API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Mar 1st, 2016
105
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 53.20 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 2016-03-01 20:27:20 - Run 2
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Tymuś\Downloads
  3. 64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.11.9600.18098)
  5. Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
  6.  
  7. 3,89 Gb Total Physical Memory | 1,90 Gb Available Physical Memory | 48,75% Memory free
  8. 5,20 Gb Paging File | 3,00 Gb Available in Paging File | 57,74% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 473,23 Gb Total Space | 406,02 Gb Free Space | 85,80% Space Free | Partition Type: NTFS
  13. Drive E: | 225,06 Gb Total Space | 217,60 Gb Free Space | 96,68% Space Free | Partition Type: NTFS
  14.  
  15. Computer Name: GIENIU | User Name: Tymuś | Logged in as Administrator.
  16. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
  17. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  18.  
  19. [color=#E56717]========== Processes (SafeList) ==========[/color]
  20.  
  21. PRC - [2016-03-01 20:26:41 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Tymuś\Downloads\OTL.exe
  22. PRC - [2016-03-01 20:18:57 | 002,235,816 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\ProgramData\Avg\Setup\_Temp\d73b4d31-d1e1-47cc-a128-b95e6ff62f79\avgsetupwrkx.exe
  23. PRC - [2016-03-01 20:18:53 | 003,147,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Users\TYMU~1\AppData\Local\Temp\AvgSetup_2cd25579-8334-42dd-901a-6c98f5133bca\install\avgsetupx.exe
  24. PRC - [2016-02-18 12:10:36 | 001,140,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
  25. PRC - [2016-02-16 23:26:03 | 005,959,696 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\ProgramData\Avg\Setup\_Temp\a454919c-d1e1-47cc-a128-b95e6ff62f79\av\avgmfapx.exe
  26. PRC - [2016-02-10 14:41:17 | 003,442,368 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_20_0_0_306.exe
  27. PRC - [2016-02-01 15:12:00 | 000,561,104 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
  28. PRC - [2015-12-29 02:32:36 | 000,392,136 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
  29. PRC - [2015-12-13 23:48:02 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
  30. PRC - [2014-10-29 01:31:31 | 000,626,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WWAHost.exe
  31. PRC - [2013-12-10 08:12:52 | 001,364,256 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
  32. PRC - [2012-10-09 00:15:51 | 000,039,808 | ---- | M] (Wacom Technology) -- C:\Program Files\Tablet\Pen\WacomHost.exe
  33.  
  34.  
  35. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  36.  
  37. MOD - [2016-02-10 14:41:16 | 017,891,008 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll
  38. MOD - [2015-12-14 12:28:54 | 040,500,224 | ---- | M] () -- C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll
  39. MOD - [2013-12-10 08:13:08 | 000,013,088 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
  40.  
  41.  
  42. [color=#E56717]========== Services (SafeList) ==========[/color]
  43.  
  44. SRV:[b]64bit:[/b] - [2015-07-22 14:52:08 | 001,633,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
  45. SRV:[b]64bit:[/b] - [2015-07-16 19:58:34 | 000,074,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
  46. SRV:[b]64bit:[/b] - [2015-05-30 20:36:24 | 000,230,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
  47. SRV:[b]64bit:[/b] - [2015-05-12 14:19:37 | 000,294,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
  48. SRV:[b]64bit:[/b] - [2015-05-07 16:21:51 | 000,522,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
  49. SRV:[b]64bit:[/b] - [2015-02-21 00:49:18 | 000,780,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
  50. SRV:[b]64bit:[/b] - [2015-02-04 00:58:28 | 000,366,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
  51. SRV:[b]64bit:[/b] - [2015-02-04 00:58:28 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
  52. SRV:[b]64bit:[/b] - [2014-10-31 05:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
  53. SRV:[b]64bit:[/b] - [2014-10-29 05:09:06 | 000,092,992 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\KeyboardFilterSvc.dll -- (MsKeyboardFilter)
  54. SRV:[b]64bit:[/b] - [2014-10-29 04:59:51 | 003,460,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
  55. SRV:[b]64bit:[/b] - [2014-10-29 04:50:12 | 002,987,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
  56. SRV:[b]64bit:[/b] - [2014-10-29 03:42:19 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
  57. SRV:[b]64bit:[/b] - [2014-10-29 03:42:03 | 000,041,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
  58. SRV:[b]64bit:[/b] - [2014-10-29 03:34:51 | 000,067,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
  59. SRV:[b]64bit:[/b] - [2014-10-29 03:33:55 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
  60. SRV:[b]64bit:[/b] - [2014-10-29 03:30:35 | 000,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
  61. SRV:[b]64bit:[/b] - [2014-10-29 03:29:22 | 000,121,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
  62. SRV:[b]64bit:[/b] - [2014-10-29 02:57:05 | 000,324,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
  63. SRV:[b]64bit:[/b] - [2014-10-29 02:48:20 | 000,166,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
  64. SRV:[b]64bit:[/b] - [2014-10-29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
  65. SRV:[b]64bit:[/b] - [2014-10-29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
  66. SRV:[b]64bit:[/b] - [2014-10-29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
  67. SRV:[b]64bit:[/b] - [2014-10-29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
  68. SRV:[b]64bit:[/b] - [2014-10-29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
  69. SRV:[b]64bit:[/b] - [2014-10-29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
  70. SRV:[b]64bit:[/b] - [2014-10-29 02:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
  71. SRV:[b]64bit:[/b] - [2014-10-29 02:27:21 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
  72. SRV:[b]64bit:[/b] - [2014-10-29 02:26:21 | 000,838,656 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
  73. SRV:[b]64bit:[/b] - [2014-10-29 02:24:37 | 000,131,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
  74. SRV:[b]64bit:[/b] - [2014-10-29 02:22:40 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
  75. SRV:[b]64bit:[/b] - [2014-10-29 02:20:03 | 000,262,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
  76. SRV:[b]64bit:[/b] - [2014-10-29 02:19:20 | 000,550,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
  77. SRV:[b]64bit:[/b] - [2014-10-29 02:16:17 | 000,154,112 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
  78. SRV:[b]64bit:[/b] - [2014-10-29 02:13:24 | 000,374,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
  79. SRV:[b]64bit:[/b] - [2014-10-29 02:13:02 | 000,260,608 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
  80. SRV:[b]64bit:[/b] - [2014-10-29 02:12:36 | 000,407,040 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
  81. SRV:[b]64bit:[/b] - [2014-10-29 02:12:22 | 000,270,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
  82. SRV:[b]64bit:[/b] - [2014-10-29 02:11:10 | 001,639,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
  83. SRV:[b]64bit:[/b] - [2014-10-29 02:05:09 | 000,206,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
  84. SRV:[b]64bit:[/b] - [2014-10-29 01:48:52 | 000,562,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
  85. SRV:[b]64bit:[/b] - [2014-10-29 01:46:48 | 001,348,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
  86. SRV:[b]64bit:[/b] - [2014-10-29 01:35:51 | 001,668,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
  87. SRV:[b]64bit:[/b] - [2014-08-19 20:12:17 | 000,656,664 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Program Files\Tablet\Pen\WTabletServiceCon.exe -- (WTabletServiceCon)
  88. SRV:[b]64bit:[/b] - [2010-11-30 12:27:58 | 000,336,824 | ---- | M] (arvato digital services llc) [Disabled | Stopped] -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2_x64)
  89. SRV - [2016-02-18 12:11:34 | 001,045,928 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe -- (avgsvc)
  90. SRV - [2016-02-10 14:41:18 | 000,269,504 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
  91. SRV - [2016-02-04 22:01:46 | 000,835,152 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
  92. SRV - [2016-02-03 23:35:08 | 002,104,840 | ---- | M] (Electronic Arts) [On_Demand | Stopped] -- C:\Program Files (x86)\Origin\OriginClientService.exe -- (Origin Client Service)
  93. SRV - [2016-02-01 15:19:02 | 003,881,184 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files (x86)\AVG\Av\avgidsagent.exe -- (AVGIDSAgent)
  94. SRV - [2016-02-01 15:13:08 | 000,604,144 | ---- | M] (AVG Technologies CZ, s.r.o.) [On_Demand | Stopped] -- C:\Program Files (x86)\AVG\Av\avgamps.exe -- (AvgAMPS)
  95. SRV - [2016-02-01 15:12:00 | 000,561,104 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stop_Pending] -- C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe -- (avgwd)
  96. SRV - [2015-12-29 02:32:32 | 000,146,888 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  97. SRV - [2015-12-13 23:48:02 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
  98. SRV - [2015-05-07 16:05:40 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
  99. SRV - [2014-10-29 04:50:12 | 002,987,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
  100. SRV - [2014-10-29 02:51:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
  101. SRV - [2014-10-29 02:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
  102. SRV - [2013-12-10 08:12:52 | 001,364,256 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
  103. SRV - [2013-10-01 13:02:42 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
  104.  
  105.  
  106. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  107.  
  108. DRV:[b]64bit:[/b] - [2016-01-22 15:15:46 | 000,260,528 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
  109. DRV:[b]64bit:[/b] - [2016-01-15 21:05:57 | 000,381,608 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
  110. DRV:[b]64bit:[/b] - [2016-01-08 10:46:46 | 000,272,304 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
  111. DRV:[b]64bit:[/b] - [2016-01-08 10:46:34 | 000,023,472 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avguniva.sys -- (Avguniva)
  112. DRV:[b]64bit:[/b] - [2016-01-07 15:03:54 | 000,021,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\avgboota.sys -- (Avgboota)
  113. DRV:[b]64bit:[/b] - [2016-01-05 16:02:38 | 000,315,312 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
  114. DRV:[b]64bit:[/b] - [2015-12-16 01:14:24 | 000,315,840 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgwfpa.sys -- (Avgwfpa)
  115. DRV:[b]64bit:[/b] - [2015-12-04 14:27:46 | 000,042,416 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
  116. DRV:[b]64bit:[/b] - [2015-11-06 15:50:34 | 000,184,240 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgdiska.sys -- (Avgdiska)
  117. DRV:[b]64bit:[/b] - [2015-10-21 16:16:48 | 000,284,080 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
  118. DRV:[b]64bit:[/b] - [2015-10-11 07:34:30 | 000,468,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
  119. DRV:[b]64bit:[/b] - [2015-08-14 13:24:40 | 000,398,256 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
  120. DRV:[b]64bit:[/b] - [2015-04-16 07:17:07 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
  121. DRV:[b]64bit:[/b] - [2015-03-20 02:56:10 | 000,080,384 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
  122. DRV:[b]64bit:[/b] - [2015-03-13 05:03:31 | 000,239,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
  123. DRV:[b]64bit:[/b] - [2015-03-09 03:02:51 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
  124. DRV:[b]64bit:[/b] - [2015-03-09 03:02:45 | 000,067,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsp.sys -- (storvsp)
  125. DRV:[b]64bit:[/b] - [2015-03-04 11:25:11 | 000,377,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
  126. DRV:[b]64bit:[/b] - [2015-02-09 21:41:24 | 000,303,616 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
  127. DRV:[b]64bit:[/b] - [2015-02-09 21:41:06 | 000,035,328 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
  128. DRV:[b]64bit:[/b] - [2015-02-04 00:58:33 | 000,264,000 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
  129. DRV:[b]64bit:[/b] - [2015-02-04 00:58:33 | 000,114,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
  130. DRV:[b]64bit:[/b] - [2015-02-04 00:58:04 | 000,044,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
  131. DRV:[b]64bit:[/b] - [2014-11-21 13:55:56 | 000,141,440 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
  132. DRV:[b]64bit:[/b] - [2014-11-10 19:06:59 | 000,136,512 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
  133. DRV:[b]64bit:[/b] - [2014-11-04 20:33:40 | 000,058,176 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
  134. DRV:[b]64bit:[/b] - [2014-10-29 04:59:47 | 000,415,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
  135. DRV:[b]64bit:[/b] - [2014-10-29 04:57:42 | 000,054,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
  136. DRV:[b]64bit:[/b] - [2014-10-29 04:56:04 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
  137. DRV:[b]64bit:[/b] - [2014-10-29 03:46:43 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
  138. DRV:[b]64bit:[/b] - [2014-10-29 03:46:09 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
  139. DRV:[b]64bit:[/b] - [2014-10-29 03:45:54 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
  140. DRV:[b]64bit:[/b] - [2014-10-29 03:45:39 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
  141. DRV:[b]64bit:[/b] - [2014-10-29 03:45:16 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
  142. DRV:[b]64bit:[/b] - [2014-10-17 05:56:23 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
  143. DRV:[b]64bit:[/b] - [2014-10-17 04:35:04 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
  144. DRV:[b]64bit:[/b] - [2014-10-15 09:32:36 | 000,921,920 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
  145. DRV:[b]64bit:[/b] - [2014-10-07 07:54:45 | 000,189,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
  146. DRV:[b]64bit:[/b] - [2014-10-07 07:44:39 | 000,069,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
  147. DRV:[b]64bit:[/b] - [2014-08-15 01:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
  148. DRV:[b]64bit:[/b] - [2014-08-06 19:15:50 | 000,102,200 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wachidrouter.sys -- (WacHidRouter)
  149. DRV:[b]64bit:[/b] - [2014-08-06 19:15:50 | 000,015,160 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wacomrouterfilter.sys -- (wacomrouterfilter)
  150. DRV:[b]64bit:[/b] - [2014-08-06 19:15:50 | 000,014,136 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidkmdf.sys -- (hidkmdf)
  151. DRV:[b]64bit:[/b] - [2014-03-18 11:00:13 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
  152. DRV:[b]64bit:[/b] - [2014-03-18 10:59:58 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
  153. DRV:[b]64bit:[/b] - [2014-03-18 10:59:57 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
  154. DRV:[b]64bit:[/b] - [2014-03-18 10:59:57 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
  155. DRV:[b]64bit:[/b] - [2014-03-18 10:59:57 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
  156. DRV:[b]64bit:[/b] - [2014-03-18 10:59:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
  157. DRV:[b]64bit:[/b] - [2014-03-18 10:36:14 | 000,022,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\kbldfltr.sys -- (kbldfltr)
  158. DRV:[b]64bit:[/b] - [2014-03-18 10:36:05 | 000,220,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Vid.sys -- (Vid)
  159. DRV:[b]64bit:[/b] - [2014-03-18 10:36:05 | 000,129,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbusr.sys -- (vmbusr)
  160. DRV:[b]64bit:[/b] - [2014-03-18 10:36:05 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpcivsp.sys -- (vpcivsp)
  161. DRV:[b]64bit:[/b] - [2014-03-18 10:36:05 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
  162. DRV:[b]64bit:[/b] - [2014-03-13 13:35:24 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
  163. DRV:[b]64bit:[/b] - [2014-02-28 01:35:58 | 000,313,048 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsBaStor.sys -- (RSBASTOR)
  164. DRV:[b]64bit:[/b] - [2013-12-10 08:13:16 | 000,032,544 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
  165. DRV:[b]64bit:[/b] - [2013-11-04 03:32:06 | 000,020,280 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AsHIDSwitch64.sys -- (HIDSwitch)
  166. DRV:[b]64bit:[/b] - [2013-10-15 10:42:24 | 001,390,904 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
  167. DRV:[b]64bit:[/b] - [2013-10-15 10:42:10 | 000,069,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
  168. DRV:[b]64bit:[/b] - [2013-10-01 13:02:30 | 004,177,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
  169. DRV:[b]64bit:[/b] - [2013-09-04 18:03:50 | 003,345,376 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwew00.sys -- (NETwNe64)
  170. DRV:[b]64bit:[/b] - [2013-08-22 23:51:12 | 000,039,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
  171. DRV:[b]64bit:[/b] - [2013-08-22 23:51:12 | 000,026,008 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
  172. DRV:[b]64bit:[/b] - [2013-08-22 14:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
  173. DRV:[b]64bit:[/b] - [2013-08-22 14:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
  174. DRV:[b]64bit:[/b] - [2013-08-22 13:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
  175. DRV:[b]64bit:[/b] - [2013-08-22 13:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
  176. DRV:[b]64bit:[/b] - [2013-08-22 13:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
  177. DRV:[b]64bit:[/b] - [2013-08-22 13:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
  178. DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
  179. DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
  180. DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
  181. DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
  182. DRV:[b]64bit:[/b] - [2013-08-22 13:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
  183. DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
  184. DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
  185. DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
  186. DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
  187. DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
  188. DRV:[b]64bit:[/b] - [2013-08-22 13:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
  189. DRV:[b]64bit:[/b] - [2013-08-22 13:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
  190. DRV:[b]64bit:[/b] - [2013-08-22 13:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
  191. DRV:[b]64bit:[/b] - [2013-08-22 13:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
  192. DRV:[b]64bit:[/b] - [2013-08-22 13:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
  193. DRV:[b]64bit:[/b] - [2013-08-22 13:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
  194. DRV:[b]64bit:[/b] - [2013-08-22 13:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
  195. DRV:[b]64bit:[/b] - [2013-08-22 13:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
  196. DRV:[b]64bit:[/b] - [2013-08-22 13:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
  197. DRV:[b]64bit:[/b] - [2013-08-22 13:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
  198. DRV:[b]64bit:[/b] - [2013-08-22 13:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
  199. DRV:[b]64bit:[/b] - [2013-08-22 12:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
  200. DRV:[b]64bit:[/b] - [2013-08-22 12:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
  201. DRV:[b]64bit:[/b] - [2013-08-22 12:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
  202. DRV:[b]64bit:[/b] - [2013-08-22 12:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
  203. DRV:[b]64bit:[/b] - [2013-08-22 12:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
  204. DRV:[b]64bit:[/b] - [2013-08-22 12:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
  205. DRV:[b]64bit:[/b] - [2013-08-22 12:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
  206. DRV:[b]64bit:[/b] - [2013-08-22 12:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
  207. DRV:[b]64bit:[/b] - [2013-08-22 12:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
  208. DRV:[b]64bit:[/b] - [2013-08-22 12:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
  209. DRV:[b]64bit:[/b] - [2013-08-22 12:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
  210. DRV:[b]64bit:[/b] - [2013-08-22 12:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
  211. DRV:[b]64bit:[/b] - [2013-08-22 12:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
  212. DRV:[b]64bit:[/b] - [2013-08-22 12:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
  213. DRV:[b]64bit:[/b] - [2013-08-22 12:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
  214. DRV:[b]64bit:[/b] - [2013-08-22 09:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
  215. DRV:[b]64bit:[/b] - [2013-08-13 00:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
  216. DRV:[b]64bit:[/b] - [2013-08-10 01:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
  217. DRV:[b]64bit:[/b] - [2013-07-30 19:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
  218. DRV:[b]64bit:[/b] - [2013-07-25 20:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
  219. DRV:[b]64bit:[/b] - [2013-06-18 15:46:17 | 000,591,360 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
  220. DRV:[b]64bit:[/b] - [2012-08-02 10:22:48 | 000,014,992 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
  221. DRV:[b]64bit:[/b] - [2012-07-17 18:12:08 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
  222. DRV - [2014-06-20 12:54:48 | 000,064,064 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Cheat Engine 6.4\dbk64.sys -- (CEDRIVER60)
  223.  
  224.  
  225. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  226.  
  227.  
  228. [color=#E56717]========== Internet Explorer ==========[/color]
  229.  
  230. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  231. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  232. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  233. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  234. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  235.  
  236.  
  237. IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  238. IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  239.  
  240. IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  241. IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  242.  
  243. IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  244.  
  245. IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  246.  
  247. IE - HKU\S-1-5-21-998297695-2332797061-9300069-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
  248. IE - HKU\S-1-5-21-998297695-2332797061-9300069-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  249. IE - HKU\S-1-5-21-998297695-2332797061-9300069-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
  250. IE - HKU\S-1-5-21-998297695-2332797061-9300069-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  251.  
  252. IE - HKU\S-1-5-21-998297695-2332797061-9300069-1002\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  253.  
  254. [color=#E56717]========== FireFox ==========[/color]
  255.  
  256. FF - prefs.js..browser.search.countryCode: "PL"
  257. FF - prefs.js..browser.search.defaultenginename: "so-v"
  258. FF - prefs.js..browser.search.region: "PL"
  259. FF - prefs.js..browser.search.useDBForOrder: true
  260. FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:43.0.3
  261. FF - user.js - File not found
  262.  
  263. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_306.dll File not found
  264. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.60.2: C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
  265. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2: C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll (Oracle Corporation)
  266. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
  267. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.7: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
  268. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
  269. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
  270. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_306.dll ()
  271. FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1218158.dll (Adobe Systems, Inc.)
  272. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
  273. FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation)
  274. FF - HKLM\Software\MozillaPlugins\@ogplanet.com/npOGPPlugin: C:\Windows\system32\npOGPPlugin.dll (OGPlanet)
  275. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
  276. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
  277. FF - HKLM\Software\MozillaPlugins\@wacom.com/wtPlugin,version=2.1.0.7: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
  278. FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
  279. FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
  280. FF - HKLM\Software\MozillaPlugins\wacom.com/WacomTabletPlugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
  281.  
  282.  
  283. [2014-12-08 22:22:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tymuś\AppData\Roaming\mozilla\Extensions
  284. [2016-03-01 20:16:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tymuś\AppData\Roaming\mozilla\Firefox\Profiles\tklghvy3.default\extensions
  285. [2016-02-23 23:01:57 | 001,013,992 | ---- | M] () (No name found) -- C:\Users\Tymuś\AppData\Roaming\mozilla\firefox\profiles\tklghvy3.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
  286. [2015-12-29 02:32:16 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
  287. [2015-12-29 02:32:38 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  288.  
  289. [color=#E56717]========== Chrome ==========[/color]
  290.  
  291. CHR - Extension: No name found = C:\Users\Tymuś\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_1\
  292. CHR - Extension: No name found = C:\Users\Tymuś\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_1\
  293. CHR - Extension: No name found = C:\Users\Tymuś\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_1\
  294. CHR - Extension: No name found = C:\Users\Tymuś\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_1\
  295. CHR - Extension: No name found = C:\Users\Tymuś\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.60_1\
  296. CHR - Extension: No name found = C:\Users\Tymuś\AppData\Local\Google\Chrome\User Data\Default\Extensions\cplklnmnlbnpmjogncfgfijoopmnlemp\8.3.4_0\
  297. CHR - Extension: No name found = C:\Users\Tymuś\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_1\
  298. CHR - Extension: No name found = C:\Users\Tymuś\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.1_0\
  299. CHR - Extension: No name found = C:\Users\Tymuś\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.2.0_1\
  300. CHR - Extension: No name found = C:\Users\Tymuś\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_1\
  301.  
  302. Hosts file not found
  303. O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll (Oracle Corporation)
  304. O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll (Oracle Corporation)
  305. O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL (Microsoft Corporation)
  306. O4:[b]64bit:[/b] - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
  307. O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
  308. O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
  309. O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
  310. O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\Av\avuirunnerx.exe (AVG Technologies CZ, s.r.o.)
  311. O4 - HKLM..\Run: [AvgUi] C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe (AVG Technologies CZ, s.r.o.)
  312. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  313. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  314. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  315. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
  316. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  317. O13[b]64bit:[/b] - gopher Prefix: missing
  318. O13 - gopher Prefix: missing
  319. O15 - HKU\S-1-5-21-998297695-2332797061-9300069-1001\..Trusted Domains: hola.org ([]http in Trusted sites)
  320. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
  321. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E5200C75-3082-4D3A-9CC7-7912FB932439}: DhcpNameServer = 192.168.0.1
  322. O20:[b]64bit:[/b] - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
  323. O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
  324. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  325. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  326. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  327. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
  328. O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
  329. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  330. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  331. O32 - HKLM CDRom: AutoRun - 1
  332. O34 - HKLM BootExecute: (autocheck autochk *)
  333. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  334. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  335. O35 - HKLM\..comfile [open] -- "%1" %*
  336. O35 - HKLM\..exefile [open] -- "%1" %*
  337. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  338. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  339. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  340. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  341. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  342. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  343.  
  344. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  345.  
  346. [2016-03-01 20:24:32 | 000,000,000 | -HSD | C] -- C:\Config.Msi
  347. [2016-03-01 19:59:47 | 000,000,000 | ---D | C] -- C:\AdwCleaner
  348. [2016-02-27 22:52:27 | 000,000,000 | ---D | C] -- C:\Users\Tymuś\AppData\Roaming\com.playa-games.sfgame
  349. [2016-02-24 00:24:17 | 000,000,000 | ---D | C] -- C:\Users\Tymuś\AppData\Roaming\Eloth
  350. [2016-02-23 19:03:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoIt v3
  351. [2016-02-22 13:01:19 | 000,000,000 | ---D | C] -- C:\Users\Tymuś\AppData\Roaming\com.playsaurus.heroclicker
  352. [2016-02-17 23:53:42 | 000,000,000 | ---D | C] -- C:\Users\Tymuś\AppData\Local\RelicHuntersZero
  353. [2016-02-15 16:38:24 | 000,269,232 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgmfx64.sys
  354. [2016-02-11 18:32:22 | 000,000,000 | ---D | C] -- C:\Users\Tymuś\otclient
  355. [2016-02-09 23:44:21 | 000,000,000 | ---D | C] -- C:\Users\Tymuś\pvyber
  356. [2016-02-08 18:24:51 | 000,000,000 | ---D | C] -- C:\Users\Tymuś\AppData\Roaming\Tibia
  357. [2016-02-05 21:36:25 | 000,000,000 | ---D | C] -- C:\Users\Tymuś\psfclient
  358. [2016-02-03 23:37:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin Games
  359. [2016-02-03 23:36:39 | 000,000,000 | ---D | C] -- C:\Users\Tymuś\AppData\Roaming\Origin
  360. [2016-02-03 23:36:35 | 000,000,000 | ---D | C] -- C:\Users\Tymuś\AppData\Local\Origin
  361. [2016-02-03 23:33:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
  362. [2016-02-03 23:33:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
  363. [2016-02-03 23:33:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
  364. [2016-02-03 23:31:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Origin
  365. [2016-02-03 11:53:04 | 000,378,288 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgloga.sys
  366.  
  367. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  368.  
  369. [2016-03-01 20:24:19 | 000,001,070 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  370. [2016-03-01 20:21:17 | 000,000,882 | ---- | M] () -- C:\Users\Public\Desktop\AVG.lnk
  371. [2016-03-01 20:13:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  372. [2016-03-01 20:12:14 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  373. [2016-03-01 20:11:36 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
  374. [2016-03-01 20:11:29 | 3339,952,128 | -HS- | M] () -- C:\hiberfil.sys
  375. [2016-03-01 19:41:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  376. [2016-03-01 17:09:57 | 000,001,234 | RHS- | M] () -- C:\ProgramData\ntuser.pol
  377. [2016-02-29 17:29:53 | 002,258,330 | ---- | M] () -- C:\Users\Tymuś\Desktop\ay112693552petaluma-ca-ju.jpg
  378. [2016-02-29 02:04:27 | 000,000,132 | ---- | M] () -- C:\Users\Tymuś\AppData\Roaming\Preferencje CC formatu PNG firmy Adobe
  379. [2016-02-29 01:10:48 | 000,321,438 | ---- | M] () -- C:\Users\Tymuś\Desktop\courage-the-cowardly-dog-it-s-time-for-a-reboot-cartoon-network-646262.jpg
  380.  
  381. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  382.  
  383. [2016-03-01 20:21:17 | 000,000,882 | ---- | C] () -- C:\Users\Public\Desktop\AVG.lnk
  384. [2016-02-29 17:29:52 | 002,258,330 | ---- | C] () -- C:\Users\Tymuś\Desktop\ay112693552petaluma-ca-ju.jpg
  385. [2016-02-29 01:10:47 | 000,321,438 | ---- | C] () -- C:\Users\Tymuś\Desktop\courage-the-cowardly-dog-it-s-time-for-a-reboot-cartoon-network-646262.jpg
  386. [2016-02-04 12:25:07 | 000,002,457 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
  387. [2016-01-21 14:52:11 | 000,001,496 | ---- | C] () -- C:\Users\Tymuś\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs
  388. [2016-01-20 21:39:01 | 000,000,600 | ---- | C] () -- C:\Users\Tymuś\AppData\Local\PUTTY.RND
  389. [2016-01-05 19:06:25 | 000,001,234 | RHS- | C] () -- C:\ProgramData\ntuser.pol
  390. [2015-11-22 14:15:16 | 001,852,054 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  391. [2015-07-21 01:20:08 | 000,000,112 | ---- | C] () -- C:\Users\Tymuś\AppData\Roaming\Preferencje wtyczki JP2K CS6
  392. [2015-07-01 15:16:49 | 000,000,132 | ---- | C] () -- C:\Users\Tymuś\AppData\Roaming\Preferencje CC formatu GIF firmy Adobe
  393. [2015-06-27 19:14:55 | 000,000,132 | ---- | C] () -- C:\Users\Tymuś\AppData\Roaming\Preferencje CC formatu PNG firmy Adobe
  394. [2015-06-04 21:32:00 | 000,107,008 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
  395. [2015-06-04 21:31:11 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
  396. [2015-05-25 22:06:26 | 000,000,600 | ---- | C] () -- C:\Users\Tymuś\AppData\Roaming\winscp.rnd
  397. [2014-12-27 02:30:21 | 000,644,608 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
  398. [2014-12-27 02:30:21 | 000,258,048 | ---- | C] () -- C:\Windows\SysWow64\libFLAC.dll
  399. [2014-03-18 11:00:27 | 000,002,255 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
  400.  
  401. [color=#E56717]========== ZeroAccess Check ==========[/color]
  402.  
  403. [2015-02-09 21:31:43 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  404.  
  405. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  406.  
  407. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  408.  
  409. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
  410.  
  411. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  412.  
  413. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  414. "" = C:\Windows\SysNative\shell32.dll -- [2015-08-27 03:43:09 | 022,372,152 | ---- | M] (Microsoft Corporation)
  415. "ThreadingModel" = Apartment
  416.  
  417. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  418. "" = %SystemRoot%\system32\shell32.dll -- [2015-08-27 03:42:51 | 019,795,904 | ---- | M] (Microsoft Corporation)
  419. "ThreadingModel" = Apartment
  420.  
  421. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
  422. "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2014-10-29 02:19:43 | 001,013,760 | ---- | M] (Microsoft Corporation)
  423. "ThreadingModel" = Free
  424.  
  425. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  426. "" = %systemroot%\system32\wbem\fastprox.dll -- [2014-10-29 01:59:23 | 000,786,944 | ---- | M] (Microsoft Corporation)
  427. "ThreadingModel" = Free
  428.  
  429. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
  430. "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2014-10-29 02:16:01 | 000,512,512 | ---- | M] (Microsoft Corporation)
  431. "ThreadingModel" = Both
  432.  
  433. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  434.  
  435. [color=#E56717]========== LOP Check ==========[/color]
  436.  
  437. [2015-01-17 16:56:38 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
  438. [2015-01-17 16:56:38 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
  439. [2015-08-05 21:48:22 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\AC3Filter
  440. [2016-01-06 04:34:54 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\AVG
  441. [2015-12-29 02:48:41 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\com.freakinware.mitosis
  442. [2016-02-27 22:52:27 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\com.playa-games.sfgame
  443. [2016-02-22 13:01:19 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\com.playsaurus.heroclicker
  444. [2016-01-14 19:30:10 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\CubetractorSteam
  445. [2015-10-28 15:12:12 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\Dev-Cpp
  446. [2016-02-24 00:24:28 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\Eloth
  447. [2015-08-11 19:01:35 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\java
  448. [2016-02-03 23:37:46 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\Origin
  449. [2016-01-15 21:11:06 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\PowerISO
  450. [2014-12-17 12:23:47 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\puush
  451. [2016-01-14 19:18:34 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\Reactor Zero
  452. [2015-08-20 02:30:02 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\Steam
  453. [2016-02-09 23:54:00 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\Tibia
  454. [2016-02-10 15:23:05 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\TS3Client
  455. [2016-01-06 04:29:38 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\TuneUp Software
  456. [2016-01-14 15:14:54 | 000,000,000 | ---D | M] -- C:\Users\Tymuś\AppData\Roaming\Warside
  457.  
  458. [color=#E56717]========== Purity Check ==========[/color]
  459.  
  460.  
  461.  
  462. [color=#E56717]========== Alternate Data Streams ==========[/color]
  463.  
  464. @Alternate Data Stream - 237 bytes -> C:\Users\Tymuś\OneDrive:ms-properties
  465.  
  466. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!