Prosím o kontrolu logu,vytížený procesor,download zpomaleny

[1jan]

.

[1jan]

Prikladam log a extras dle scriptu

[1jan]

OTL logfile created on: 1/17/2014 12:56:15 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\K22.k2\Downloads
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000405 | Country: Czech Republic | Language: CSY | Date Format: d. M. yyyy

2.93 Gb Total Physical Memory | 1.99 Gb Available Physical Memory | 68.00% Memory free
3.43 Gb Paging File | 1.71 Gb Available in Paging File | 49.88% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 139.70 Gb Total Space | 117.37 Gb Free Space | 84.01% Space Free | Partition Type: NTFS

Computer Name: K2 | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (All) ==========

PRC - [2014/01/17 12:42:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\K22.k2\Downloads\OTL.exe


========== Modules (No Company Name) ==========


========== Services (All) ==========

SRV:64bit: - [2013/11/08 04:41:17 | 001,302,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2013/10/20 01:23:22 | 006,254,152 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV:64bit: - [2013/10/19 06:37:49 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013/10/12 22:48:42 | 000,828,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:64bit: - [2013/10/12 22:34:58 | 001,104,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\IKEEXT.DLL -- (IKEEXT)
SRV:64bit: - [2013/10/10 23:54:28 | 000,144,152 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2013/10/10 17:23:32 | 003,395,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2013/10/10 12:38:48 | 000,221,184 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2013/10/08 06:48:10 | 000,255,488 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2013/10/08 05:50:04 | 000,903,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\iphlpsvc.dll -- (iphlpsvc)
SRV:64bit: - [2013/10/07 03:13:16 | 003,532,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:64bit: - [2013/10/04 09:10:59 | 000,533,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2013/09/30 05:03:25 | 001,503,232 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\wlansvc.dll -- (WlanSvc)
SRV:64bit: - [2013/09/30 05:03:25 | 000,459,776 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\wcncsvc.dll -- (wcncsvc)
SRV:64bit: - [2013/09/30 05:03:25 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2013/09/30 05:03:25 | 000,326,656 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\SessEnv.dll -- (SessionEnv)
SRV:64bit: - [2013/09/30 05:03:24 | 006,353,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\sppsvc.exe -- (sppsvc)
SRV:64bit: - [2013/09/30 05:03:24 | 001,555,456 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013/09/30 05:03:24 | 000,109,568 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AxInstSv.dll -- (AxInstSV)
SRV:64bit: - [2013/09/30 05:03:23 | 001,245,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sysmain.dll -- (SysMain)
SRV:64bit: - [2013/09/30 05:03:23 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2013/09/30 05:03:23 | 000,471,552 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\pcasvc.dll -- (PcaSvc)
SRV:64bit: - [2013/09/30 05:03:23 | 000,453,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbiosrvc.dll -- (WbioSrvc)
SRV:64bit: - [2013/09/30 05:03:23 | 000,261,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2013/09/30 05:03:22 | 000,353,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2013/09/30 04:51:19 | 000,289,280 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2013/09/30 04:51:15 | 000,220,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sensrsvc.dll -- (SensrSvc)
SRV:64bit: - [2013/09/30 04:51:09 | 000,183,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2013/09/30 04:51:09 | 000,090,464 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\KeyboardFilterSvc.dll -- (MsKeyboardFilter)
SRV:64bit: - [2013/09/30 04:51:06 | 000,778,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2013/09/30 04:51:04 | 002,176,000 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV:64bit: - [2013/09/24 10:53:32 | 000,164,056 | ---- | M] (COMODO) [On_Demand | Stopped] -- C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe -- (cmdvirth)
SRV:64bit: - [2013/09/14 10:11:03 | 000,433,664 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:64bit: - [2013/08/22 14:25:35 | 000,079,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper)
SRV:64bit: - [2013/08/22 14:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:64bit: - [2013/08/22 14:25:35 | 000,029,184 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2013/08/22 13:35:25 | 000,019,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\dllhost.exe -- (COMSysApp)
SRV:64bit: - [2013/08/22 13:32:01 | 000,346,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2013/08/22 13:32:00 | 000,023,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2013/08/22 13:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2013/08/22 12:40:41 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lmhsvc.dll -- (lmhosts)
SRV:64bit: - [2013/08/22 12:40:29 | 000,010,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\Locator.exe -- (RpcLocator)
SRV:64bit: - [2013/08/22 12:35:42 | 000,124,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2013/08/22 12:35:42 | 000,124,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umpnpmgr.dll -- (DeviceInstall)
SRV:64bit: - [2013/08/22 12:34:22 | 000,109,568 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2013/08/22 12:34:06 | 000,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV:64bit: - [2013/08/22 12:32:36 | 000,014,848 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\snmptrap.exe -- (SNMPTRAP)
SRV:64bit: - [2013/08/22 12:32:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2013/08/22 12:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 12:31:58 | 000,207,360 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2013/08/22 12:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 12:27:56 | 000,147,456 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TabSvc.dll -- (TabletInputService)
SRV:64bit: - [2013/08/22 12:23:10 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\msiexec.exe -- (msiserver)
SRV:64bit: - [2013/08/22 12:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 12:22:30 | 000,101,376 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2013/08/22 12:22:01 | 000,019,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\StorSvc.dll -- (StorSvc)
SRV:64bit: - [2013/08/22 12:21:38 | 000,040,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\UI0Detect.exe -- (UI0Detect)
SRV:64bit: - [2013/08/22 12:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 12:21:03 | 000,097,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\KMSVC.DLL -- (hkmsvc)
SRV:64bit: - [2013/08/22 12:19:57 | 000,188,416 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\SCardSvr.dll -- (SCardSvr)
SRV:64bit: - [2013/08/22 12:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 12:13:14 | 000,226,816 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WebClnt.dll -- (WebClient)
SRV:64bit: - [2013/08/22 12:13:09 | 000,223,744 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\mprdim.dll -- (RemoteAccess)
SRV:64bit: - [2013/08/22 12:13:02 | 000,150,528 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\iscsiexe.dll -- (MSiSCSI)
SRV:64bit: - [2013/08/22 12:05:54 | 000,435,200 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\QAGENTRT.DLL -- (napagent)
SRV:64bit: - [2013/08/22 12:05:43 | 000,155,136 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\certprop.dll -- (SCPolicySvc)
SRV:64bit: - [2013/08/22 12:05:43 | 000,155,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\certprop.dll -- (CertPropSvc)
SRV:64bit: - [2013/08/22 12:01:08 | 000,041,984 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WcsPlugInService.dll -- (WcsPlugInService)
SRV:64bit: - [2013/08/22 12:01:01 | 000,037,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appidsvc.dll -- (AppIDSvc)
SRV:64bit: - [2013/08/22 11:55:30 | 000,306,688 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2013/08/22 11:54:55 | 000,081,408 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wercplsupport.dll -- (wercplsupport)
SRV:64bit: - [2013/08/22 11:52:23 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lltdsvc.dll -- (lltdsvc)
SRV:64bit: - [2013/08/22 11:48:37 | 001,283,584 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vds.exe -- (vds)
SRV:64bit: - [2013/08/22 11:39:20 | 000,634,368 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2013/08/22 11:34:13 | 001,443,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pla.dll -- (pla)
SRV:64bit: - [2013/08/22 11:30:45 | 000,258,560 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2013/08/22 11:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 11:19:14 | 001,017,856 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:64bit: - [2013/08/22 11:17:43 | 001,542,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wbengine.exe -- (wbengine)
SRV:64bit: - [2013/08/22 11:10:50 | 001,402,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV:64bit: - [2013/08/22 11:07:10 | 001,348,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\FntCache.dll -- (FontCache)
SRV:64bit: - [2013/08/22 11:04:53 | 000,716,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2013/08/22 11:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 11:02:37 | 000,164,864 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\regsvc.dll -- (RemoteRegistry)
SRV:64bit: - [2013/08/22 11:02:31 | 000,079,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpo.dll -- (Power)
SRV:64bit: - [2013/08/22 11:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2013/08/22 11:01:18 | 000,012,288 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\wpcsvc.dll -- (WPCSvc)
SRV:64bit: - [2013/08/22 11:00:18 | 000,050,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2013/08/22 10:59:35 | 000,404,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\w32time.dll -- (W32Time)
SRV:64bit: - [2013/08/22 10:59:26 | 000,832,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2013/08/22 10:58:42 | 000,280,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/08/22 10:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 10:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 10:54:27 | 000,070,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\mmcss.dll -- (THREADORDER)
SRV:64bit: - [2013/08/22 10:54:27 | 000,070,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2013/08/22 10:54:22 | 000,284,160 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)
SRV:64bit: - [2013/08/22 10:54:04 | 000,100,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WUDFSvc.dll -- (wudfsvc)
SRV:64bit: - [2013/08/22 10:53:52 | 000,122,368 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\trkwks.dll -- (TrkWks)
SRV:64bit: - [2013/08/22 10:53:49 | 000,091,136 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wdi.dll -- (WdiSystemHost)
SRV:64bit: - [2013/08/22 10:53:49 | 000,091,136 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\wdi.dll -- (WdiServiceHost)
SRV:64bit: - [2013/08/22 10:53:33 | 000,170,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dps.dll -- (DPS)
SRV:64bit: - [2013/08/22 10:53:13 | 000,092,672 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:64bit: - [2013/08/22 10:53:05 | 000,071,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\Sens.dll -- (SENS)
SRV:64bit: - [2013/08/22 10:52:38 | 000,100,864 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\wersvc.dll -- (WerSvc)
SRV:64bit: - [2013/08/22 10:51:14 | 000,144,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\sstpsvc.dll -- (SstpSvc)
SRV:64bit: - [2013/08/22 10:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 10:50:00 | 000,761,344 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2013/08/22 10:50:00 | 000,761,344 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2013/08/22 10:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/08/22 10:49:12 | 000,025,600 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg)
SRV:64bit: - [2013/08/22 10:48:10 | 000,092,160 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\bthserv.dll -- (bthserv)
SRV:64bit: - [2013/08/22 10:48:09 | 000,324,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2013/08/22 10:48:06 | 000,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbem\WmiApSrv.exe -- (wmiApSrv)
SRV:64bit: - [2013/08/22 10:48:04 | 000,220,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:64bit: - [2013/08/22 10:46:46 | 000,297,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\qwave.dll -- (QWAVE)
SRV:64bit: - [2013/08/22 10:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 10:45:19 | 000,033,280 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FDResPub.dll -- (FDResPub)
SRV:64bit: - [2013/08/22 10:44:27 | 001,669,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (EventLog)
SRV:64bit: - [2013/08/22 10:44:18 | 000,107,008 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (Eaphost)
SRV:64bit: - [2013/08/22 10:41:49 | 000,786,432 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\winhttp.dll -- (WinHttpAutoProxySvc)
SRV:64bit: - [2013/08/22 10:41:35 | 000,336,896 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bdesvc.dll -- (BDESVC)
SRV:64bit: - [2013/08/22 10:41:13 | 001,311,744 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\gpsvc.dll -- (gpsvc)
SRV:64bit: - [2013/08/22 10:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 10:40:46 | 000,142,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msdtc.exe -- (MSDTC)
SRV:64bit: - [2013/08/22 10:40:30 | 000,468,992 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV:64bit: - [2013/08/22 10:40:14 | 000,398,848 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2013/08/22 10:39:37 | 000,357,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msdtckrm.dll -- (KtmRm)
SRV:64bit: - [2013/08/22 10:39:33 | 000,198,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2013/08/22 10:38:52 | 000,449,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\defragsvc.dll -- (defragsvc)
SRV:64bit: - [2013/08/22 10:38:21 | 001,032,704 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\termsrv.dll -- (TermService)
SRV:64bit: - [2013/08/22 10:36:56 | 000,239,616 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\ssdpsrv.dll -- (SSDPSRV)
SRV:64bit: - [2013/08/22 10:35:49 | 002,479,616 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\WsmSvc.dll -- (WinRM)
SRV:64bit: - [2013/08/22 10:35:48 | 000,387,584 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2013/08/22 10:35:27 | 000,403,456 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
SRV:64bit: - [2013/08/22 10:35:25 | 000,215,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wecsvc.dll -- (Wecsvc)
SRV:64bit: - [2013/08/22 10:32:32 | 000,419,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpsvc.dll -- (PNRPsvc)
SRV:64bit: - [2013/08/22 10:32:32 | 000,419,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpsvc.dll -- (p2pimsvc)
SRV:64bit: - [2013/08/22 10:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 10:25:07 | 000,510,464 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\wwansvc.dll -- (WwanSvc)
SRV:64bit: - [2013/08/22 10:24:27 | 000,629,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV:64bit: - [2013/08/22 10:23:55 | 000,878,080 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:64bit: - [2013/08/22 10:23:23 | 000,716,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2013/08/22 10:23:08 | 000,835,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (Audiosrv)
SRV:64bit: - [2013/08/22 10:19:19 | 001,436,160 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:64bit: - [2013/08/22 10:18:58 | 000,534,016 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2013/08/22 10:17:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fdPHost.dll -- (fdPHost)
SRV:64bit: - [2013/08/22 10:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2013/08/22 10:12:56 | 000,133,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:64bit: - [2013/08/22 10:11:26 | 000,261,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ListSvc.dll -- (HomeGroupListener)
SRV:64bit: - [2013/08/22 10:10:12 | 000,798,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:64bit: - [2013/08/22 10:08:20 | 000,433,664 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\p2psvc.dll -- (p2psvc)
SRV:64bit: - [2013/08/22 10:08:18 | 000,084,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wpdbusenum.dll -- (WPDBusEnum)
SRV:64bit: - [2013/08/22 10:07:32 | 001,212,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2013/08/22 10:07:21 | 000,844,800 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\WINDOWS\SysNative\SearchIndexer.exe -- (WSearch)
SRV:64bit: - [2013/08/22 10:06:05 | 000,405,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\provsvc.dll -- (HomeGroupProvider)
SRV:64bit: - [2013/08/22 10:05:28 | 000,436,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\upnphost.dll -- (upnphost)
SRV:64bit: - [2013/08/22 10:05:22 | 000,254,976 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV - [2014/01/14 21:03:29 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/01/04 04:00:15 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/09/30 05:03:33 | 000,285,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV - [2013/09/30 05:03:23 | 000,280,576 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\SessEnv.dll -- (SessionEnv)
SRV - [2013/09/30 05:03:22 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013/09/30 04:51:09 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\appmgmts.dll -- (AppMgmt)
SRV - [2013/08/22 14:25:36 | 000,098,816 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\servicing\TrustedInstaller.exe -- (TrustedInstaller)
SRV - [2013/08/22 13:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013/08/22 06:21:45 | 000,017,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWow64\dllhost.exe -- (COMSysApp)
SRV - [2013/08/22 05:12:15 | 000,021,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\perfhost.exe -- (PerfHost)
SRV - [2013/08/22 05:05:54 | 000,029,696 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV - [2013/08/22 04:56:51 | 000,055,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysWow64\msiexec.exe -- (msiserver)
SRV - [2013/08/22 04:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 04:47:59 | 000,177,664 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\mprdim.dll -- (RemoteAccess)
SRV - [2013/08/22 04:47:58 | 000,198,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\WebClnt.dll -- (WebClient)
SRV - [2013/08/22 04:37:49 | 000,034,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\WcsPlugInService.dll -- (WcsPlugInService)
SRV - [2013/08/22 04:33:38 | 000,248,320 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV - [2013/08/22 04:18:45 | 001,477,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\pla.dll -- (pla)
SRV - [2013/08/22 03:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013/08/22 03:52:30 | 000,011,264 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\wpcsvc.dll -- (WPCSvc)
SRV - [2013/08/22 03:49:21 | 000,688,640 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\netlogon.dll -- (Netlogon)
SRV - [2013/08/22 03:48:12 | 000,044,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV - [2013/08/22 03:47:21 | 000,080,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\wdi.dll -- (WdiSystemHost)
SRV - [2013/08/22 03:47:21 | 000,080,896 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\wdi.dll -- (WdiServiceHost)
SRV - [2013/08/22 03:41:13 | 000,256,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\qwave.dll -- (QWAVE)
SRV - [2013/08/22 03:39:08 | 000,589,312 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2013/08/22 03:38:29 | 000,329,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV - [2013/08/22 03:35:43 | 002,030,080 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\WsmSvc.dll -- (WinRM)
SRV - [2013/08/22 03:27:04 | 000,564,736 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
SRV - [2013/08/22 03:17:17 | 000,321,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider)
SRV - [2013/08/22 03:16:50 | 000,307,200 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysWOW64\upnphost.dll -- (upnphost)
SRV - [2013/08/22 03:16:00 | 000,657,920 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\WINDOWS\SysWow64\SearchIndexer.exe -- (WSearch)
SRV - [2013/08/03 05:47:59 | 000,043,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0)
SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013/11/11 03:48:41 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2013/11/09 12:55:11 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2013/11/01 12:39:53 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/10/31 01:58:59 | 000,372,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2013/10/26 02:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2013/10/13 03:48:34 | 000,136,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2013/10/05 16:25:54 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2013/09/30 05:03:22 | 000,467,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2013/09/30 05:03:22 | 000,236,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2013/09/30 05:03:22 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2013/09/30 04:51:11 | 000,022,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\kbldfltr.sys -- (kbldfltr)
DRV:64bit: - [2013/09/30 04:51:09 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2013/09/30 04:51:00 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2013/09/30 04:50:59 | 000,220,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Vid.sys -- (Vid)
DRV:64bit: - [2013/09/30 04:50:59 | 000,129,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbusr.sys -- (vmbusr)
DRV:64bit: - [2013/09/30 04:50:59 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsp.sys -- (storvsp)
DRV:64bit: - [2013/09/30 04:50:59 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpcivsp.sys -- (vpcivsp)
DRV:64bit: - [2013/09/24 10:54:16 | 000,023,168 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\SysNative\drivers\cmderd.sys -- (cmderd)
DRV:64bit: - [2013/08/22 14:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 14:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 13:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 13:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 13:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 13:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 13:43:48 | 000,146,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2013/08/22 13:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 13:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 13:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 13:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 13:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 13:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 13:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 13:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 13:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 13:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 13:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 13:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 13:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 13:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 13:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 13:43:33 | 000,189,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2013/08/22 13:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 13:43:32 | 000,078,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2013/08/22 13:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 13:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 13:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 13:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 13:41:08 | 000,054,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2013/08/22 13:39:44 | 000,377,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2013/08/22 13:39:15 | 000,924,512 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2013/08/22 13:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 13:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 13:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 13:34:22 | 000,265,056 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2013/08/22 13:34:22 | 000,124,256 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2013/08/22 13:31:28 | 000,034,760 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2013/08/22 12:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013/08/22 12:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 12:39:28 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2013/08/22 12:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 12:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 12:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 12:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 12:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 12:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 12:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 12:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 12:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 12:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 12:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 12:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 12:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 12:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 12:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 12:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 12:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 12:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2013/08/22 12:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 12:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 09:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/13 00:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/10 01:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 19:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 20:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/06/18 15:45:58 | 011,518,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2013/06/18 15:44:59 | 000,129,224 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C63x64.sys -- (L1C)
DRV:64bit: - [2013/05/13 15:36:06 | 000,050,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\point64.sys -- (Point64)
DRV:64bit: - [2013/05/13 15:36:06 | 000,029,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nuidfltr.sys -- (NuidFltr)
DRV:64bit: - [2013/03/25 13:41:46 | 000,076,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dc3d.sys -- (dc3d)
DRV:64bit: - [2012/03/23 18:13:28 | 010,627,744 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/07/22 17:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 22:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV - [2012/12/29 21:59:38 | 000,028,664 | ---- | M] (Almico Software) [Kernel | Auto | Running] -- C:\Windows\SysWOW64\speedfan.sys -- (speedfan)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-1025\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-1025\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-1025\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-1025\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-1025\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-1025\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR
IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\..\SearchScopes\{C5BDE541-4F44-4F37-A785-1D78ED30920D}: "URL" = http://www.google.com/search?q={searchT ... utEncoding?}
IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledAddons: artur.dubovoy%40gmail.com:4.0.8
FF - prefs.js..extensions.enabledAddons: extension%40hidemyass.com:1.2.7
FF - prefs.js..extensions.enabledAddons: translator%40zoli.bod:2.1.0.3
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.21
FF - prefs.js..extensions.enabledAddons: %7Bc1970c0d-dbe6-4d91-804f-c9c0de643a57%7D:1.3.2.13
FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.8.12
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:26.0
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: E:\Program Files\Picasa3\npPicasa3.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Components: C:\Program Files (x86)\Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files (x86)\Firefox\plugins

[2013/12/10 17:11:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\Extensions
[2014/01/14 21:10:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\Firefox\Profiles\e4hvfske.default\extensions
[2013/12/10 17:33:37 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Administrator\AppData\Roaming\mozilla\Firefox\Profiles\e4hvfske.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2014/01/14 21:10:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\Firefox\Profiles\e4hvfske.default\extensions\trash
[2013/12/13 07:55:06 | 000,343,554 | ---- | M] () (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\firefox\profiles\e4hvfske.default\extensions\artur.dubovoy@gmail.com.xpi
[2013/12/10 17:33:37 | 000,053,803 | ---- | M] () (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\firefox\profiles\e4hvfske.default\extensions\extension@hidemyass.com.xpi
[2013/12/10 17:33:37 | 000,060,290 | ---- | M] () (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\firefox\profiles\e4hvfske.default\extensions\translator@zoli.bod.xpi
[2014/01/14 21:10:28 | 000,536,648 | ---- | M] () (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\firefox\profiles\e4hvfske.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2013/12/10 17:24:41 | 000,017,971 | ---- | M] () (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\firefox\profiles\e4hvfske.default\extensions\{c1970c0d-dbe6-4d91-804f-c9c0de643a57}.xpi
[2013/12/10 17:23:10 | 000,915,554 | ---- | M] () (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\firefox\profiles\e4hvfske.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/01/03 01:19:15 | 000,535,529 | ---- | M] () (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\firefox\profiles\e4hvfske.default\extensions\trash\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi

O1 HOSTS File: ([2014/01/03 01:03:42 | 000,000,741 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (PrivDog Extension) - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
O2 - BHO: (PrivDog Extension) - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
O4 - HKLM..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE (CANON INC.)
O4 - HKU\S-1-5-21-1546684791-1234734158-1691060437-1025..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware)
O4 - HKU\S-1-5-21-1546684791-1234734158-1691060437-500..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SafeModeBlockNonAdmins = 1
O7 - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1
O9:64bit: - Extra Button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
O9 - Extra Button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CB88E76F-2DAC-410B-AD6A-6E7287395CD0}: DhcpNameServer = 192.168.0.1
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\D\Shell - "" = AutoRun
O33 - MountPoints2\D\Shell\AutoRun\command - "" = "D:\Msetup4.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: lfsvc - C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
NetSvcs:64bit: MsKeyboardFilter - C:\Windows\SysNative\KeyboardFilterSvc.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2014/01/14 22:02:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpeedFan
[2014/01/13 14:10:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Malwarebytes
[2014/01/13 14:10:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2014/01/13 14:10:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/01/13 14:09:59 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys
[2014/01/13 14:09:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2014/01/13 13:58:34 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/01/13 13:13:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERUNT
[2014/01/13 11:42:32 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014/01/12 23:00:21 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfc71.dll
[2014/01/12 21:07:59 | 000,000,000 | --SD | C] -- C:\ProgramData\Shared Space
[2014/01/12 21:03:01 | 000,000,000 | ---D | C] -- C:\Program Files\AdTrustMedia
[2014/01/12 21:03:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AdTrustMedia
[2014/01/12 21:02:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Adtrustmedia
[2014/01/12 21:00:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
[2014/01/12 21:00:47 | 000,000,000 | ---D | C] -- C:\first_launch
[2014/01/11 09:00:17 | 000,000,000 | ---D | C] -- C:\forum

========== Files - Modified Within 7 Days ==========

[2014/01/17 13:00:06 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/01/17 12:27:23 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/01/17 04:06:01 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014/01/16 17:51:33 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/01/16 17:51:30 | 2519,027,712 | -HS- | M] () -- C:\hiberfil.sys
[2014/01/14 22:02:18 | 000,001,019 | ---- | M] () -- C:\Users\Administrator\Desktop\SpeedFan.lnk
[2014/01/14 22:02:14 | 000,000,045 | ---- | M] () -- C:\WINDOWS\SysWow64\initdebug.nfo
[2014/01/13 16:34:04 | 001,832,918 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/01/13 16:34:04 | 000,768,376 | ---- | M] () -- C:\WINDOWS\SysNative\perfh005.dat
[2014/01/13 16:34:04 | 000,761,286 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/01/13 16:34:04 | 000,166,494 | ---- | M] () -- C:\WINDOWS\SysNative\perfc005.dat
[2014/01/13 16:34:04 | 000,147,622 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/01/12 23:00:21 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfc71.dll
[2014/01/12 22:55:50 | 000,000,046 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2014/01/12 02:07:11 | 000,000,017 | ---- | M] () -- C:\Users\Administrator\AppData\Local\resmon.resmoncfg
[2014/01/11 18:27:19 | 000,001,126 | ---- | M] () -- C:\Users\Administrator\Desktop\Music – zástupce.lnk

========== Files Created - No Company Name ==========

[2014/01/17 13:00:06 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014/01/14 22:02:18 | 000,001,019 | ---- | C] () -- C:\Users\Administrator\Desktop\SpeedFan.lnk
[2014/01/14 22:02:13 | 000,000,045 | ---- | C] () -- C:\WINDOWS\SysWow64\initdebug.nfo
[2014/01/14 21:03:31 | 000,000,914 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014/01/12 22:55:50 | 000,000,046 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2014/01/12 02:07:11 | 000,000,017 | ---- | C] () -- C:\Users\Administrator\AppData\Local\resmon.resmoncfg
[2014/01/11 18:27:19 | 000,001,126 | ---- | C] () -- C:\Users\Administrator\Desktop\Music – zástupce.lnk
[2013/11/09 18:35:25 | 000,931,872 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2013/11/09 14:00:33 | 000,000,416 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/09/10 15:03:47 | 000,217,176 | ---- | C] () -- C:\WINDOWS\SysWow64\unrar.dll
[2013/08/22 16:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 16:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 15:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 08:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/22 04:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/22 04:17:46 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2013/08/22 00:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/22 00:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2012/03/23 18:13:08 | 000,982,240 | ---- | C] () -- C:\WINDOWS\SysWow64\igkrng500.bin
[2012/03/23 18:13:08 | 000,439,308 | ---- | C] () -- C:\WINDOWS\SysWow64\igcompkrng500.bin
[2012/03/23 18:13:08 | 000,092,356 | ---- | C] () -- C:\WINDOWS\SysWow64\igfcg500m.bin

========== ZeroAccess Check ==========


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/11/05 21:21:27 | 021,196,664 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/11/05 19:51:37 | 018,642,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 10:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 03:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 10:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/12/17 22:31:47 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\addpcs
[2013/12/03 20:48:59 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Canon
[2013/12/07 02:51:03 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Leadertech
[2013/12/08 00:53:56 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\OpenOffice
[2014/01/11 11:18:19 | 000,000,000 | ---D | M] -- C:\Users\K22.k2\AppData\Roaming\Audacity
[2013/12/27 00:35:00 | 000,000,000 | ---D | M] -- C:\Users\K22.k2\AppData\Roaming\Canon
[2014/01/08 12:33:10 | 000,000,000 | ---D | M] -- C:\Users\K22.k2\AppData\Roaming\OpenOffice

========== Purity Check ==========



========== Custom Scans ==========

< >
[2013/08/22 15:45:54 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2014/01/14 21:03:31 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: ATAPI.SYS >
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\drivers\atapi.sys
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_64aa4354da84c2df\atapi.sys
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_cdf68824f580d510\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2013/08/22 12:41:41 | 000,891,392 | ---- | M] (Microsoft Corporation) MD5=37D01B8BC15E263F4405367C9A442824 -- C:\WINDOWS\SysNative\autochk.exe
[2013/08/22 12:41:41 | 000,891,392 | ---- | M] (Microsoft Corporation) MD5=37D01B8BC15E263F4405367C9A442824 -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_d2b24d5495b82963\autochk.exe
[2013/08/22 05:13:03 | 000,793,600 | ---- | M] (Microsoft Corporation) MD5=E259644C02551BFAB10B160CF95C8F88 -- C:\Windows\SysWOW64\autochk.exe
[2013/08/22 05:13:03 | 000,793,600 | ---- | M] (Microsoft Corporation) MD5=E259644C02551BFAB10B160CF95C8F88 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_7693b1d0dd5ab82d\autochk.exe

< MD5 for: CDROM.SYS >
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\drivers\cdrom.sys
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_42e9c29f0affc440\cdrom.sys
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_5067bbed77be70be\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2013/10/22 07:03:47 | 002,065,448 | ---- | M] (Microsoft Corporation) MD5=1A0BC9598E4A58FC84570FFF5A108E58 -- C:\Windows\SysWOW64\explorer.exe
[2013/10/22 07:03:47 | 002,065,448 | ---- | M] (Microsoft Corporation) MD5=1A0BC9598E4A58FC84570FFF5A108E58 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_4ceff22781f6788c\explorer.exe
[2013/11/28 13:06:05 | 000,133,444 | ---- | M] () MD5=3DDF61E1B538A1205612192A61CC2376 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16408_none_42cd898b4d6ef82e\explorer.exe
[2013/10/22 08:55:27 | 002,328,872 | ---- | M] (Microsoft Corporation) MD5=63DC38C3E4564B2405D562855643ABA2 -- C:\Windows\explorer.exe
[2013/10/22 08:55:27 | 002,328,872 | ---- | M] (Microsoft Corporation) MD5=63DC38C3E4564B2405D562855643ABA2 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_429b47d54d95b691\explorer.exe
[2013/11/28 13:23:50 | 000,127,825 | ---- | M] () MD5=983D8A3EB94B05A199D3744C0F0C475F -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16408_none_4d2233dd81cfba29\explorer.exe

< MD5 for: HAL.DLL >
[2013/09/30 05:03:22 | 000,419,160 | ---- | M] (Microsoft Corporation) MD5=7DEA8CDADD23BBFFC8C47EFE6AF11328 -- C:\WINDOWS\SysNative\hal.dll
[2013/09/30 05:03:22 | 000,419,160 | ---- | M] (Microsoft Corporation) MD5=7DEA8CDADD23BBFFC8C47EFE6AF11328 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16408_none_9c41d51d2d5cc0c4\hal.dll

< MD5 for: SCECLI.DLL >
[2013/08/22 03:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\SysWOW64\scecli.dll
[2013/08/22 03:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_3320ecb8e1733781\scecli.dll
[2013/08/22 10:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\WINDOWS\SysNative\scecli.dll
[2013/08/22 10:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_28cc4266ad127586\scecli.dll

< MD5 for: SERVICES.EXE >
[2013/08/22 14:25:40 | 000,405,488 | ---- | M] (Microsoft Corporation) MD5=B4B610BBCB002EC478C6FD80CF915697 -- C:\WINDOWS\SysNative\services.exe
[2013/08/22 14:25:40 | 000,405,488 | ---- | M] (Microsoft Corporation) MD5=B4B610BBCB002EC478C6FD80CF915697 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..cecontroller-minwin_31bf3856ad364e35_6.3.9600.16384_none_2fd72579d09a45e9\services.exe

< MD5 for: SVCHOST.EXE >
[2013/08/22 06:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\SysWOW64\svchost.exe
[2013/08/22 06:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2013/08/22 13:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\WINDOWS\SysNative\svchost.exe
[2013/08/22 13:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_a679b9abd944c459\svchost.exe

< MD5 for: TCPIP.SYS >
[2013/10/08 11:13:33 | 002,551,640 | ---- | M] (Microsoft Corporation) MD5=6617F44D2432C529B2249A0498B6B40A -- C:\WINDOWS\SysNative\drivers\tcpip.sys
[2013/10/08 11:13:33 | 002,551,640 | ---- | M] (Microsoft Corporation) MD5=6617F44D2432C529B2249A0498B6B40A -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16423_none_a41c53813a2d8394\tcpip.sys
[2013/11/28 13:14:19 | 000,250,257 | ---- | M] () MD5=D051052CB1A286833805C2E0F7710F85 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16408_none_a436f4cb3a18ca65\tcpip.sys

< MD5 for: USERINIT.EXE >
[2013/08/22 11:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\WINDOWS\SysNative\userinit.exe
[2013/08/22 11:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_cce71a20a5a6fe7f\userinit.exe
[2013/08/22 03:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\SysWOW64\userinit.exe
[2013/08/22 03:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe

< MD5 for: WINLOGON.EXE >
[2013/08/22 10:55:08 | 000,564,736 | ---- | M] (Microsoft Corporation) MD5=7C94FDA3809015B8F2208D2E1C221F17 -- C:\WINDOWS\SysNative\winlogon.exe
[2013/08/22 10:55:08 | 000,564,736 | ---- | M] (Microsoft Corporation) MD5=7C94FDA3809015B8F2208D2E1C221F17 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.16384_none_60816121a8e88269\winlogon.exe
[2013/04/04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[10 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013/12/17 22:31:47 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\addpcs
[2013/12/26 22:19:54 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Adobe
[2013/12/03 20:48:59 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Canon
[2013/12/07 02:51:03 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Leadertech
[2013/12/02 11:05:43 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Macromedia
[2014/01/13 14:10:19 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Malwarebytes
[2013/12/26 00:00:34 | 000,000,000 | --SD | M] -- C:\Users\Administrator\AppData\Roaming\Microsoft
[2013/12/10 17:11:39 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Mozilla
[2013/12/08 00:53:56 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\OpenOffice
[2013/12/13 03:44:22 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\SUPERAntiSpyware.com

< %APPDATA%\*.exe /s >
[2013/12/13 20:53:08 | 000,071,894 | R--- | M] () -- C:\Users\Administrator\AppData\Roaming\Microsoft\Installer\{F38DC282-11BE-45D8-8754-D3D40F3D7FBE}\GPUploader.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2014/01/17 13:06:15 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2014/01/14 22:02:14 | 000,000,045 | ---- | M] () -- C:\WINDOWS\system32\initdebug.nfo

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"SUPERAntiSpyware" = C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe -- [2014/01/14 21:16:33 | 006,563,608 | ---- | M] (SUPERAntiSpyware)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2013/08/22 06:20:05 | 000,805,992 | ---- | M] (Microsoft Corporation) MD5=EE889775E0F9755C90FAEBFB93FBD781 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014/01/17 13:00:06 | 000,000,512 | ---- | M] () MD5=CCCA121A7A1BC729A0AF887BB0F0BDBF -- C:\PhysicalMBR.bin

< >

< *crack* /s >

< *keygen* /s >

< *loader* /s >
[2010/03/09 04:28:40 | 005,297,608 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\Photodownloader.exe
[2010/03/09 01:38:58 | 000,011,161 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2010/03/09 01:38:58 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\de_de\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\en_us\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\es_es\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\it_it\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\no_no\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,308 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2010/03/09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files (x86)\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2013/11/15 13:18:42 | 000,021,106 | ---- | M] () -- \Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\configLoader.js
[2013/11/13 15:55:18 | 000,002,586 | ---- | M] () -- \Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.15\WebResources1.8.0.15\js\scriptLoader.js
[2013/12/13 13:12:18 | 000,021,344 | ---- | M] () -- \Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\configLoader.js
[2013/12/06 17:32:30 | 000,002,586 | ---- | M] () -- \Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\WebResources1.8.0.18\js\scriptLoader.js
[2013/09/17 03:54:36 | 000,029,696 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\javaloader.uno.dll
[2013/09/17 03:57:36 | 000,005,813 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\pythonloader.py
[2013/09/17 03:54:38 | 000,020,992 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\pythonloader.uno.dll
[2013/09/20 13:12:54 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\pythonloader.uno.ini
[2013/09/20 12:39:02 | 000,003,868 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\classes\unoloader.jar
[2013/09/16 21:10:56 | 000,013,420 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\python-core-2.7.5\lib\unittest\loader.py
[2013/12/06 07:46:12 | 000,046,080 | ---- | M] () -- \Program Files\Avidemux 2.6 - 64bits\libADM_coreImageLoader6.dll
[2013/09/30 04:51:54 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2013/09/30 04:51:55 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2013/09/30 04:51:55 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2013/12/13 20:53:08 | 000,071,894 | R--- | M] () -- \Users\Administrator\AppData\Roaming\Microsoft\Installer\{F38DC282-11BE-45D8-8754-D3D40F3D7FBE}\GPUploader.exe
[2013/12/13 20:53:08 | 000,071,894 | R--- | M] () -- \Users\Administrator\Application Data\Microsoft\Installer\{F38DC282-11BE-45D8-8754-D3D40F3D7FBE}\GPUploader.exe
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 15:52:34 | 000,592,677 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.efi
[2013/08/22 15:52:33 | 000,536,051 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.exe
[2013/08/22 12:21:30 | 000,046,592 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_36b27bfc6399d5ce\dmloader.dll
[2013/08/22 14:25:37 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:37 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:36 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 12:45:31 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 12:45:33 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 12:45:35 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 12:45:30 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 12:45:40 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 12:45:44 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-1.dll
[2013/12/06 00:19:45 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089.manifest
[2013/12/06 13:31:38 | 000,009,588 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089_winload.efi.mui_35ee487d
[2013/12/06 13:31:38 | 000,009,604 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089_winload.exe.mui_3bc5b827
[2013/12/06 13:31:38 | 000,007,885 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089_winresume.efi.mui_f412814e
[2013/12/06 13:31:38 | 000,007,900 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089_winresume.exe.mui_ff8b5358
[2013/09/30 04:48:33 | 000,000,459 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7.manifest
[2013/11/28 13:44:17 | 000,009,321 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7_winload.efi.mui_35ee487d
[2013/11/28 13:44:17 | 000,009,332 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7_winload.exe.mui_3bc5b827
[2013/11/28 13:44:17 | 000,007,774 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7_winresume.efi.mui_f412814e
[2013/11/28 13:44:17 | 000,007,774 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7_winresume.exe.mui_ff8b5358
[2013/12/12 22:05:13 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62.manifest
[2013/12/13 19:19:32 | 000,716,508 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62_winload.efi_75834aa0
[2013/12/13 19:19:36 | 000,653,334 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62_winload.exe_75835076
[2013/12/13 19:19:40 | 000,640,528 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62_winresume.efi_85cd069f
[2013/12/13 19:19:43 | 000,581,014 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62_winresume.exe_85cd1215
[2013/08/22 16:34:52 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2013/12/06 00:12:00 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089.manifest
[2013/09/30 04:47:17 | 000,000,459 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_67571a10b7fadce7.manifest
[2013/08/22 16:22:38 | 000,000,542 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_4be51a3d409de6bc.manifest
[2013/09/30 05:02:33 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16411_none_4c2dcab94067d447.manifest
[2013/09/30 05:07:09 | 000,000,546 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3.manifest
[2013/12/12 17:55:43 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62.manifest
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_da93e078ab3c6498\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-1.dll

< End of report >

[1jan]

OTL Extras logfile created on: 1/17/2014 12:56:15 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\K22.k2\Downloads
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000405 | Country: Czech Republic | Language: CSY | Date Format: d. M. yyyy

2.93 Gb Total Physical Memory | 1.99 Gb Available Physical Memory | 68.00% Memory free
3.43 Gb Paging File | 1.71 Gb Available in Paging File | 49.88% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 139.70 Gb Total Space | 117.37 Gb Free Space | 84.01% Space Free | Partition Type: NTFS

Computer Name: K2 | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1546684791-1234734158-1691060437-1025\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Firefox\firefox.exe (Mozilla Corporation)

[HKEY_USERS\S-1-5-21-1546684791-1234734158-1691060437-500\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DefaultOutboundAction" = 1
"DefaultInboundAction" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
"DoNotAllowExceptions" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DisableUnicastResponsesToMulticastBroadcast" = 0
"DefaultOutboundAction" = 0
"DefaultInboundAction" = 1
"DoNotAllowExceptions" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series" = Canon MG5300 series MP Drivers
"{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
"{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
"{901D1D88-408D-48E5-80DD-CC3145BD8456}" = COMODO Firewall
"{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
"{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
"{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
"{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}" = WinZip 18.0
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{D2984F6F-6B64-4656-8467-41C820418C19}" = Update for Microsoft en-us Dictionary
"{E3047FA0-2D6B-4BD6-8CD4-599955F1CE9D}" = Microsoft Mouse and Keyboard Center
"CCleaner" = CCleaner
"Microsoft Mouse and Keyboard Center" = Microsoft Mouse and Keyboard Center
"Temp File Cleaner" = Temp File Cleaner

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
"{436F639D-D59B-455E-92FC-8346FEF8E571}_is1" = Firefox Backup Tool version 1.0
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{47F460DA-D1BE-4D85-8DF2-AA1F31D3445F}" = OpenOffice 4.0.1
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A453FA8D-6BC7-44ED-A391-37E67DEF89E1}" = VirtualDJ LE (DDJ-WeGO)
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 12 Plugin
"Audacity_is1" = Audacity 2.0
"Canon MG5300 series User Registration" = Canon MG5300 series User Registration
"Canon_IJ_Network_Scanner_Selector_EX" = Canon IJ Network Scanner Selector EX
"Canon_IJ_Network_UTILITY" = Canon IJ Network Tool
"CanonMyPrinter" = Canon My Printer
"CanonSolutionMenuEX" = Canon Solution Menu EX
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"Easy-PhotoPrint EX" = Canon Easy-PhotoPrint EX
"KLiteCodecPack_is1" = K-Lite Codec Pack 10.0.0 Basic
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware verze 1.75.0.1300
"Mozilla Firefox 26.0 (x86 cs)" = Mozilla Firefox 26.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MP Navigator EX 5.0" = Canon MP Navigator EX 5.0
"PrivDog" = PrivDog
"Security Task Manager" = Security Task Manager 1.8g
"SpeedFan" = SpeedFan (remove only)

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 1/13/2014 7:43:16 AM | Computer Name = k2 | Source = PerfNet | ID = 2004
Description =

Error - 1/13/2014 7:43:16 AM | Computer Name = k2 | Source = PerfNet | ID = 2002
Description =

Error - 1/13/2014 7:43:18 AM | Computer Name = k2 | Source = PerfNet | ID = 2004
Description =

Error - 1/13/2014 7:43:18 AM | Computer Name = k2 | Source = PerfNet | ID = 2002
Description =

Error - 1/13/2014 7:49:16 AM | Computer Name = k2 | Source = PerfNet | ID = 2004
Description =

Error - 1/13/2014 7:49:16 AM | Computer Name = k2 | Source = PerfNet | ID = 2002
Description =

Error - 1/13/2014 4:15:45 PM | Computer Name = k2 | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala pri volání OnIdentity() v objektu System
Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft
Link-Layer Discovery Protocol. System Error: Access is denied. .

Error - 1/16/2014 12:00:03 PM | Computer Name = k2 | Source = .NET Runtime | ID = 1026
Description =

Error - 1/16/2014 12:00:05 PM | Computer Name = k2 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Explorer.EXE, verze: 6.3.9600.16441, casové
razítko: 0x5265dec8 Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.16408,
casové razítko: 0x523d5305 Kód výjimky: 0xc0000005 Posun chyby: 0x000000000004b559
ID
chybujícího procesu: 0xebc Cas spuštení chybující aplikace: 0x01cf12cbefd77921 Cesta
k chybující aplikaci: C:\WINDOWS\Explorer.EXE Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID
zprávy: 4380adb0-7ec7-11e3-bedb-c80aa90d4f67 Úplný název chybujícího balícku: ID
aplikace související s chybujícím balíckem:

Error - 1/17/2014 7:42:06 AM | Computer Name = k2 | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala pri volání OnIdentity() v objektu System
Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft
Link-Layer Discovery Protocol. System Error: Access is denied. .

[ System Events ]
Error - 1/16/2014 10:56:11 AM | Computer Name = k2 | Source = Service Control Manager | ID = 7009
Description = Pri cekání na pripojení služby Windows Store Service (WSService) bylo
dosaženo casového limitu (30000 ms).

Error - 1/16/2014 10:56:11 AM | Computer Name = k2 | Source = Service Control Manager | ID = 7000
Description = Služba Windows Store Service (WSService) neuspela pri spuštení v dusledku
následující chyby: %%1053

Error - 1/16/2014 10:56:42 AM | Computer Name = k2 | Source = Service Control Manager | ID = 7009
Description = Pri cekání na pripojení služby Windows Store Service (WSService) bylo
dosaženo casového limitu (30000 ms).

Error - 1/16/2014 10:56:42 AM | Computer Name = k2 | Source = Service Control Manager | ID = 7000
Description = Služba Windows Store Service (WSService) neuspela pri spuštení v dusledku
následující chyby: %%1053

Error - 1/16/2014 12:52:58 PM | Computer Name = k2 | Source = Service Control Manager | ID = 7009
Description = Pri cekání na pripojení služby Windows Defender Service bylo dosaženo
casového limitu (30000 ms).

Error - 1/16/2014 12:52:58 PM | Computer Name = k2 | Source = Service Control Manager | ID = 7000
Description = Služba Windows Defender Service neuspela pri spuštení v dusledku následující
chyby: %%1053

Error - 1/16/2014 12:52:58 PM | Computer Name = k2 | Source = Service Control Manager | ID = 7001
Description = Služba IP Helper závisí na službe WinHTTP Web Proxy Auto-Discovery
Service, která neuspela pri spuštení v dusledku následující chyby: %%1058

Error - 1/16/2014 12:52:58 PM | Computer Name = k2 | Source = Service Control Manager | ID = 7001
Description = Služba Network Connectivity Assistant závisí na službe IP Helper,
která neuspela pri spuštení v dusledku následující chyby: %%1068

Error - 1/17/2014 7:30:53 AM | Computer Name = k2 | Source = Service Control Manager | ID = 7009
Description = Pri cekání na pripojení služby AppX Deployment Service (AppXSVC) bylo
dosaženo casového limitu (30000 ms).

Error - 1/17/2014 7:30:53 AM | Computer Name = k2 | Source = Service Control Manager | ID = 7000
Description = Služba AppX Deployment Service (AppXSVC) neuspela pri spuštení v dusledku
následující chyby: %%1053


< End of report >

[vyosek]

Spustte znovu OTL

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  :otl
  IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk
  IE - HKLM\..\SearchScopes,DefaultScope =
  IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-1025\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.msn.com/
  IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-1025\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache Accep
  IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
  IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\..\SearchScopes,DefaultScope =
  IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
  IE - HKU\S-1-5-21-1546684791-1234734158-1691060437-500\..\SearchScopes\{C5BDE541-4F44-4F37-A785-1D78ED30920D}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
  O1364bit: - gopher Prefix: missing
  O13 - gopher Prefix: missing
  O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  [1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
  [2014/01/17 13:06:15 | 000,000,914 | ---- | M] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
  
  :reg
  [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
  "SUPERAntiSpyware"=-
  
  :files
  %windir%\system32\*.tmp.dll /s
  %windir%\system32\SET*.tmp /s
  %windir%\*.tmp
  
  :commands
  [RESETHOSTS]
  [EMPTYTEMP]
  [EMPTYFLASH]
  [EMPTYJAVA]

• Nasledne kliknete na Opravit
• PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

[1jan]

OTL pri poprave prestal odpovidat, mam vynutit ukonceni a spustit opravu znova ?

[1jan]

dalsi vec, presto, ze nepouzivam Internet Explorer, vsiml jsem si na pozadi beziciho procesu Internet Low-Mic Utility Tool a abych nezapomel, od doby co jsem vymenil Windows Firewall za Comodo Firewall, musim spoustet Windows Defender po startu rucne. V servisech je nastaven na Automaticke spousteni..
Jen co zvladnu tu OTL opravu, hodim to sem

[1jan]

zkusim to v nouzovem rezimu

[1jan]

Tak bohuzel oprava se nekonala, hned po zahajeni - Not Responding, moje OTL je verze 3.2.69.0, 588kB, stazeno 17.1.

[vyosek]

Dejte log dle tohoto http://forum.viry.cz/viewtopic.php?f=13&t=133100

[1jan]

First Launcher na VirusScan - 30/49 to jsem jeste nevidel, je to v poradku ?
Dropper.Agent.MDJ 20140120
Ad-Aware Trojan.Generic.10068231 20140120
AntiVir DR/Delphi.Gen 20140120
Avast Win32:Malware-gen 20140120
BitDefender Trojan.Generic.10068231 20140120
Bkav W32.Clodc63.Trojan.525c 20140120
ClamAV Trojan.Agent-171150 20140120
Commtouch W32/Trojan.JXPE-9280 20140120
Comodo Backdoor.Win32.PcClient.~dy002 20140120
Emsisoft Trojan.Generic.10068231 (B) 20140120
F-Prot W32/Trojan2.HJCD 20140120
F-Secure Trojan.Generic.10068231 20140120
Fortinet BackDoor.WD!tr 20140120
GData Trojan.Generic.10068231 20140120
Ikarus Backdoor.Win32.PcClient 20140120
Jiangmin Adware/Agent.bap 20140120
K7AntiVirus Riskware ( 0040eff71 ) 20140117
K7GW Riskware ( 0040eff71 ) 20140119
Kingsoft Win32.Troj.Generic.v.(kcloud) 20130829
McAfee RDN/Generic BackDoor!wd 20140120
McAfee-GW-Edition RDN/Generic BackDoor!wd 20140120
MicroWorld-eScan Trojan.Generic.10068231 20140120
NANO-Antivirus Trojan.Win32.Agent.bjsap 20140120
Norman Suspicious_Gen4.AIGMI 20140120
Panda Generic Trojan 20140120
Symantec Trojan.Gen 20140120
TrendMicro TROJ_GEN.F0C2C00LO13 20140120
TrendMicro-HouseCall TROJ_GEN.F0C2C00LO13 20140120
VIPRE Trojan.Win32.Generic!BT 20140120
nProtect Trojan.Generic.10068231 20140120

[1jan]

First64 VirusScan - AVG MSIL2.ITN

Mohu tyto aplikace vubec spustit?

[vyosek]

Ano je, je to utilita vyvijena nasim forem...pracujeme na vyrazeni z databaze AV spolecnosti, jelikoz se jedna o falesny poplach

[1jan]

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-01-2014
Ran by K22 (ATTENTION: The logged in user is not administrator) on K2 on 21-01-2014 22:53:59
Running from C:\Users\K22.k2\Desktop
Windows 8.1 Pro (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
(forum.viry.cz) C:\Users\K22.k2\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\PING.EXE


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2779024 2011-03-14] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] - C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1612920 2011-08-04] (CANON INC.)
MountPoints2: {fc398fce-1783-11e3-be66-806e6f6e6963} - "F:\Msetup4.exe"

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKLM - DefaultScope value is missing.
BHO: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
BHO-x32: PrivDog Extension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll (AdTrustMedia)
Hosts: 127.0.0.1 localhost
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\K22.k2\AppData\Roaming\Mozilla\Firefox\Profiles\clvv5znp.default
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - E:\Program Files\Picasa3\npPicasa3.dll No File
FF Extension: Flash Video Downloader - C:\Users\K22.k2\AppData\Roaming\Mozilla\Firefox\Profiles\clvv5znp.default\Extensions\artur.dubovoy@gmail.com.xpi [2014-01-09]
FF Extension: anonymoX - C:\Users\K22.k2\AppData\Roaming\Mozilla\Firefox\Profiles\clvv5znp.default\Extensions\client@anonymox.net.xpi [2014-01-17]
FF Extension: NoScript - C:\Users\K22.k2\AppData\Roaming\Mozilla\Firefox\Profiles\clvv5znp.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-01-04]
FF Extension: Adblock Plus - C:\Users\K22.k2\AppData\Roaming\Mozilla\Firefox\Profiles\clvv5znp.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-04]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

==================== Services (Whitelisted) =================

U2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
U2 cmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6254152 2013-10-20] (COMODO)
U3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [164056 2013-09-24] (COMODO)
U3 lmhosts; C:\Windows\system32\svchost.exe [37768 2013-08-22] (Microsoft Corporation)
U3 NlaSvc; C:\Windows\System32\svchost.exe [37768 2013-08-22] (Microsoft Corporation)
U2 nsi; C:\Windows\system32\svchost.exe [37768 2013-08-22] (Microsoft Corporation)
U4 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [2899968 2013-08-22] ()
U3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
U2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
U4 HOSTS Anti-PUPs; C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe -update [x]

==================== Drivers (Whitelisted) ====================

U0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
U3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
U1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2013-09-24] (COMODO)
U1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [715824 2013-11-14] (COMODO)
U1 cmdhlp; C:\Windows\system32\DRIVERS\cmdhlp.sys [38072 2013-09-24] (COMODO)
U3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
U3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
U0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
U1 inspect; C:\Windows\system32\DRIVERS\inspect.sys [118400 2013-09-24] (COMODO)
U0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
U3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-09-30] (Microsoft Corporation)
U0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
U3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
U3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
U3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
U1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
U1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
U3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
U0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)
U3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
U2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-21 22:53 - 2014-01-21 22:54 - 00007317 _____ C:\Users\K22.k2\Desktop\FRST.txt
2014-01-21 22:53 - 2014-01-21 22:53 - 00029696 _____ C:\Users\K22.k2\AppData\Local\MSGBOX.EXE
2014-01-21 22:53 - 2014-01-21 22:53 - 00015327 _____ C:\Users\K22.k2\Desktop\LM.bat
2014-01-21 22:49 - 2014-01-21 22:49 - 00015327 _____ C:\Users\Administrator\Desktop\LM.bat
2014-01-21 22:48 - 2014-01-21 22:49 - 00029696 _____ C:\Users\Administrator\AppData\Local\MSGBOX.EXE
2014-01-21 22:41 - 2014-01-21 22:53 - 00040230 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-21 22:40 - 2014-01-21 22:40 - 04922312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-21 22:31 - 2014-01-21 22:31 - 00000000 ____D C:\FRST
2014-01-21 17:42 - 2014-01-21 17:42 - 00112640 _____ (forum.viry.cz) C:\Users\K22.k2\Desktop\FRSTLauncher.exe
2014-01-21 17:41 - 2014-01-21 17:42 - 02077184 _____ (Farbar) C:\Users\K22.k2\Desktop\FRST64.exe
2014-01-21 13:44 - 2014-01-21 13:44 - 00002186 _____ C:\Users\K22.k2\Documents\a.txt
2014-01-21 13:14 - 2014-01-21 13:14 - 00000000 ____D C:\_OTL
2014-01-21 00:19 - 2014-01-21 00:19 - 00000000 ____D C:\Users\K22.k2\Documents\2014_01_21
2014-01-20 23:19 - 2014-01-20 23:19 - 00000000 ____D C:\WINDOWS\LastGood
2014-01-20 21:05 - 2014-01-20 21:05 - 00000000 ____D C:\ProgramData\CanonIJ
2014-01-20 21:01 - 2014-01-20 21:01 - 00000000 ___HD C:\ProgramData\CanonIJMyPrinter
2014-01-20 20:59 - 2014-01-21 00:53 - 00000000 ____D C:\ProgramData\CanonIJPLM
2014-01-20 20:59 - 2014-01-20 20:59 - 00002091 _____ C:\Users\Public\Desktop\Canon Solution Menu EX.lnk
2014-01-20 20:41 - 2014-01-20 20:41 - 00000000 ____D C:\ProgramData\Canon IJ Network Tool
2014-01-20 20:41 - 2011-03-31 10:07 - 00114688 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNC_ATU.dll
2014-01-20 20:41 - 2011-03-30 12:54 - 00323584 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNC_ATL.dll
2014-01-20 20:41 - 2010-11-12 11:13 - 00068096 _____ C:\WINDOWS\SysWOW64\CNC1754D.TBL
2014-01-20 20:41 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll
2014-01-20 20:30 - 2014-01-20 20:30 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2014-01-20 20:30 - 2014-01-20 20:30 - 00000000 ___HD C:\ProgramData\CanonBJ
2014-01-20 20:29 - 2014-01-20 20:29 - 00000000 ___HD C:\Program Files\CanonBJ
2014-01-20 20:29 - 2011-02-03 01:20 - 00256000 _____ (CANON INC.) C:\WINDOWS\system32\CNMIUAT.DLL
2014-01-19 23:36 - 2014-01-20 19:34 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2014-01-18 23:21 - 2014-01-18 23:21 - 01191834 _____ C:\Users\K22.k2\Documents\ProcessExplorer.zip
2014-01-18 23:02 - 2014-01-18 23:02 - 00165376 _____ C:\Users\K22.k2\Documents\SystemLook_x64.exe
2014-01-18 22:33 - 2014-01-18 22:33 - 00001508 _____ C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Information.lnk
2014-01-18 22:32 - 2014-01-18 22:32 - 00001085 _____ C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\taskschd.lnk
2014-01-18 22:32 - 2014-01-18 22:32 - 00001085 _____ C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\cleanmgr.lnk
2014-01-18 22:31 - 2014-01-18 22:31 - 00001085 _____ C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\services.lnk
2014-01-18 21:48 - 2014-01-18 21:48 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\addpcs
2014-01-18 20:24 - 2014-01-18 23:26 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\vlc
2014-01-18 20:24 - 2014-01-18 21:11 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\dvdcss
2014-01-18 20:22 - 2014-01-18 20:22 - 00000000 ____D C:\Program Files (x86)\vlc-2.1.2-win32
2014-01-18 20:20 - 2014-01-18 20:20 - 00000000 ____D C:\Users\K22.k2\AppData\Local\WinZip
2014-01-18 20:15 - 2014-01-18 20:15 - 21160797 _____ C:\Users\K22.k2\Documents\vlc-2.1.2-win32.7z
2014-01-18 19:54 - 2014-01-18 19:54 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\AVS4YOU
2014-01-18 19:53 - 2014-01-18 19:54 - 00000000 ____D C:\ProgramData\AVS4YOU
2014-01-18 19:51 - 2011-06-22 11:32 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc70.dll
2014-01-18 19:51 - 2011-06-22 11:32 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp70.dll
2014-01-18 19:51 - 2011-06-22 11:32 - 00344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr70.dll
2014-01-18 19:51 - 2011-06-22 11:32 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3a.dll
2014-01-17 22:06 - 2014-01-17 22:06 - 00001362 _____ C:\Users\K22.k2\Desktop\CCleaner64 - Shortcut.lnk
2014-01-17 13:00 - 2014-01-17 13:00 - 00000512 _____ C:\PhysicalMBR.bin
2014-01-17 12:42 - 2014-01-17 12:42 - 00602112 _____ (OldTimer Tools) C:\Users\K22.k2\Documents\OTL.exe
2014-01-16 16:13 - 2014-01-16 16:13 - 00000670 _____ C:\Users\K22.k2\Desktop\Music -.lnk
2014-01-14 22:02 - 2014-01-18 21:45 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2014-01-14 22:02 - 2014-01-14 22:02 - 00001019 _____ C:\Users\K22.k2\Desktop\SpeedFan.lnk
2014-01-14 22:02 - 2014-01-14 22:02 - 00001019 _____ C:\Users\Administrator\Desktop\SpeedFan.lnk
2014-01-14 22:02 - 2014-01-14 22:02 - 00000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2014-01-14 21:54 - 2014-01-14 21:54 - 02143832 _____ C:\Users\K22.k2\Documents\instsf449.exe
2014-01-14 21:03 - 2014-01-21 22:06 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-13 15:52 - 2014-01-13 15:52 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Malwarebytes
2014-01-13 14:10 - 2014-01-13 14:10 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Malwarebytes
2014-01-13 14:10 - 2014-01-13 14:10 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-13 14:09 - 2014-01-13 14:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-13 14:09 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-01-13 14:05 - 2014-01-13 14:05 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\K22.k2\Documents\mbam-setup-1.75.0.1300.exe
2014-01-13 13:58 - 2014-01-13 21:42 - 00000000 ____D C:\AdwCleaner
2014-01-13 13:13 - 2014-01-13 13:13 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-13 13:08 - 2014-01-13 13:08 - 01236282 _____ C:\Users\K22.k2\Documents\adwcleaner.exe
2014-01-13 13:08 - 2014-01-13 13:08 - 01037068 _____ (Thisisu) C:\Users\K22.k2\Documents\JRT.exe
2014-01-13 11:42 - 2014-01-13 11:42 - 00000000 ____D C:\Program Files\trend micro
2014-01-13 11:40 - 2014-01-13 11:40 - 00935175 _____ C:\Users\K22.k2\Documents\RSITx64.exe
2014-01-12 23:00 - 2014-01-12 23:00 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2014-01-12 23:00 - 2014-01-12 23:00 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2014-01-12 22:55 - 2014-01-12 22:55 - 00000046 _____ C:\WINDOWS\wininit.ini
2014-01-12 22:41 - 2014-01-12 22:41 - 00388608 _____ (Trend Micro Inc.) C:\Users\K22.k2\Documents\HijackThis.exe
2014-01-12 22:40 - 2014-01-12 22:40 - 00000544 _____ C:\Users\K22.k2\Documents\DelDomains.rar
2014-01-12 21:07 - 2014-01-12 21:09 - 00000000 ___SD C:\ProgramData\Shared Space
2014-01-12 21:03 - 2014-01-12 21:03 - 00000000 ____D C:\Program Files\AdTrustMedia
2014-01-12 21:03 - 2014-01-12 21:03 - 00000000 ____D C:\Program Files (x86)\AdTrustMedia
2014-01-12 21:02 - 2014-01-12 21:02 - 00000000 ____D C:\ProgramData\Adtrustmedia
2014-01-12 21:00 - 2014-01-12 21:00 - 00000000 ____D C:\first_launch
2014-01-12 20:49 - 2014-01-12 20:54 - 211388240 _____ (COMODO) C:\Users\K22.k2\Documents\cfw_installer.exe
2014-01-12 18:01 - 2014-01-12 22:41 - 00000000 ____D C:\Users\K22.k2\AppData\Local\VirtualStore
2014-01-12 02:07 - 2014-01-12 02:07 - 00000017 _____ C:\Users\Administrator\AppData\Local\resmon.resmoncfg
2014-01-11 18:27 - 2014-01-11 18:27 - 00001126 _____ C:\Users\Administrator\Desktop\Music – zástupce.lnk
2014-01-11 09:00 - 2014-01-18 23:20 - 00000000 ____D C:\forum
2014-01-10 23:45 - 2014-01-10 23:45 - 00001670 _____ C:\Users\Administrator\Desktop\RKreport[0]_S_01102014_234540.txt
2014-01-10 19:07 - 2014-01-19 12:32 - 00000000 ____D C:\Users\K22.k2\AppData\Local\CrashDumps
2014-01-10 00:59 - 2014-01-10 00:59 - 00000022 _____ C:\Users\K22.k2\Desktop\shutdown timer.txt
2014-01-09 23:34 - 2014-01-09 23:34 - 00000041 _____ C:\Users\K22.k2\Desktop\sledovanitv.cz.txt
2014-01-09 03:49 - 2014-01-11 11:18 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Audacity
2014-01-08 15:57 - 2014-01-08 15:57 - 00000000 ___HD C:\VTRoot
2014-01-08 15:40 - 2014-01-12 21:01 - 00000000 ____D C:\Program Files\COMODO
2014-01-08 15:40 - 2014-01-11 01:26 - 00000000 ____D C:\ProgramData\COMODO
2014-01-08 15:37 - 2014-01-12 20:59 - 00000000 ____D C:\Program Files (x86)\Comodo
2014-01-08 15:35 - 2014-01-08 15:35 - 00000000 ____D C:\ProgramData\Comodo Downloader
2014-01-08 12:33 - 2014-01-08 12:33 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\OpenOffice
2014-01-04 04:21 - 2014-01-04 04:21 - 00000000 ____D C:\Users\K22.k2\AppData\Local\Adobe
2014-01-04 03:59 - 2014-01-04 04:00 - 00000000 ____D C:\Program Files (x86)\Firefox
2014-01-04 03:31 - 2014-01-04 03:31 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\SUPERAntiSpyware.com
2014-01-03 01:03 - 2014-01-03 01:03 - 00001635 _____ C:\Users\Administrator\Desktop\RKreport[0]_D_01032014_010347.txt
2014-01-03 01:03 - 2014-01-03 01:03 - 00001567 _____ C:\Users\Administrator\Desktop\RKreport[0]_S_01032014_010313.txt
2014-01-03 01:03 - 2014-01-03 01:03 - 00000965 _____ C:\Users\Administrator\Desktop\RKreport[0]_H_01032014_010342.txt
2014-01-03 01:03 - 2014-01-03 01:03 - 00000847 _____ C:\Users\Administrator\Desktop\RKreport[0]_PR_01032014_010340.txt
2014-01-03 01:03 - 2014-01-03 01:03 - 00000835 _____ C:\Users\Administrator\Desktop\RKreport[0]_DN_01032014_010344.txt
2014-01-01 11:25 - 2014-01-01 11:25 - 00001532 _____ C:\Users\Administrator\Desktop\RKreport[0]_D_01012014_112507.txt
2014-01-01 11:25 - 2014-01-01 11:25 - 00000732 _____ C:\Users\Administrator\Desktop\RKreport[0]_DN_01012014_112501.txt
2014-01-01 11:24 - 2014-01-01 11:24 - 00000777 _____ C:\Users\Administrator\Desktop\RKreport[0]_PR_01012014_112458.txt
2014-01-01 11:19 - 2014-01-01 11:19 - 00001500 _____ C:\Users\Administrator\Desktop\RKreport[0]_S_01012014_111908.txt
2014-01-01 07:56 - 2014-01-11 11:18 - 00000000 ____D C:\Users\Administrator\Desktop\RK_Quarantine
2013-12-29 08:56 - 2013-12-29 08:56 - 00000517 _____ C:\Users\Administrator\Desktop\Brána Windows Firewall – zástupce.lnk
2013-12-28 19:01 - 2013-12-28 19:01 - 00000000 ____D C:\Users\K22.k2\AppData\Local\Macromedia
2013-12-28 18:58 - 2013-12-28 19:04 - 00000000 ____D C:\Users\K22.k2\AppData\Local\Mozilla
2013-12-28 18:58 - 2013-12-28 18:58 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Mozilla
2013-12-27 00:53 - 2013-12-27 00:53 - 00000146 _____ C:\Users\K22.k2\Desktop\Sound -.lnk
2013-12-27 00:47 - 2013-12-27 00:47 - 00000473 _____ C:\Users\K22.k2\Desktop\(D) - Shortcut.lnk
2013-12-27 00:35 - 2014-01-20 21:03 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Canon
2013-12-27 00:34 - 2013-12-27 00:34 - 00000000 ___RD C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-27 00:34 - 2013-12-27 00:34 - 00000000 ___RD C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-27 00:33 - 2014-01-13 09:11 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Adobe
2013-12-27 00:33 - 2014-01-12 17:33 - 00000000 ____D C:\Users\K22.k2
2013-12-27 00:33 - 2013-12-27 00:37 - 00000000 ____D C:\Users\K22.k2\AppData\Local\Packages
2013-12-27 00:33 - 2013-12-27 00:33 - 00001406 _____ C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-27 00:33 - 2013-12-27 00:33 - 00000020 ___SH C:\Users\K22.k2\ntuser.ini
2013-12-27 00:33 - 2013-12-14 01:05 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Macromedia
2013-12-27 00:33 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-27 00:33 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-27 00:33 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-27 00:33 - 2013-08-22 16:36 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-27 00:22 - 2013-12-27 00:22 - 00000501 _____ C:\Users\Administrator\Desktop\Windows Update – zástupce.lnk
2013-12-26 23:08 - 2014-01-03 01:03 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys.bak
2013-12-26 23:08 - 2014-01-03 01:03 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys.bak
2013-12-26 23:08 - 2014-01-03 01:03 - 00054304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys.bak
2013-12-26 23:08 - 2014-01-03 01:03 - 00026976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WpdUpFltr.sys.bak
2013-12-26 23:08 - 2014-01-03 01:03 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys.bak
2013-12-26 23:08 - 2014-01-03 01:03 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00839488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00265056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00124256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00061248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00060224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\watchdog.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\werkernel.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00034760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00033632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys.bak
2013-12-26 23:07 - 2014-01-03 01:03 - 00018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wmilib.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 11518976 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwsw00.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 02011488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 01119576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00924512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00575840 _____ (LSI Corporation, Inc.) C:\WINDOWS\system32\Drivers\megasr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00478048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00377696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgrx.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00374112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00366432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00305504 _____ (VIA Corporation) C:\WINDOWS\system32\Drivers\VSTXRAID.SYS.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scsiport.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00168800 _____ (VIA Technologies Inc.,Ltd) C:\WINDOWS\system32\Drivers\vsmraid.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00168288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvstor.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00150368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvraid.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00146272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbusr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00124768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NV_AGP.SYS.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00121184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00107872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00101728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00097088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00090944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00088928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc63.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspppoe.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00081760 _____ (Silicon Integrated Systems) C:\WINDOWS\system32\Drivers\sisraid4.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rspndr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00072032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SpbCx.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00069472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00069472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsp.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stream.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mslldp.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00065888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ULIAGPKX.SYS.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpcivsp.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00064864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UAGP35.SYS.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00063840 _____ (Marvell Semiconductor, Inc.) C:\WINDOWS\system32\Drivers\mvumis.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndisuio.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00056672 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\megasas.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbFlt.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00050864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\point64.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00050016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcw.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00049984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\videoprt.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\qwavedrv.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00045888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00044896 _____ (Silicon Integrated Systems Corp.) C:\WINDOWS\system32\Drivers\sisraid2.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbscan.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBCAMD2.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RNDISMP.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00031072 _____ (Promise Technology, Inc.) C:\WINDOWS\system32\Drivers\stexstor.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbrpm.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdi.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tape.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00029312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nuidfltr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00027488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\WINDOWS\system32\Drivers\secdrv.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mcd.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00021856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00021760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VMBusHID.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smclib.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00019808 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\Drivers\viaide.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisVirtualBus.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgencounter.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00010624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mshidumdf.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mshidkmdf.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00007936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mstee.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vms3cap.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00007040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspclock.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00006784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspqm.sys.bak
2013-12-26 23:07 - 2014-01-03 01:02 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\null.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 10627744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00994144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00651248 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAV.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00579416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00412000 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorV.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00192864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00129224 _____ (Qualcomm Atheros Co., Ltd.) C:\WINDOWS\system32\Drivers\L1C63x64.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irda.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00109408 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00099320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_I2C.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00093536 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas2.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipfltdrv.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00082784 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sss.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00081760 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas3.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00065888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\GAGP30KX.SYS.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00064352 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\Drivers\HpSAMD.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lltdio.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00030048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fs_rec.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00024568 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_GPIO.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00022272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbldfltr.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HyperVideo.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00021248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irenum.sys.bak
2013-12-26 23:07 - 2014-01-03 01:01 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hyperkbd.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 03357024 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\evbda.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00782176 _____ (PMC-Sierra) C:\WINDOWS\system32\Drivers\adp80xx.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00564520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00531296 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\bxvbda.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00377696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00337760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00259424 _____ (AMD Technologies Inc.) C:\WINDOWS\system32\Drivers\amdsbs.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00217952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00114016 _____ (PMC-Sierra, Inc.) C:\WINDOWS\system32\Drivers\arcsas.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00108896 _____ (LSI) C:\WINDOWS\system32\Drivers\3ware.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00082784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorClass.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00079712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpiex.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00079200 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdsata.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00076464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dc3d.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00071896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00068960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00057696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\condrv.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00036192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filetrace.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00033632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpata.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\asyncmac.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00025952 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdxata.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00017624 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\bcmfn2.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dmpusbstor.sys.bak
2013-12-26 23:06 - 2014-01-03 01:01 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\beep.sys.bak
2013-12-26 22:46 - 2013-12-26 22:46 - 00000812 _____ C:\Users\Administrator\Desktop\Temp File Cleaner.lnk
2013-12-26 22:46 - 2013-12-26 22:46 - 00000000 ____D C:\Program Files\Temp File Cleaner
2013-12-26 22:19 - 2013-12-26 22:19 - 00001055 _____ C:\Users\Public\Desktop\Firefox Backup Tool.lnk
2013-12-26 22:18 - 2013-12-26 22:19 - 00000000 ____D C:\Program Files (x86)\Firefox Backup Tool
2013-12-26 22:17 - 2013-12-26 22:17 - 00000473 _____ C:\Users\Administrator\Desktop\Nový svazek (D) – zástupce.lnk
2013-12-26 02:48 - 2013-12-26 02:48 - 00000146 _____ C:\Users\Administrator\Desktop\Zvuk – zástupce.lnk
2013-12-22 07:16 - 2013-12-22 07:16 - 00000000 ____D C:\WINDOWS\system32\appmgmt

==================== One Month Modified Files and Folders =======

2014-01-21 22:54 - 2014-01-21 22:53 - 00007317 _____ C:\Users\K22.k2\Desktop\FRST.txt
2014-01-21 22:53 - 2014-01-21 22:53 - 00029696 _____ C:\Users\K22.k2\AppData\Local\MSGBOX.EXE
2014-01-21 22:53 - 2014-01-21 22:53 - 00015327 _____ C:\Users\K22.k2\Desktop\LM.bat
2014-01-21 22:53 - 2014-01-21 22:41 - 00040230 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-21 22:49 - 2014-01-21 22:49 - 00015327 _____ C:\Users\Administrator\Desktop\LM.bat
2014-01-21 22:49 - 2014-01-21 22:48 - 00029696 _____ C:\Users\Administrator\AppData\Local\MSGBOX.EXE
2014-01-21 22:44 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-21 22:40 - 2014-01-21 22:40 - 04922312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-21 22:31 - 2014-01-21 22:31 - 00000000 ____D C:\FRST
2014-01-21 22:06 - 2014-01-14 21:03 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-21 22:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-21 17:42 - 2014-01-21 17:42 - 00112640 _____ (forum.viry.cz) C:\Users\K22.k2\Desktop\FRSTLauncher.exe
2014-01-21 17:42 - 2014-01-21 17:41 - 02077184 _____ (Farbar) C:\Users\K22.k2\Desktop\FRST64.exe
2014-01-21 13:44 - 2014-01-21 13:44 - 00002186 _____ C:\Users\K22.k2\Documents\a.txt
2014-01-21 13:14 - 2014-01-21 13:14 - 00000000 ____D C:\_OTL
2014-01-21 00:53 - 2014-01-20 20:59 - 00000000 ____D C:\ProgramData\CanonIJPLM
2014-01-21 00:19 - 2014-01-21 00:19 - 00000000 ____D C:\Users\K22.k2\Documents\2014_01_21
2014-01-20 23:19 - 2014-01-20 23:19 - 00000000 ____D C:\WINDOWS\LastGood
2014-01-20 21:18 - 2013-12-06 00:22 - 00768376 _____ C:\WINDOWS\system32\perfh005.dat
2014-01-20 21:18 - 2013-12-06 00:22 - 00166494 _____ C:\WINDOWS\system32\perfc005.dat
2014-01-20 21:18 - 2013-09-30 05:04 - 01832918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-20 21:05 - 2014-01-20 21:05 - 00000000 ____D C:\ProgramData\CanonIJ
2014-01-20 21:03 - 2013-12-27 00:35 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Canon
2014-01-20 21:03 - 2013-12-03 21:04 - 00000000 ___HD C:\ProgramData\CanonIJScan
2014-01-20 21:01 - 2014-01-20 21:01 - 00000000 ___HD C:\ProgramData\CanonIJMyPrinter
2014-01-20 20:59 - 2014-01-20 20:59 - 00002091 _____ C:\Users\Public\Desktop\Canon Solution Menu EX.lnk
2014-01-20 20:59 - 2013-12-03 20:43 - 00000000 ____D C:\ProgramData\CanonIJWSpt
2014-01-20 20:42 - 2013-12-03 20:35 - 00000000 ____D C:\Program Files (x86)\Canon
2014-01-20 20:41 - 2014-01-20 20:41 - 00000000 ____D C:\ProgramData\Canon IJ Network Tool
2014-01-20 20:41 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2014-01-20 20:30 - 2014-01-20 20:30 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2014-01-20 20:30 - 2014-01-20 20:30 - 00000000 ___HD C:\ProgramData\CanonBJ
2014-01-20 20:30 - 2013-11-24 12:55 - 00000000 ____D C:\Program Files\Canon
2014-01-20 20:29 - 2014-01-20 20:29 - 00000000 ___HD C:\Program Files\CanonBJ
2014-01-20 20:11 - 2013-12-03 20:48 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Canon
2014-01-20 19:34 - 2014-01-19 23:36 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2014-01-19 12:32 - 2014-01-10 19:07 - 00000000 ____D C:\Users\K22.k2\AppData\Local\CrashDumps
2014-01-19 08:38 - 2013-09-10 14:25 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-01-18 23:26 - 2014-01-18 20:24 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\vlc
2014-01-18 23:21 - 2014-01-18 23:21 - 01191834 _____ C:\Users\K22.k2\Documents\ProcessExplorer.zip
2014-01-18 23:20 - 2014-01-11 09:00 - 00000000 ____D C:\forum
2014-01-18 23:02 - 2014-01-18 23:02 - 00165376 _____ C:\Users\K22.k2\Documents\SystemLook_x64.exe
2014-01-18 22:33 - 2014-01-18 22:33 - 00001508 _____ C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Information.lnk
2014-01-18 22:32 - 2014-01-18 22:32 - 00001085 _____ C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\taskschd.lnk
2014-01-18 22:32 - 2014-01-18 22:32 - 00001085 _____ C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\cleanmgr.lnk
2014-01-18 22:31 - 2014-01-18 22:31 - 00001085 _____ C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\services.lnk
2014-01-18 21:48 - 2014-01-18 21:48 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\addpcs
2014-01-18 21:45 - 2014-01-14 22:02 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2014-01-18 21:11 - 2014-01-18 20:24 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\dvdcss
2014-01-18 20:22 - 2014-01-18 20:22 - 00000000 ____D C:\Program Files (x86)\vlc-2.1.2-win32
2014-01-18 20:20 - 2014-01-18 20:20 - 00000000 ____D C:\Users\K22.k2\AppData\Local\WinZip
2014-01-18 20:15 - 2014-01-18 20:15 - 21160797 _____ C:\Users\K22.k2\Documents\vlc-2.1.2-win32.7z
2014-01-18 19:54 - 2014-01-18 19:54 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\AVS4YOU
2014-01-18 19:54 - 2014-01-18 19:53 - 00000000 ____D C:\ProgramData\AVS4YOU
2014-01-17 22:06 - 2014-01-17 22:06 - 00001362 _____ C:\Users\K22.k2\Desktop\CCleaner64 - Shortcut.lnk
2014-01-17 13:00 - 2014-01-17 13:00 - 00000512 _____ C:\PhysicalMBR.bin
2014-01-17 12:42 - 2014-01-17 12:42 - 00602112 _____ (OldTimer Tools) C:\Users\K22.k2\Documents\OTL.exe
2014-01-16 16:13 - 2014-01-16 16:13 - 00000670 _____ C:\Users\K22.k2\Desktop\Music -.lnk
2014-01-16 15:58 - 2013-09-10 14:31 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-16 15:56 - 2013-09-10 14:30 - 86054176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-14 22:02 - 2014-01-14 22:02 - 00001019 _____ C:\Users\K22.k2\Desktop\SpeedFan.lnk
2014-01-14 22:02 - 2014-01-14 22:02 - 00001019 _____ C:\Users\Administrator\Desktop\SpeedFan.lnk
2014-01-14 22:02 - 2014-01-14 22:02 - 00000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2014-01-14 21:54 - 2014-01-14 21:54 - 02143832 _____ C:\Users\K22.k2\Documents\instsf449.exe
2014-01-14 21:16 - 2013-12-13 03:43 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2014-01-14 21:02 - 2013-12-13 03:59 - 00000000 ____D C:\Users\Administrator\AppData\Local\Adobe
2014-01-14 20:47 - 2013-12-09 15:32 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-13 21:42 - 2014-01-13 13:58 - 00000000 ____D C:\AdwCleaner
2014-01-13 21:17 - 2013-12-09 15:31 - 00000000 ____D C:\ProgramData\Adobe
2014-01-13 15:52 - 2014-01-13 15:52 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Malwarebytes
2014-01-13 14:10 - 2014-01-13 14:10 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Malwarebytes
2014-01-13 14:10 - 2014-01-13 14:10 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-13 14:10 - 2014-01-13 14:09 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-13 14:05 - 2014-01-13 14:05 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\K22.k2\Documents\mbam-setup-1.75.0.1300.exe
2014-01-13 13:13 - 2014-01-13 13:13 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-13 13:08 - 2014-01-13 13:08 - 01236282 _____ C:\Users\K22.k2\Documents\adwcleaner.exe
2014-01-13 13:08 - 2014-01-13 13:08 - 01037068 _____ (Thisisu) C:\Users\K22.k2\Documents\JRT.exe
2014-01-13 11:42 - 2014-01-13 11:42 - 00000000 ____D C:\Program Files\trend micro
2014-01-13 11:40 - 2014-01-13 11:40 - 00935175 _____ C:\Users\K22.k2\Documents\RSITx64.exe
2014-01-13 09:11 - 2013-12-27 00:33 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Adobe
2014-01-12 23:00 - 2014-01-12 23:00 - 01060864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc71.dll
2014-01-12 23:00 - 2014-01-12 23:00 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll
2014-01-12 22:55 - 2014-01-12 22:55 - 00000046 _____ C:\WINDOWS\wininit.ini
2014-01-12 22:41 - 2014-01-12 22:41 - 00388608 _____ (Trend Micro Inc.) C:\Users\K22.k2\Documents\HijackThis.exe
2014-01-12 22:41 - 2014-01-12 18:01 - 00000000 ____D C:\Users\K22.k2\AppData\Local\VirtualStore
2014-01-12 22:40 - 2014-01-12 22:40 - 00000544 _____ C:\Users\K22.k2\Documents\DelDomains.rar
2014-01-12 21:09 - 2014-01-12 21:07 - 00000000 ___SD C:\ProgramData\Shared Space
2014-01-12 21:03 - 2014-01-12 21:03 - 00000000 ____D C:\Program Files\AdTrustMedia
2014-01-12 21:03 - 2014-01-12 21:03 - 00000000 ____D C:\Program Files (x86)\AdTrustMedia
2014-01-12 21:02 - 2014-01-12 21:02 - 00000000 ____D C:\ProgramData\Adtrustmedia
2014-01-12 21:01 - 2014-01-08 15:40 - 00000000 ____D C:\Program Files\COMODO
2014-01-12 21:00 - 2014-01-12 21:00 - 00000000 ____D C:\first_launch
2014-01-12 20:59 - 2014-01-08 15:37 - 00000000 ____D C:\Program Files (x86)\Comodo
2014-01-12 20:54 - 2014-01-12 20:49 - 211388240 _____ (COMODO) C:\Users\K22.k2\Documents\cfw_installer.exe
2014-01-12 17:33 - 2013-12-27 00:33 - 00000000 ____D C:\Users\K22.k2
2014-01-12 02:07 - 2014-01-12 02:07 - 00000017 _____ C:\Users\Administrator\AppData\Local\resmon.resmoncfg
2014-01-12 02:05 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\registration
2014-01-11 18:27 - 2014-01-11 18:27 - 00001126 _____ C:\Users\Administrator\Desktop\Music – zástupce.lnk
2014-01-11 18:03 - 2013-11-09 15:59 - 00000000 ____D C:\Users\Administrator
2014-01-11 11:19 - 2013-11-09 19:01 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2014-01-11 11:19 - 2013-11-04 20:20 - 00000000 ____D C:\WINDOWS\BrowserChoice
2014-01-11 11:18 - 2014-01-09 03:49 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Audacity
2014-01-11 11:18 - 2014-01-01 07:56 - 00000000 ____D C:\Users\Administrator\Desktop\RK_Quarantine
2014-01-11 11:18 - 2013-12-14 01:11 - 00000000 ____D C:\Program Files (x86)\Adobe Media Player
2014-01-11 11:11 - 2013-12-12 19:44 - 00000000 ____D C:\ProgramData\PearlMountain
2014-01-11 01:26 - 2014-01-08 15:40 - 00000000 ____D C:\ProgramData\COMODO
2014-01-10 23:45 - 2014-01-10 23:45 - 00001670 _____ C:\Users\Administrator\Desktop\RKreport[0]_S_01102014_234540.txt
2014-01-10 00:59 - 2014-01-10 00:59 - 00000022 _____ C:\Users\K22.k2\Desktop\shutdown timer.txt
2014-01-09 23:34 - 2014-01-09 23:34 - 00000041 _____ C:\Users\K22.k2\Desktop\sledovanitv.cz.txt
2014-01-08 15:57 - 2014-01-08 15:57 - 00000000 ___HD C:\VTRoot
2014-01-08 15:35 - 2014-01-08 15:35 - 00000000 ____D C:\ProgramData\Comodo Downloader
2014-01-08 12:33 - 2014-01-08 12:33 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\OpenOffice
2014-01-06 23:31 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-01-06 23:31 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-04 17:10 - 2013-12-10 17:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-04 04:21 - 2014-01-04 04:21 - 00000000 ____D C:\Users\K22.k2\AppData\Local\Adobe
2014-01-04 04:00 - 2014-01-04 03:59 - 00000000 ____D C:\Program Files (x86)\Firefox
2014-01-04 03:31 - 2014-01-04 03:31 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\SUPERAntiSpyware.com
2014-01-03 01:03 - 2014-01-03 01:03 - 00001635 _____ C:\Users\Administrator\Desktop\RKreport[0]_D_01032014_010347.txt
2014-01-03 01:03 - 2014-01-03 01:03 - 00001567 _____ C:\Users\Administrator\Desktop\RKreport[0]_S_01032014_010313.txt
2014-01-03 01:03 - 2014-01-03 01:03 - 00000965 _____ C:\Users\Administrator\Desktop\RKreport[0]_H_01032014_010342.txt
2014-01-03 01:03 - 2014-01-03 01:03 - 00000847 _____ C:\Users\Administrator\Desktop\RKreport[0]_PR_01032014_010340.txt
2014-01-03 01:03 - 2014-01-03 01:03 - 00000835 _____ C:\Users\Administrator\Desktop\RKreport[0]_DN_01032014_010344.txt
2014-01-03 01:03 - 2013-12-26 23:08 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFRd.sys.bak
2014-01-03 01:03 - 2013-12-26 23:08 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WUDFPf.sys.bak
2014-01-03 01:03 - 2013-12-26 23:08 - 00054304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys.bak
2014-01-03 01:03 - 2013-12-26 23:08 - 00026976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WpdUpFltr.sys.bak
2014-01-03 01:03 - 2013-12-26 23:08 - 00023392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys.bak
2014-01-03 01:03 - 2013-12-26 23:08 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00839488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00265056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00124256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00061248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00060224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\watchdog.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00038240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\werkernel.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00034760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00033632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys.bak
2014-01-03 01:03 - 2013-12-26 23:07 - 00018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wmilib.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 11518976 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwsw00.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 02551640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 02011488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 01119576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00924512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00575840 _____ (LSI Corporation, Inc.) C:\WINDOWS\system32\Drivers\megasr.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00478048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00377696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgrx.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00374112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00366432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00305504 _____ (VIA Corporation) C:\WINDOWS\system32\Drivers\VSTXRAID.SYS.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00170848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scsiport.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00168800 _____ (VIA Technologies Inc.,Ltd) C:\WINDOWS\system32\Drivers\vsmraid.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00168288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvstor.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00150368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvraid.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00146272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbusr.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00124768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NV_AGP.SYS.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00121184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00107872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00101728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00097088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00090944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00088928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc63.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspppoe.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00081760 _____ (Silicon Integrated Systems) C:\WINDOWS\system32\Drivers\sisraid4.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rspndr.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00078688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00072032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SpbCx.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwififlt.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00069472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00069472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsp.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stream.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mslldp.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00065888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ULIAGPKX.SYS.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpcivsp.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00064864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UAGP35.SYS.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00063840 _____ (Marvell Semiconductor, Inc.) C:\WINDOWS\system32\Drivers\mvumis.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndisuio.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00056672 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\megasas.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\TsUsbFlt.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00050864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\point64.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00050016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pcw.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00049984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\videoprt.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\qwavedrv.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00045888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00044896 _____ (Silicon Integrated Systems Corp.) C:\WINDOWS\system32\Drivers\sisraid2.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbscan.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiscap.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBCAMD2.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\RNDISMP.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00031072 _____ (Promise Technology, Inc.) C:\WINDOWS\system32\Drivers\stexstor.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbrpm.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdi.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tape.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00029312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nuidfltr.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00027488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\WINDOWS\system32\Drivers\secdrv.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mcd.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00021856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00021760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VMBusHID.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smclib.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00019808 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\Drivers\viaide.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasacd.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisVirtualBus.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmgencounter.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00010624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mshidumdf.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mshidkmdf.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00007936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mstee.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vms3cap.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00007040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspclock.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00006784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mspqm.sys.bak
2014-01-03 01:02 - 2013-12-26 23:07 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\null.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 10627744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00994144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00651248 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorAV.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00579416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00428896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00412000 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorV.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00192864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00129224 _____ (Qualcomm Atheros Co., Ltd.) C:\WINDOWS\system32\Drivers\L1C63x64.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irda.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00109408 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00099320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_I2C.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00093536 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas2.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipfltdrv.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00082784 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sss.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00081760 _____ (LSI Corporation) C:\WINDOWS\system32\Drivers\lsi_sas3.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00065888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\GAGP30KX.SYS.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00064352 _____ (Hewlett-Packard Company) C:\WINDOWS\system32\Drivers\HpSAMD.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\lltdio.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00030048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fs_rec.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00024568 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSSi_GPIO.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hwpolicy.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00022272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbldfltr.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HyperVideo.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00021248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00018272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irenum.sys.bak
2014-01-03 01:01 - 2013-12-26 23:07 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hyperkbd.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 03357024 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\evbda.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00782176 _____ (PMC-Sierra) C:\WINDOWS\system32\Drivers\adp80xx.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00564520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00531296 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\bxvbda.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00377696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00358752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00337760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00259424 _____ (AMD Technologies Inc.) C:\WINDOWS\system32\Drivers\amdsbs.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00217952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00114016 _____ (PMC-Sierra, Inc.) C:\WINDOWS\system32\Drivers\arcsas.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00108896 _____ (LSI) C:\WINDOWS\system32\Drivers\3ware.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00082784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\EhStorClass.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00079712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpiex.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00079200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00079200 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdsata.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00076464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dc3d.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00071896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00068960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00057696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\condrv.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00036192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Diskdump.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\filetrace.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00033632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dumpata.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\asyncmac.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00025952 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdxata.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00017624 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\bcmfn2.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Dmpusbstor.sys.bak
2014-01-03 01:01 - 2013-12-26 23:06 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\beep.sys.bak
2014-01-01 11:25 - 2014-01-01 11:25 - 00001532 _____ C:\Users\Administrator\Desktop\RKreport[0]_D_01012014_112507.txt
2014-01-01 11:25 - 2014-01-01 11:25 - 00000732 _____ C:\Users\Administrator\Desktop\RKreport[0]_DN_01012014_112501.txt
2014-01-01 11:24 - 2014-01-01 11:24 - 00000777 _____ C:\Users\Administrator\Desktop\RKreport[0]_PR_01012014_112458.txt
2014-01-01 11:19 - 2014-01-01 11:19 - 00001500 _____ C:\Users\Administrator\Desktop\RKreport[0]_S_01012014_111908.txt
2013-12-29 08:56 - 2013-12-29 08:56 - 00000517 _____ C:\Users\Administrator\Desktop\Brána Windows Firewall – zástupce.lnk
2013-12-29 04:45 - 2013-12-02 12:15 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2013-12-28 19:04 - 2013-12-28 18:58 - 00000000 ____D C:\Users\K22.k2\AppData\Local\Mozilla
2013-12-28 19:01 - 2013-12-28 19:01 - 00000000 ____D C:\Users\K22.k2\AppData\Local\Macromedia
2013-12-28 18:58 - 2013-12-28 18:58 - 00000000 ____D C:\Users\K22.k2\AppData\Roaming\Mozilla
2013-12-27 00:53 - 2013-12-27 00:53 - 00000146 _____ C:\Users\K22.k2\Desktop\Sound -.lnk
2013-12-27 00:47 - 2013-12-27 00:47 - 00000473 _____ C:\Users\K22.k2\Desktop\(D) - Shortcut.lnk
2013-12-27 00:37 - 2013-12-27 00:33 - 00000000 ____D C:\Users\K22.k2\AppData\Local\Packages
2013-12-27 00:34 - 2013-12-27 00:34 - 00000000 ___RD C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-27 00:34 - 2013-12-27 00:34 - 00000000 ___RD C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-27 00:33 - 2013-12-27 00:33 - 00001406 _____ C:\Users\K22.k2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-27 00:33 - 2013-12-27 00:33 - 00000020 ___SH C:\Users\K22.k2\ntuser.ini
2013-12-27 00:22 - 2013-12-27 00:22 - 00000501 _____ C:\Users\Administrator\Desktop\Windows Update – zástupce.lnk
2013-12-26 22:46 - 2013-12-26 22:46 - 00000812 _____ C:\Users\Administrator\Desktop\Temp File Cleaner.lnk
2013-12-26 22:46 - 2013-12-26 22:46 - 00000000 ____D C:\Program Files\Temp File Cleaner
2013-12-26 22:46 - 2013-12-07 13:52 - 00000842 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Temp File Cleaner.lnk
2013-12-26 22:19 - 2013-12-26 22:19 - 00001055 _____ C:\Users\Public\Desktop\Firefox Backup Tool.lnk
2013-12-26 22:19 - 2013-12-26 22:18 - 00000000 ____D C:\Program Files (x86)\Firefox Backup Tool
2013-12-26 22:19 - 2013-11-09 19:01 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2013-12-26 22:17 - 2013-12-26 22:17 - 00000473 _____ C:\Users\Administrator\Desktop\Nový svazek (D) – zástupce.lnk
2013-12-26 22:16 - 2013-11-17 00:14 - 00000000 ____D C:\Program Files\CCleaner
2013-12-26 21:33 - 2013-12-02 22:24 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-26 02:48 - 2013-12-26 02:48 - 00000146 _____ C:\Users\Administrator\Desktop\Zvuk – zástupce.lnk
2013-12-26 00:10 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2013-12-25 02:38 - 2013-12-17 11:08 - 00000000 ____D C:\Users\Administrator\AppData\Local\CrashDumps
2013-12-22 07:16 - 2013-12-22 07:16 - 00000000 ____D C:\WINDOWS\system32\appmgmt

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:139.7 GB) (Free:114.79 GB) NTFS

Available physical RAM: 2127.23 MB
Total physical RAM: 3002.92 MB
Percentage of memory in use: 29%

==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => ?

[1jan]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-01-2014
Ran by K22 at 2014-01-21 22:55:32
Running from C:\Users\K22.k2\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: COMODO Antivirus (Disabled - Out of date) {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall (Enabled) {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}

==================== Installed Programs ======================

Adobe AIR (x32 Version: 1.5.3.9120 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9120 - Adobe Systems Inc.) Hidden
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS5 (x32 Version: 12.0 - Adobe Systems Incorporated)
Audacity 2.0 (x32 Version: - Audacity Team)
Canon IJ Network Scanner Selector EX (x32 Version: - )
Canon IJ Network Tool (x32 Version: 3.1.1 - Canon Inc.)
Canon MG5300 series MP Drivers (Version: - Canon Inc.)
Canon MG5300 series User Registration (x32 Version: - )
Canon MP Navigator EX 5.0 (x32 Version: - )
Canon My Printer (x32 Version: - )
Canon Solution Menu EX (x32 Version: - )
CCleaner (Version: 4.09 - Piriform)
COMODO Firewall (Version: 6.3.39949.2976 - COMODO Security Solutions Inc.)
Firefox Backup Tool version 1.0 (x32 Version: 1.0 - firefox64bit.com)
HiJackThis (x32 Version: 1.0.0 - Trend Micro)
K-Lite Codec Pack 10.0.0 Basic (x32 Version: 10.0.0 - )
Malwarebytes Anti-Malware verze 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Mouse and Keyboard Center (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (Version: 2.2.173.0 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 26.0 (x86 cs) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
OpenOffice 4.0.1 (x32 Version: 4.01.9714 - Apache Software Foundation)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
PrivDog (x32 Version: 1.8.0.15 - privdog.com)
Security Task Manager 1.8g (x32 Version: 1.8g - Neuber Software)
SpeedFan (remove only) (x32 Version: - )
SUPERAntiSpyware (Version: 5.7.1008 - SUPERAntiSpyware.com)
Temp File Cleaner (Version: 4.3.0 - Addpcs, LLC)
Update for Microsoft en-us Dictionary (Version: 16.1.669.1 - Microsoft Corporation) Hidden
VirtualDJ LE (DDJ-WeGO) (x32 Version: 7.0.5 - Atomix Productions)
WinZip 18.0 (Version: 18.0.10661 - WinZip Computing, S.L. )

==================== Restore Points =========================

Could not list Restore Points. Check WMI.


==================== Hosts content: ==========================

2012-07-26 06:26 - 2014-01-03 01:03 - 00000741 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => ?

==================== Loaded Modules (whitelisted) =============


==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Microsoft Kernel Debug Network Adapter
Description: Síťový adaptér ladění jádra společnosti Microsoft
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: kdnic
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Intel(R) Centrino(R) Wireless-N 1000
Description: Intel(R) Centrino(R) Wireless-N 1000
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: NETwNs64
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Sběrnice přesměrovače zařízení vzdálené plochy
Description: Sběrnice přesměrovače zařízení vzdálené plochy
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: rdpbus
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Dodavatelem definované zařízení standardu HID
Description: Dodavatelem definované zařízení standardu HID
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standardní systémová zařízení)
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Could not start eventlog service, could not read events.

Doslo k syst�mov� chybe 5.

Pr�stup byl odepren.


==================== Memory info ===========================

Percentage of memory in use: 29%
Total physical RAM: 3002.92 MB
Available physical RAM: 2127.23 MB
Total Pagefile: 3514.92 MB
Available Pagefile: 2305.66 MB
Total Virtual: 131072 MB
Available Virtual: 131071.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:139.7 GB) (Free:114.79 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================