VIRY.CZ

vytížený procesor,download zpomaleny,vetrak spina na plne obratky
nepouzivam zadny vzdaleny pristup

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:42:20, on 12. 1. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.16384)

FIREFOX: 26.0 (cs)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\SysWOW64\NOTEPAD.EXE
C:\Users\K22.k2\Downloads\HijackThis.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [ComodoFSFirefox] "C:\Program Files (x86)\AdTrustMedia\PrivDog\FinalizeSetup.exe" /f
O4 - HKLM\..\Run: [PrivDogService] "C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe"
O4 - HKLM\..\Run: [tvncontrol] "C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe" -controlservice -slave
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-21-1546684791-1234734158-1691060437-1025\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (User 'K22')
O4 - Global Startup: Start GeekBuddy.lnk = C:\Program Files\COMODO\GeekBuddy\launcher.exe
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: COMODO Dragon Update Service (DragonUpdater) - Unknown owner - C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: GeekBuddyRSP Server (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files (x86)\Common Files\COMODO\GeekBuddyRSP.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: Block Level Backup Engine Service (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 5185 bytes

Zdravim

Kdyz se podivate nahoru, tak je tam takovej veeeelkej oranzovej obdelnik a v nem si prectete z ceho chceme log. Se samotnym HJT jsme nekdy v roce 2007

Dobry den, dekuji Vam za odpoved. Vytvoril jsem log RSIT a snazim se ho vlozit.
kpirovani obahu: Vaše zpráva obsahuje 119183 znaků. Maximální povolený počet znaků je 100000.
vlozeni jako priloha: Přípona txt není povolena

Rozdelte log do vice prispevku

Logfile of random's system information tool 1.09 (written by random/random)
Run by Administrator at 2014-01-13 11:42:31
Microsoft Windows 8.1 Pro
System drive C: has 122 GB (85%) free of 143 GB
Total RAM: 3003 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:42:37, on 13. 1. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.16384)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe
C:\Program Files\trend micro\Administrator.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: PrivDogExtension - {FB16E5C3-A9E2-47A2-8EFC-319E775E62CC} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [PrivDogService] "C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-21-1546684791-1234734158-1691060437-1025\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (User 'K22')
O9 - Extra button: PrivDog - {2F5C139F-79BD-4C84-A95A-E7140525BC55} - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: COMODO Virtual Service Manager (cmdvirth) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: Block Level Backup Engine Service (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 4188 bytes

======Listing Processes======

wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"
taskhostex.exe
"c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe"
"C:\Program Files\COMODO\COMODO Internet Security\cistray.exe"
"c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE"
"C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe" /ModeAvMonitor -Embedding
"C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe"
"C:\Program Files\COMODO\COMODO Internet Security\cis.exe" --alertsUI
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 908 912 920 65536 916
"C:\Users\K22.k2\Downloads\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

=========Mozilla firefox=========

ProfilePath - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\e4hvfske.default

prefs.js - "browser.startup.homepage" - "www.seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.94 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@canon.com/EPPEX]
"Description"=Canon Easy-PhotoPrint EX
"Path"=C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=E:\Program Files\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.8.800.94 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll


C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\e4hvfske.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll [2013-12-13 842920]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}]
PrivDog Extension - C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedads.dll [2013-12-13 745640]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-12-26 6563096]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"CanonSolutionMenuEx"=C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [2011-08-04 1612920]
"PrivDogService"=C:\Program Files (x86)\AdTrustMedia\PrivDog\1.8.0.18\trustedadssvc.exe [2013-12-13 525480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SystemEventsBroker]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Base]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicDisplay.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BasicRender.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Boot file system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BrokerInfrastructure]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Browser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CryptSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DcomLaunch]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DeviceInstall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dhcp]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\DnsCache]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dxgkrnl.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EventLog]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\File system]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\FsDepends.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HelpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ipnat.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanServer]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LanmanWorkstation]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LmHosts]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\LSM]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mbamchameleon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Messenger]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NDIS Wrapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ndisuio]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBIOSGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetBT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetDDEGroup]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Netlogon]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetMan]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Network]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetworkProvider]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PCI Configuration]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PlugPlay]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP Filter]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PNP_TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Primary disk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdsessmgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcSs]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCSI Class]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sermouse.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SharedAccess]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SmartcardSimulator]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Streams Drivers]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\System Bus Extender]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SystemEventsBroker]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Tcpip]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VirtualSmartcardReader]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wcmsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinMgmt]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{36FC9E60-C465-11CF-8056-444553540000}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E965-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E967-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E969-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E972-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E973-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E974-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E975-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E977-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E980-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{9DA2B80F-F89F-4A49-A5C2-511B085B9E8A}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"EnableUIADesktopToggle"=0
"EnableCursorSuppression"=1
"ConsentPromptBehaviorUser"=3
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SafeModeBlockNonAdmins"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoResolveSearch"=1
"NoResolveTrack"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktopChanges"=1
"NoActiveDesktop"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.yuy2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"vidc.yvyu"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"vidc.uyvy"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2014-01-13 11:42:32 ----D---- C:\Program Files\trend micro
2014-01-13 11:42:31 ----D---- C:\rsit
2014-01-13 11:18:30 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-12 23:00:21 ----A---- C:\WINDOWS\SYSWOW64\msvcr71.dll
2014-01-12 23:00:21 ----A---- C:\WINDOWS\SYSWOW64\mfc71.dll
2014-01-12 22:55:50 ----A---- C:\WINDOWS\wininit.ini
2014-01-12 21:07:59 ----SD---- C:\ProgramData\Shared Space
2014-01-12 21:03:01 ----D---- C:\Program Files\AdTrustMedia
2014-01-12 21:03:01 ----D---- C:\Program Files (x86)\AdTrustMedia
2014-01-12 21:02:57 ----D---- C:\ProgramData\Adtrustmedia
2014-01-12 21:00:47 ----D---- C:\first_launch
2014-01-11 09:00:17 ----D---- C:\forum
2014-01-08 15:57:43 ----HD---- C:\VTRoot
2014-01-08 15:40:42 ----D---- C:\ProgramData\COMODO
2014-01-08 15:40:00 ----D---- C:\Program Files\COMODO
2014-01-08 15:37:53 ----D---- C:\Program Files (x86)\Comodo
2014-01-08 15:35:35 ----D---- C:\ProgramData\Comodo Downloader
2014-01-04 03:59:31 ----D---- C:\Program Files (x86)\Firefox
2013-12-26 23:08:01 ----A---- C:\WINDOWS\system32\drivers\WUDFRd.sys.bak
2013-12-26 23:08:01 ----A---- C:\WINDOWS\system32\drivers\WUDFPf.sys.bak
2013-12-26 23:08:00 ----A---- C:\WINDOWS\system32\drivers\ws2ifsl.sys.bak
2013-12-26 23:08:00 ----A---- C:\WINDOWS\system32\drivers\WppRecorder.sys.bak
2013-12-26 23:08:00 ----A---- C:\WINDOWS\system32\drivers\WpdUpFltr.sys.bak
2013-12-26 23:08:00 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys.bak
2013-12-26 23:07:59 ----A---- C:\WINDOWS\system32\drivers\wmilib.sys.bak
2013-12-26 23:07:59 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys.bak
2013-12-26 23:07:59 ----A---- C:\WINDOWS\system32\drivers\winhv.sys.bak
2013-12-26 23:07:58 ----A---- C:\WINDOWS\system32\drivers\wimmount.sys.bak
2013-12-26 23:07:58 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys.bak
2013-12-26 23:07:58 ----A---- C:\WINDOWS\system32\drivers\werkernel.sys.bak
2013-12-26 23:07:57 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys.bak
2013-12-26 23:07:57 ----A---- C:\WINDOWS\system32\drivers\WdfLdr.sys.bak
2013-12-26 23:07:56 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys.bak
2013-12-26 23:07:56 ----A---- C:\WINDOWS\system32\drivers\Wdf01000.sys.bak
2013-12-26 23:07:56 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys.bak
2013-12-26 23:07:55 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys.bak
2013-12-26 23:07:55 ----A---- C:\WINDOWS\system32\drivers\wanarp.sys.bak
2013-12-26 23:07:55 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys.bak
2013-12-26 23:07:54 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys.bak
2013-12-26 23:07:54 ----A---- C:\WINDOWS\system32\drivers\VSTXRAID.SYS.bak
2013-12-26 23:07:54 ----A---- C:\WINDOWS\system32\drivers\vsmraid.sys.bak
2013-12-26 23:07:53 ----A---- C:\WINDOWS\system32\drivers\vpcivsp.sys.bak
2013-12-26 23:07:53 ----A---- C:\WINDOWS\system32\drivers\vpci.sys.bak
2013-12-26 23:07:53 ----A---- C:\WINDOWS\system32\drivers\volmgrx.sys.bak
2013-12-26 23:07:53 ----A---- C:\WINDOWS\system32\drivers\vmstorfl.sys.bak
2013-12-26 23:07:52 ----A---- C:\WINDOWS\system32\drivers\vms3cap.sys.bak
2013-12-26 23:07:52 ----A---- C:\WINDOWS\system32\drivers\vmgencounter.sys.bak
2013-12-26 23:07:52 ----A---- C:\WINDOWS\system32\drivers\vmbusr.sys.bak
2013-12-26 23:07:51 ----A---- C:\WINDOWS\system32\drivers\VMBusHID.sys.bak
2013-12-26 23:07:51 ----A---- C:\WINDOWS\system32\drivers\vmbus.sys.bak
2013-12-26 23:07:51 ----A---- C:\WINDOWS\system32\drivers\vmbkmclr.sys.bak
2013-12-26 23:07:51 ----A---- C:\WINDOWS\system32\drivers\vmbkmcl.sys.bak
2013-12-26 23:07:50 ----A---- C:\WINDOWS\system32\drivers\videoprt.sys.bak
2013-12-26 23:07:50 ----A---- C:\WINDOWS\system32\drivers\Vid.sys.bak
2013-12-26 23:07:50 ----A---- C:\WINDOWS\system32\drivers\viaide.sys.bak
2013-12-26 23:07:49 ----A---- C:\WINDOWS\system32\drivers\VerifierExt.sys.bak
2013-12-26 23:07:49 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys.bak
2013-12-26 23:07:49 ----A---- C:\WINDOWS\system32\drivers\usbrpm.sys.bak
2013-12-26 23:07:48 ----A---- C:\WINDOWS\system32\drivers\USBCAMD2.sys.bak
2013-12-26 23:07:48 ----A---- C:\WINDOWS\system32\drivers\usb8023.sys.bak
2013-12-26 23:07:48 ----A---- C:\WINDOWS\system32\drivers\ULIAGPKX.SYS.bak
2013-12-26 23:07:47 ----A---- C:\WINDOWS\system32\drivers\udfs.sys.bak
2013-12-26 23:07:47 ----A---- C:\WINDOWS\system32\drivers\UAGP35.SYS.bak
2013-12-26 23:07:47 ----A---- C:\WINDOWS\system32\drivers\tunnel.sys.bak
2013-12-26 23:07:46 ----A---- C:\WINDOWS\system32\drivers\TsUsbFlt.sys.bak
2013-12-26 23:07:46 ----A---- C:\WINDOWS\system32\drivers\tm.sys.bak
2013-12-26 23:07:46 ----A---- C:\WINDOWS\system32\drivers\tdx.sys.bak
2013-12-26 23:07:45 ----A---- C:\WINDOWS\system32\drivers\tdi.sys.bak
2013-12-26 23:07:44 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys.bak
2013-12-26 23:07:44 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys.bak
2013-12-26 23:07:44 ----A---- C:\WINDOWS\system32\drivers\tbs.sys.bak
2013-12-26 23:07:43 ----A---- C:\WINDOWS\system32\drivers\tape.sys.bak
2013-12-26 23:07:43 ----A---- C:\WINDOWS\system32\drivers\stream.sys.bak
2013-12-26 23:07:43 ----A---- C:\WINDOWS\system32\drivers\storvsp.sys.bak
2013-12-26 23:07:42 ----A---- C:\WINDOWS\system32\drivers\storvsc.sys.bak
2013-12-26 23:07:42 ----A---- C:\WINDOWS\system32\drivers\storport.sys.bak
2013-12-26 23:07:42 ----A---- C:\WINDOWS\system32\drivers\storahci.sys.bak
2013-12-26 23:07:41 ----A---- C:\WINDOWS\system32\drivers\stexstor.sys.bak
2013-12-26 23:07:41 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys.bak
2013-12-26 23:07:41 ----A---- C:\WINDOWS\system32\drivers\srv2.sys.bak
2013-12-26 23:07:40 ----A---- C:\WINDOWS\system32\drivers\SpbCx.sys.bak
2013-12-26 23:07:40 ----A---- C:\WINDOWS\system32\drivers\smclib.sys.bak
2013-12-26 23:07:40 ----A---- C:\WINDOWS\system32\drivers\sisraid4.sys.bak
2013-12-26 23:07:39 ----A---- C:\WINDOWS\system32\drivers\sisraid2.sys.bak
2013-12-26 23:07:39 ----A---- C:\WINDOWS\system32\drivers\SerCx2.sys.bak
2013-12-26 23:07:39 ----A---- C:\WINDOWS\system32\drivers\SerCx.sys.bak
2013-12-26 23:07:39 ----A---- C:\WINDOWS\system32\drivers\secdrv.sys.bak
2013-12-26 23:07:38 ----A---- C:\WINDOWS\system32\drivers\scsiport.sys.bak
2013-12-26 23:07:38 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys.bak
2013-12-26 23:07:38 ----A---- C:\WINDOWS\system32\drivers\rspndr.sys.bak
2013-12-26 23:07:38 ----A---- C:\WINDOWS\system32\drivers\rootmdm.sys.bak
2013-12-26 23:07:37 ----A---- C:\WINDOWS\system32\drivers\RNDISMP.sys.bak
2013-12-26 23:07:37 ----A---- C:\WINDOWS\system32\drivers\rmcast.sys.bak
2013-12-26 23:07:36 ----A---- C:\WINDOWS\system32\drivers\refs.sys.bak
2013-12-26 23:07:36 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys.bak
2013-12-26 23:07:35 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys.bak
2013-12-26 23:07:35 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys.bak
2013-12-26 23:07:35 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys.bak
2013-12-26 23:07:34 ----A---- C:\WINDOWS\system32\drivers\rassstp.sys.bak
2013-12-26 23:07:34 ----A---- C:\WINDOWS\system32\drivers\raspptp.sys.bak
2013-12-26 23:07:34 ----A---- C:\WINDOWS\system32\drivers\raspppoe.sys.bak
2013-12-26 23:07:34 ----A---- C:\WINDOWS\system32\drivers\rasl2tp.sys.bak
2013-12-26 23:07:33 ----A---- C:\WINDOWS\system32\drivers\rasacd.sys.bak
2013-12-26 23:07:33 ----A---- C:\WINDOWS\system32\drivers\qwavedrv.sys.bak
2013-12-26 23:07:32 ----A---- C:\WINDOWS\system32\drivers\point64.sys.bak
2013-12-26 23:07:32 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys.bak
2013-12-26 23:07:32 ----A---- C:\WINDOWS\system32\drivers\pdc.sys.bak
2013-12-26 23:07:31 ----A---- C:\WINDOWS\system32\drivers\pcw.sys.bak
2013-12-26 23:07:31 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys.bak
2013-12-26 23:07:31 ----A---- C:\WINDOWS\system32\drivers\pacer.sys.bak
2013-12-26 23:07:30 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys.bak
2013-12-26 23:07:30 ----A---- C:\WINDOWS\system32\drivers\nvstor.sys.bak
2013-12-26 23:07:30 ----A---- C:\WINDOWS\system32\drivers\NV_AGP.SYS.bak
2013-12-26 23:07:29 ----A---- C:\WINDOWS\system32\drivers\nvraid.sys.bak
2013-12-26 23:07:29 ----A---- C:\WINDOWS\system32\drivers\null.sys.bak
2013-12-26 23:07:28 ----A---- C:\WINDOWS\system32\drivers\nuidfltr.sys.bak
2013-12-26 23:07:28 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys.bak
2013-12-26 23:07:27 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys.bak
2013-12-26 23:07:26 ----A---- C:\WINDOWS\system32\drivers\npfs.sys.bak
2013-12-26 23:07:25 ----A---- C:\WINDOWS\system32\drivers\Netwsw00.sys.bak
2013-12-26 23:07:25 ----A---- C:\WINDOWS\system32\drivers\netvsc63.sys.bak
2013-12-26 23:07:24 ----A---- C:\WINDOWS\system32\drivers\netio.sys.bak
2013-12-26 23:07:24 ----A---- C:\WINDOWS\system32\drivers\netbt.sys.bak
2013-12-26 23:07:24 ----A---- C:\WINDOWS\system32\drivers\netbios.sys.bak
2013-12-26 23:07:23 ----A---- C:\WINDOWS\system32\drivers\Ndu.sys.bak
2013-12-26 23:07:23 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys.bak
2013-12-26 23:07:23 ----A---- C:\WINDOWS\system32\drivers\ndiswan.sys.bak
2013-12-26 23:07:23 ----A---- C:\WINDOWS\system32\drivers\NdisVirtualBus.sys.bak
2013-12-26 23:07:22 ----A---- C:\WINDOWS\system32\drivers\ndisuio.sys.bak
2013-12-26 23:07:22 ----A---- C:\WINDOWS\system32\drivers\ndistapi.sys.bak
2013-12-26 23:07:22 ----A---- C:\WINDOWS\system32\drivers\NdisImPlatform.sys.bak
2013-12-26 23:07:21 ----A---- C:\WINDOWS\system32\drivers\ndiscap.sys.bak
2013-12-26 23:07:20 ----A---- C:\WINDOWS\system32\drivers\ndis.sys.bak
2013-12-26 23:07:20 ----A---- C:\WINDOWS\system32\drivers\mvumis.sys.bak
2013-12-26 23:07:20 ----A---- C:\WINDOWS\system32\drivers\mup.sys.bak
2013-12-26 23:07:19 ----A---- C:\WINDOWS\system32\drivers\mstee.sys.bak
2013-12-26 23:07:19 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys.bak
2013-12-26 23:07:19 ----A---- C:\WINDOWS\system32\drivers\mspqm.sys.bak
2013-12-26 23:07:18 ----A---- C:\WINDOWS\system32\drivers\mspclock.sys.bak
2013-12-26 23:07:18 ----A---- C:\WINDOWS\system32\drivers\mslldp.sys.bak
2013-12-26 23:07:18 ----A---- C:\WINDOWS\system32\drivers\mskssrv.sys.bak
2013-12-26 23:07:18 ----A---- C:\WINDOWS\system32\drivers\mshidumdf.sys.bak
2013-12-26 23:07:17 ----A---- C:\WINDOWS\system32\drivers\mshidkmdf.sys.bak
2013-12-26 23:07:17 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys.bak
2013-12-26 23:07:17 ----A---- C:\WINDOWS\system32\drivers\msfs.sys.bak
2013-12-26 23:07:16 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys.bak
2013-12-26 23:07:16 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys.bak
2013-12-26 23:07:15 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys.bak
2013-12-26 23:07:15 ----A---- C:\WINDOWS\system32\drivers\mpsdrv.sys.bak
2013-12-26 23:07:15 ----A---- C:\WINDOWS\system32\drivers\mountmgr.sys.bak
2013-12-26 23:07:14 ----A---- C:\WINDOWS\system32\drivers\modem.sys.bak
2013-12-26 23:07:14 ----A---- C:\WINDOWS\system32\drivers\megasr.sys.bak
2013-12-26 23:07:14 ----A---- C:\WINDOWS\system32\drivers\megasas.sys.bak
2013-12-26 23:07:13 ----A---- C:\WINDOWS\system32\drivers\mcd.sys.bak
2013-12-26 23:07:13 ----A---- C:\WINDOWS\system32\drivers\luafv.sys.bak
2013-12-26 23:07:13 ----A---- C:\WINDOWS\system32\drivers\lsi_sss.sys.bak
2013-12-26 23:07:13 ----A---- C:\WINDOWS\system32\drivers\lsi_sas3.sys.bak
2013-12-26 23:07:12 ----A---- C:\WINDOWS\system32\drivers\lsi_sas2.sys.bak
2013-12-26 23:07:12 ----A---- C:\WINDOWS\system32\drivers\lsi_sas.sys.bak
2013-12-26 23:07:12 ----A---- C:\WINDOWS\system32\drivers\lltdio.sys.bak
2013-12-26 23:07:11 ----A---- C:\WINDOWS\system32\drivers\L1C63x64.sys.bak
2013-12-26 23:07:11 ----A---- C:\WINDOWS\system32\drivers\ksthunk.sys.bak
2013-12-26 23:07:11 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys.bak
2013-12-26 23:07:10 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys.bak
2013-12-26 23:07:10 ----A---- C:\WINDOWS\system32\drivers\ks.sys.bak
2013-12-26 23:07:10 ----A---- C:\WINDOWS\system32\drivers\kbldfltr.sys.bak
2013-12-26 23:07:09 ----A---- C:\WINDOWS\system32\drivers\irenum.sys.bak
2013-12-26 23:07:09 ----A---- C:\WINDOWS\system32\drivers\irda.sys.bak
2013-12-26 23:07:09 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys.bak
2013-12-26 23:07:09 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys.bak
2013-12-26 23:07:08 ----A---- C:\WINDOWS\system32\drivers\ipfltdrv.sys.bak
2013-12-26 23:07:06 ----A---- C:\WINDOWS\system32\drivers\intelide.sys.bak
2013-12-26 23:07:05 ----A---- C:\WINDOWS\system32\drivers\igdkmd64.sys.bak
2013-12-26 23:07:04 ----A---- C:\WINDOWS\system32\drivers\iaStorV.sys.bak
2013-12-26 23:07:04 ----A---- C:\WINDOWS\system32\drivers\iaStorAV.sys.bak
2013-12-26 23:07:03 ----A---- C:\WINDOWS\system32\drivers\iaLPSSi_I2C.sys.bak
2013-12-26 23:07:03 ----A---- C:\WINDOWS\system32\drivers\iaLPSSi_GPIO.sys.bak
2013-12-26 23:07:03 ----A---- C:\WINDOWS\system32\drivers\HyperVideo.sys.bak
2013-12-26 23:07:03 ----A---- C:\WINDOWS\system32\drivers\hyperkbd.sys.bak
2013-12-26 23:07:02 ----A---- C:\WINDOWS\system32\drivers\hwpolicy.sys.bak
2013-12-26 23:07:02 ----A---- C:\WINDOWS\system32\drivers\http.sys.bak
2013-12-26 23:07:02 ----A---- C:\WINDOWS\system32\drivers\HpSAMD.sys.bak
2013-12-26 23:07:01 ----A---- C:\WINDOWS\system32\drivers\hidir.sys.bak
2013-12-26 23:07:01 ----A---- C:\WINDOWS\system32\drivers\GAGP30KX.SYS.bak
2013-12-26 23:07:00 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS.bak
2013-12-26 23:07:00 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys.bak
2013-12-26 23:07:00 ----A---- C:\WINDOWS\system32\drivers\fsdepends.sys.bak
2013-12-26 23:07:00 ----A---- C:\WINDOWS\system32\drivers\fs_rec.sys.bak
2013-12-26 23:06:59 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys.bak
2013-12-26 23:06:59 ----A---- C:\WINDOWS\system32\drivers\filetrace.sys.bak
2013-12-26 23:06:59 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys.bak
2013-12-26 23:06:58 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys.bak
2013-12-26 23:06:57 ----A---- C:\WINDOWS\system32\drivers\exfat.sys.bak
2013-12-26 23:06:56 ----A---- C:\WINDOWS\system32\drivers\evbda.sys.bak
2013-12-26 23:06:56 ----A---- C:\WINDOWS\system32\drivers\EhStorClass.sys.bak
2013-12-26 23:06:55 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys.bak
2013-12-26 23:06:55 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys.bak
2013-12-26 23:06:54 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys.bak
2013-12-26 23:06:54 ----A---- C:\WINDOWS\system32\drivers\Dumpata.sys.bak
2013-12-26 23:06:54 ----A---- C:\WINDOWS\system32\drivers\dmvsc.sys.bak
2013-12-26 23:06:54 ----A---- C:\WINDOWS\system32\drivers\Dmpusbstor.sys.bak
2013-12-26 23:06:53 ----A---- C:\WINDOWS\system32\drivers\Diskdump.sys.bak
2013-12-26 23:06:53 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys.bak
2013-12-26 23:06:53 ----A---- C:\WINDOWS\system32\drivers\dc3d.sys.bak
2013-12-26 23:06:52 ----A---- C:\WINDOWS\system32\drivers\dam.sys.bak
2013-12-26 23:06:52 ----A---- C:\WINDOWS\system32\drivers\csc.sys.bak
2013-12-26 23:06:52 ----A---- C:\WINDOWS\system32\drivers\crashdmp.sys.bak
2013-12-26 23:06:51 ----A---- C:\WINDOWS\system32\drivers\condrv.sys.bak
2013-12-26 23:06:51 ----A---- C:\WINDOWS\system32\drivers\cng.sys.bak
2013-12-26 23:06:51 ----A---- C:\WINDOWS\system32\drivers\clfs.sys.bak
2013-12-26 23:06:50 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys.bak
2013-12-26 23:06:50 ----A---- C:\WINDOWS\system32\drivers\cdfs.sys.bak
2013-12-26 23:06:50 ----A---- C:\WINDOWS\system32\drivers\bxvbda.sys.bak
2013-12-26 23:06:49 ----A---- C:\WINDOWS\system32\drivers\bridge.sys.bak
2013-12-26 23:06:49 ----A---- C:\WINDOWS\system32\drivers\bowser.sys.bak
2013-12-26 23:06:49 ----A---- C:\WINDOWS\system32\drivers\beep.sys.bak
2013-12-26 23:06:49 ----A---- C:\WINDOWS\system32\drivers\bcmfn2.sys.bak
2013-12-26 23:06:48 ----A---- C:\WINDOWS\system32\drivers\asyncmac.sys.bak
2013-12-26 23:06:48 ----A---- C:\WINDOWS\system32\drivers\arcsas.sys.bak
2013-12-26 23:06:48 ----A---- C:\WINDOWS\system32\drivers\appid.sys.bak
2013-12-26 23:06:48 ----A---- C:\WINDOWS\system32\drivers\amdxata.sys.bak
2013-12-26 23:06:47 ----A---- C:\WINDOWS\system32\drivers\amdsbs.sys.bak
2013-12-26 23:06:47 ----A---- C:\WINDOWS\system32\drivers\amdsata.sys.bak
2013-12-26 23:06:47 ----A---- C:\WINDOWS\system32\drivers\ahcache.sys.bak
2013-12-26 23:06:46 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys.bak
2013-12-26 23:06:46 ----A---- C:\WINDOWS\system32\drivers\afd.sys.bak
2013-12-26 23:06:45 ----A---- C:\WINDOWS\system32\drivers\adp80xx.sys.bak
2013-12-26 23:06:45 ----A---- C:\WINDOWS\system32\drivers\acpiex.sys.bak
2013-12-26 23:06:44 ----A---- C:\WINDOWS\system32\drivers\3ware.sys.bak
2013-12-26 22:46:20 ----D---- C:\Program Files\Temp File Cleaner
2013-12-26 22:18:59 ----D---- C:\Program Files (x86)\Firefox Backup Tool
2013-12-22 07:16:38 ----D---- C:\WINDOWS\system32\appmgmt
2013-12-17 08:48:49 ----D---- C:\Program Files\Avidemux 2.6 - 64bits
2013-12-14 02:53:03 ----D---- C:\ProgramData\CanonIJEPPEX
2013-12-14 01:21:34 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2013-12-14 01:20:19 ----D---- C:\Program Files\Adobe
2013-12-14 01:13:35 ----D---- C:\Program Files\Common Files\Adobe
2013-12-14 01:11:03 ----D---- C:\Program Files (x86)\Adobe Media Player
2013-12-13 20:20:43 ----D---- C:\ProgramData\WinZip
2013-12-13 20:20:38 ----D---- C:\Program Files\WinZip
2013-12-13 03:44:22 ----D---- C:\Users\Administrator\AppData\Roaming\SUPERAntiSpyware.com
2013-12-13 03:43:51 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2013-12-13 03:43:51 ----D---- C:\Program Files\SUPERAntiSpyware
2013-12-13 03:31:22 ----A---- C:\WINDOWS\SYSWOW64\GPhotos.scr
2013-12-12 19:44:23 ----D---- C:\ProgramData\PearlMountain
2013-12-12 17:57:45 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2013-12-12 17:57:44 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2013-12-12 17:57:43 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2013-12-12 17:57:42 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2013-12-12 17:57:40 ----A---- C:\WINDOWS\system32\twinui.dll
2013-12-12 17:57:37 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2013-12-12 17:57:37 ----A---- C:\WINDOWS\system32\WSShared.dll
2013-12-12 17:57:36 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2013-12-12 17:57:35 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2013-12-12 17:57:35 ----A---- C:\WINDOWS\system32\dcomp.dll
2013-12-12 17:57:34 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2013-12-12 17:57:34 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2013-12-12 17:57:34 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2013-12-12 17:57:33 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2013-12-12 17:57:33 ----A---- C:\WINDOWS\system32\wlidcli.dll
2013-12-12 17:57:33 ----A---- C:\WINDOWS\system32\msftedit.dll
2013-12-12 17:57:33 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-12-12 17:57:32 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2013-12-12 17:57:32 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2013-12-12 17:57:32 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2013-12-12 17:57:32 ----A---- C:\WINDOWS\system32\Display.dll
2013-12-12 17:57:31 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2013-12-12 17:57:31 ----A---- C:\WINDOWS\system32\winresume.exe
2013-12-12 17:57:30 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2013-12-12 17:57:28 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2013-12-12 17:57:28 ----A---- C:\WINDOWS\system32\winload.exe
2013-12-12 17:57:27 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2013-12-12 17:57:27 ----A---- C:\WINDOWS\system32\wpncore.dll
2013-12-12 17:57:27 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2013-12-12 17:57:27 ----A---- C:\WINDOWS\system32\appmgr.dll
2013-12-12 17:57:26 ----AC---- C:\WINDOWS\system32\drivers\intelpep.sys
2013-12-12 17:57:26 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2013-12-12 17:57:26 ----A---- C:\WINDOWS\system32\drivers\SerCx2.sys
2013-12-12 17:57:26 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-12-12 17:57:25 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2013-12-12 17:57:25 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2013-12-12 17:57:24 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2013-12-12 17:57:24 ----A---- C:\WINDOWS\system32\d3d11.dll
2013-12-12 17:57:22 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2013-12-12 17:57:22 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2013-12-12 17:57:22 ----A---- C:\WINDOWS\system32\dxgi.dll
2013-12-12 17:57:22 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2013-12-12 17:57:20 ----A---- C:\WINDOWS\SYSWOW64\appmgr.dll
2013-12-12 17:57:20 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-12-12 17:57:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-12 17:57:19 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2013-12-12 17:57:19 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-12 17:57:19 ----A---- C:\WINDOWS\system32\winbici.dll
2013-12-12 17:57:19 ----A---- C:\WINDOWS\system32\dwmcore.dll
2013-12-11 05:35:03 ----A---- C:\WINDOWS\SYSWOW64\imagehlp.dll
2013-12-11 05:35:03 ----A---- C:\WINDOWS\system32\scrrun.dll
2013-12-11 05:35:03 ----A---- C:\WINDOWS\system32\imagehlp.dll
2013-12-11 05:35:02 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2013-12-11 05:35:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2013-12-11 05:35:00 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2013-12-11 05:34:55 ----A---- C:\WINDOWS\system32\jscript9.dll
2013-12-11 05:34:54 ----A---- C:\WINDOWS\system32\ieframe.dll
2013-12-11 05:34:52 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2013-12-11 05:34:50 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2013-12-11 05:34:50 ----A---- C:\WINDOWS\system32\urlmon.dll
2013-12-11 05:34:49 ----A---- C:\WINDOWS\system32\wininet.dll
2013-12-11 05:34:49 ----A---- C:\WINDOWS\system32\iertutil.dll
2013-12-11 05:34:48 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2013-12-11 05:34:48 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2013-12-11 05:34:47 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2013-12-11 05:34:46 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2013-12-11 05:34:44 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2013-12-11 05:34:44 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2013-12-11 05:34:33 ----A---- C:\WINDOWS\system32\win32k.sys
2013-12-10 17:11:22 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-10 15:23:04 ----SHD---- C:\$RECYCLE.BIN
2013-12-09 15:32:00 ----D---- C:\Program Files (x86)\Adobe
2013-12-09 15:31:36 ----D---- C:\ProgramData\Adobe
2013-12-08 04:49:01 ----D---- C:\ProgramData\CanonIJMyPrinter
2013-12-08 02:15:11 ----D---- C:\ProgramData\CanonIJPLM
2013-12-08 00:53:56 ----D---- C:\Users\Administrator\AppData\Roaming\OpenOffice
2013-12-07 19:38:02 ----D---- C:\ProgramData\Canon IJ Network Tool
2013-12-07 19:29:14 ----D---- C:\WINDOWS\SYSWOW64\STRING
2013-12-07 14:28:45 ----D---- C:\ProgramData\Oracle
2013-12-07 13:53:02 ----D---- C:\Users\Administrator\AppData\Roaming\addpcs
2013-12-07 02:51:03 ----D---- C:\Users\Administrator\AppData\Roaming\Leadertech
2013-12-06 01:34:57 ----D---- C:\ProgramData\SecTaskMan
2013-12-06 01:34:52 ----D---- C:\Program Files (x86)\Security Task Manager
2013-12-06 00:22:47 ----A---- C:\WINDOWS\system32\perfi005.dat
2013-12-06 00:22:46 ----A---- C:\WINDOWS\system32\perfh005.dat
2013-12-06 00:22:46 ----A---- C:\WINDOWS\system32\perfd005.dat
2013-12-06 00:22:46 ----A---- C:\WINDOWS\system32\perfc005.dat
2013-12-06 00:20:22 ----D---- C:\WINDOWS\SYSWOW64\cs
2013-12-06 00:20:14 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2013-12-06 00:20:14 ----D---- C:\WINDOWS\SYSWOW64\drivers\cs-CZ
2013-12-06 00:20:14 ----D---- C:\WINDOWS\cs-CZ
2013-12-06 00:20:13 ----D---- C:\WINDOWS\system32\cs
2013-12-06 00:20:03 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2013-12-04 18:27:00 ----HD---- C:\ProgramData\CanonIJEGV
2013-12-03 21:05:22 ----D---- C:\ProgramData\CanonIJ
2013-12-03 21:04:12 ----HD---- C:\ProgramData\CanonIJScan
2013-12-03 20:49:02 ----D---- C:\ProgramData\CanonIJSolutionMenuEX
2013-12-03 20:49:00 ----D---- C:\ProgramData\CanonIJEPPEX2
2013-12-03 20:49:00 ----D---- C:\ProgramData\CanonEPP
2013-12-03 20:48:59 ----D---- C:\Users\Administrator\AppData\Roaming\Canon
2013-12-03 20:46:37 ----A---- C:\WINDOWS\system32\CNMXLMAT.DLL
2013-12-03 20:43:32 ----D---- C:\Program Files\Common Files\CANON
2013-12-03 20:43:23 ----D---- C:\ProgramData\CanonIJWSpt
2013-12-03 20:39:27 ----HD---- C:\ProgramData\CanonBJ
2013-12-03 20:39:03 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2013-12-03 20:38:56 ----A---- C:\WINDOWS\SYSWOW64\CNHMCA.dll
2013-12-03 20:38:56 ----A---- C:\WINDOWS\SYSWOW64\CNC_ATU.dll
2013-12-03 20:38:56 ----A---- C:\WINDOWS\SYSWOW64\CNC_ATL.dll
2013-12-03 20:38:56 ----A---- C:\WINDOWS\system32\CNHMCA6.dll
2013-12-03 20:38:56 ----A---- C:\WINDOWS\system32\CNC_ATL.dll
2013-12-03 20:38:56 ----A---- C:\WINDOWS\system32\CNC_ATI.dll
2013-12-03 20:38:56 ----A---- C:\WINDOWS\system32\CNC_ATC.dll
2013-12-03 20:38:36 ----A---- C:\WINDOWS\system32\CNMLMAT.DLL
2013-12-03 20:38:21 ----A---- C:\WINDOWS\system32\CNMIUAT.DLL
2013-12-03 20:38:03 ----HD---- C:\Program Files\CanonBJ
2013-12-03 20:37:50 ----D---- C:\WINDOWS\system32\STRING
2013-12-03 20:37:50 ----A---- C:\WINDOWS\system32\CNMN6UI.DLL
2013-12-03 20:37:49 ----A---- C:\WINDOWS\SYSWOW64\CNMNPPM.DLL
2013-12-03 20:37:49 ----A---- C:\WINDOWS\system32\CNMN6PPM.DLL
2013-12-03 20:35:16 ----D---- C:\Program Files (x86)\Canon
2013-12-03 01:21:30 ----D---- C:\Program Files\Microsoft Mouse and Keyboard Center
2013-12-02 11:05:43 ----D---- C:\Users\Administrator\AppData\Roaming\Macromedia
2013-12-02 09:01:47 ----D---- C:\Users\Administrator\AppData\Roaming\Mozilla
2013-11-29 01:59:34 ----D---- C:\WINDOWS\Minidump
2013-11-24 15:37:17 ----A---- C:\WINDOWS\system32\WSService.dll
2013-11-24 15:37:13 ----A---- C:\WINDOWS\system32\mstscax.dll
2013-11-24 15:37:11 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2013-11-24 15:37:10 ----A---- C:\WINDOWS\system32\wuaueng.dll
2013-11-24 15:37:08 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2013-11-24 15:37:07 ----A---- C:\WINDOWS\system32\authui.dll
2013-11-24 15:37:06 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2013-11-24 15:37:06 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2013-11-24 15:37:06 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2013-11-24 15:37:06 ----A---- C:\WINDOWS\explorer.exe
2013-11-24 15:37:05 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2013-11-24 15:37:04 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2013-11-24 15:37:04 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2013-11-24 15:37:04 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2013-11-24 15:37:04 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2013-11-24 15:37:03 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-11-24 15:37:03 ----A---- C:\WINDOWS\system32\mfsvr.dll
2013-11-24 15:37:03 ----A---- C:\WINDOWS\system32\kernel32.dll
2013-11-24 15:37:03 ----A---- C:\WINDOWS\system32\d3d9.dll
2013-11-24 15:37:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2013-11-24 15:37:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2013-11-24 15:37:02 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2013-11-24 15:37:02 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2013-11-24 15:37:02 ----A---- C:\WINDOWS\system32\winmde.dll
2013-11-24 15:37:02 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2013-11-24 15:37:02 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2013-11-24 15:37:02 ----A---- C:\WINDOWS\system32\d2d1.dll
2013-11-24 15:37:01 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2013-11-24 15:37:01 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2013-11-24 15:37:01 ----A---- C:\WINDOWS\system32\wmpmde.dll
2013-11-24 15:37:01 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2013-11-24 15:37:01 ----A---- C:\WINDOWS\system32\iuilp.dll
2013-11-24 15:37:01 ----A---- C:\WINDOWS\system32\dnsapi.dll
2013-11-24 15:37:01 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2013-11-24 15:37:00 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2013-11-24 15:37:00 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2013-11-24 15:37:00 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2013-11-24 15:37:00 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2013-11-24 15:37:00 ----A---- C:\WINDOWS\system32\WWAHost.exe
2013-11-24 15:37:00 ----A---- C:\WINDOWS\system32\eapphost.dll
2013-11-24 15:36:58 ----AC---- C:\WINDOWS\system32\drivers\acpi.sys
2013-11-24 15:36:57 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2013-11-24 15:36:57 ----A---- C:\WINDOWS\system32\ploptin.dll
2013-11-24 15:36:57 ----A---- C:\WINDOWS\system32\kd_02_8086.dll
2013-11-24 15:36:57 ----A---- C:\WINDOWS\system32\AudioSes.dll
2013-11-24 15:36:56 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2013-11-24 15:36:56 ----A---- C:\WINDOWS\system32\tsmf.dll
2013-11-24 15:36:55 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2013-11-24 15:36:55 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2013-11-24 15:36:55 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2013-11-24 15:36:55 ----A---- C:\WINDOWS\system32\wintrust.dll
2013-11-24 15:36:55 ----A---- C:\WINDOWS\system32\psmsrv.dll
2013-11-24 15:36:55 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2013-11-24 15:36:55 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2013-11-24 15:36:55 ----A---- C:\WINDOWS\system32\comdlg32.dll
2013-11-24 15:36:55 ----A---- C:\WINDOWS\system32\apphelp.dll
2013-11-24 15:36:54 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2013-11-24 15:36:54 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\system32\wldp.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\system32\samsrv.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\system32\profsvc.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\system32\pcsvDevice.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\system32\msched.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2013-11-24 15:36:54 ----A---- C:\WINDOWS\system32\embeddedapplauncher.exe
2013-11-24 15:36:54 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2013-11-24 15:36:53 ----AC---- C:\WINDOWS\system32\drivers\stornvme.sys
2013-11-24 15:36:53 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2013-11-24 15:36:53 ----A---- C:\WINDOWS\system32\wuauclt.exe
2013-11-24 15:36:53 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2013-11-24 15:36:53 ----A---- C:\WINDOWS\system32\shsetup.dll
2013-11-24 15:36:53 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2013-11-24 15:36:53 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2013-11-24 15:36:53 ----A---- C:\WINDOWS\system32\dafBth.dll
2013-11-24 15:36:52 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2013-11-24 15:36:52 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2013-11-24 15:36:52 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2013-11-24 15:36:52 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2013-11-24 15:36:52 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2013-11-24 15:36:52 ----A---- C:\WINDOWS\system32\eappcfg.dll
2013-11-24 15:36:51 ----A---- C:\WINDOWS\SYSWOW64\ftp.exe
2013-11-24 15:36:51 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2013-11-24 15:36:51 ----A---- C:\WINDOWS\system32\wucltux.dll
2013-11-24 15:36:51 ----A---- C:\WINDOWS\system32\eappgnui.dll
2013-11-24 15:36:50 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2013-11-24 15:36:50 ----A---- C:\WINDOWS\SYSWOW64\miutils.dll
2013-11-24 15:36:50 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2013-11-24 15:36:50 ----A---- C:\WINDOWS\system32\rdpclip.exe
2013-11-24 15:36:50 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2013-11-24 15:36:50 ----A---- C:\WINDOWS\system32\miutils.dll
2013-11-24 15:36:50 ----A---- C:\WINDOWS\system32\ftp.exe
2013-11-24 15:36:50 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2013-11-24 15:16:54 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-11-24 15:16:51 ----A---- C:\WINDOWS\system32\shell32.dll
2013-11-24 15:16:49 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2013-11-24 15:16:47 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2013-11-24 15:16:40 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2013-11-24 15:16:40 ----A---- C:\WINDOWS\system32\actxprxy.dll
2013-11-24 15:16:39 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2013-11-24 15:16:39 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2013-11-24 12:55:04 ----D---- C:\Program Files\Canon
2013-11-17 00:17:35 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2013-11-17 00:17:35 ----A---- C:\WINDOWS\system32\gdi32.dll
2013-11-17 00:17:35 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2013-11-17 00:17:34 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2013-11-17 00:17:34 ----A---- C:\WINDOWS\system32\BFE.DLL
2013-11-17 00:14:36 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2013-11-17 00:14:36 ----A---- C:\WINDOWS\system32\crypt32.dll
2013-11-17 00:14:04 ----D---- C:\Program Files\CCleaner
2013-11-14 11:38:24 ----A---- C:\WINDOWS\system32\drivers\cmdguard.sys
2013-11-14 11:38:02 ----A---- C:\WINDOWS\system32\cmdcsr.dll
2013-11-09 19:01:38 ----D---- C:\Users\Administrator\AppData\Roaming\Adobe
2013-11-09 19:01:19 ----D---- C:\WINDOWS\Downloaded Installations
2013-11-09 18:35:25 ----A---- C:\WINDOWS\SYSWOW64\PerfStringBackup.INI
2013-11-09 17:11:11 ----D---- C:\Program Files (x86)\Reference Assemblies
2013-11-09 17:11:11 ----D---- C:\Program Files (x86)\MSBuild
2013-11-09 17:10:59 ----D---- C:\Program Files\Reference Assemblies
2013-11-09 17:10:59 ----D---- C:\Program Files\MSBuild
2013-11-09 17:08:38 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2013-11-09 17:08:38 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2013-11-09 17:08:38 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-11-09 17:08:35 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2013-11-09 17:08:35 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-11-09 17:08:34 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-11-09 15:59:01 ----SD---- C:\Users\Administrator\AppData\Roaming\Microsoft
2013-11-04 20:20:29 ----D---- C:\WINDOWS\BrowserChoice
2013-11-04 09:35:15 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2013-11-04 09:35:15 ----A---- C:\WINDOWS\system32\mfplat.dll
2013-11-04 09:34:51 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2013-11-04 09:34:51 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2013-11-04 09:34:51 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-11-04 09:34:51 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-11-04 09:34:51 ----A---- C:\WINDOWS\system32\msctf.dll
2013-11-04 09:34:50 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2013-11-04 01:02:44 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2013-11-04 00:40:26 ----D---- C:\WINDOWS\Prefetch
2013-11-04 00:05:17 ----D---- C:\ProgramData\Mozilla
2013-10-22 18:24:20 ----D---- C:\Program Files (x86)\OpenOffice 4

======List of files/folders modified in the last 3 months======

2014-01-13 11:42:32 ----D---- C:\Program Files
2014-01-13 11:25:02 ----D---- C:\WINDOWS\Temp
2014-01-13 11:20:09 ----D---- C:\WINDOWS\SoftwareDistribution
2014-01-13 11:20:01 ----D---- C:\Windows
2014-01-13 11:18:30 ----RD---- C:\WINDOWS\System32
2014-01-13 11:00:04 ----D---- C:\WINDOWS\Microsoft.NET
2014-01-13 10:59:46 ----D---- C:\WINDOWS\WinSxS
2014-01-13 10:49:52 ----HD---- C:\ProgramData
2014-01-13 10:42:16 ----RD---- C:\Program Files (x86)
2014-01-12 23:02:52 ----D---- C:\WINDOWS\Inf
2014-01-12 23:02:23 ----D---- C:\WINDOWS\SysWOW64
2014-01-12 22:58:16 ----D---- C:\WINDOWS\system32\config
2014-01-12 22:57:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-12 22:56:17 ----SHD---- C:\WINDOWS\Installer
2014-01-12 22:56:07 ----D---- C:\Program Files (x86)\Common Files
2014-01-12 22:55:43 ----D---- C:\WINDOWS\system32\drivers
2014-01-12 22:00:00 ----D---- C:\WINDOWS\system32\sru
2014-01-12 21:12:48 ----D---- C:\WINDOWS\system32\Tasks
2014-01-12 21:08:38 ----D---- C:\WINDOWS\system32\DriverStore
2014-01-12 19:06:10 ----SD---- C:\System Volume Information
2014-01-12 02:05:27 ----D---- C:\WINDOWS\registration
2014-01-11 18:06:14 ----HD---- C:\WINDOWS\system32\GroupPolicyUsers
2014-01-11 11:20:57 ----D---- C:\WINDOWS\system32\wbem
2014-01-11 11:19:19 ----D---- C:\WINDOWS\Tasks
2014-01-11 11:19:19 ----D---- C:\WINDOWS\system32\catroot2
2014-01-11 11:19:08 ----D---- C:\WINDOWS\system32\drivers\etc
2014-01-11 11:14:50 ----HD---- C:\Program Files\WindowsApps
2014-01-11 11:11:42 ----RD---- C:\Users
2014-01-10 23:51:31 ----D---- C:\WINDOWS\debug
2013-12-26 23:39:53 ----D---- C:\WINDOWS\Logs
2013-12-26 00:10:30 ----HD---- C:\WINDOWS\system32\GroupPolicy
2013-12-15 00:35:34 ----RSD---- C:\WINDOWS\Fonts
2013-12-14 01:13:35 ----D---- C:\Program Files\Common Files
2013-12-13 05:59:57 ----D---- C:\WINDOWS\rescache
2013-12-12 22:05:50 ----RD---- C:\WINDOWS\ToastData
2013-12-12 22:05:45 ----D---- C:\WINDOWS\WinStore
2013-12-12 22:05:45 ----D---- C:\WINDOWS\MediaViewer
2013-12-12 22:05:44 ----D---- C:\WINDOWS\SYSWOW64\en-US
2013-12-12 22:05:44 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2013-12-12 22:05:42 ----D---- C:\WINDOWS\system32\cs-CZ
2013-12-12 22:05:41 ----D---- C:\WINDOWS\system32\en-US
2013-12-12 22:05:38 ----D---- C:\WINDOWS\Camera
2013-12-12 22:05:37 ----D---- C:\WINDOWS\FileManager
2013-12-12 22:05:36 ----D---- C:\WINDOWS\apppatch
2013-12-12 22:05:33 ----D---- C:\WINDOWS\system32\Boot
2013-12-12 18:00:40 ----D---- C:\WINDOWS\system32\MRT
2013-12-12 17:59:05 ----A---- C:\WINDOWS\system32\MRT.exe
2013-12-12 17:58:55 ----D---- C:\WINDOWS\CbsTemp
2013-12-11 06:01:24 ----D---- C:\Program Files\Internet Explorer
2013-12-11 06:01:24 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-07 19:37:48 ----D---- C:\WINDOWS\twain_32
2013-12-07 16:57:04 ----SD---- C:\ProgramData\Microsoft
2013-12-07 02:17:36 ----D---- C:\WINDOWS\system32\drivers\UMDF
2013-12-06 01:02:28 ----D---- C:\WINDOWS\system32\NDF
2013-12-06 00:20:32 ----D---- C:\Program Files (x86)\Windows Mail
2013-12-06 00:20:31 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-12-06 00:20:31 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-06 00:20:30 ----D---- C:\Program Files\Windows Media Player
2013-12-06 00:20:30 ----D---- C:\Program Files\Windows Mail
2013-12-06 00:20:30 ----D---- C:\Program Files (x86)\Windows Defender
2013-12-06 00:20:29 ----D---- C:\WINDOWS\servicing
2013-12-06 00:20:29 ----D---- C:\Program Files\Windows Photo Viewer
2013-12-06 00:20:29 ----D---- C:\Program Files\Windows Journal
2013-12-06 00:20:29 ----D---- C:\Program Files\Windows Defender
2013-12-06 00:20:29 ----D---- C:\Program Files\Common Files\System
2013-12-06 00:20:22 ----D---- C:\WINDOWS\SYSWOW64\winrm
2013-12-06 00:20:22 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2013-12-06 00:20:22 ----D---- C:\WINDOWS\SYSWOW64\oobe
2013-12-06 00:20:22 ----D---- C:\WINDOWS\SYSWOW64\migration
2013-12-06 00:20:14 ----D---- C:\WINDOWS\SYSWOW64\wbem
2013-12-06 00:20:14 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2013-12-06 00:20:14 ----D---- C:\WINDOWS\SYSWOW64\MUI
2013-12-06 00:20:14 ----D---- C:\WINDOWS\SYSWOW64\drivers
2013-12-06 00:20:14 ----D---- C:\WINDOWS\SYSWOW64\Dism
2013-12-06 00:20:14 ----D---- C:\WINDOWS\SYSWOW64\Com
2013-12-06 00:20:14 ----D---- C:\WINDOWS\IME
2013-12-06 00:20:13 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2013-12-06 00:20:13 ----D---- C:\WINDOWS\system32\winrm
2013-12-06 00:20:13 ----D---- C:\WINDOWS\system32\Sysprep
2013-12-06 00:20:13 ----D---- C:\WINDOWS\system32\slmgr
2013-12-06 00:20:13 ----D---- C:\WINDOWS\system32\oobe
2013-12-06 00:20:13 ----D---- C:\WINDOWS\system32\migration
2013-12-06 00:20:13 ----D---- C:\WINDOWS\PolicyDefinitions
2013-12-06 00:20:03 ----D---- C:\WINDOWS\system32\MUI
2013-12-06 00:20:03 ----D---- C:\WINDOWS\system32\Dism
2013-12-06 00:20:01 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2013-12-06 00:19:58 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2013-12-06 00:19:58 ----D---- C:\WINDOWS\system32\Com
2013-12-06 00:19:57 ----D---- C:\WINDOWS\Help
2013-12-04 01:05:48 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2013-12-03 20:46:00 ----RSD---- C:\WINDOWS\Media
2013-12-03 01:22:45 ----D---- C:\WINDOWS\system32\catroot
2013-11-25 19:45:59 ----D---- C:\WINDOWS\system32\migwiz
2013-11-19 11:30:34 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2013-11-16 04:14:30 ----RD---- C:\WINDOWS\assembly
2013-11-16 00:11:20 ----D---- C:\WINDOWS\SYSWOW64\inetsrv
2013-11-16 00:11:20 ----D---- C:\WINDOWS\system32\inetsrv
2013-11-09 19:11:16 ----A---- C:\WINDOWS\win.ini
2013-11-09 16:02:04 ----D---- C:\WINDOWS\system32\drivers\en-US
2013-11-09 13:56:23 ----D---- C:\WINDOWS\SYSWOW64\WinMetadata
2013-11-09 13:56:23 ----D---- C:\WINDOWS\system32\WinMetadata
2013-11-09 13:56:23 ----D---- C:\Program Files\Windows Portable Devices
2013-11-09 13:56:23 ----D---- C:\Program Files\Windows Multimedia Platform
2013-11-09 13:56:22 ----D---- C:\Program Files\Common Files\Services
2013-11-09 13:56:09 ----D---- C:\WINDOWS\system32\CodeIntegrity
2013-11-09 13:55:42 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2013-11-09 13:55:41 ----D---- C:\Program Files (x86)\Audacity
2013-11-08 20:19:30 ----D---- C:\WINDOWS\SYSWOW64\WCN
2013-11-08 20:19:16 ----D---- C:\WINDOWS\system32\WCN
2013-11-04 02:10:32 ----D---- C:\WINDOWS\system32\restore
2013-11-04 01:37:48 ----D---- C:\WINDOWS\system32\wdi
2013-11-04 01:02:54 ----D---- C:\WINDOWS\system32\LogFiles
2013-11-04 00:53:03 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2013-11-04 00:53:02 ----D---- C:\WINDOWS\SYSWOW64\SMI
2013-11-04 00:53:02 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2013-11-04 00:53:02 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2013-11-04 00:53:00 ----D---- C:\WINDOWS\SYSWOW64\IME
2013-11-04 00:52:59 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2013-11-04 00:52:59 ----D---- C:\WINDOWS\SYSWOW64\catroot
2013-11-04 00:52:55 ----D---- C:\WINDOWS\system32\spool
2013-11-04 00:52:53 ----D---- C:\WINDOWS\system32\IME
2013-11-04 00:51:47 ----D---- C:\WINDOWS\DigitalLocker
2013-11-04 00:51:45 ----D---- C:\ProgramData\PRICache
2013-11-04 00:51:41 ----SD---- C:\Program Files (x86)\Windows Sidebar
2013-11-04 00:51:39 ----SD---- C:\Program Files\Windows Sidebar
2013-11-04 00:51:38 ----D---- C:\Program Files\Common Files\microsoft shared
2013-11-04 00:50:14 ----D---- C:\WINDOWS\system32\Recovery
2013-11-04 00:43:40 ----SD---- C:\Recovery
2013-11-03 23:41:05 ----D---- C:\WINDOWS\AUInstallAgent

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ACPI;@acpi.inf,%ACPI.SvcDesc%;Microsoft ACPI Driver; C:\WINDOWS\System32\drivers\ACPI.sys [2013-10-08 523096]
R0 acpiex;Microsoft ACPIEx Driver; C:\WINDOWS\System32\Drivers\acpiex.sys [2013-08-22 79712]
R0 CLFS;@%SystemRoot%\system32\drivers\clfs.sys,-100; C:\WINDOWS\System32\drivers\CLFS.sys [2013-08-22 377696]
R0 CNG;CNG; C:\WINDOWS\System32\Drivers\cng.sys [2013-08-22 564520]
R0 disk;@disk.inf,%disk_ServiceDesc%;Disk Driver; C:\WINDOWS\System32\drivers\disk.sys [2013-08-22 100192]
R0 EhStorClass;@%SystemRoot%\system32\drivers\EhStorClass.sys,-100; C:\WINDOWS\System32\drivers\EhStorClass.sys [2013-08-22 82784]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\WINDOWS\System32\drivers\fileinfo.sys [2013-08-22 79200]
R0 FltMgr;@%SystemRoot%\system32\drivers\fltmgr.sys,-10001; C:\WINDOWS\system32\drivers\fltmgr.sys [2013-08-22 358752]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\WINDOWS\System32\DRIVERS\fvevol.sys [2013-09-30 579416]
R0 intelpep;@intelpep.inf,%INTELPEP.SVCDESC%;Intel(R) Power Engine Plug-in Driver; C:\WINDOWS\System32\drivers\intelpep.sys [2013-11-11 39768]
R0 KSecDD;KSecDD; C:\WINDOWS\System32\Drivers\ksecdd.sys [2013-09-30 101208]
R0 KSecPkg;KSecPkg; C:\WINDOWS\System32\Drivers\ksecpkg.sys [2013-08-22 192864]
R0 mountmgr;@%SystemRoot%\system32\drivers\mountmgr.sys,-100; C:\WINDOWS\System32\drivers\mountmgr.sys [2013-08-22 101728]
R0 msisadrv;msisadrv; C:\WINDOWS\System32\drivers\msisadrv.sys [2013-08-22 17248]
R0 Mup;@%systemroot%\system32\drivers\mup.sys,-101; C:\WINDOWS\System32\Drivers\mup.sys [2013-08-22 78688]
R0 NDIS;@%SystemRoot%\system32\drivers\ndis.sys,-200; C:\WINDOWS\system32\drivers\ndis.sys [2013-09-30 1119576]
R0 partmgr;@%SystemRoot%\system32\drivers\partmgr.sys,-100; C:\WINDOWS\System32\drivers\partmgr.sys [2013-08-22 88928]
R0 pci;@machine.inf,%pci_svcdesc%;PCI Bus Driver; C:\WINDOWS\System32\drivers\pci.sys [2013-08-22 285536]
R0 pcw;Performance Counters for Windows Driver; C:\WINDOWS\System32\drivers\pcw.sys [2013-08-22 50016]
R0 pdc;@%SystemRoot%\system32\drivers\pdc.sys,-100; C:\WINDOWS\system32\drivers\pdc.sys [2013-11-01 86872]
R0 rdyboost;ReadyBoost; C:\WINDOWS\System32\drivers\rdyboost.sys [2013-10-13 258904]
R0 spaceport;@spaceport.inf,%Spaceport_ServiceDesc%;Storage Spaces Driver; C:\WINDOWS\System32\drivers\spaceport.sys [2013-10-31 372568]
R0 storahci;@mshdc.inf,%storahci_ServiceDescription%;Microsoft Standard SATA AHCI Driver; C:\WINDOWS\System32\drivers\storahci.sys [2013-08-22 107872]
R0 Tcpip;@%SystemRoot%\system32\tcpipcfg.dll,-50003; C:\WINDOWS\System32\drivers\tcpip.sys [2013-10-08 2551640]
R0 vdrvroot;@vdrvroot.inf,%vdrvroot_svcdesc%;Microsoft Virtual Drive Enumerator; C:\WINDOWS\System32\drivers\vdrvroot.sys [2013-08-22 37728]
R0 volmgr;@volmgr.inf,%volmgr_svcdesc%;Volume Manager Driver; C:\WINDOWS\System32\drivers\volmgr.sys [2013-08-22 73568]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\WINDOWS\System32\drivers\volmgrx.sys [2013-08-22 377696]
R0 volsnap;@volume.inf,%VolumeClassName%;Storage volumes; C:\WINDOWS\System32\drivers\volsnap.sys [2013-08-22 312160]
R0 Wdf01000;@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000; C:\WINDOWS\system32\drivers\Wdf01000.sys [2013-08-22 839488]
R0 WdFilter;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-330; C:\WINDOWS\system32\drivers\WdFilter.sys [2013-08-22 265056]
R0 WFPLWFS;@%SystemRoot%\System32\drivers\wfplwfs.sys,-6000; C:\WINDOWS\system32\DRIVERS\wfplwfs.sys [2013-10-13 136536]
R1 AFD;@%systemroot%\system32\drivers\afd.sys,-1000; C:\WINDOWS\system32\drivers\afd.sys [2013-08-22 567296]
R1 ahcache;@%systemroot%\system32\drivers\ahcache.sys,-102; C:\WINDOWS\system32\DRIVERS\ahcache.sys [2013-08-22 76800]
R1 BasicDisplay;BasicDisplay; C:\WINDOWS\System32\drivers\BasicDisplay.sys [2013-08-22 50688]
R1 BasicRender;BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [2013-08-22 33792]
R1 Beep;Beep; C:\WINDOWS\system32\drivers\Beep.sys [2013-08-22 7680]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\WINDOWS\System32\DRIVERS\cmderd.sys [2013-09-24 23168]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\system32\DRIVERS\cmdguard.sys [2013-11-14 715824]
R1 cmdhlp;COMODO Internet Security Helper Driver; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [2013-09-24 38072]
R1 Dfsc;@%systemroot%\system32\wkssvc.dll,-1008; C:\WINDOWS\System32\Drivers\dfsc.sys [2013-08-22 134656]
R1 inspect;@oem0.inf,%inspect_Desc%;COMODO Internet Security Firewall Driver; C:\WINDOWS\system32\DRIVERS\inspect.sys [2013-09-24 118400]
R1 Msfs;Msfs; C:\WINDOWS\system32\drivers\Msfs.sys [2013-08-22 30208]
R1 mssmbios;@mssmbios.inf,%mssmbios_svcdesc%;Microsoft System Management BIOS Driver; C:\WINDOWS\System32\drivers\mssmbios.sys [2013-08-22 37728]
R1 NetBIOS;@netnb.inf,%NetBIOS_Desc%;NetBIOS Interface; C:\WINDOWS\system32\DRIVERS\netbios.sys [2013-08-22 48128]
R1 NetBT;@%SystemRoot%\system32\drivers\netbt.sys,-2; C:\WINDOWS\System32\DRIVERS\netbt.sys [2013-08-22 282624]
R1 Npfs;Npfs; C:\WINDOWS\system32\drivers\Npfs.sys [2013-08-22 58880]
R1 npsvctrig;@npsvctrig.inf,%NPSVCTRIG.SvcDisplayName%;Named pipe service trigger provider; C:\WINDOWS\System32\drivers\npsvctrig.sys [2013-08-22 23040]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\WINDOWS\system32\drivers\nsiproxy.sys [2013-08-22 39936]
R1 Null;Null; C:\WINDOWS\system32\drivers\Null.sys [2013-08-22 5632]
R1 Psched;@%SystemRoot%\System32\drivers\pacer.sys,-101; C:\WINDOWS\system32\DRIVERS\pacer.sys [2013-08-22 151552]
R1 rdbss;@%systemroot%\system32\wkssvc.dll,-1000; C:\WINDOWS\system32\DRIVERS\rdbss.sys [2013-08-22 408576]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\WINDOWS\system32\DRIVERS\tdx.sys [2013-08-22 107520]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 lltdio;@%SystemRoot%\system32\lltdres.dll,-6; C:\WINDOWS\system32\DRIVERS\lltdio.sys [2013-08-22 59392]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\WINDOWS\system32\drivers\luafv.sys [2013-08-22 123904]
R2 NativeWifiP;@%SystemRoot%\System32\drivers\nwifi.sys,-101; C:\WINDOWS\system32\DRIVERS\nwifi.sys [2013-09-30 442368]
R2 Ndu;@%SystemRoot%\system32\drivers\Ndu.sys,-10001; C:\WINDOWS\system32\drivers\Ndu.sys [2013-08-22 103424]
R2 PEAUTH;PEAUTH; C:\WINDOWS\system32\drivers\peauth.sys [2013-08-22 663040]
R2 rspndr;@%SystemRoot%\system32\lltdres.dll,-5; C:\WINDOWS\system32\DRIVERS\rspndr.sys [2013-08-22 80384]
R2 secdrv;Security Driver; C:\WINDOWS\system32\drivers\secdrv.sys [2013-08-22 23040]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\WINDOWS\System32\drivers\tcpipreg.sys [2013-08-22 48640]
R2 WdNisDrv;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-370; C:\WINDOWS\system32\Drivers\WdNisDrv.sys [2013-08-22 124256]
R3 CmBatt;@cmbatt.inf,%CmBatt.SvcDesc%;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\System32\drivers\CmBatt.sys [2013-08-22 25472]
R3 CompositeBus;@CompositeBus.inf,%CompositeBus.SVCDESC%;Composite Bus Enumerator Driver; C:\WINDOWS\System32\drivers\CompositeBus.sys [2013-08-22 36352]
R3 condrv;Console Driver; C:\WINDOWS\System32\drivers\condrv.sys [2013-08-22 43008]
R3 dc3d;@oem6.inf,%dc3d.SvcDesc%;MS Hardware Device Detection Driver (USB); C:\WINDOWS\System32\drivers\dc3d.sys [2013-03-25 76464]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\WINDOWS\System32\drivers\dxgkrnl.sys [2013-11-04 1530200]
R3 HdAudAddService;@hdaudio.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2013-08-22 395776]
R3 HDAudBus;@hdaudbus.inf,%HDAudBus.SVCDESC%;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\System32\drivers\HDAudBus.sys [2013-08-22 78336]
R3 HidUsb;@input.inf,%HID.SvcDesc%;Microsoft HID Class Driver; C:\WINDOWS\System32\drivers\hidusb.sys [2013-08-22 33792]
R3 HTTP;@%SystemRoot%\system32\drivers\http.sys,-1; C:\WINDOWS\system32\drivers\HTTP.sys [2013-08-22 994144]
R3 i8042prt;@keyboard.inf,%i8042prt.SvcDesc%;i8042 Keyboard and PS/2 Mouse Port Driver; C:\WINDOWS\System32\drivers\i8042prt.sys [2013-08-22 107520]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2012-03-23 10627744]
R3 intelppm;@cpu.inf,%IntelPPM.SvcDesc%;Intel Processor Driver; C:\WINDOWS\System32\drivers\intelppm.sys [2013-08-22 98816]
R3 kbdclass;@keyboard.inf,%kbdclass.SvcDesc%;Keyboard Class Driver; C:\WINDOWS\System32\drivers\kbdclass.sys [2013-08-22 58208]
R3 kbdhid;@keyboard.inf,%KBDHID.SvcDesc%;Keyboard HID Driver; C:\WINDOWS\System32\drivers\kbdhid.sys [2013-08-22 32256]
R3 ksthunk;Kernel Streaming Thunks; C:\WINDOWS\system32\drivers\ksthunk.sys [2013-08-22 21248]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 monitor;@monitor.inf,%Monitor.SVCDESC%;Microsoft Monitor Class Function Driver Service; C:\WINDOWS\System32\drivers\monitor.sys [2013-08-22 30208]
R3 mouclass;@msmouse.inf,%mouclass.SvcDesc%;Mouse Class Driver; C:\WINDOWS\System32\drivers\mouclass.sys [2013-08-22 51040]
R3 mouhid;@msmouse.inf,%MOUHID.SvcDesc%;Mouse HID Driver; C:\WINDOWS\System32\drivers\mouhid.sys [2013-08-22 30208]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\WINDOWS\System32\drivers\mpsdrv.sys [2013-08-22 74240]
R3 MsLldp;@C:\Windows\system32\DRIVERS\mslldp.sys,-200; C:\WINDOWS\system32\DRIVERS\mslldp.sys [2013-08-22 66560]
R3 NdisVirtualBus;@%SystemRoot%\System32\drivers\NdisVirtualBus.sys,-200; C:\WINDOWS\System32\drivers\NdisVirtualBus.sys [2013-08-22 16384]
R3 Ntfs;Ntfs; C:\WINDOWS\system32\drivers\Ntfs.sys [2013-08-22 2011488]
R3 Point64;@oem13.inf,%point64.SvcDesc%;Microsoft Mouse and Keyboard Center Filter Driver; C:\WINDOWS\System32\drivers\point64.sys [2013-05-13 50864]
R3 swenum;@swenum.inf,%SWENUM.SVCDESC%;Software Bus Driver; C:\WINDOWS\System32\drivers\swenum.sys [2013-08-22 14176]
R3 umbus;@umbus.inf,%umbus.SVCDESC%;UMBus Enumerator Driver; C:\WINDOWS\System32\drivers\umbus.sys [2013-08-22 46080]
R3 usbccgp;@usb.inf,%GenericParent.SvcDesc%;Microsoft USB Generic Parent Driver; C:\WINDOWS\System32\drivers\usbccgp.sys [2013-10-23 155480]
R3 usbehci;@usbport.inf,%EHCIMP.SvcDesc%;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\drivers\usbehci.sys [2013-08-22 89952]
R3 usbhub;@usbport.inf,%ROOTHUB.SvcDesc%;Microsoft USB Standard Hub Driver; C:\WINDOWS\System32\drivers\usbhub.sys [2013-08-22 422240]
R3 usbuhci;@usbport.inf,%UHCIMP.SvcDesc%;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\drivers\usbuhci.sys [2013-08-22 34816]
R3 WmiAcpi;@wmiacpi.inf,%WMIMAP.SvcDesc%;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\System32\drivers\wmiacpi.sys [2013-08-22 16384]
S0 3ware;3ware; C:\WINDOWS\System32\drivers\3ware.sys [2013-08-22 108896]
S0 ADP80XX;ADP80XX; C:\WINDOWS\System32\drivers\ADP80XX.SYS [2013-08-22 782176]
S0 agp440;@machine.inf,%agp440_svcdesc%;Intel AGP Bus Filter; C:\WINDOWS\System32\drivers\agp440.sys [2013-08-22 62304]
S0 amdsata;amdsata; C:\WINDOWS\System32\drivers\amdsata.sys [2013-08-22 79200]
S0 amdsbs;amdsbs; C:\WINDOWS\System32\drivers\amdsbs.sys [2013-08-22 259424]
S0 amdxata;amdxata; C:\WINDOWS\System32\drivers\amdxata.sys [2013-08-22 25952]
S0 arcsas;@arcsas.inf,%arcsas_ServiceName%;Adaptec SAS/SATA-II RAID Storport's Miniport Driver; C:\WINDOWS\System32\drivers\arcsas.sys [2013-08-22 114016]
S0 atapi;@mshdc.inf,%idechannel.DeviceDesc%;IDE Channel; C:\WINDOWS\System32\drivers\atapi.sys [2013-08-22 26464]
S0 b06bdrv;@netbvbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II VBD; C:\WINDOWS\System32\drivers\bxvbda.sys [2013-08-22 531296]
S0 ebdrv;@netevbda.inf,%vbd_srv_desc%;Broadcom NetXtreme II 10 GigE VBD; C:\WINDOWS\System32\drivers\evbda.sys [2013-08-22 3357024]
S0 EhStorTcgDrv;@ehstortcgdrv.inf,%EhStorTcgDrv.Desc%;Microsoft driver for storage devices supporting IEEE 1667 and TCG protocols; C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys [2013-08-22 114016]
S0 gagp30kx;@machine.inf,%gagp30kx_svcdesc%;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\WINDOWS\System32\drivers\gagp30kx.sys [2013-08-22 65888]
S0 HpSAMD;HpSAMD; C:\WINDOWS\System32\drivers\HpSAMD.sys [2013-08-22 64352]
S0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\WINDOWS\System32\drivers\hwpolicy.sys [2013-08-22 24416]
S0 iaStorAV;@iastorav.inf,%iaStorAV.DeviceDesc%;Intel(R) SATA RAID Controller Windows; C:\WINDOWS\System32\drivers\iaStorAV.sys [2013-08-10 651248]
S0 iaStorV;@iastorv.inf,%*PNP0600.DeviceDesc%;Intel RAID Controller Windows 7; C:\WINDOWS\System32\drivers\iaStorV.sys [2013-08-22 412000]
S0 intelide;intelide; C:\WINDOWS\System32\drivers\intelide.sys [2013-08-22 18272]
S0 isapnp;isapnp; C:\WINDOWS\System32\drivers\isapnp.sys [2013-08-22 21856]
S0 LSI_SAS;LSI_SAS; C:\WINDOWS\System32\drivers\lsi_sas.sys [2013-08-22 109408]
S0 LSI_SAS2;LSI_SAS2; C:\WINDOWS\System32\drivers\lsi_sas2.sys [2013-08-22 93536]
S0 LSI_SAS3;LSI_SAS3; C:\WINDOWS\System32\drivers\lsi_sas3.sys [2013-08-22 81760]
S0 LSI_SSS;LSI_SSS; C:\WINDOWS\System32\drivers\lsi_sss.sys [2013-08-22 82784]
S0 megasas;megasas; C:\WINDOWS\System32\drivers\megasas.sys [2013-08-22 56672]
S0 megasr;megasr; C:\WINDOWS\System32\drivers\megasr.sys [2013-08-22 575840]
S0 mvumis;mvumis; C:\WINDOWS\System32\drivers\mvumis.sys [2013-08-22 63840]
S0 nv_agp;@machine.inf,%agpnvidia_svcdesc%;NVIDIA nForce AGP Bus Filter; C:\WINDOWS\System32\drivers\nv_agp.sys [2013-08-22 124768]
S0 nvraid;nvraid; C:\WINDOWS\System32\drivers\nvraid.sys [2013-08-22 150368]
S0 nvstor;nvstor; C:\WINDOWS\System32\drivers\nvstor.sys [2013-08-22 168288]
S0 pciide;pciide; C:\WINDOWS\System32\drivers\pciide.sys [2013-08-22 14688]
S0 pcmcia;pcmcia; C:\WINDOWS\System32\drivers\pcmcia.sys [2013-08-22 114528]
S0 sbp2port;@sbp2.inf,%sbp2_ServiceDesc%;SBP-2 Transport/Protocol Bus Driver; C:\WINDOWS\System32\drivers\sbp2port.sys [2013-08-22 107872]
S0 SiSRaid2;SiSRaid2; C:\WINDOWS\System32\drivers\SiSRaid2.sys [2013-08-22 44896]
S0 SiSRaid4;SiSRaid4; C:\WINDOWS\System32\drivers\sisraid4.sys [2013-08-22 81760]
S0 stexstor;stexstor; C:\WINDOWS\System32\drivers\stexstor.sys [2013-08-22 31072]
S0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\WINDOWS\system32\DRIVERS\vmstorfl.sys [2013-08-22 49984]
S0 stornvme;@stornvme.inf,%StorNVMe_ServiceDesc%;Microsoft Standard NVM Express Driver; C:\WINDOWS\System32\drivers\stornvme.sys [2013-10-05 57176]
S0 storvsc;storvsc; C:\WINDOWS\System32\drivers\storvsc.sys [2013-08-22 45888]
S0 uagp35;@machine.inf,%uagp35_svcdesc%;Microsoft AGPv3.5 Filter; C:\WINDOWS\System32\drivers\uagp35.sys [2013-08-22 64864]
S0 uliagpkx;@machine.inf,%uliagpkx_svcdesc%;Uli AGP Bus Filter; C:\WINDOWS\System32\drivers\uliagpkx.sys [2013-08-22 65888]
S0 viaide;viaide; C:\WINDOWS\System32\drivers\viaide.sys [2013-08-22 19808]
S0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\WINDOWS\System32\drivers\vmbus.sys [2013-08-22 97088]
S0 vsmraid;vsmraid; C:\WINDOWS\System32\drivers\vsmraid.sys [2013-08-22 168800]
S0 VSTXRAID;@vstxraid.inf,%Driver.DeviceDesc%;VIA StorX Storage RAID Controller Windows Driver; C:\WINDOWS\System32\drivers\vstxraid.sys [2013-08-22 305504]
S0 WdBoot;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-390; C:\WINDOWS\system32\drivers\WdBoot.sys [2013-08-22 34760]
S1 cdrom;@cdrom.inf,%cdrom_ServiceDesc%;CD-ROM Driver; C:\WINDOWS\System32\drivers\cdrom.sys [2013-08-22 164352]
S1 dam;@%SystemRoot%\system32\drivers\dam.sys,-100; C:\WINDOWS\system32\drivers\dam.sys [2013-08-22 57696]
S3 1394ohci;@1394.inf,%PCI\CC_0C0010.DeviceDesc%;1394 OHCI Compliant Host Controller; C:\WINDOWS\System32\drivers\1394ohci.sys [2013-08-22 231424]
S3 acpipagr;@acpipagr.inf,%SvcDesc%;ACPI Processor Aggregator Driver; C:\WINDOWS\System32\drivers\acpipagr.sys [2013-08-22 10240]
S3 AcpiPmi;@acpipmi.inf,%AcpiPmi.SvcDesc%;ACPI Power Meter Driver; C:\WINDOWS\System32\drivers\acpipmi.sys [2013-08-22 12288]
S3 acpitime;@acpitime.inf,%AcpiTime.SvcDesc%;ACPI Wake Alarm Driver; C:\WINDOWS\System32\drivers\acpitime.sys [2013-08-22 10752]
S3 AmdK8;@cpu.inf,%AmdK8.SvcDesc%;AMD K8 Processor Driver; C:\WINDOWS\System32\drivers\amdk8.sys [2013-08-22 95744]
S3 AmdPPM;@cpu.inf,%AmdPPM.SvcDesc%;AMD Processor Driver; C:\WINDOWS\System32\drivers\amdppm.sys [2013-08-22 98816]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\WINDOWS\system32\drivers\appid.sys [2013-09-30 83456]
S3 bcmfn2;@bcmfn2.inf,%bcmfn2.SVCDESC%;bcmfn2 Service; C:\WINDOWS\System32\drivers\bcmfn2.sys [2013-08-13 17624]
S3 bowser;@%systemroot%\system32\browser.dll,-102; C:\WINDOWS\system32\DRIVERS\bowser.sys [2013-08-22 102912]
S3 BthAvrcpTg;@bthaudhid.inf,%BthAvrcpTg_SvcDesc%;Bluetooth Audio/Video Remote Control HID; C:\WINDOWS\System32\drivers\BthAvrcpTg.sys [2013-08-22 36992]
S3 BthHFEnum;@bthhfenum.inf,%BthHFEnum.SVCDESC%;Bluetooth Hands-Free Audio and Call Control HID Enumerator; C:\WINDOWS\System32\drivers\bthhfenum.sys [2013-08-22 57856]
S3 bthhfhid;@bthaudhid.inf,%BthAudioHFHid.SVCDESC%;Bluetooth Hands-Free Call Control HID; C:\WINDOWS\System32\drivers\BthHFHid.sys [2013-08-22 30720]
S3 BTHMODEM;@bthspp.inf,%BthSerial.DisplayName%;Bluetooth Serial Communications Driver; C:\WINDOWS\System32\drivers\bthmodem.sys [2013-08-22 63488]
S3 circlass;@circlass.inf,%circlass.SVCDESC%;Consumer IR Devices; C:\WINDOWS\System32\drivers\circlass.sys [2013-08-22 44032]
S3 dmvsc;dmvsc; C:\WINDOWS\System32\drivers\dmvsc.sys [2013-08-22 29696]
S3 drmkaud;@wdmaudio.inf,%drmkaud.SvcDesc%;Microsoft Trusted Audio Drivers; C:\WINDOWS\system32\drivers\drmkaud.sys [2013-08-22 14560]
S3 ErrDev;@errdev.inf,%ERRDEV.SvcDesc%;Microsoft Hardware Error Device Driver; C:\WINDOWS\System32\drivers\errdev.sys [2013-08-22 10240]
S3 exfat;exFAT File System Driver; C:\WINDOWS\system32\drivers\exfat.sys [2013-08-22 200704]
S3 fastfat;FAT12/16/32 File System Driver; C:\WINDOWS\system32\drivers\fastfat.sys [2013-08-22 217952]
S3 fdc;@fdc.inf,%fdc_ServiceDesc%;Floppy Disk Controller Driver; C:\WINDOWS\System32\drivers\fdc.sys [2013-08-22 30720]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\WINDOWS\system32\drivers\filetrace.sys [2013-08-22 34816]
S3 flpydisk;@flpydisk.inf,%floppy_ServiceDesc%;Floppy Disk Driver; C:\WINDOWS\System32\drivers\flpydisk.sys [2013-08-22 25088]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\WINDOWS\System32\drivers\FsDepends.sys [2013-08-22 56672]
S3 FxPPM;@cpu.inf,%FxPPM.SvcDesc%;Power Framework Processor Driver; C:\WINDOWS\System32\drivers\fxppm.sys [2013-08-22 27136]
S3 gencounter;@wgencounter.inf,%GenCounter.SVCDESC%;Microsoft Hyper-V Generation Counter; C:\WINDOWS\System32\drivers\vmgencounter.sys [2013-08-22 11264]
S3 GPIOClx0101;Microsoft GPIO Class Extension Driver; C:\WINDOWS\System32\Drivers\msgpioclx.sys [2013-08-22 146272]
S3 HidBatt;@hidbatt.inf,%HidBatt.SvcDesc%;HID UPS Battery Driver; C:\WINDOWS\System32\drivers\HidBatt.sys [2013-08-22 26624]
S3 HidBth;@hidbth.inf,%HIDBTH.SvcDesc%;Microsoft Bluetooth HID Miniport; C:\WINDOWS\System32\drivers\hidbth.sys [2013-08-22 96768]
S3 hidi2c;@hidi2c.inf,%hidi2c.SVCDESC%;Microsoft I2C HID Miniport Driver; C:\WINDOWS\System32\drivers\hidi2c.sys [2013-08-22 41472]
S3 HidIr;@hidir.inf,%HIDIR.SvcDesc%;Microsoft Infrared HID Driver; C:\WINDOWS\System32\drivers\hidir.sys [2013-08-22 45568]
S3 hyperkbd;hyperkbd; C:\WINDOWS\System32\drivers\hyperkbd.sys [2013-08-22 13824]
S3 HyperVideo;HyperVideo; C:\WINDOWS\system32\DRIVERS\HyperVideo.sys [2013-08-22 22016]
S3 iaLPSSi_GPIO;@ialpssi_gpio.inf,%iaLPSSi_GPIO.SVCDESC%;Intel(R) Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [2013-07-30 24568]
S3 iaLPSSi_I2C;@ialpssi_i2c.inf,%iaLPSSi_I2C.SVCDESC%;Intel(R) Serial IO I2C Controller Driver; C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [2013-07-25 99320]
S3 IpFilterDriver;@%systemroot%\system32\rascfg.dll,-32013; C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys [2013-08-22 84992]
S3 IPMIDRV;IPMIDRV; C:\WINDOWS\System32\drivers\IPMIDrv.sys [2013-08-22 79360]
S3 IPNAT;IP Network Address Translator; C:\WINDOWS\System32\drivers\ipnat.sys [2013-09-30 141824]
S3 IRENUM;@%SystemRoot%\system32\drivers\irenum.sys,-100; C:\WINDOWS\system32\drivers\irenum.sys [2013-08-22 17920]
S3 iScsiPrt;@iscsi.inf,%iScsiPortName%;iScsiPort Driver; C:\WINDOWS\System32\drivers\msiscsi.sys [2013-08-22 274784]
S3 kbldfltr;kbldfltr; C:\WINDOWS\system32\drivers\kbldfltr.sys [2013-09-30 22272]
S3 kdnic;@kdnic.inf,%KdNic.Service.DispName%;Microsoft Kernel Debug Network Miniport (NDIS 6.20); C:\WINDOWS\system32\DRIVERS\kdnic.sys [2013-08-22 19456]
S3 Modem;Modem; C:\WINDOWS\system32\drivers\modem.sys [2013-08-22 40960]
S3 MRxDAV;@%systemroot%\system32\webclnt.dll,-104; C:\WINDOWS\system32\drivers\mrxdav.sys [2013-08-22 140288]
S3 mrxsmb;@%systemroot%\system32\wkssvc.dll,-1002; C:\WINDOWS\system32\DRIVERS\mrxsmb.sys [2013-09-30 404992]
S3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys [2013-09-30 207360]
S3 MsBridge;@%SystemRoot%\system32\bridgeres.dll,-1; C:\WINDOWS\system32\DRIVERS\bridge.sys [2013-08-22 115712]
S3 msgpiowin32;@msgpiowin32.inf,%GPIO.SvcDesc%;Common Driver for Buttons, DockMode and Laptop/Slate Indicator; C:\WINDOWS\System32\drivers\msgpiowin32.sys [2013-08-22 41824]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\WINDOWS\System32\drivers\mshidkmdf.sys [2013-08-22 8192]
S3 mshidumdf;@%SystemRoot%\system32\drivers\mshidumdf.sys,-100; C:\WINDOWS\System32\drivers\mshidumdf.sys [2013-08-22 9728]
S3 MSKSSRV;@ksfilter.inf,%MSKSSRV.DeviceDesc%;Microsoft Streaming Service Proxy; C:\WINDOWS\system32\drivers\MSKSSRV.sys [2013-08-22 10624]
S3 MSPCLOCK;@ksfilter.inf,%MSPCLOCK.DeviceDesc%;Microsoft Streaming Clock Proxy; C:\WINDOWS\system32\drivers\MSPCLOCK.sys [2013-08-22 7040]
S3 MSPQM;@ksfilter.inf,%MSPQM.DeviceDesc%;Microsoft Streaming Quality Manager Proxy; C:\WINDOWS\system32\drivers\MSPQM.sys [2013-08-22 6784]
S3 MsRPC;MsRPC; C:\WINDOWS\system32\drivers\MsRPC.sys [2013-08-22 366432]
S3 MSTEE;@ksfilter.inf,%MSTEE.DeviceDesc%;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2013-08-22 7936]
S3 MTConfig;@mtconfig.inf,%MTConfig.SVCDESC%;Microsoft Input Configuration Driver; C:\WINDOWS\System32\drivers\MTConfig.sys [2013-08-22 13312]
S3 NdisCap;@%SystemRoot%\System32\drivers\ndiscap.sys,-5000; C:\WINDOWS\system32\DRIVERS\ndiscap.sys [2013-08-22 43008]
S3 NdisImPlatform;@%SystemRoot%\System32\drivers\ndisimplatform.sys,-501; C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys [2013-08-22 124928]
S3 NdisTapi;@%systemroot%\system32\rascfg.dll,-32001; C:\WINDOWS\system32\DRIVERS\ndistapi.sys [2013-08-22 24576]
S3 Ndisuio;@ndisuio.inf,%NDISUIO_Desc%;NDIS Usermode I/O Protocol; C:\WINDOWS\system32\DRIVERS\ndisuio.sys [2013-08-22 60416]
S3 NdisWan;@%systemroot%\system32\rascfg.dll,-32002; C:\WINDOWS\system32\DRIVERS\ndiswan.sys [2013-08-22 220672]
S3 NdisWanLegacy;@%systemroot%\system32\rascfg.dll,-32014; C:\WINDOWS\system32\DRIVERS\ndiswan.sys [2013-08-22 220672]
S3 NDProxy;NDIS Proxy; C:\WINDOWS\system32\drivers\NDProxy.sys [2013-08-22 72192]
S3 netvsc;netvsc; C:\WINDOWS\system32\DRIVERS\netvsc63.sys [2013-08-22 87040]
S3 NETwNs64;@netwsw00.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwsw00.sys [2013-06-18 11518976]
S3 NuidFltr;@oem11.inf,%NuidFltr.SvcDesc%;NUID filter driver; C:\WINDOWS\System32\drivers\NuidFltr.sys [2013-05-13 29312]
S3 Parport;@msports.inf,%Parport.SVCDESC%;Parallel port driver; C:\WINDOWS\System32\drivers\parport.sys [2013-08-22 94208]
S3 Processor;@cpu.inf,%Processor.SvcDesc%;Processor Driver; C:\WINDOWS\System32\drivers\processr.sys [2013-08-22 92160]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\WINDOWS\system32\drivers\qwavedrv.sys [2013-08-22 47104]
S3 RasAcd;Remote Access Auto Connection Driver; C:\WINDOWS\System32\DRIVERS\rasacd.sys [2013-08-22 17408]
S3 RasPppoe;@%systemroot%\system32\rascfg.dll,-32007; C:\WINDOWS\system32\DRIVERS\raspppoe.sys [2013-08-22 84992]
S3 rdpbus;@rdpbus.inf,%rdpbus_svcdesc%;Remote Desktop Device Redirector Bus Driver; C:\WINDOWS\System32\drivers\rdpbus.sys [2013-08-22 22528]
S3 RDPDR;@%SystemRoot%\System32\DRIVERS\rdpdr.sys,-100; C:\WINDOWS\System32\drivers\rdpdr.sys [2013-09-30 195584]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\WINDOWS\System32\drivers\rdpvideominiport.sys [2013-09-30 27488]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2013-08-22 924512]
S3 s3cap;s3cap; C:\WINDOWS\System32\drivers\vms3cap.sys [2013-08-22 7168]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\WINDOWS\System32\DRIVERS\scfilter.sys [2013-08-22 40960]
S3 sdbus;sdbus; C:\WINDOWS\System32\drivers\sdbus.sys [2013-09-30 236376]
S3 sdstor;@sdstor.inf,%sdstor_ServiceDesc%;SD Storage Port Driver; C:\WINDOWS\System32\drivers\sdstor.sys [2013-08-22 78688]
S3 SerCx;Serial UART Support Library; C:\WINDOWS\system32\drivers\SerCx.sys [2013-08-22 69472]
S3 SerCx2;Serial UART Support Library; C:\WINDOWS\system32\drivers\SerCx2.sys [2013-10-26 146776]
S3 Serenum;@msports.inf,%Serenum.SVCDESC%;Serenum Filter Driver; C:\WINDOWS\System32\drivers\serenum.sys [2013-08-22 23040]
S3 Serial;@msports.inf,%Serial.SVCDESC%;Serial port driver; C:\WINDOWS\System32\drivers\serial.sys [2013-08-22 83456]
S3 sermouse;@msmouse.inf,%sermouse.SvcDesc%;Serial Mouse Driver; C:\WINDOWS\System32\drivers\sermouse.sys [2013-08-22 26112]
S3 sfloppy;@flpydisk.inf,%sfloppy_devdesc%;High-Capacity Floppy Disk Drive; C:\WINDOWS\System32\drivers\sfloppy.sys [2013-08-22 17408]
S3 SpbCx;Simple Peripheral Bus Support Library; C:\WINDOWS\system32\drivers\SpbCx.sys [2013-08-22 72032]
S3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\WINDOWS\System32\DRIVERS\srv2.sys [2013-09-30 675328]
S3 srvnet;srvnet; C:\WINDOWS\System32\DRIVERS\srvnet.sys [2013-09-30 244224]
S3 storvsp;storvsp; C:\WINDOWS\System32\drivers\storvsp.sys [2013-09-30 68608]
S3 TCPIP6;@netip6.inf,%MS_TCPIP6.TCPIP6.ServiceDescription%;Microsoft IPv6 Protocol Driver; C:\WINDOWS\system32\DRIVERS\tcpip.sys [2013-10-08 2551640]
S3 terminpt;@termmou.inf,%TermInpt.SVCDESC%;Microsoft Remote Desktop Input Driver; C:\WINDOWS\System32\drivers\terminpt.sys [2013-09-30 37216]
S3 TPM;@tpm.inf,%TPM%;TPM; C:\WINDOWS\system32\drivers\tpm.sys [2013-08-22 159584]
S3 TsUsbFlt;TsUsbFlt; C:\WINDOWS\system32\drivers\tsusbflt.sys [2013-08-22 56320]
S3 TsUsbGD;@tsgenericusbdriver.inf,%TsUsbGD.DeviceDesc.Generic%;Remote Desktop Generic USB Device; C:\WINDOWS\System32\drivers\TsUsbGD.sys [2013-08-22 29696]
S3 tunnel;@nettun.inf,%TUNNEL.Service.DisplayName%;Microsoft Tunnel Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunnel.sys [2013-08-22 154112]
S3 UASPStor;@uaspstor.inf,%UASPortName%;USB Attached SCSI (UAS) Driver; C:\WINDOWS\System32\drivers\uaspstor.sys [2013-08-22 74080]
S3 UCX01000;USB Controller Extension; C:\WINDOWS\System32\drivers\ucx01000.sys [2013-08-22 189792]
S3 UEFI;@uefi.inf,%UEFI.SvcDesc%;Microsoft UEFI Driver; C:\WINDOWS\System32\drivers\UEFI.sys [2013-08-22 26976]
S3 UmPass;@umpass.inf,%UmPass.SVCDESC%;Microsoft UMPass Driver; C:\WINDOWS\System32\drivers\umpass.sys [2013-08-22 11776]
S3 usbcir;@usbcir.inf,%usbcir.SVCDESC%;eHome Infrared Receiver (USBCIR); C:\WINDOWS\System32\drivers\usbcir.sys [2013-08-22 98304]
S3 USBHUB3;@usbhub3.inf,%UsbHub3.SVCDESC%;SuperSpeed Hub; C:\WINDOWS\System32\drivers\UsbHub3.sys [2013-09-30 467800]
S3 usbohci;@usbport.inf,%OHCIMP.SvcDesc%;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\System32\drivers\usbohci.sys [2013-08-22 30208]
S3 usbprint;@usbprint.inf,%USBPRINT.SvcDesc%;Microsoft USB PRINTER Class; C:\WINDOWS\System32\drivers\usbprint.sys [2013-08-22 26112]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 USBSTOR;@usbstor.inf,%USBSTOR.SvcDesc%;USB Mass Storage Driver; C:\WINDOWS\System32\drivers\USBSTOR.SYS [2013-08-22 142688]
S3 USBXHCI;@usbxhci.inf,%PCI\CC_0C0330.DeviceDesc%;USB xHCI Compliant Host Controller; C:\WINDOWS\System32\drivers\USBXHCI.SYS [2013-11-09 325464]
S3 VerifierExt;@%SystemRoot%\system32\drivers\VerifierExt.sys,-1000; C:\WINDOWS\system32\drivers\VerifierExt.sys [2013-09-30 175960]
S3 vhdmp;vhdmp; C:\WINDOWS\System32\drivers\vhdmp.sys [2013-08-22 551776]
S3 Vid;Vid; C:\WINDOWS\System32\drivers\Vid.sys [2013-09-30 220672]
S3 VMBusHID;VMBusHID; C:\WINDOWS\System32\drivers\VMBusHID.sys [2013-08-22 21760]
S3 vmbusr;@%SystemRoot%\system32\drivers\vmbusr.sys,-1001; C:\WINDOWS\System32\drivers\vmbusr.sys [2013-09-30 129536]
S3 vpci;@wvpci.inf,%vpci.SVCDESC%;Microsoft Hyper-V Virtual PCI Bus; C:\WINDOWS\System32\drivers\vpci.sys [2013-08-22 69472]
S3 vpcivsp;@wvpcivsp.inf,%vpcivsp.SVCDESC%;Microsoft Hyper-V PCI Server; C:\WINDOWS\System32\drivers\vpcivsp.sys [2013-09-30 65536]
S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\WINDOWS\System32\drivers\vwifibus.sys [2013-08-22 24576]
S3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 WacomPen;@hiddigi.inf,%WacomPen.SVCDESC%;Wacom Serial Pen HID Driver; C:\WINDOWS\System32\drivers\wacompen.sys [2013-08-22 26752]
S3 WIMMount;WIMMount; C:\WINDOWS\system32\drivers\wimmount.sys [2013-08-22 33632]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
S3 wpcfltr;Family Safety Filter Driver; C:\WINDOWS\system32\DRIVERS\wpcfltr.sys [2013-08-22 54304]
S3 WpdUpFltr;@%systemroot%\System32\drivers\WpdUpFltr.sys,-100; C:\WINDOWS\System32\drivers\WpdUpFltr.sys [2013-08-22 26976]
S3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\WINDOWS\system32\drivers\WudfPf.sys [2013-08-22 117760]
S3 WUDFRd;@hidbthle.inf,%WudfRdDisplayName%;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\System32\drivers\WUDFRd.sys [2013-08-22 230912]
S3 WUDFWpdFs;WUDFWpdFs; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2013-08-22 230912]
S3 WUDFWpdMtp;WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [2013-08-22 230912]
S4 cdfs;CD/DVD File System Reader; C:\WINDOWS\system32\DRIVERS\cdfs.sys [2013-08-22 88576]
S4 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\WINDOWS\system32\drivers\csc.sys [2013-09-30 559616]
S4 udfs;udfs; C:\WINDOWS\system32\DRIVERS\udfs.sys [2013-08-22 316928]
S4 ws2ifsl;@%systemroot%\System32\drivers\ws2ifsl.sys,-1000; C:\WINDOWS\system32\drivers\ws2ifsl.sys [2013-08-22 21504]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\AudioEndpointBuilder.dll,-204; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 Audiosrv;@%SystemRoot%\system32\audiosrv.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 BDESVC;BitLocker Drive Encryption Service; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 BITS;Background Intelligent Transfer Service; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 BrokerInfrastructure;@%windir%\system32\bisrv.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2013-10-20 6254152]
R2 CryptSvc;@%SystemRoot%\system32\cryptsvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 DcomLaunch;@combase.dll,-5012; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 Dhcp;@%SystemRoot%\system32\dhcpcore.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 DPS;Diagnostic Policy Service; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\WINDOWS\System32\lsass.exe [2013-08-22 45008]
R2 EventLog;@%SystemRoot%\system32\wevtsvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 gpsvc;@gpapi.dll,-112; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 LSM;@%windir%\system32\lsm.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 RpcSs;@combase.dll,-5010; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 SamSs;@%SystemRoot%\system32\samsrv.dll,-1; C:\WINDOWS\system32\lsass.exe [2013-08-22 45008]
R2 SENS;@%SystemRoot%\system32\Sens.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 Schedule;@%SystemRoot%\system32\schedsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 Spooler;Print Spooler; C:\WINDOWS\System32\spoolsv.exe [2013-08-22 798208]
R2 SystemEventsBroker;@%windir%\system32\SystemEventsBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 Themes;Themes; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R2 Wcmsvc;@%SystemRoot%\System32\wcmsvc.dll,-4097; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 WinDefend;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310; C:\Program Files\Windows Defender\MsMpEng.exe [2013-08-22 23840]
R2 Winmgmt;@%Systemroot%\system32\wbem\wmisvc.dll,-205; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R2 wscsvc;@%SystemRoot%\System32\wscsvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 EventSystem;COM+ Event System; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 hidserv;@%SystemRoot%\System32\hidserv.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 lmhosts;TCP/IP NetBIOS Helper; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 NcbService;@%SystemRoot%\system32\ncbservice.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 netprofm;@%SystemRoot%\system32\netprofmsvc.dll,-202; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 NlaSvc;Network Location Awareness; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 PcaSvc;Program Compatibility Assistant Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 PlugPlay;@%SystemRoot%\system32\umpnpmgr.dll,-200; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 PolicyAgent;@%SystemRoot%\System32\polstore.dll,-5010; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 ShellHWDetection;Shell Hardware Detection; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 TimeBroker;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
R3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\WINDOWS\system32\lsass.exe [2013-08-22 45008]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
R3 WdNisSvc;@%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320; C:\Program Files\Windows Defender\NisSrv.exe [2013-08-22 346872]
R3 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2013-08-22 844800]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\WINDOWS\system32\sppsvc.exe [2013-09-30 6353952]
S2 wuauserv;Windows Update; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 AppMgmt;@appmgmts.dll,-3250; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 AppReadiness;@%SystemRoot%\System32\AppReadiness.dll,-1000; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 AppXSvc;@%SystemRoot%\system32\appxdeploymentserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 cmdvirth;COMODO Virtual Service Manager; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2013-09-24 164056]
S3 COMSysApp;@comres.dll,-947; C:\WINDOWS\system32\dllhost.exe [2013-08-22 19296]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 DeviceInstall;@%SystemRoot%\system32\umpnpmgr.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 DsmSvc;Device Setup Manager; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 Eaphost;@%systemroot%\system32\eapsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 FDResPub;Function Discovery Resource Publication; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 fhsvc;File History Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 hkmsvc;@%SystemRoot%\system32\kmsvc.dll,-6; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 HomeGroupListener;HomeGroup Listener; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\WINDOWS\system32\IEEtwCollector.exe [2013-10-19 111616]
S3 iphlpsvc;IP Helper; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 KeyIso;@keyiso.dll,-100; C:\WINDOWS\system32\lsass.exe [2013-08-22 45008]
S3 KtmRm;@comres.dll,-2946; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 LanmanServer;Server; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 lfsvc;@%SystemRoot%\System32\GeofenceMonitorService.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-01-04 119408]
S3 MSDTC;@comres.dll,-2797; C:\WINDOWS\System32\msdtc.exe [2013-08-22 142848]
S3 msiserver;@%SystemRoot%\system32\msimsg.dll,-27; C:\WINDOWS\system32\msiexec.exe [2013-08-22 62464]
S3 NcaSvc;@%SystemRoot%\system32\ncasvc.dll,-3009; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 NcdAutoSetup;@%SystemRoot%\system32\NcdAutoSetup.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 Netlogon;@%SystemRoot%\System32\netlogon.dll,-102; C:\WINDOWS\system32\lsass.exe [2013-08-22 45008]
S3 Netman;@%SystemRoot%\system32\netman.dll,-109; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2013-11-09 117400]
S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\WINDOWS\SysWow64\perfhost.exe [2013-08-22 21504]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 RpcLocator;@%systemroot%\system32\Locator.exe,-2; C:\WINDOWS\system32\locator.exe [2013-08-22 10240]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 stisvc;Windows Image Acquisition (WIA); C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 svsvc;@%SystemRoot%\system32\svsvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 swprv;Microsoft Software Shadow Copy Provider; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 SysMain;Superfetch; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\WINDOWS\servicing\TrustedInstaller.exe [2013-08-22 98816]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\WINDOWS\system32\UI0Detect.exe [2013-08-22 40960]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\WINDOWS\System32\vds.exe [2013-08-22 1283584]
S3 vmickvpexchange;@%systemroot%\system32\vmicres.dll,-201; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 vmictimesync;@%systemroot%\system32\vmicres.dll,-401; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 vmicvss;@%systemroot%\system32\vmicres.dll,-501; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 vmicheartbeat;@%systemroot%\system32\vmicres.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 VSS;Volume Shadow Copy; C:\WINDOWS\system32\vssvc.exe [2013-08-22 1436160]
S3 W32Time;Windows Time; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 wbengine;Block Level Backup Engine Service; C:\WINDOWS\system32\wbengine.exe [2013-08-22 1542144]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 WcsPlugInService;Windows Color System; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 WebClient;@%systemroot%\system32\webclnt.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 Wecsvc;Sběr událostí systému Windows; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 WEPHOSTSVC;@%systemroot%\system32\wephostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 WiaRpc;@%SystemRoot%\system32\wiarpc.dll,-2; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 wmiApSrv;@%Systemroot%\system32\wbem\wmiapsrv.exe,-110; C:\WINDOWS\system32\wbem\WmiApSrv.exe [2013-08-22 195072]
S3 WPDBusEnum;Portable Device Enumerator Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S3 WSService;@%SystemRoot%\system32\WSService.dll,-103; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S3 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-05 65640]
S4 AeLookupSvc;Application Experience; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 ALG;Application Layer Gateway Service; C:\WINDOWS\System32\alg.exe [2013-08-22 92672]
S4 bthserv;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 CscService;Offline Files; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 DeviceAssociationService;Device Association Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 Dnscache;DNS Client; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 dot3svc;Wired AutoConfig; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 HOSTS Anti-PUPs;HOSTS Anti-PUPs; C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe -update []
S4 LanmanWorkstation;Workstation; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 MSiSCSI;Microsoft iSCSI Initiator Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 MsKeyboardFilter;@%SystemRoot%\system32\KeyboardFilterSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 napagent;Network Access Protection Agent; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 p2psvc;Peer Networking Grouping; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 PeerDistSvc;BranchCache; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 PrintNotify;Printer Extensions and Notifications; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 RasAuto;@%Systemroot%\system32\rasauto.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 RasMan;@%Systemroot%\system32\rasmans.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 RemoteAccess;@%Systemroot%\system32\mprdim.dll,-200; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 RemoteRegistry;@regsvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 SCardSvr;Smart Card; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 ScDeviceEnum;Smart Card Device Enumeration Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 seclogon;Secondary Logon; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 SessionEnv;Remote Desktop Configuration; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 SharedAccess;@%SystemRoot%\system32\ipnathlp.dll,-106; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 smphost;Microsoft Storage Spaces SMP; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 SNMPTRAP;SNMP Trap; C:\WINDOWS\System32\snmptrap.exe [2013-08-22 14848]
S4 SSDPSRV;SSDP Discovery; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 SstpSvc;Secure Socket Tunneling Protocol Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 TapiSrv;Telephony; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 TermService;Remote Desktop Services; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 TrkWks;Distributed Link Tracking Client; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 UmRdpService;Remote Desktop Services UserMode Port Redirector; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 upnphost;UPnP Device Host; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 vmicguestinterface;Hyper-V Guest Service Interface; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 vmicrdv;Hyper-V Remote Desktop Virtualization Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 vmicshutdown;Hyper-V Guest Shutdown Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 wcncsvc;Windows Connect Now - Config Registrar; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 WdiServiceHost;Diagnostic Service Host; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 WerSvc;Windows Error Reporting Service; C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 WinHttpAutoProxySvc;WinHTTP Web Proxy Auto-Discovery Service; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\System32\svchost.exe [2013-08-22 37768]
S4 WlanSvc;WLAN AutoConfig; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 wlidsvc;@%SystemRoot%\system32\wlidsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\wmpnetwk.exe [2013-08-22 1402368]
S4 WPCSvc;Family Safety; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]
S4 WwanSvc;WWAN AutoConfig; C:\WINDOWS\system32\svchost.exe [2013-08-22 37768]

-----------------EOF-----------------

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) http://forum.viry.cz/viewtopic.php?f=29&t=115222

• Provedte aktualizaci
• Provedte uplny sken - nic nemazte
• MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

Malwarebytes' Anti-Malware - zadne nakazy



# AdwCleaner v3.017 - Report created 13/01/2014 at 13:58:36
# Updated 12/01/2014 by Xplode
# Operating System : Windows 8.1 Pro (64 bits)
# Username : Administrator - K2
# Running from : C:\Users\K22.k2\Downloads\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16384


-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\K22.k2\AppData\Roaming\Mozilla\Firefox\Profiles\clvv5znp.default\prefs.js ]


[ File : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\e4hvfske.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [721 octets] - [13/01/2014 13:58:36]

########## EOF - \AdwCleaner\AdwCleaner[R0].txt - [780 octets] ##########


# AdwCleaner v3.017 - Report created 13/01/2014 at 14:00:04
# Updated 12/01/2014 by Xplode
# Operating System : Windows 8.1 Pro (64 bits)
# Username : Administrator - K2
# Running from : C:\Users\K22.k2\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16384


-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\K22.k2\AppData\Roaming\Mozilla\Firefox\Profiles\clvv5znp.default\prefs.js ]


[ File : C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\e4hvfske.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [857 octets] - [13/01/2014 13:58:36]
AdwCleaner[S0].txt - [781 octets] - [13/01/2014 14:00:04]

########## EOF - \AdwCleaner\AdwCleaner[S0].txt - [840 octets] ##########

Ktery proces zatezuje CPU??

AdwCleaner - co mam delat se slozkou backup, kterou vytvoril?


tohle jsem neinstaloval - [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Appx\AppxAllUserStore\InboxApplications\SonicWALL.MobileConnect_1.0.0.8_neutral_neutral_cw5n1h2txyewy]
"Path"="C:\\Windows\\vpnplugins\\sonicwall\\AppxManifest.xml"

Jak lze zjistit jestli je a nebo bylo moje PC nejak vzdalene zpristupneno?
Nez jsem zadal toto tema pouzil jsem system restore o tyden zpet, mam jeste log z OTL velice obsahly, nesel mi sem vlozit, tak jsem udelal restore a pak se ozval dalsi den. Vypada to, ze problemy ustaly. Mohu Vam ten log vlozit po castech jestli by se tam neco za cizi aktivitu dalo vycist.
Pouzivam Windows Defender, Comodo Firewall, v Mozzile No Script, dale Ccleaner pravidelne, obcas projedu SUPERAntiSpywarem a chci mit PC nejlepe zabezpeceno jak to jen jde proti moznemu vzdalenemu cizimu pristupu atd.
Vyuzivam internetoveho bankovnictvi, veskere platby pres net. Bohuzel tomu moc nerozumim, co se tyce zabezpeceni, potom ktere windows services jsou potreba, ktere radsi vypnout, registry, Group Policy nastaveni a zkratka vedet co se v systemu odehrava.
Take se mi casto objevuje v nastaveni uctu-windows credentials-generic credential - virtualapp/didlogical - User Name 02oaidlyvsa, google rika windows Live Essentials, ja to mazu. Nepouzivam Live account. V ovladacich Microsoft Hosted Network Virtual Adapter nevim co je, Windows Features-SMB Client, jsou to veci, ktere mazu nebo vypinam a casem jsou zpet.
Muzete me nejak navest kde je mozne prehledne nastudovat vsechny tyto dulezite veci alespon v mirne pokrocilem porozumeni, souvisi to take i s tim jak rozumet logum. Googlit samozrejume umi kazdej, ale vy urcite budete vedet kam nejlepe sahnout po znalostech. Dekuji

Logy z OTL uploadnete na LP http://leteckaposta.cz/

Zabezpeceni PC je vice nez dostatecne

Prvky vzdaleneho pristupu jsem tam nenasel, ono Comodo si toto velmi dobre hlida

Co se tyce zdroju informaci, tak ono an toto zadne publikace moc neexistuji - vzhledem k velmi rychlemu vyvoji malware a IT scene celkove. Ja hledam informace na google tez, k tomu treba ruzna bezpecnostni fora (bleepingcomputer, techsupportforum...)

Nemate zac, rad jsem pomohl Zase nekdy

A na zaklade Pravidla o zamykani temat

Omlouvam se, nevedel jsem co je leteckaposta, zde je log dle domluvy:
http://leteckaposta.cz/505749257

Prosim o kontrolu, dekuji.

Spustte znovu OTL

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
• Zaskrtnete okenko Pro vsechny uzivatele
• Zaskrtnete okenko Kontrola na havet "LOP"
• Zaskrtnete okenko Kontrola na havet "Purity"
• Stari souboru zmente z 30 dnu na 7 dnu
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  CREATERESTOREPOINT
  
  netsvcs
  drivers32
  savembr:0
  
  /md5start
  atapi.sys
  autochk.exe
  cdrom.sys
  explorer.exe
  hal.dll
  scecli.dll
  services.exe
  svchost.exe
  tcpip.sys
  userinit.exe
  winlogon.exe
  /md5stop
  
  %systemroot%*.* /U /s
  %SYSTEMDRIVE%\*.exe
  %ALLUSERSPROFILE%\Application Data\*.
  %ALLUSERSPROFILE%\Application Data\*.exe /s
  %APPDATA%\*.
  %APPDATA%\*.exe /s
  %systemroot%\*. /mp /s
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\Tasks\*.job
  %systemroot%\system32\drivers\*.sys /lockedfiles
  %systemroot%\System32\config\*.sav
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\system32\drivers\*.sys /3
  %systemroot%\system32\*.* /3
  %SYSTEMDRIVE%\*.exe
  
  HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
  
  %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
  %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
  %PROGRAMFILES%\Opera\opera.exe /md5
  %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
  
  %SystemDrive%\PhysicalMBR.bin /md5 
  
  *crack* /s
  *keygen* /s
  *loader* /s

• Kliknete na tlacitko Prohledat
• Po dokonceni skenu (cca 10 az 15 min) se objevi log OTL.txt, vlozte
• Pokud bude log dlouhy (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku