74 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20623_none_0cb1398c09185008\tcpip.sys
[2013/07/26 11:02:04 | 000,216,826 | ---- | M] () MD5=7D135880738199943876970B86072746 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16604_none_0c3e3ec8efe98eda\tcpip.sys
[2013/07/26 11:02:07 | 000,370,799 | ---- | M] () MD5=7E949B17319C538856DDAB3209919E9A -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20521_none_0caf3712091a2033\tcpip.sys
[2013/07/26 11:02:16 | 000,362,006 | ---- | M] () MD5=8AECEE895402AD7A6D79E2B204F53ECB -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20708_none_0ccbdcbc09039400\tcpip.sys
[2013/07/26 11:01:55 | 000,370,776 | ---- | M] () MD5=91F87E318FEFCC757893CAD28C9A3377 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16420_none_0c2499fceffd6712\tcpip.sys
[2013/07/26 11:01:58 | 000,368,111 | ---- | M] () MD5=C9787781C3A73243DAD7D6BA37897B79 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.16518_none_0c376e1eefee1300\tcpip.sys
[2013/07/26 11:02:19 | 000,360,561 | ---- | M] () MD5=FE4A98D36E8F82F2899D6F67D3F5A9A2 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.2.9200.20733_none_0ca66b8609206920\tcpip.sys

< MD5 for: USERINIT.EXE >
[2012/07/26 05:08:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E925F7BA032920D58DD284B6181A247 -- C:\Windows\erdnt\cache64\userinit.exe
[2012/07/26 05:08:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E925F7BA032920D58DD284B6181A247 -- C:\Windows\SysNative\userinit.exe
[2012/07/26 05:08:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E925F7BA032920D58DD284B6181A247 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.2.9200.16384_none_34f2617a5b742e02\userinit.exe
[2012/07/26 05:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows\erdnt\cache86\userinit.exe
[2012/07/26 05:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows\SysWOW64\userinit.exe
[2012/07/26 05:21:00 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=9F6289D194A04A09671FEED4B6CB6EF7 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.2.9200.16384_none_d8d3c5f6a316bccc\userinit.exe

< MD5 for: WINLOGON.EXE >
[2013/08/20 08:05:07 | 001,898,112 | ---- | M] (Bleeping Computer, LLC) MD5=025122CC4C033C66DED75FF5BC5A683F -- C:\Users\DusanPC\Desktop\WiNlOgOn.exe
[2013/08/20 08:05:07 | 001,898,112 | ---- | M] (Bleeping Computer, LLC) MD5=025122CC4C033C66DED75FF5BC5A683F -- C:\Users\DusanPC\Downloads\WiNlOgOn.exe
[2013/07/26 11:10:02 | 000,001,620 | ---- | M] () MD5=1B9966ACA9C4D8FF2233C37E4930913C -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.20534_none_c94c56c877aac328\winlogon.exe
[2013/07/26 11:10:02 | 000,053,884 | ---- | M] () MD5=9ACED2064031E52918BA0573A1AA4B4F -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.20521_none_c95425d677a55b32\winlogon.exe
[2013/07/20 13:16:34 | 000,517,120 | ---- | M] (Microsoft Corporation) MD5=BCF2036A0DD579E47C008C133550283E -- C:\Windows\erdnt\cache64\winlogon.exe
[2013/07/20 13:16:34 | 000,517,120 | ---- | M] (Microsoft Corporation) MD5=BCF2036A0DD579E47C008C133550283E -- C:\Windows\SysNative\winlogon.exe
[2013/07/20 13:16:34 | 000,517,120 | ---- | M] (Microsoft Corporation) MD5=BCF2036A0DD579E47C008C133550283E -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16433_none_c8c1b9b35e8e0a07\winlogon.exe
[2013/07/26 11:10:01 | 000,053,876 | ---- | M] () MD5=BFC111BCAC404F683A1DEA07909F0A06 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16420_none_c8c988c15e88a211\winlogon.exe
[2013/07/26 11:10:01 | 000,053,889 | ---- | M] () MD5=CAD8F4973CE5E029531CFDDC08EFB4EE -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.2.9200.16384_none_c88ca87b5eb5b1ec\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[3 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\WinSxS\*.tmp files -> C:\Windows\WinSxS\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013/07/19 15:49:52 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\.minecraft
[2013/07/19 15:50:42 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\.techniclauncher
[2013/07/31 09:48:11 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Adobe
[2013/07/19 23:39:21 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\ArcSoft
[2013/08/15 20:38:57 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\ATI
[2013/07/26 00:37:38 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Audacity
[2013/07/26 14:35:48 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\DAEMON Tools Lite
[2013/08/21 08:46:08 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Dropbox
[2013/08/05 23:39:58 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\DRPSu
[2013/07/31 09:58:07 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\HD Tune Pro
[2013/07/19 18:43:13 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\InstallShield
[2013/07/19 23:39:10 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\InstallShield Installation Information
[2013/08/16 23:41:25 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Litecoin
[2013/07/19 19:38:58 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Macromedia
[2013/08/16 10:55:35 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Malwarebytes
[2013/07/20 13:08:24 | 000,000,000 | --SD | M] -- C:\Users\DusanPC\AppData\Roaming\Microsoft
[2013/07/30 09:45:54 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Origin
[2013/07/20 13:15:28 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\PACE Anti-Piracy
[2013/08/20 21:51:03 | 000,000,000 | RH-D | M] -- C:\Users\DusanPC\AppData\Roaming\SecuROM
[2013/08/21 08:46:21 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\Skype
[2013/07/31 09:48:11 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2013/07/26 14:56:33 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\TeamViewer
[2013/07/19 18:02:49 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\TuneUp Software
[2013/07/19 15:51:13 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\uTorrent
[2013/08/21 08:45:45 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\ViberPC
[2013/08/19 01:38:25 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\vlc
[2013/07/19 20:07:56 | 000,000,000 | ---D | M] -- C:\Users\DusanPC\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2011/03/01 07:26:14 | 000,270,848 | ---- | M] (Teckda) -- C:\Users\DusanPC\AppData\Roaming\.minecraft\Minecraft Beta Cracked.exe
[2010/10/20 19:00:02 | 000,695,296 | ---- | M] (AnjoCaido) -- C:\Users\DusanPC\AppData\Roaming\.minecraft\Minecraft Updater.exe
[2010/09/25 03:15:26 | 000,232,159 | ---- | M] () -- C:\Users\DusanPC\AppData\Roaming\.minecraft\Minecraft.exe
[2013/06/05 19:28:40 | 027,370,808 | ---- | M] (Dropbox, Inc.) -- C:\Users\DusanPC\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2013/06/05 19:28:50 | 000,229,288 | ---- | M] (Dropbox, Inc.) -- C:\Users\DusanPC\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2013/06/05 19:28:42 | 000,919,048 | ---- | M] (Dropbox, Inc.) -- C:\Users\DusanPC\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2013/07/19 23:39:06 | 000,455,600 | ---- | M] (Macrovision Corporation) -- C:\Users\DusanPC\AppData\Roaming\InstallShield Installation Information\{C92C584E-C781-475E-A8E2-C67D993A6B95}\setup.exe
[2013/07/20 13:08:24 | 000,010,134 | R--- | M] () -- C:\Users\DusanPC\AppData\Roaming\Microsoft\Installer\{024521CF-C07E-4F8E-8481-0D75695E03AF}\ARPPRODUCTICON.exe
[2013/08/10 08:39:35 | 000,888,152 | ---- | M] (BitTorrent Inc.) -- C:\Users\DusanPC\AppData\Roaming\uTorrent\uTorrent.exe
[2013/07/07 13:00:00 | 000,813,056 | ---- | M] (BitTorrent Inc.) -- C:\Users\DusanPC\AppData\Roaming\uTorrent\updates\3.3.1_29812.exe
[2013/07/19 15:57:11 | 001,125,712 | ---- | M] (BitTorrent Inc.) -- C:\Users\DusanPC\AppData\Roaming\uTorrent\updates\3.3.1_29938.exe
[2013/07/20 19:04:39 | 000,887,128 | ---- | M] (BitTorrent Inc.) -- C:\Users\DusanPC\AppData\Roaming\uTorrent\updates\3.3.1_29963.exe
[2013/08/07 11:47:37 | 000,888,152 | ---- | M] (BitTorrent Inc.) -- C:\Users\DusanPC\AppData\Roaming\uTorrent\updates\3.3.1_30003.exe
[2013/08/10 08:39:35 | 000,888,152 | ---- | M] (BitTorrent Inc.) -- C:\Users\DusanPC\AppData\Roaming\uTorrent\updates\3.3.1_30017.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2013/08/20 20:39:25 | 002,601,752 | ---- | M] () -- C:\Windows\system32\pbsvc_moh.exe
[2013/08/20 21:13:52 | 000,076,888 | ---- | M] () -- C:\Windows\system32\PnkBstrA.exe
[2013/08/20 22:37:57 | 000,280,904 | ---- | M] () -- C:\Windows\system32\PnkBstrB.ex0
[2013/08/20 22:38:09 | 000,290,184 | ---- | M] () -- C:\Windows\system32\PnkBstrB.exe
[2013/08/20 22:38:09 | 000,290,184 | ---- | M] () -- C:\Windows\system32\PnkBstrB.xtr

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"WinFast Schedule" = C:\Program Files\WinFast\WFDTV\WFWIZ.exe -- [2012/08/28 17:12:00 | 002,916,352 | ---- | M] (Leadtek Research Inc.)
"EADM" = "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart -- [2013/07/30 09:45:45 | 003,549,528 | ---- | M] (Electronic Arts)
"Viber" = "C:\Users\DusanPC\AppData\Local\Viber\Viber.exe" StartMinimized -- [2013/07/07 15:38:18 | 000,912,904 | ---- | M] ()
"uTorrent" = "C:\Users\DusanPC\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED -- [2013/08/10 08:39:35 | 000,888,152 | ---- | M] (BitTorrent Inc.)
"Skype" = "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun -- [2013/06/21 09:58:32 | 019,875,432 | R--- | M] (Skype Technologies S.A.)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2013/07/19 19:23:12 | 000,770,608 | ---- | M] (Microsoft Corporation) MD5=E4F6125ED5185F8FA37CC4F449B85526 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2013/07/25 02:49:49 | 000,846,288 | ---- | M] (Google Inc.) MD5=ECCA7F72A24C7CF43131946C076689D1 -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013/08/21 08:50:24 | 000,000,512 | ---- | M] () MD5=30D5718F5A9B2512EBA3C870D1CFCB05 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2008/08/07 11:28:04 | 001,159,409 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe After Effects CS4\Support Files\Presets\Image - Special Effects\Cracked Tiles.ffx
[2010/02/28 08:22:44 | 001,728,512 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Premiere Pro CS4\Plug-ins\en_US\VSTPlugins\DeCrackler1.dll
[2010/02/28 08:22:44 | 001,728,512 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Premiere Pro CS4\Plug-ins\en_US\VSTPlugins\DeCrackler2.dll
[2010/02/28 08:22:44 | 001,728,512 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Premiere Pro CS4\Plug-ins\en_US\VSTPlugins\DeCrackler6.dll
[2011/10/12 17:00:32 | 000,823,680 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\Plug-ins\en_US\VSTPlugins\DeCrackler1.dll
[2011/10/12 17:00:34 | 000,823,680 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\Plug-ins\en_US\VSTPlugins\DeCrackler2.dll
[2011/10/12 17:00:36 | 000,823,680 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\Plug-ins\en_US\VSTPlugins\DeCrackler6.dll
[2013/07/25 21:39:15 | 000,001,260 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps 3.5.9.9 Full deja crack - Xp, Vista, 7, 8 32 et 64 bit\Fraps 3.5.9.9 Full deja crack - Xp, Vista, 7, 8 32 et 64 bit.lnk
[2013/07/25 21:39:15 | 000,001,260 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Fraps 3.5.9.9 Full deja crack - Xp, Vista, 7, 8 32 et 64 bit\Fraps 3.5.9.9 Full deja crack - Xp, Vista, 7, 8 32 et 64 bit.lnk
[2011/03/01 07:26:14 | 000,270,848 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\.minecraft\Minecraft Beta Cracked.exe
[2013/01/29 01:07:22 | 000,008,563 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\.minecraft\texturepacks\Misko\textures\blocks\stonebricksmooth_cracked.png
[2013/08/11 17:32:48 | 000,000,734 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\Microsoft\Windows\Recent\Saints-Row----The-Third---CRACK.lnk
[2013/03/26 13:55:54 | 000,002,027 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\uTorrent\BioShock.Infinite.Crack.Only.FLT.rar.torrent
[2013/03/26 13:55:11 | 000,015,138 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\uTorrent\BioShockInfiniteCrack.exe.torrent
[2013/02/20 00:01:12 | 000,001,484 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\uTorrent\Borderlands.2.Crackfix.Only.By.DMN32.torrent
[2013/01/19 02:28:47 | 000,012,898 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\uTorrent\Crysis 2 CrackFix.torrent
[2013/02/03 17:07:03 | 000,003,591 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\uTorrent\Win8crack.exe.torrent
[2013/08/11 17:32:18 | 087,480,922 | ---- | M] () -- \Users\DusanPC\Downloads\Saints-Row----The-Third---CRACK.rar

< *keygen* /s >
[2013/06/02 21:35:18 | 000,014,518 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\uTorrent\MAGIX Music Maker 2013 Premium v19.0.3.47 Incl. Keygen Happy New Year Farewell Release - DI [deepstatus][h33t][1337x].torrent
[2013/05/31 13:34:26 | 000,014,901 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\uTorrent\MAGIX Music Maker 2013 Premium v19.0.3.47 Incl. Keygen.torrent

< *loader* /s >
[2009/05/21 02:23:54 | 000,217,088 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe After Effects CS4\Support Files\MXF_SDK_MetaMetadata_BinaryLoader_r.4.1.1.223.dll
[2008/08/28 19:34:20 | 004,965,736 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\Photodownloader.exe
[2008/08/28 16:42:12 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\de_de\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\en_us\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\es_es\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\it_it\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\no_no\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2008/08/28 16:42:14 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2008/08/28 16:42:16 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS4\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2011/03/02 21:35:42 | 005,299,048 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\Photodownloader.exe
[2011/03/02 18:57:10 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\de_de\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\en_us\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\es_es\Photodownloader.ini
[2011/03/02 18:57:10 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\it_it\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\no_no\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2011/03/02 18:57:12 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2011/03/02 18:57:14 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2011/03/02 18:57:14 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5.1\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2011/06/09 23:52:42 | 005,299,048 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\Photodownloader.exe
[2010/03/09 01:38:58 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2010/03/09 01:38:58 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\de_de\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\en_us\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\es_es\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\it_it\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\no_no\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2011/03/18 18:08:46 | 000,082,592 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\MXF_SDK_MetaMetadata_BinaryLoader_4.3.4.dll
[2011/03/18 18:08:48 | 000,148,640 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\MXF_SDK_MetaMetadata_XSDLoader2_4.3.4.dll
[2011/03/18 18:08:48 | 000,115,360 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Encore CS5.1\MXF_SDK_MetaMetadata_XSDLoader_4.3.4.dll
[2008/08/26 01:32:24 | 000,217,088 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Media Encoder CS4\MXF_SDK_MetaMetadata_BinaryLoader_r.4.1.1.223.dll
[2011/03/15 14:03:04 | 000,076,800 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_BinaryLoader_4.3.4.dll
[2011/03/15 14:03:04 | 000,142,848 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_XSDLoader2_4.3.4.dll
[2011/03/15 14:03:04 | 000,109,568 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_XSDLoader_4.3.4.dll
[2011/03/18 06:06:00 | 000,301,976 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe OnLocation CS5.1\MXF_SDK_MetaMetadata_BinaryLoader_r.4.2.2.319.dll
[2009/11/18 19:40:38 | 000,217,088 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Premiere Pro CS4\MXF_SDK_MetaMetadata_BinaryLoader_r.4.1.1.223.dll
[2012/10/02 05:34:40 | 000,268,384 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2012/10/02 05:34:40 | 000,019,048 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2012/12/03 15:54:38 | 000,134,456 | ---- | M] () -- \Program Files (x86)\Seagate\SeaTools for Windows\LoaderATA.xss
[2012/12/03 15:54:38 | 000,112,520 | ---- | M] () -- \Program Files (x86)\Seagate\SeaTools for Windows\LoaderSCSI.xss
[2012/11/29 10:34:00 | 000,117,352 | ---- | M] () -- \Program Files (x86)\Seagate\SeaTools for Windows\LoaderUSB.xss
[2011/03/15 11:23:50 | 000,105,984 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_BinaryLoader_4.3.4.dll
[2011/03/15 11:23:50 | 000,196,608 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_XSDLoader2_4.3.4.dll
[2011/03/15 11:23:50 | 000,144,896 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5.5\MXF_SDK_MetaMetadata_XSDLoader_4.3.4.dll
[2011/03/23 14:50:20 | 000,105,984 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\MXF_SDK_MetaMetadata_BinaryLoader_4.3.4.dll
[2011/03/23 14:50:20 | 000,196,608 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\MXF_SDK_MetaMetadata_XSDLoader2_4.3.4.dll
[2011/03/23 14:50:20 | 000,144,896 | ---- | M] () -- \Program Files\Adobe\Adobe Premiere Pro CS5.5\MXF_SDK_MetaMetadata_XSDLoader_4.3.4.dll
[2012/10/02 05:34:40 | 000,364,128 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2012/10/02 05:34:40 | 000,019,048 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2013/07/19 15:57:23 | 000,003,208 | ---- | M] () -- \Program Files\WindowsApps\LagardereActiveR.Evropa2_1.0.0.5_neutral__qsrqtfwkscr3p\images\icon-loader.gif
[2012/07/26 12:06:16 | 000,039,485 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Bing_1.2.0.137_x64__8wekyb3d8bbwe\shell\js\backgroundImageLoader.js
[2012/07/26 12:05:05 | 000,002,809 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\DependencyLoader\DependencyLoader.js
[2012/07/26 12:05:06 | 000,001,583 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellComposeDependencyLoader.js
[2012/07/26 12:05:06 | 000,001,711 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellReadDependencyLoader.js
[2012/07/26 12:05:06 | 000,002,509 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellShareAnythingControlDependencyLoader.js
[2012/07/26 12:05:06 | 000,002,394 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernPeople\appframe\BackgroundLoader.js
[2012/07/26 12:05:07 | 000,005,028 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernShareAnything\ShareDataLoader.js
[2013/07/19 15:57:28 | 000,002,089 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\DependencyLoader\DependencyLoader.js
[2013/07/19 15:57:30 | 000,001,326 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellComposeDependencyLoader.js
[2013/07/19 15:57:30 | 000,001,208 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellReadDependencyLoader.js
[2013/07/19 15:57:30 | 000,002,552 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernAttachmentWell\AttachmentWellShareAnythingControlDependencyLoader.js
[2013/07/19 15:57:32 | 000,001,915 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernPeople\appframe\BackgroundLoader.js
[2013/07/19 15:57:32 | 000,005,019 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\ModernShareAnything\ShareDataLoader.js
[2012/07/26 12:06:13 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_1.0.927.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/07/19 15:56:59 | 000,046,874 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_1.3.10.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2012/07/26 12:05:46 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneMusic_1.0.927.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/07/19 15:56:54 | 000,053,549 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneMusic_1.4.18.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2012/07/26 12:05:54 | 000,049,108 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.0.927.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/07/19 15:56:34 | 000,053,549 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.4.19.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/08/15 08:43:17 | 000,053,822 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_1.5.41.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2012/06/09 19:19:38 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2013/06/19 15:59:00 | 000,072,638 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.gif
[2013/06/19 15:59:00 | 000,003,032 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\loader.png
[2013/06/19 15:59:00 | 000,009,772 | ---- | M] () -- \ProgramData\Skype\Apps\login\images\retina\loader@2x.png
[2013/06/19 15:59:00 | 000,072,638 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.gif
[2013/06/19 15:59:00 | 000,003,032 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\loader.png
[2013/06/19 15:59:00 | 000,009,772 | ---- | M] () -- \Users\All Users\Skype\Apps\login\images\retina\loader@2x.png
[2013/08/15 23:57:47 | 000,024,551 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9S72E6O9\universaldownloader-prefetch[1].htm
[404 \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9S72E6O9\*.tmp files -> \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9S72E6O9\*.tmp -> ]
[2013/07/31 09:40:02 | 000,109,505 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QFYOEO4L\AdLoader-3ce32d357de39fd9427f374be93bd0ac.min[1].js
[2013/07/27 01:08:45 | 000,109,448 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QFYOEO4L\AdLoader-b3e321cab5fbc3c4ed10b513bb467bae.min[1].js
[2013/07/31 09:40:02 | 000,001,511 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QFYOEO4L\AdLoader[2].htm
[126 \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QFYOEO4L\*.tmp files -> \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QFYOEO4L\*.tmp -> ]
[2013/08/13 15:48:35 | 000,029,886 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\B9SBA86R\jsloader-11a52eb4c76b[1].js
[2013/08/13 15:48:35 | 000,006,102 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\KK1AZP52\jsloader-ed470bf8f108-xgemius[1].js
[2013/08/13 15:48:35 | 000,042,253 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MDSKCAUT\cssloader-0bd0441e44de[1].css
[2013/08/13 15:48:35 | 000,230,360 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MDSKCAUT\cssloader-0da7d89533c7[1].css
[2013/08/13 15:48:35 | 000,035,490 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MDSKCAUT\cssloader-390087e768b5[1].css
[2013/08/13 15:48:35 | 000,002,388 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MDSKCAUT\jsloader-72967a308766-iinfobar[1].js
[2013/08/13 15:48:35 | 000,107,967 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MDSKCAUT\jsloader-96cb5cb2ead1[1].js
[2013/08/13 15:48:35 | 000,214,566 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MDSKCAUT\jsloader-c42faecff6a3[1].js
[2013/08/13 15:48:35 | 000,038,428 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NX4HOK4O\jsloader-b60870fea0a7-jquery.qtip[1].js
[2013/08/13 15:38:31 | 000,003,061 | ---- | M] () -- \Users\DusanPC\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\NX4HOK4O\rmsloaderdelayeddiv[1].js
[2013/02/11 13:59:55 | 000,010,974 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\.minecraft\ForgeModLoader-0.log
[2013/02/11 13:58:36 | 000,010,974 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\.minecraft\ForgeModLoader-1.log
[2012/08/12 20:01:40 | 000,011,061 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\.minecraft\ForgeModLoader-2.log
[2013/03/22 21:56:56 | 000,004,069 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\.minecraft\ModLoader.txt
[2013/03/17 12:31:43 | 000,002,823 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\.minecraft\ModLoader.txt.1
[2013/03/20 13:27:17 | 000,000,143 | ---- | M] () -- \Users\DusanPC\AppData\Roaming\.minecraft\config\ModLoader.cfg
[2013/07/20 11:48:30 | 000,019,968 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.O29577370#\04ec9c7aaba90bf8e4a2d67798e05169\Microsoft.Office.InfoPath.CLRLoader.ni.dll
[2013/07/20 11:48:30 | 000,000,796 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.O29577370#\04ec9c7aaba90bf8e4a2d67798e05169\Microsoft.Office.InfoPath.CLRLoader.ni.dll.aux
[2013/07/19 14:40:45 | 000,015,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Office.InfoPath.CLRLoader\v4.0_15.0.0.0__71e9bce111e9429c\Microsoft.Office.Infopath.CLRLoader.dll
[2013/07/27 20:26:29 | 000,023,866 | ---- | M] () -- \Windows\Prefetch\RAREXTLOADER.EXE-8405D981.pf
[2012/07/26 04:46:24 | 000,003,072 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 04:46:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 04:46:36 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2012/07/26 05:18:20 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009/04/03 12:39:20 | 000,070,936 | ---- | M] () -- \Windows\System32\PhysXLoader.dll
[2012/07/26 04:46:24 | 000,003,072 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 04:46:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 04:46:36 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2012/07/26 05:18:20 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009/04/03 12:39:20 | 000,070,936 | ---- | M] () -- \Windows\SysWOW64\PhysXLoader.dll
[1 \Windows\WinSxS\*.tmp files -> \Windows\WinSxS\*.tmp -> ]
[2012/07/26 06:53:16 | 001,084,144 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16384_none_891afac5ef497dae\hvloader.efi
[2012/07/26 06:53:16 | 000,998,128 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16384_none_891afac5ef497dae\hvloader.exe
[2013/07/20 13:16:38 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16433_none_89500bfdef21d5c9\hvloader.efi
[2013/07/20 13:16:38 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16433_none_89500bfdef21d5c9\hvloader.exe
[2013/07/19 19:36:08 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16548_none_894a3f69ef256d94\hvloader.efi
[2013/07/19 19:36:08 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16548_none_894a3f69ef256d94\hvloader.exe
[2013/07/19 19:20:37 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16579_none_892acfefef3cdabe\hvloader.efi
[2013/07/19 19:20:37 | 000,998,152 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16579_none_892acfefef3cdabe\hvloader.exe
[2013/07/20 13:20:56 | 001,084,160 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16628_none_895fe127ef1532d9\hvloader.efi
[2013/07/20 13:20:56 | 000,998,144 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.16628_none_895fe127ef1532d9\hvloader.exe
[2013/07/20 13:16:38 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20534_none_89daa913083e8eea\hvloader.efi
[2013/07/20 13:16:37 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20534_none_89daa913083e8eea\hvloader.exe
[2013/07/19 19:36:07 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20652_none_89c30a8d08509145\hvloader.efi
[2013/07/19 19:36:07 | 000,998,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20652_none_89c30a8d08509145\hvloader.exe
[2013/07/19 19:20:37 | 001,084,136 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20683_none_89a39b130867fe6f\hvloader.efi
[2013/07/19 19:20:37 | 000,998,152 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20683_none_89a39b130867fe6f\hvloader.exe
[2013/07/20 13:20:56 | 001,084,160 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20733_none_89d9ac95083f6fe1\hvloader.efi
[2013/07/20 13:20:55 | 000,998,144 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.2.9200.20733_none_89d9ac95083f6fe1\hvloader.exe
[2012/07/26 05:05:30 | 000,047,616 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.2.9200.16384_none_9ebdc35619670551\dmloader.dll
[2012/07/26 04:35:54 | 000,003,072 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_637b975b05942933\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 04:35:54 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_637b975b05942933\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 04:35:58 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_637b975b05942933\api-ms-win-core-stringloader-l1-1-0.dll
[2012/07/26 12:01:28 | 000,004,656 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c.manifest
[2012/07/26 12:01:28 | 000,030,448 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winload.efi.mui_35ee487d
[2012/07/26 12:01:28 | 000,030,448 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winload.exe.mui_3bc5b827
[2012/07/26 12:01:28 | 000,020,208 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winresume.efi.mui_f412814e
[2012/07/26 12:01:28 | 000,020,208 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c_winresume.exe.mui_ff8b5358
[2013/07/20 13:21:10 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_b43547f8f636cb6a.manifest
[2013/07/20 13:21:10 | 001,403,296 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_b43547f8f636cb6a_winload.efi_75834aa0
[2013/07/20 13:21:10 | 001,271,584 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_b43547f8f636cb6a_winload.exe_75835076
[2013/07/20 13:21:10 | 001,217,352 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_b43547f8f636cb6a_winresume.efi_85cd069f
[2013/07/20 13:21:10 | 001,093,904 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_b43547f8f636cb6a_winresume.exe_85cd1215
[2013/07/27 00:22:45 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2012/07/26 12:00:05 | 000,004,656 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.2.9200.16384_cs-cz_8c0c160e86cdb00c.manifest
[2012/07/26 07:00:58 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16384_none_b3f06196f66b163f.manifest
[2013/07/19 22:08:51 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16420_none_b42d41dcf63e0664.manifest
[2013/07/19 22:12:52 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16433_none_b42572cef6436e5a.manifest
[2013/07/19 18:53:30 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16579_none_b40036c0f65e734f.manifest
[2013/07/19 22:10:59 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.16628_none_b43547f8f636cb6a.manifest
[2013/07/19 22:08:51 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20521_none_b4b7def20f5abf85.manifest
[2013/07/19 22:12:52 | 000,005,810 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20534_none_b4b00fe40f60277b.manifest
[2013/07/19 18:53:30 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20683_none_b47901e40f899700.manifest
[2013/07/19 22:10:59 | 000,005,808 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.2.9200.20733_none_b4af13660f610872.manifest
[2012/07/26 05:18:20 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.2.9200.16384_none_429f27d26109941b\dmloader.dll
[2012/07/26 04:46:24 | 000,003,072 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-libraryloader-l1-1-0.dll
[2012/07/26 04:46:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-libraryloader-l1-1-1.dll
[2012/07/26 04:46:36 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.2.9200.16384_none_075cfbd74d36b7fd\api-ms-win-core-stringloader-l1-1-0.dll

========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
[C:\Windows\SoftwareDistribution] -> D:\SSD\WindowsUpdate -> Junction

========== Alternate Data Streams ==========

@Alternate Data Stream - 136 bytes -> C:\ProgramData\TEMP:4FC01C57

< End of report >

[vyosek]

Jen se zeptam, pouzivate legalni operacni system

[jura1]

Původně warez, ale pak jsem upgradoval ze starších win 7.

[jura1]

Tak teď jsem zjistil, že mi nejde zapnout firewall a v české lokalizaci se začali objevovat anglické nápisy (např. místo vlastnosti - properities)