API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 17th, 2018
2,212
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 71.38 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 2018-07-17 23:42:31 - Run 4
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Arekk\Downloads\Programy\Programy do czyszczenia
  3. 64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.11.9600.19036)
  5. Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
  6.  
  7. 3,89 Gb Total Physical Memory | 1,04 Gb Available Physical Memory | 26,74% Memory free
  8. 4,57 Gb Paging File | 1,47 Gb Available in Paging File | 32,10% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 186,30 Gb Total Space | 88,93 Gb Free Space | 47,73% Space Free | Partition Type: NTFS
  13. Drive D: | 258,35 Gb Total Space | 174,78 Gb Free Space | 67,65% Space Free | Partition Type: NTFS
  14.  
  15. Computer Name: AREK | User Name: Arekk | Logged in as Administrator.
  16. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
  17. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  18.  
  19. [color=#E56717]========== Processes (SafeList) ==========[/color]
  20.  
  21. PRC - [2018-07-15 16:18:01 | 010,827,992 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
  22. PRC - [2018-07-03 20:19:38 | 001,806,344 | ---- | M] (f.lux Software LLC) -- C:\Users\Arekk\AppData\Local\FluxSoftware\Flux\flux.exe
  23. PRC - [2018-04-10 08:28:06 | 000,618,776 | ---- | M] (Reason Software Company Inc.) -- C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
  24. PRC - [2018-04-10 08:28:06 | 000,297,240 | ---- | M] (Reason Software Company Inc.) -- C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
  25. PRC - [2018-02-23 23:44:28 | 000,780,688 | ---- | M] (Spotify Ltd) -- C:\Users\Arekk\AppData\Roaming\Spotify\SpotifyWebHelper.exe
  26. PRC - [2017-02-26 23:50:24 | 000,228,352 | ---- | M] () -- C:\Program Files (x86)\SteamServerBrowser\SteamServerBrowser.exe
  27. PRC - [2015-12-16 19:34:16 | 002,771,576 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
  28. PRC - [2015-12-16 19:34:16 | 001,872,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
  29. PRC - [2015-09-11 22:38:19 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Arekk\Downloads\Programy\Programy do czyszczenia\OTL.exe
  30. PRC - [2014-12-03 04:01:58 | 000,743,688 | ---- | M] (DEVGURU Co., LTD.) -- C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
  31. PRC - [2013-10-23 15:44:48 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  32. PRC - [2013-10-23 15:44:48 | 000,131,544 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
  33. PRC - [2013-10-07 18:22:26 | 000,055,880 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
  34. PRC - [2013-10-07 16:36:58 | 000,181,360 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
  35. PRC - [2013-09-23 17:59:24 | 000,303,928 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
  36. PRC - [2013-09-09 13:36:34 | 000,406,328 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
  37. PRC - [2013-09-09 12:04:42 | 000,111,416 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
  38. PRC - [2013-08-29 18:11:08 | 019,646,544 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
  39. PRC - [2013-08-29 18:01:56 | 000,602,936 | ---- | M] (ASUS) -- C:\Program Files\ASUS\P4G\InsOnWMI.exe
  40. PRC - [2013-08-29 18:01:56 | 000,277,120 | ---- | M] (ASUS) -- C:\Program Files\ASUS\P4G\InsOnSrv.exe
  41. PRC - [2013-05-30 16:17:48 | 000,205,624 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
  42. PRC - [2012-05-28 12:04:48 | 000,113,312 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
  43.  
  44.  
  45. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  46.  
  47. MOD - [2018-07-15 16:18:09 | 067,126,928 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
  48. MOD - [2018-07-15 16:15:14 | 000,483,544 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\streamback.dll
  49. MOD - [2018-07-15 16:14:31 | 000,282,840 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
  50. MOD - [2017-02-26 23:50:24 | 000,228,352 | ---- | M] () -- C:\Program Files (x86)\SteamServerBrowser\SteamServerBrowser.exe
  51. MOD - [2015-12-16 19:34:16 | 000,011,896 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
  52. MOD - [2013-10-08 22:41:42 | 000,037,968 | ---- | M] () -- C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
  53. MOD - [2013-09-09 20:23:06 | 000,162,816 | ---- | M] () -- C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
  54.  
  55.  
  56. [color=#E56717]========== Services (SafeList) ==========[/color]
  57.  
  58. SRV:[b]64bit:[/b] - [2018-07-15 16:15:03 | 000,322,464 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
  59. SRV:[b]64bit:[/b] - [2018-07-15 16:14:35 | 007,780,400 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe -- (aswbIDSAgent)
  60. SRV:[b]64bit:[/b] - [2018-03-10 18:46:10 | 000,840,192 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
  61. SRV:[b]64bit:[/b] - [2018-01-02 07:17:04 | 000,116,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
  62. SRV:[b]64bit:[/b] - [2017-01-12 18:51:17 | 000,361,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
  63. SRV:[b]64bit:[/b] - [2017-01-12 18:51:17 | 000,119,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
  64. SRV:[b]64bit:[/b] - [2016-12-25 01:39:34 | 000,133,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
  65. SRV:[b]64bit:[/b] - [2016-08-22 15:34:40 | 001,628,672 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
  66. SRV:[b]64bit:[/b] - [2016-07-12 13:10:22 | 000,538,000 | ---- | M] (Protection Technology) [On_Demand | Stopped] -- C:\Windows\SysNative\appdrvrem01.exe -- (appdrvrem01)
  67. SRV:[b]64bit:[/b] - [2016-06-07 22:32:07 | 002,988,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
  68. SRV:[b]64bit:[/b] - [2016-02-08 18:53:04 | 001,348,096 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
  69. SRV:[b]64bit:[/b] - [2016-02-03 17:11:56 | 001,673,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
  70. SRV:[b]64bit:[/b] - [2015-12-16 19:34:16 | 008,185,464 | ---- | M] (NVIDIA Corporation) [On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe -- (NvStreamNetworkSvc)
  71. SRV:[b]64bit:[/b] - [2015-12-16 19:34:16 | 006,477,432 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe -- (NvStreamSvc)
  72. SRV:[b]64bit:[/b] - [2015-12-16 19:34:16 | 001,156,216 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
  73. SRV:[b]64bit:[/b] - [2015-07-16 20:58:34 | 000,074,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
  74. SRV:[b]64bit:[/b] - [2015-05-30 21:36:24 | 000,230,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
  75. SRV:[b]64bit:[/b] - [2015-05-12 15:19:37 | 000,294,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
  76. SRV:[b]64bit:[/b] - [2015-05-07 17:21:51 | 000,522,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
  77. SRV:[b]64bit:[/b] - [2015-02-21 01:49:18 | 000,780,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
  78. SRV:[b]64bit:[/b] - [2014-12-03 04:01:58 | 000,743,688 | ---- | M] (DEVGURU Co., LTD.) [Auto | Running] -- C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe -- (ss_conn_service)
  79. SRV:[b]64bit:[/b] - [2014-10-29 05:59:51 | 003,460,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
  80. SRV:[b]64bit:[/b] - [2014-10-29 04:42:19 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
  81. SRV:[b]64bit:[/b] - [2014-10-29 04:42:03 | 000,041,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
  82. SRV:[b]64bit:[/b] - [2014-10-29 04:34:51 | 000,067,584 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
  83. SRV:[b]64bit:[/b] - [2014-10-29 04:33:55 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
  84. SRV:[b]64bit:[/b] - [2014-10-29 04:29:22 | 000,121,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
  85. SRV:[b]64bit:[/b] - [2014-10-29 03:57:05 | 000,324,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\BthHFSrv.dll -- (BthHFSrv)
  86. SRV:[b]64bit:[/b] - [2014-10-29 03:48:20 | 000,166,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
  87. SRV:[b]64bit:[/b] - [2014-10-29 03:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
  88. SRV:[b]64bit:[/b] - [2014-10-29 03:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
  89. SRV:[b]64bit:[/b] - [2014-10-29 03:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
  90. SRV:[b]64bit:[/b] - [2014-10-29 03:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
  91. SRV:[b]64bit:[/b] - [2014-10-29 03:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
  92. SRV:[b]64bit:[/b] - [2014-10-29 03:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
  93. SRV:[b]64bit:[/b] - [2014-10-29 03:43:27 | 000,524,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
  94. SRV:[b]64bit:[/b] - [2014-10-29 03:27:21 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
  95. SRV:[b]64bit:[/b] - [2014-10-29 03:22:40 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
  96. SRV:[b]64bit:[/b] - [2014-10-29 03:20:03 | 000,262,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
  97. SRV:[b]64bit:[/b] - [2014-10-29 03:19:20 | 000,550,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
  98. SRV:[b]64bit:[/b] - [2014-10-29 03:16:17 | 000,154,112 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
  99. SRV:[b]64bit:[/b] - [2014-10-29 03:13:24 | 000,374,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
  100. SRV:[b]64bit:[/b] - [2014-10-29 03:13:02 | 000,260,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
  101. SRV:[b]64bit:[/b] - [2014-10-29 03:12:36 | 000,407,040 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
  102. SRV:[b]64bit:[/b] - [2014-10-29 03:12:22 | 000,270,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
  103. SRV:[b]64bit:[/b] - [2014-10-29 03:11:10 | 001,639,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
  104. SRV:[b]64bit:[/b] - [2014-10-29 03:05:09 | 000,206,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
  105. SRV:[b]64bit:[/b] - [2014-10-29 02:48:52 | 000,562,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
  106. SRV:[b]64bit:[/b] - [2013-10-18 04:24:42 | 000,148,160 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\DptfPolicyCriticalService.exe -- (DptfPolicyCriticalService)
  107. SRV:[b]64bit:[/b] - [2013-10-18 04:24:42 | 000,126,952 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\DptfPolicyLpmService.exe -- (DptfPolicyLpmService)
  108. SRV:[b]64bit:[/b] - [2013-10-18 04:24:42 | 000,117,704 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\DptfParticipantProcessorService.exe -- (DptfParticipantProcessorService)
  109. SRV:[b]64bit:[/b] - [2013-10-18 04:24:42 | 000,116,680 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\DptfPolicyConfigTDPService.exe -- (DptfPolicyConfigTDPService)
  110. SRV:[b]64bit:[/b] - [2013-09-02 15:31:00 | 000,827,392 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
  111. SRV:[b]64bit:[/b] - [2013-08-29 18:01:56 | 000,277,120 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files\ASUS\P4G\InsOnSrv.exe -- (ASUS InstantOn)
  112. SRV - [2018-07-17 23:06:48 | 000,194,512 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  113. SRV - [2018-07-08 11:36:10 | 002,308,424 | ---- | M] (Overwolf LTD) [On_Demand | Stopped] -- C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe -- (OverwolfUpdater)
  114. SRV - [2018-04-10 08:28:06 | 000,297,240 | ---- | M] (Reason Software Company Inc.) [Auto | Running] -- C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe -- (Unchecky)
  115. SRV - [2018-04-03 01:34:16 | 001,671,968 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
  116. SRV - [2017-10-16 14:15:00 | 007,677,008 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GameMon.des -- (npggsvc)
  117. SRV - [2016-07-15 12:54:25 | 000,270,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
  118. SRV - [2016-06-07 22:32:07 | 002,988,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
  119. SRV - [2015-12-16 19:34:16 | 001,872,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
  120. SRV - [2015-05-07 17:05:40 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
  121. SRV - [2014-10-29 03:51:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
  122. SRV - [2014-10-29 03:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
  123. SRV - [2013-11-06 23:24:02 | 000,066,560 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe -- (BTDevManager)
  124. SRV - [2013-10-23 15:45:30 | 000,390,616 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
  125. SRV - [2013-10-23 15:44:48 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
  126. SRV - [2013-10-23 15:44:48 | 000,131,544 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R)
  127. SRV - [2013-10-22 04:51:42 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
  128. SRV - [2013-09-09 12:04:42 | 000,111,416 | ---- | M] (ASUSTek Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
  129. SRV - [2013-05-07 12:54:36 | 000,035,328 | ---- | M] (Realtek Semiconductor Corporation) [Auto | Running] -- C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe -- (AvrcpService)
  130. SRV - [2011-11-21 16:19:50 | 000,096,896 | ---- | M] (ASUS) [On_Demand | Stopped] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
  131.  
  132.  
  133. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  134.  
  135. DRV:[b]64bit:[/b] - [2018-07-15 16:15:31 | 000,463,080 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
  136. DRV:[b]64bit:[/b] - [2018-07-15 16:15:31 | 000,381,584 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
  137. DRV:[b]64bit:[/b] - [2018-07-15 16:15:31 | 000,211,160 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
  138. DRV:[b]64bit:[/b] - [2018-07-15 16:15:30 | 000,159,640 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
  139. DRV:[b]64bit:[/b] - [2018-07-15 16:15:30 | 000,085,968 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
  140. DRV:[b]64bit:[/b] - [2018-07-15 16:15:30 | 000,046,976 | ---- | M] (AVAST Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
  141. DRV:[b]64bit:[/b] - [2018-07-15 16:15:29 | 000,197,160 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswArPot.sys -- (aswArPot)
  142. DRV:[b]64bit:[/b] - [2018-07-15 16:15:28 | 000,111,872 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
  143. DRV:[b]64bit:[/b] - [2018-07-15 16:14:40 | 001,027,728 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
  144. DRV:[b]64bit:[/b] - [2018-07-15 16:14:32 | 000,239,680 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswHdsKe.sys -- (aswHdsKe)
  145. DRV:[b]64bit:[/b] - [2018-07-15 16:14:30 | 000,346,664 | ---- | M] (AVAST Software) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\aswbloga.sys -- (aswblog)
  146. DRV:[b]64bit:[/b] - [2018-07-15 16:14:30 | 000,229,392 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswbidsdrivera.sys -- (aswbidsdriver)
  147. DRV:[b]64bit:[/b] - [2018-07-15 16:14:30 | 000,201,328 | ---- | M] (AVAST Software) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\aswbidsha.sys -- (aswbidsh)
  148. DRV:[b]64bit:[/b] - [2018-07-15 16:14:30 | 000,059,592 | ---- | M] (AVAST Software) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\aswbuniva.sys -- (aswbuniv)
  149. DRV:[b]64bit:[/b] - [2018-05-23 07:45:28 | 000,027,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
  150. DRV:[b]64bit:[/b] - [2018-05-12 22:51:23 | 000,923,480 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
  151. DRV:[b]64bit:[/b] - [2018-04-06 23:27:09 | 000,376,656 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
  152. DRV:[b]64bit:[/b] - [2018-04-05 19:47:55 | 000,087,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
  153. DRV:[b]64bit:[/b] - [2018-01-02 09:56:11 | 000,136,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
  154. DRV:[b]64bit:[/b] - [2017-11-08 17:55:00 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
  155. DRV:[b]64bit:[/b] - [2017-07-08 05:16:36 | 000,086,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
  156. DRV:[b]64bit:[/b] - [2017-05-18 23:17:30 | 000,166,288 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm)
  157. DRV:[b]64bit:[/b] - [2017-05-18 23:17:28 | 000,131,984 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus)
  158. DRV:[b]64bit:[/b] - [2017-05-16 00:09:32 | 000,057,688 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
  159. DRV:[b]64bit:[/b] - [2017-05-06 16:30:48 | 000,035,328 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\womic.sys -- (wovad_micarray)
  160. DRV:[b]64bit:[/b] - [2017-04-11 12:22:04 | 000,078,640 | ---- | M] (ASUS Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AsusTP.sys -- (AsusTP)
  161. DRV:[b]64bit:[/b] - [2017-02-10 16:37:28 | 000,046,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
  162. DRV:[b]64bit:[/b] - [2017-01-12 18:51:18 | 000,274,776 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
  163. DRV:[b]64bit:[/b] - [2017-01-12 18:51:18 | 000,117,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
  164. DRV:[b]64bit:[/b] - [2017-01-11 19:28:42 | 000,422,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
  165. DRV:[b]64bit:[/b] - [2016-07-12 13:10:22 | 002,639,976 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\appdrv01.sys -- (appdrv01)
  166. DRV:[b]64bit:[/b] - [2016-01-26 21:15:40 | 000,072,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
  167. DRV:[b]64bit:[/b] - [2015-12-16 19:34:16 | 000,050,472 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
  168. DRV:[b]64bit:[/b] - [2015-12-16 19:34:16 | 000,019,576 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
  169. DRV:[b]64bit:[/b] - [2015-12-08 05:01:06 | 000,214,832 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudserd.sys -- (ssudserd)
  170. DRV:[b]64bit:[/b] - [2015-11-25 08:29:36 | 000,083,096 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mfeelamk.sys -- (mfeelamk)
  171. DRV:[b]64bit:[/b] - [2015-10-11 08:34:30 | 000,468,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
  172. DRV:[b]64bit:[/b] - [2015-09-29 16:44:12 | 000,032,792 | ---- | M] (SteelSeries ApS) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssdevfactory.sys -- (ssdevfactory)
  173. DRV:[b]64bit:[/b] - [2015-09-29 14:24:42 | 000,155,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
  174. DRV:[b]64bit:[/b] - [2015-08-06 06:22:40 | 000,070,120 | ---- | M] (NetFilterSDK.com) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\networx.sys -- (networx)
  175. DRV:[b]64bit:[/b] - [2015-04-30 00:01:06 | 000,023,200 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
  176. DRV:[b]64bit:[/b] - [2015-04-25 04:25:32 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb80236.sys -- (usbrndis6)
  177. DRV:[b]64bit:[/b] - [2015-04-25 04:25:32 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
  178. DRV:[b]64bit:[/b] - [2015-04-16 08:17:07 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
  179. DRV:[b]64bit:[/b] - [2015-03-20 03:56:10 | 000,080,384 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
  180. DRV:[b]64bit:[/b] - [2015-03-13 06:03:31 | 000,239,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
  181. DRV:[b]64bit:[/b] - [2015-03-12 02:38:28 | 000,827,096 | ---- | M] (Realsil Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsPer.sys -- (RTSPER)
  182. DRV:[b]64bit:[/b] - [2015-03-09 04:02:51 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
  183. DRV:[b]64bit:[/b] - [2014-12-03 04:02:04 | 000,188,232 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdm.sys -- (ssadmdm)
  184. DRV:[b]64bit:[/b] - [2014-12-03 04:02:04 | 000,169,288 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadbus.sys -- (ssadbus)
  185. DRV:[b]64bit:[/b] - [2014-12-03 04:02:04 | 000,158,024 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadserd.sys -- (ssadserd)
  186. DRV:[b]64bit:[/b] - [2014-12-03 04:02:04 | 000,038,080 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadadb.sys -- (androidusb)
  187. DRV:[b]64bit:[/b] - [2014-12-03 04:02:04 | 000,021,320 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssadmdfl.sys -- (ssadmdfl)
  188. DRV:[b]64bit:[/b] - [2014-11-04 21:33:40 | 000,058,176 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
  189. DRV:[b]64bit:[/b] - [2014-10-29 05:57:42 | 000,054,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
  190. DRV:[b]64bit:[/b] - [2014-10-29 05:56:04 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
  191. DRV:[b]64bit:[/b] - [2014-10-29 04:46:43 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
  192. DRV:[b]64bit:[/b] - [2014-10-29 04:45:54 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
  193. DRV:[b]64bit:[/b] - [2014-10-29 04:45:39 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
  194. DRV:[b]64bit:[/b] - [2014-10-29 04:45:16 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
  195. DRV:[b]64bit:[/b] - [2014-10-17 06:56:23 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
  196. DRV:[b]64bit:[/b] - [2014-10-07 08:54:45 | 000,189,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
  197. DRV:[b]64bit:[/b] - [2014-08-15 02:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
  198. DRV:[b]64bit:[/b] - [2014-03-18 10:18:42 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb22.sys -- (xusb22)
  199. DRV:[b]64bit:[/b] - [2014-03-13 14:35:24 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
  200. DRV:[b]64bit:[/b] - [2014-02-22 17:49:49 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
  201. DRV:[b]64bit:[/b] - [2013-12-17 04:20:36 | 002,981,592 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtwlane.sys -- (RTWlanE)
  202. DRV:[b]64bit:[/b] - [2013-12-13 06:32:42 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
  203. DRV:[b]64bit:[/b] - [2013-12-04 20:41:54 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
  204. DRV:[b]64bit:[/b] - [2013-11-29 03:32:14 | 000,838,872 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
  205. DRV:[b]64bit:[/b] - [2013-11-06 03:32:06 | 000,555,224 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtkBtfilter.sys -- (RtkBtFilter)
  206. DRV:[b]64bit:[/b] - [2013-11-05 01:52:08 | 000,176,344 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtkA2dp.sys -- (RtkA2dp)
  207. DRV:[b]64bit:[/b] - [2013-10-26 03:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
  208. DRV:[b]64bit:[/b] - [2013-10-23 15:44:48 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
  209. DRV:[b]64bit:[/b] - [2013-10-22 04:51:26 | 004,187,648 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
  210. DRV:[b]64bit:[/b] - [2013-10-22 03:02:52 | 000,094,936 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtkHfp.sys -- (BthAudioHF)
  211. DRV:[b]64bit:[/b] - [2013-10-18 04:24:40 | 000,494,296 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\DptfManager.sys -- (DptfManager)
  212. DRV:[b]64bit:[/b] - [2013-10-18 04:24:40 | 000,289,744 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\DptfDevProc.sys -- (DptfDevProc)
  213. DRV:[b]64bit:[/b] - [2013-10-18 04:24:40 | 000,116,752 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\DptfDevPch.sys -- (DptfDevPch)
  214. DRV:[b]64bit:[/b] - [2013-10-18 04:24:38 | 000,145,640 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\DptfDevDram.sys -- (DptfDevDram)
  215. DRV:[b]64bit:[/b] - [2013-10-15 03:58:38 | 000,449,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
  216. DRV:[b]64bit:[/b] - [2013-10-08 03:47:18 | 000,020,280 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AsHIDSwitch64.sys -- (HIDSwitch)
  217. DRV:[b]64bit:[/b] - [2013-10-03 23:44:05 | 000,039,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
  218. DRV:[b]64bit:[/b] - [2013-10-03 23:44:05 | 000,027,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
  219. DRV:[b]64bit:[/b] - [2013-08-29 18:01:54 | 000,014,136 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | Auto | Running] -- C:\Program Files\ASUS\P4G\PLCTRL.sys -- (plctrl)
  220. DRV:[b]64bit:[/b] - [2013-08-22 22:59:34 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
  221. DRV:[b]64bit:[/b] - [2013-08-22 15:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
  222. DRV:[b]64bit:[/b] - [2013-08-22 15:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
  223. DRV:[b]64bit:[/b] - [2013-08-22 14:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
  224. DRV:[b]64bit:[/b] - [2013-08-22 14:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
  225. DRV:[b]64bit:[/b] - [2013-08-22 14:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
  226. DRV:[b]64bit:[/b] - [2013-08-22 14:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
  227. DRV:[b]64bit:[/b] - [2013-08-22 14:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
  228. DRV:[b]64bit:[/b] - [2013-08-22 14:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
  229. DRV:[b]64bit:[/b] - [2013-08-22 14:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
  230. DRV:[b]64bit:[/b] - [2013-08-22 14:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
  231. DRV:[b]64bit:[/b] - [2013-08-22 14:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
  232. DRV:[b]64bit:[/b] - [2013-08-22 14:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
  233. DRV:[b]64bit:[/b] - [2013-08-22 14:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
  234. DRV:[b]64bit:[/b] - [2013-08-22 14:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
  235. DRV:[b]64bit:[/b] - [2013-08-22 14:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
  236. DRV:[b]64bit:[/b] - [2013-08-22 14:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
  237. DRV:[b]64bit:[/b] - [2013-08-22 14:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
  238. DRV:[b]64bit:[/b] - [2013-08-22 14:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
  239. DRV:[b]64bit:[/b] - [2013-08-22 14:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
  240. DRV:[b]64bit:[/b] - [2013-08-22 14:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
  241. DRV:[b]64bit:[/b] - [2013-08-22 14:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
  242. DRV:[b]64bit:[/b] - [2013-08-22 14:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
  243. DRV:[b]64bit:[/b] - [2013-08-22 14:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
  244. DRV:[b]64bit:[/b] - [2013-08-22 14:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
  245. DRV:[b]64bit:[/b] - [2013-08-22 14:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
  246. DRV:[b]64bit:[/b] - [2013-08-22 13:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
  247. DRV:[b]64bit:[/b] - [2013-08-22 13:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
  248. DRV:[b]64bit:[/b] - [2013-08-22 13:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
  249. DRV:[b]64bit:[/b] - [2013-08-22 13:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
  250. DRV:[b]64bit:[/b] - [2013-08-22 13:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
  251. DRV:[b]64bit:[/b] - [2013-08-22 13:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
  252. DRV:[b]64bit:[/b] - [2013-08-22 13:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
  253. DRV:[b]64bit:[/b] - [2013-08-22 13:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
  254. DRV:[b]64bit:[/b] - [2013-08-22 13:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
  255. DRV:[b]64bit:[/b] - [2013-08-22 13:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
  256. DRV:[b]64bit:[/b] - [2013-08-22 13:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
  257. DRV:[b]64bit:[/b] - [2013-08-22 13:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
  258. DRV:[b]64bit:[/b] - [2013-08-22 13:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
  259. DRV:[b]64bit:[/b] - [2013-08-22 13:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
  260. DRV:[b]64bit:[/b] - [2013-08-22 13:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
  261. DRV:[b]64bit:[/b] - [2013-08-22 10:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
  262. DRV:[b]64bit:[/b] - [2013-08-13 10:55:18 | 000,057,560 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtkAvrcp.sys -- (RtkAvrcp)
  263. DRV:[b]64bit:[/b] - [2013-08-13 01:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
  264. DRV:[b]64bit:[/b] - [2013-08-10 02:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
  265. DRV:[b]64bit:[/b] - [2013-08-09 04:31:50 | 000,644,968 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
  266. DRV:[b]64bit:[/b] - [2013-07-31 20:25:45 | 001,975,000 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RTWlanU.sys -- (RtlWlanu)
  267. DRV:[b]64bit:[/b] - [2013-07-30 20:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
  268. DRV:[b]64bit:[/b] - [2013-07-25 21:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
  269. DRV:[b]64bit:[/b] - [2013-06-21 00:44:06 | 000,069,848 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtkAvrcpCtrlr.sys -- (RtkAvrcpCtrlr)
  270. DRV:[b]64bit:[/b] - [2013-06-18 17:05:45 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
  271. DRV:[b]64bit:[/b] - [2013-06-18 16:45:58 | 011,518,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
  272. DRV:[b]64bit:[/b] - [2013-06-18 16:45:26 | 000,460,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\e1i63x64.sys -- (e1iexpress)
  273. DRV:[b]64bit:[/b] - [2013-04-17 18:53:10 | 000,017,152 | ---- | M] (ASUSTek Computer Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AiCharger.sys -- (AiCharger)
  274. DRV:[b]64bit:[/b] - [2013-03-01 03:49:12 | 000,036,600 | ---- | M] (Riverbed Technology, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\npf.sys -- (npf)
  275. DRV:[b]64bit:[/b] - [2012-08-06 05:17:18 | 000,017,280 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr)
  276. DRV:[b]64bit:[/b] - [2010-03-15 09:38:46 | 000,161,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mdm.sys -- (s1039mdm)
  277. DRV:[b]64bit:[/b] - [2010-03-15 09:38:46 | 000,158,320 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039unic.sys -- (s1039unic)
  278. DRV:[b]64bit:[/b] - [2010-03-15 09:38:46 | 000,141,424 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mgmt.sys -- (s1039mgmt)
  279. DRV:[b]64bit:[/b] - [2010-03-15 09:38:46 | 000,137,328 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039obex.sys -- (s1039obex)
  280. DRV:[b]64bit:[/b] - [2010-03-15 09:38:46 | 000,034,416 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039nd5.sys -- (s1039nd5)
  281. DRV:[b]64bit:[/b] - [2010-03-15 09:38:46 | 000,019,568 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039mdfl.sys -- (s1039mdfl)
  282. DRV:[b]64bit:[/b] - [2010-03-15 09:38:38 | 000,127,600 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\s1039bus.sys -- (s1039bus)
  283. DRV:[b]64bit:[/b] - [2008-08-08 15:31:26 | 000,062,960 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\h648103.sys -- (h648103)
  284. DRV:[b]64bit:[/b] - [2008-08-08 15:31:22 | 000,065,776 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\h648101.sys -- (h648101)
  285. DRV:[b]64bit:[/b] - [2008-08-08 15:31:20 | 000,063,856 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\h647906.sys -- (h647906)
  286. DRV - [2016-01-24 11:42:16 | 000,011,973 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Disabled | Stopped] -- C:\Windows\SysWow64\drivers\SECDRV.SYS -- (secdrv)
  287. DRV - [2013-11-21 11:22:10 | 000,115,448 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys -- (ISODrive)
  288. DRV - [2013-07-02 18:45:52 | 000,019,768 | ---- | M] (ASUSTek Computer Inc.) [Kernel | System | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys -- (ATKWMIACPIIO)
  289. DRV - [2009-07-02 19:36:14 | 000,015,416 | ---- | M] (ASUS) [Kernel | Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64)
  290. DRV - [2008-08-08 15:31:18 | 000,043,192 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\hid8101.sys -- (hid8101)
  291. DRV - [2008-08-08 15:31:18 | 000,040,856 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\hid8103.sys -- (hid8103)
  292. DRV - [2008-08-08 15:31:16 | 000,041,272 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\hid7906.sys -- (hid7906)
  293.  
  294.  
  295. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  296.  
  297.  
  298. [color=#E56717]========== Internet Explorer ==========[/color]
  299.  
  300. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
  301. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASJB
  302. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
  303. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  304. IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
  305. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=ASJB
  306. IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
  307.  
  308. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
  309. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 1B C0 7F F2 62 05 D3 01 [binary data]
  310. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
  311. IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  312. IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
  313. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  314.  
  315. [color=#E56717]========== FireFox ==========[/color]
  316.  
  317. FF - prefs.js..browser.search.countryCode: "PL"
  318. FF - prefs.js..browser.search.region: "PL"
  319. FF - prefs.js..browser.search.widget.inNavBar: true
  320.  
  321.  
  322. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll File not found
  323. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL (Microsoft Corporation)
  324. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll ()
  325. FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll File not found
  326. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
  327. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
  328. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.171.2: C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
  329. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.171.2: C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll (Oracle Corporation)
  330. FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL (Microsoft Corporation)
  331. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll (Google Inc.)
  332. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll (Google Inc.)
  333.  
  334. 64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 61.0.1\extensions\\Components: C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS
  335. 64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 61.0.1\extensions\\Plugins: C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\PLUGINS
  336. FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 61.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
  337. FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 61.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
  338.  
  339. [2015-09-01 23:54:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\Extensions
  340. [2018-02-15 02:55:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\SystemExtensionsDev
  341. [2017-11-21 20:32:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\Firefox\Profiles\nie5rwff.default-1468432390789\browser-extension-data
  342. [2017-11-21 20:32:27 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\Firefox\Profiles\nie5rwff.default-1468432390789\browser-extension-data\{5384767E-00D9-40E9-B72F-9CC39D655D6F}
  343. [2017-10-11 19:28:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\Firefox\Profiles\nie5rwff.default-1468432390789\browser-extension-data\screenshots@mozilla.org
  344. [2018-07-17 22:43:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\Firefox\Profiles\nie5rwff.default-1468432390789\extensions
  345. [2017-08-01 20:14:27 | 000,000,000 | ---D | M] ("NetVideoHunter") -- C:\Users\Arekk\AppData\Roaming\mozilla\Firefox\Profiles\nie5rwff.default-1468432390789\extensions\netvideohunter@netvideohunter.com
  346. [2018-07-17 22:43:00 | 002,457,020 | ---- | M] () (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\firefox\profiles\nie5rwff.default-1468432390789\extensions\sp@avast.com.xpi
  347. [2016-11-14 23:29:04 | 000,353,781 | ---- | M] () (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\firefox\profiles\nie5rwff.default-1468432390789\extensions\sp@avg.com.xpi
  348. [2018-07-15 16:14:40 | 000,789,048 | ---- | M] () (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\firefox\profiles\nie5rwff.default-1468432390789\extensions\wrc@avast.com.xpi
  349. [2017-11-21 20:32:17 | 000,162,455 | ---- | M] () (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\firefox\profiles\nie5rwff.default-1468432390789\extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F}.xpi
  350. [2018-06-17 23:07:31 | 000,006,249 | ---- | M] () (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\firefox\profiles\nie5rwff.default-1468432390789\features\{1f50a795-8b82-47aa-aa73-f265015cd10a}\tls13-version-fallback-rollout-bug1462099@mozilla.org.xpi
  351. [2018-07-17 22:43:00 | 000,006,251 | ---- | M] () (No name found) -- C:\Users\Arekk\AppData\Roaming\mozilla\firefox\profiles\nie5rwff.default-1468432390789\features\{3fdd39ea-1913-407f-a28f-641750624504}\tls13-version-fallback-rollout-bug1462099@mozilla.org.xpi
  352.  
  353. [color=#E56717]========== Chrome ==========[/color]
  354.  
  355. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0\
  356. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0\
  357. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_0\
  358. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_0\
  359. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck\12.0.800_0\
  360. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0\
  361. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_1\
  362. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.4_0\
  363. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofoeigeaodhbjogdigckajfhjbonaofg\2.0.4_0\
  364. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\
  365. CHR - Extension: No name found = C:\Users\Arekk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\6718.423.0.0_0\
  366.  
  367. O1 HOSTS File: ([2018-07-15 23:59:54 | 000,002,103 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
  368. O1 - Hosts: 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
  369. O1 - Hosts: 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
  370. O1 - Hosts: 0.0.0.0 media.opencandy.com
  371. O1 - Hosts: 0.0.0.0 cdn.opencandy.com
  372. O1 - Hosts: 0.0.0.0 tracking.opencandy.com
  373. O1 - Hosts: 0.0.0.0 api.opencandy.com
  374. O1 - Hosts: 0.0.0.0 api.recommendedsw.com
  375. O1 - Hosts: 0.0.0.0 rp.yefeneri2.com
  376. O1 - Hosts: 0.0.0.0 os.yefeneri2.com
  377. O1 - Hosts: 0.0.0.0 os2.yefeneri2.com
  378. O1 - Hosts: 0.0.0.0 installer.betterinstaller.com
  379. O1 - Hosts: 0.0.0.0 installer.filebulldog.com
  380. O1 - Hosts: 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
  381. O1 - Hosts: 0.0.0.0 inno.bisrv.com
  382. O1 - Hosts: 0.0.0.0 nsis.bisrv.com
  383. O1 - Hosts: 0.0.0.0 cdn.file2desktop.com
  384. O1 - Hosts: 0.0.0.0 cdn.goateastcach.us
  385. O1 - Hosts: 0.0.0.0 cdn.guttastatdk.us
  386. O1 - Hosts: 0.0.0.0 cdn.inskinmedia.com
  387. O1 - Hosts: 0.0.0.0 cdn.insta.oibundles2.com
  388. O1 - Hosts: 0.0.0.0 cdn.insta.playbryte.com
  389. O1 - Hosts: 0.0.0.0 cdn.llogetfastcach.us
  390. O1 - Hosts: 0.0.0.0 cdn.montiera.com
  391. O1 - Hosts: 0.0.0.0 cdn.msdwnld.com
  392. O1 - Hosts: 0.0.0.0 cdn.mypcbackup.com
  393. O1 - Hosts: 14 more lines...
  394. O2:[b]64bit:[/b] - BHO: (IVONA Reader) - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2_x64.dll (IVO Software Sp. z o.o.)
  395. O2:[b]64bit:[/b] - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
  396. O2:[b]64bit:[/b] - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - No CLSID value found.
  397. O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
  398. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll (Oracle Corporation)
  399. O2 - BHO: (IVONA Reader) - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2.dll (IVO Software Sp. z o.o.)
  400. O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  401. O2 - BHO: (no name) - {95B7759C-8C7F-4BF1-B163-73684A933233} - No CLSID value found.
  402. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll (Oracle Corporation)
  403. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
  404. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (IVONA Reader) - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2_x64.dll (IVO Software Sp. z o.o.)
  405. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
  406. O3 - HKLM\..\Toolbar: (IVONA Reader) - {8664889D-ED18-4713-918F-E2BB69D8452B} - C:\Program Files (x86)\IVONA\IVONA Reader\integr\IR_iexplorer2.dll (IVO Software Sp. z o.o.)
  407. O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
  408. O3:[b]64bit:[/b] - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
  409. O4:[b]64bit:[/b] - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvLaunch.exe (AVAST Software)
  410. O4:[b]64bit:[/b] - HKLM..\Run: [DptfPolicyLpmServiceHelper] C:\Windows\SysNative\DptfPolicyLpmServiceHelper.exe (Intel Corporation)
  411. O4:[b]64bit:[/b] - HKLM..\Run: [NetWorx] C:\Program Files\NetWorx\networx.exe (SoftPerfect)
  412. O4:[b]64bit:[/b] - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
  413. O4 - HKLM..\Run: [] File not found
  414. O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
  415. O4 - HKCU..\Run: [f.lux] C:\Users\Arekk\AppData\Local\FluxSoftware\Flux\flux.exe (f.lux Software LLC)
  416. O4 - HKCU..\Run: [IROElauncher] C:\Program Files (x86)\IVONA\IVONA Reader\integr\OutlookExpress\IROElauncher.exe (Nektra S.A.)
  417. O4 - HKCU..\Run: [OscarX7Mouse5Mode] C:\Program Files (x86)\OscarX7Editor5Mode\OscarX7Editor5Mode\OscarEditor.exe ()
  418. O4 - HKCU..\Run: [Overwolf] C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe ()
  419. O4 - HKCU..\Run: [Spotify Web Helper] C:\Users\Arekk\AppData\Roaming\Spotify\SpotifyWebHelper.exe (Spotify Ltd)
  420. O4 - HKCU..\Run: [SteamServerBrowser] C:\Program Files (x86)\SteamServerBrowser\SteamServerBrowser.exe ()
  421. O4 - Startup: C:\Users\Arekk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WO Mic Client.lnk = File not found
  422. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  423. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  424. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
  425. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  426. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
  427. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  428. O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
  429. O13[b]64bit:[/b] - gopher Prefix: missing
  430. O13 - gopher Prefix: missing
  431. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
  432. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{47DE98AD-7084-4015-ABDC-ED4A7CD41537}: DhcpNameServer = 10.0.80.252
  433. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{91A3C44A-3A0E-412F-84FE-B028550E5752}: DhcpNameServer = 192.168.1.1 192.168.1.1
  434. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  435. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  436. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  437. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
  438. O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
  439. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  440. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  441. O32 - HKLM CDRom: AutoRun - 1
  442. O33 - MountPoints2\{64ff3d1c-d949-11e5-828d-40167e13151d}\Shell - "" = AutoRun
  443. O33 - MountPoints2\{64ff3d1c-d949-11e5-828d-40167e13151d}\Shell\AutoRun\command - "" = "F:\Startme.exe"
  444. O33 - MountPoints2\{8f396a87-fb8c-11e7-8339-54271e5c4246}\Shell - "" = AutoRun
  445. O33 - MountPoints2\{8f396a87-fb8c-11e7-8339-54271e5c4246}\Shell\AutoRun\command - "" = "F:\AutoRun.exe"
  446. O33 - MountPoints2\{f0bf9929-6098-11e5-826b-40167e13151d}\Shell - "" = AutoRun
  447. O33 - MountPoints2\{f0bf9929-6098-11e5-826b-40167e13151d}\Shell\AutoRun\command - "" = "F:\Startme.exe"
  448. O33 - MountPoints2\{f365f5fb-8f8a-11e5-8277-40167e13151d}\Shell - "" = AutoRun
  449. O33 - MountPoints2\{f365f5fb-8f8a-11e5-8277-40167e13151d}\Shell\AutoRun\command - "" = "F:\AutoRun.exe"
  450. O34 - HKLM BootExecute: (autocheck autochk *)
  451. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  452. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  453. O35 - HKLM\..comfile [open] -- "%1" %*
  454. O35 - HKLM\..exefile [open] -- "%1" %*
  455. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  456. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  457. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  458. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  459. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  460. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  461.  
  462. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  463.  
  464. [2018-07-17 23:30:27 | 000,000,000 | ---D | C] -- C:\FRST
  465. [2018-07-15 23:31:54 | 000,029,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aspnet_counters.dll
  466. [2018-07-15 23:31:52 | 000,019,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr100_clr0400.dll
  467. [2018-07-15 23:31:47 | 000,030,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aspnet_counters.dll
  468. [2018-07-15 23:31:45 | 000,019,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll
  469. [2018-07-15 16:22:25 | 000,000,000 | ---D | C] -- C:\Users\Arekk\AppData\Roaming\AVAST Software
  470. [2018-07-15 16:18:24 | 000,000,000 | ---D | C] -- C:\Users\Arekk\AppData\Local\AVAST Software
  471. [2018-07-15 16:18:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
  472. [2018-07-15 16:16:17 | 000,211,160 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
  473. [2018-07-15 16:16:16 | 001,027,728 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
  474. [2018-07-15 16:16:16 | 000,463,080 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
  475. [2018-07-15 16:16:16 | 000,381,584 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswVmm.sys
  476. [2018-07-15 16:16:16 | 000,346,664 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbloga.sys
  477. [2018-07-15 16:16:16 | 000,239,680 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswHdsKe.sys
  478. [2018-07-15 16:16:16 | 000,229,392 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbidsdrivera.sys
  479. [2018-07-15 16:16:16 | 000,201,328 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbidsha.sys
  480. [2018-07-15 16:16:16 | 000,197,160 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswArPot.sys
  481. [2018-07-15 16:16:16 | 000,159,640 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
  482. [2018-07-15 16:16:16 | 000,111,872 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
  483. [2018-07-15 16:16:16 | 000,085,968 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRvrt.sys
  484. [2018-07-15 16:16:16 | 000,059,592 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbuniva.sys
  485. [2018-07-15 16:16:16 | 000,046,976 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswHwid.sys
  486. [2018-07-15 16:15:53 | 000,378,072 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
  487. [2018-07-15 16:15:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVAST Software
  488. [2018-07-15 16:13:42 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
  489. [2018-07-15 16:13:24 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
  490. [2018-07-15 15:14:24 | 000,000,000 | ---D | C] -- C:\AdwCleaner
  491. [2018-07-13 21:42:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
  492. [2018-07-13 21:41:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narzędzia pakietu Microsoft Office
  493.  
  494. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  495.  
  496. [2018-07-17 22:54:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  497. [2018-07-17 22:34:53 | 000,000,074 | ---- | M] () -- C:\Users\Arekk\AppData\Roaming\sp_data.sys
  498. [2018-07-17 22:31:20 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  499. [2018-07-15 23:57:01 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
  500. [2018-07-15 23:56:55 | 3338,194,944 | -HS- | M] () -- C:\hiberfil.sys
  501. [2018-07-15 18:24:02 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\last.dump
  502. [2018-07-15 16:18:22 | 000,001,940 | ---- | M] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk
  503. [2018-07-15 16:15:31 | 000,463,080 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
  504. [2018-07-15 16:15:31 | 000,381,584 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswVmm.sys
  505. [2018-07-15 16:15:31 | 000,211,160 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
  506. [2018-07-15 16:15:30 | 000,378,072 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
  507. [2018-07-15 16:15:30 | 000,159,640 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
  508. [2018-07-15 16:15:30 | 000,085,968 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRvrt.sys
  509. [2018-07-15 16:15:30 | 000,046,976 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswHwid.sys
  510. [2018-07-15 16:15:29 | 000,197,160 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswArPot.sys
  511. [2018-07-15 16:15:28 | 000,111,872 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
  512. [2018-07-15 16:14:40 | 001,027,728 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
  513. [2018-07-15 16:14:32 | 000,239,680 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswHdsKe.sys
  514. [2018-07-15 16:14:30 | 000,346,664 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbloga.sys
  515. [2018-07-15 16:14:30 | 000,229,392 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbidsdrivera.sys
  516. [2018-07-15 16:14:30 | 000,201,328 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbidsha.sys
  517. [2018-07-15 16:14:30 | 000,059,592 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswbuniva.sys
  518. [2018-07-10 12:03:24 | 133,315,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MRT-KB890830.exe
  519. [2018-06-30 15:50:22 | 000,002,211 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
  520. [2018-06-29 00:07:37 | 000,835,064 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
  521. [2018-06-29 00:07:37 | 000,179,704 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
  522.  
  523. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  524.  
  525. [2018-07-15 16:18:22 | 000,001,940 | ---- | C] () -- C:\Users\Public\Desktop\Avast Free Antivirus.lnk
  526. [2018-07-13 21:41:09 | 000,002,386 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
  527. [2018-06-22 10:08:32 | 000,002,252 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
  528. [2018-06-22 10:08:32 | 000,002,211 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
  529. [2017-12-26 21:51:53 | 000,000,017 | ---- | C] () -- C:\Users\Arekk\AppData\Local\resmon.resmoncfg
  530. [2017-08-08 20:24:02 | 000,518,144 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
  531. [2017-07-27 17:57:23 | 000,000,057 | ---- | C] () -- C:\ProgramData\Ament.ini
  532. [2017-06-03 18:21:10 | 000,000,549 | ---- | C] () -- C:\Users\Arekk\Windows7_MouseFix_TextSize(DPI)=100%_Scale=1-to-1_@6-of-11.reg
  533. [2017-05-22 14:42:59 | 077,922,626 | ---- | C] () -- C:\Users\Arekk\counter-strike (1).rar
  534. [2016-10-22 16:55:33 | 000,015,676 | ---- | C] () -- C:\Users\Arekk\10336656_596470350450717_5785716866279512964_n.jpg
  535. [2015-09-01 23:03:57 | 000,000,074 | ---- | C] () -- C:\Users\Arekk\AppData\Roaming\sp_data.sys
  536. [2014-03-12 17:08:16 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
  537. [2013-12-12 23:00:53 | 000,024,576 | ---- | C] () -- C:\ProgramData\SetStretch.exe
  538. [2013-12-12 23:00:53 | 000,000,256 | ---- | C] () -- C:\ProgramData\SetStretch.cmd
  539. [2013-12-12 23:00:53 | 000,000,103 | ---- | C] () -- C:\ProgramData\SetStretch.VBS
  540.  
  541. [color=#E56717]========== ZeroAccess Check ==========[/color]
  542.  
  543. [2015-09-16 12:02:17 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  544.  
  545. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  546.  
  547. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  548.  
  549. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
  550.  
  551. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  552.  
  553. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  554. "" = C:\Windows\SysNative\shell32.dll -- [2018-01-02 08:39:38 | 022,374,248 | ---- | M] (Microsoft Corporation)
  555. "ThreadingModel" = Apartment
  556.  
  557. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  558. "" = %SystemRoot%\system32\shell32.dll -- [2018-01-02 08:00:38 | 019,790,760 | ---- | M] (Microsoft Corporation)
  559. "ThreadingModel" = Apartment
  560.  
  561. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
  562. "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2018-03-03 06:47:56 | 001,005,056 | ---- | M] (Microsoft Corporation)
  563. "ThreadingModel" = Free
  564.  
  565. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  566. "" = %systemroot%\system32\wbem\fastprox.dll -- [2018-03-03 06:32:42 | 000,779,776 | ---- | M] (Microsoft Corporation)
  567. "ThreadingModel" = Free
  568.  
  569. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
  570. "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2014-10-29 03:16:01 | 000,512,512 | ---- | M] (Microsoft Corporation)
  571. "ThreadingModel" = Both
  572.  
  573. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  574.  
  575. [color=#E56717]========== Alternate Data Streams ==========[/color]
  576.  
  577. @Alternate Data Stream - 183 bytes -> C:\Users\Arekk\OneDrive (3).old:ms-properties
  578. @Alternate Data Stream - 183 bytes -> C:\Users\Arekk\OneDrive (2).old:ms-properties
  579. @Alternate Data Stream - 111 bytes -> C:\Users\Arekk\OneDrive:ms-properties
  580.  
  581. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!