OTL.Txt

prośba o sprawdzenie logów z OTL. Nation zoom wirus

Proszę o sprawdzenie logów komputerowcem nie jestem i robiłam wszystko tak jak tutaj na forum jest napisane. Przeskanowałam komputer dwoma programami.Malwarebytes Anti-Malware oraz AdwCleaner. Usunęłam wszystko co tam wyszłoi na koniec zrobiłam OTL. Załączam logi co mam robić dalej?


OTL logfile created on: 2014-02-13 14:09:46 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\AM\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd

3,44 Gb Total Physical Memory | 1,69 Gb Available Physical Memory | 49,22% Memory free
4,07 Gb Paging File | 1,79 Gb Available in Paging File | 43,90% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 253,04 Gb Total Space | 162,18 Gb Free Space | 64,09% Space Free | Partition Type: NTFS
Drive D: | 195,31 Gb Total Space | 195,14 Gb Free Space | 99,91% Space Free | Partition Type: NTFS

Computer Name: WILMA | User Name: AM | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2014-02-13 14:07:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\AM\Downloads\OTL (1).exe
PRC - [2014-02-02 00:42:39 | 000,866,632 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2014-01-19 10:33:19 | 000,078,576 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
PRC - [2014-01-19 10:32:49 | 000,448,704 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
PRC - [2013-12-06 18:08:06 | 008,452,864 | ---- | M] (Acer Cloud Technology) -- C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
PRC - [2013-12-06 18:08:06 | 002,797,312 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe
PRC - [2013-10-16 02:40:00 | 000,990,400 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avpui.exe
PRC - [2013-10-16 02:40:00 | 000,214,512 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe
PRC - [2013-07-16 18:21:38 | 000,235,008 | ---- | M] (TODO: & lt; Company name & gt; ) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
PRC - [2013-04-16 04:07:06 | 000,039,056 | ---- | M] () -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2013-04-04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012-09-28 10:25:56 | 000,586,904 | ---- | M] (PandoraTV) -- C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
PRC - [2012-09-28 10:25:54 | 000,625,304 | ---- | M] (Pandora.TV) -- C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
PRC - [2012-07-14 00:27:00 | 000,769,432 | ---- | M] (Nero AG) -- c:\Program Files (x86)\Nero\Update\NASvc.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2014-02-02 00:42:37 | 013,616,456 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll
MOD - [2014-02-02 00:42:37 | 000,399,688 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll
MOD - [2014-02-02 00:42:35 | 004,055,368 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\pdf.dll
MOD - [2014-02-02 00:41:45 | 000,715,592 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libglesv2.dll
MOD - [2014-02-02 00:41:45 | 000,100,168 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\libegl.dll
MOD - [2014-02-02 00:41:43 | 001,634,632 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.107\ffmpegsumo.dll
MOD - [2014-01-30 20:48:31 | 000,098,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationProvider\36b2dcceb500d8ec167cf9ce8517e6c3\UIAutomationProvider.ni.dll
MOD - [2014-01-30 20:48:29 | 000,188,416 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\29fc91e04fde6d4005d53ff20320bf9f\UIAutomationTypes.ni.dll
MOD - [2014-01-21 08:44:37 | 000,463,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\48b479fa187b2b92d7df41182f6ddf32\PresentationFramework.Aero2.ni.dll
MOD - [2014-01-21 08:44:33 | 018,744,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\5ab79fc7687b330b8a1e50a053af4c1f\PresentationFramework.ni.dll
MOD - [2014-01-21 08:43:56 | 011,027,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\17564a0f525c16815fa29197c2cba98b\PresentationCore.ni.dll
MOD - [2014-01-21 08:39:22 | 003,957,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\2292e2e421f423b42b496da2f12e4f0e\WindowsBase.ni.dll
MOD - [2014-01-20 21:07:56 | 007,803,392 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\e6b0fac086c9f63921dc57ccb85a0ee4\System.Xml.ni.dll
MOD - [2014-01-20 21:07:43 | 001,874,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\184a908676205d46994e3096a3eb1cea\System.Xaml.ni.dll
MOD - [2014-01-20 21:07:38 | 012,856,320 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\af4e47767c78d7335dc160fbe925558c\System.Windows.Forms.ni.dll
MOD - [2014-01-20 21:07:13 | 019,566,080 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\46b4609a23cd36da267dacc7db3be849\System.ServiceModel.ni.dll
MOD - [2014-01-20 21:06:24 | 001,635,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\5d9c806d510ce30645b2118d96589486\System.Drawing.ni.dll
MOD - [2014-01-20 21:06:05 | 000,968,192 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\a651a53f70ec4356e530497679d60d59\System.Configuration.ni.dll
MOD - [2014-01-20 21:00:53 | 006,951,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\b23c1312ec0a64893e596e2fc2aa875b\System.Core.ni.dll
MOD - [2014-01-20 21:00:38 | 010,003,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\220f99197372e34d3a6ca5005e7ef1f0\System.ni.dll
MOD - [2014-01-20 21:00:19 | 017,360,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\9ce38091b2e714845369c9bc3b5b5395\mscorlib.ni.dll
MOD - [2014-01-19 10:33:11 | 000,359,592 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\c2r32.dll
MOD - [2014-01-19 10:32:57 | 000,316,584 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
MOD - [2014-01-19 10:28:03 | 000,359,592 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\office15\c2r32.dll
MOD - [2014-01-19 10:28:03 | 000,316,584 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\office15\appvisvstream32.dll
MOD - [2013-06-17 12:35:10 | 000,478,400 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\dblite.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2013-11-27 16:36:30 | 003,395,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2013-11-08 04:41:17 | 001,302,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2013-10-31 10:08:22 | 001,907,896 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe -- (OfficeSvc)
SRV:[b]64bit:[/b] - [2013-10-22 02:53:47 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2013-10-19 06:37:49 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2013-10-04 09:10:59 | 000,533,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2013-09-26 02:06:56 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:[b]64bit:[/b] - [2013-09-21 06:38:15 | 000,365,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2013-09-21 06:36:18 | 000,261,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2013-09-21 06:34:45 | 001,555,456 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2013-09-06 06:00:00 | 000,101,192 | ---- | M] (ELAN Microelectronics Corp.) [Auto | Running] -- C:\Program Files\Elantech\ETDService.exe -- (ETDService)
SRV:[b]64bit:[/b] - [2013-08-31 11:00:10 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2013-08-22 13:32:01 | 000,346,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2013-08-22 13:32:00 | 000,023,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2013-08-22 13:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2013-08-22 12:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2013-08-22 12:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2013-08-22 12:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2013-08-22 12:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2013-08-22 12:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2013-08-22 11:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2013-08-22 11:04:53 | 000,716,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2013-08-22 11:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2013-08-22 10:59:26 | 000,832,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2013-08-22 10:58:42 | 000,280,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2013-08-22 10:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2013-08-22 10:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2013-08-22 10:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2013-08-22 10:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2013-08-22 10:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2013-08-22 10:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2013-08-22 10:40:14 | 000,398,848 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2013-08-22 10:39:33 | 000,198,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2013-08-22 10:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2013-08-22 10:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2013-08-03 03:33:16 | 000,448,040 | ---- | M] (Acer Incorporate) [On_Demand | Running] -- C:\Program Files\Packard Bell\Packard Bell Quick Access\RMSvc.exe -- (RMSvc)
SRV:[b]64bit:[/b] - [2013-08-03 03:33:14 | 000,457,768 | ---- | M] (Acer Incorporate) [On_Demand | Running] -- C:\Program Files\Packard Bell\Packard Bell Quick Access\QASvc.exe -- (QASvc)
SRV:[b]64bit:[/b] - [2013-08-03 02:47:44 | 000,457,768 | ---- | M] (Acer Incorporate) [Auto | Running] -- C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe -- (LMSvc)
SRV:[b]64bit:[/b] - [2013-07-06 01:19:04 | 000,663,592 | ---- | M] (Acer Incorporated) [On_Demand | Running] -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe -- (ePowerSvc)
SRV - [2014-02-05 14:46:13 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013-12-06 18:08:06 | 002,797,312 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe -- (CCDMonitorService)
SRV - [2013-10-16 02:40:00 | 000,214,512 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\avp.exe -- (AVP)
SRV - [2013-09-07 10:52:20 | 000,312,448 | ---- | M] (Windows (R) Win 7 DDK provider) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe -- (AtherosSvc)
SRV - [2013-08-31 10:25:30 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013-08-22 13:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013-08-22 04:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013-08-22 03:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013-07-16 18:21:38 | 000,235,008 | ---- | M] (TODO: & lt; Company name & gt; ) [Auto | Running] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe -- (GamesAppIntegrationService)
SRV - [2013-04-16 04:07:06 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012-09-28 10:25:54 | 000,625,304 | ---- | M] (Pandora.TV) [Auto | Running] -- C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe -- (PanService)
SRV - [2012-07-14 00:27:00 | 000,769,432 | ---- | M] (Nero AG) [Auto | Running] -- c:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2010-10-12 18:59:12 | 000,206,072 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe -- (GamesAppService)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2013-11-11 03:48:41 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2013-11-09 12:55:11 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2013-11-01 12:39:53 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2013-10-31 01:58:59 | 000,372,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2013-10-26 02:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2013-10-16 02:39:58 | 007,717,984 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\kl1.sys -- (kl1)
DRV:[b]64bit:[/b] - [2013-10-16 02:39:58 | 000,624,224 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\SysNative\drivers\klif.sys -- (KLIF)
DRV:[b]64bit:[/b] - [2013-10-16 02:39:58 | 000,030,304 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6)
DRV:[b]64bit:[/b] - [2013-10-16 02:39:58 | 000,029,280 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klmouflt.sys -- (klmouflt)
DRV:[b]64bit:[/b] - [2013-10-16 02:39:58 | 000,029,280 | ---- | M] (Kaspersky Lab ZAO) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klkbdflt.sys -- (klkbdflt)
DRV:[b]64bit:[/b] - [2013-10-13 03:48:34 | 000,136,536 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2013-10-05 16:25:54 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2013-09-26 03:10:44 | 012,533,760 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:[b]64bit:[/b] - [2013-09-26 01:41:10 | 000,619,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:[b]64bit:[/b] - [2013-09-21 13:10:51 | 000,236,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2013-09-17 10:18:30 | 000,467,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2013-09-14 15:06:57 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2013-09-07 10:29:14 | 000,594,120 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:[b]64bit:[/b] - [2013-09-07 10:29:14 | 000,338,120 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:[b]64bit:[/b] - [2013-09-07 10:29:14 | 000,179,432 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:[b]64bit:[/b] - [2013-09-07 10:29:14 | 000,137,928 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:[b]64bit:[/b] - [2013-09-07 10:29:14 | 000,116,424 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_avdt.sys -- (btath_avdt)
DRV:[b]64bit:[/b] - [2013-09-07 10:29:14 | 000,089,800 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:[b]64bit:[/b] - [2013-09-07 10:29:14 | 000,077,464 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:[b]64bit:[/b] - [2013-09-07 10:29:14 | 000,034,384 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:[b]64bit:[/b] - [2013-09-06 06:00:02 | 000,370,504 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:[b]64bit:[/b] - [2013-08-22 20:11:06 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2013-08-22 20:11:03 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2013-08-22 14:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2013-08-22 14:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2013-08-22 13:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2013-08-22 13:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2013-08-22 13:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:48 | 000,146,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:33 | 000,189,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:32 | 000,078,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2013-08-22 13:41:08 | 000,054,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2013-08-22 13:39:44 | 000,377,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2013-08-22 13:39:15 | 000,924,512 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2013-08-22 13:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2013-08-22 13:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2013-08-22 13:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2013-08-22 13:34:22 | 000,265,056 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2013-08-22 13:34:22 | 000,124,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2013-08-22 13:31:28 | 000,034,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2013-08-22 12:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2013-08-22 12:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2013-08-22 12:39:28 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2013-08-22 12:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2013-08-22 12:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2013-08-22 12:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2013-08-22 12:36:37 | 000,224,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2013-08-22 12:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2013-08-22 12:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2013-08-22 12:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2013-08-22 12:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2013-08-22 09:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2013-08-16 05:13:30 | 003,859,968 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athwbx.sys -- (athr)
DRV:[b]64bit:[/b] - [2013-08-13 00:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2013-08-10 01:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2013-07-31 19:25:45 | 001,975,000 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTWlanU.sys -- (RtlWlanu)
DRV:[b]64bit:[/b] - [2013-07-30 19:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2013-07-25 20:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2013-07-17 10:59:00 | 000,021,360 | ---- | M] (Acer Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMDriver.sys -- (LMDriver)
DRV:[b]64bit:[/b] - [2013-07-17 10:59:00 | 000,014,680 | ---- | M] (Acer Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RadioShim.sys -- (RadioShim)
DRV:[b]64bit:[/b] - [2013-06-23 08:49:50 | 000,138,240 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdWB6.sys -- (AtiHDAudioService)
DRV:[b]64bit:[/b] - [2013-06-18 15:44:59 | 000,129,224 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C63x64.sys -- (L1C)
DRV:[b]64bit:[/b] - [2013-06-06 17:38:20 | 000,178,784 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kneps.sys -- (kneps)
DRV:[b]64bit:[/b] - [2013-05-07 17:56:36 | 000,064,608 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klwfp.sys -- (klwfp)
DRV:[b]64bit:[/b] - [2013-04-18 16:04:28 | 000,219,360 | ---- | M] (AppEx Networks Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\appexDrv.sys -- (APXACC)
DRV:[b]64bit:[/b] - [2013-04-12 15:34:48 | 000,015,456 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klpd.sys -- (klpd)
DRV:[b]64bit:[/b] - [2013-04-04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:[b]64bit:[/b] - [2012-07-27 18:38:24 | 000,029,616 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\klelam.sys -- (klelam)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.nationzoom.com/?type=hp & ts=1390124530 & from=ild & uid=WDCXWD5000LPVX-22V0TT0_WD-WX41AA3U6559U6559
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.nationzoom.com/web/?type=ds & ts=1390124530 & from=ild & uid=WDCXWD5000LPVX-22V0TT0_WD-WX41AA3U6559U6559 & q={searchTerms}
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.nationzoom.com/web/?type=ds & ts=1390124530 & from=ild & uid=WDCXWD5000LPVX-22V0TT0_WD-WX41AA3U6559U6559 & q={searchTerms}
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.nationzoom.com/?type=hp & ts=1390124530 & from=ild & uid=WDCXWD5000LPVX-22V0TT0_WD-WX41AA3U6559U6559
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{02942551-0CCB-42EF-9D4F-078AC38891F0}: " URL " = http://www.bing.com/search?q={searchTerms} & form=IE10TR & src=IE10TR & pc=APJB
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{02942551-0CCB-42EF-9D4F-078AC38891F0}: " URL " = http://www.bing.com/search?q={searchTerms} & form=IE10TR & src=IE10TR & pc=APJB
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://www.bing.com/search?q={searchTerms} & FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0


[color=#E56717]========== FireFox ==========[/color]

FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.2.32: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.2: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.2: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.2: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.2.32: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{FCE04E1F-9378-4f39-96F6-5689A9159E45}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2014-01-19 16:37:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-01-19 16:37:30 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\url_advisor@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\url_advisor@kaspersky.com [2014-02-13 10:36:24 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtual_keyboard@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-02-13 10:36:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\content_blocker@kaspersky.com: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\FFExt\content_blocker@kaspersky.com [2014-02-13 10:34:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.3.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.3.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 24.3.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 24.3.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins

[2014-01-19 11:22:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\AM\AppData\Roaming\mozilla\Extensions

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms} & {google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient} & xssi=t & q={searchTerms} & {google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.pl/
CHR - Extension: Dokumenty Google = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Dysk Google = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Szukaj w Google = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Kaspersky URL Advisor = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\14.0.0.4651_0\
CHR - Extension: No name found = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gebjgjhbjedcomcajgpodjgfjgkepgpl\1.0.32.1_0\
CHR - Extension: Blokowanie niebezpiecznych stron internetowych = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\14.0.0.4651_0\
CHR - Extension: Lyoness Cashback Bar = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ibocncflemnoggjhchgnakpnhdiajnjl\0.5.6.1_0\
CHR - Extension: RealDownloader = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.2_0\
CHR - Extension: Klawiatura wirtualna = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\14.0.0.4651_0\
CHR - Extension: Google Wallet = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0\
CHR - Extension: Gmail = C:\Users\AM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013-08-22 14:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
O2:[b]64bit:[/b] - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
O2:[b]64bit:[/b] - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
O2 - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:[b]64bit:[/b] - HKLM..\Run: [Logitech Download Assistant] C:\Windows\SysNative\LogiLDA.dll (Logitech, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [CanonQuickMenu] C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE (CANON INC.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [AcerCloud] C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe (Acer Incorporated)
O4 - HKCU..\Run: [Pokki] C:\Windows\system32\rundll32.exe " %LOCALAPPDATA%\Pokki\Engine\Launcher.dll " ,RunLaunchPlatform File not found
O4 - HKCU..\RunOnce: [Application Restart #1] C:\Users\AM\AppData\Local\Pokki\Engine\pokki.exe (Pokki)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: BtvStack = " C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe " (Atheros Communications)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O8:[b]64bit:[/b] - Extra context menu item: E & xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8:[b]64bit:[/b] - Extra context menu item: Se & nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: E & xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se & nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: & Klawiatura wirtualna - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se & nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: OneNote Lin & ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin & ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: & Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra Button: & Klawiatura wirtualna - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se & nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin & ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin & ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: & Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.54.40.25 212.54.35.25
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{126F2A59-A89C-4CB0-A83E-B4C68C6A1F63}: DhcpNameServer = 212.54.40.25 212.54.35.25
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{32EA5113-D451-4524-8A97-DAD2258B90DB}: DhcpNameServer = 212.54.40.25 212.54.35.25
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{466AEC8D-FA8F-490C-BC99-AC89A19BB607}: DhcpNameServer = 192.11.128.24
O18:[b]64bit:[/b] - Protocol\Handler\osf - No CLSID value found
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{454821f6-89bc-11e3-8263-3065ec2781a1}\Shell - " " = AutoRun
O33 - MountPoints2\{454821f6-89bc-11e3-8263-3065ec2781a1}\Shell\AutoRun\command - " " = " E:\Autorun.exe "
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- " %1 " %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- " %1 " %*
O35 - HKLM\..comfile [open] -- " %1 " %*
O35 - HKLM\..exefile [open] -- " %1 " %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- " %1 " %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- " %1 " %*
O37 - HKLM\...com [@ = comfile] -- " %1 " %*
O37 - HKLM\...exe [@ = exefile] -- " %1 " %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2014-02-13 13:57:00 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014-02-13 10:57:48 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Malwarebytes
[2014-02-13 10:56:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2014-02-13 10:56:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014-02-13 10:56:30 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2014-02-13 10:56:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2014-02-13 10:56:15 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Programs
[2014-02-13 10:37:04 | 000,110,176 | ---- | C] (Kaspersky Lab ZAO) -- C:\Windows\SysNative\klfphc.dll
[2014-02-13 10:34:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2014-02-13 10:34:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Kaspersky Lab
[2014-02-13 10:34:17 | 000,624,224 | ---- | C] (Kaspersky Lab ZAO) -- C:\Windows\SysNative\drivers\klif.sys
[2014-02-13 10:34:17 | 000,112,224 | ---- | C] (Kaspersky Lab ZAO) -- C:\Windows\SysNative\drivers\klflt.sys
[2014-02-13 10:31:02 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014-02-10 05:48:47 | 000,000,000 | R--D | C] -- C:\Users\AM\SkyDrive
[2014-02-09 12:21:06 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\CrashDumps
[2014-02-05 15:23:41 | 000,000,000 | ---D | C] -- C:\Users\AM\Hightail
[2014-02-05 15:23:41 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Hightail
[2014-02-05 15:23:40 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Hightail
[2014-02-05 15:22:41 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Downloaded Installations
[2014-02-05 14:46:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
[2014-02-05 14:27:12 | 000,000,000 | ---D | C] -- C:\Users\AM\Desktop\Sylwester 2013
[2014-01-30 19:52:29 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\BitTorrent
[2014-01-30 16:53:07 | 000,000,000 | ---D | C] -- C:\ProgramData\TP-LINK
[2014-01-20 22:47:50 | 000,000,000 | R--D | C] -- C:\Windows\BrowserChoice
[2014-01-20 19:31:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2014-01-20 13:57:37 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonIJScan
[2014-01-20 10:50:37 | 000,669,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SkyDriveTelemetry.dll
[2014-01-20 10:50:36 | 000,688,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MrmIndexer.dll
[2014-01-20 10:50:36 | 000,515,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MrmIndexer.dll
[2014-01-20 10:49:27 | 000,533,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppReadiness.dll
[2014-01-20 10:49:26 | 002,328,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2014-01-20 10:49:20 | 002,065,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2014-01-20 10:49:20 | 001,067,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfasfsrcsnk.dll
[2014-01-20 10:49:19 | 001,584,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\workfolderssvc.dll
[2014-01-20 10:49:18 | 000,883,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfasfsrcsnk.dll
[2014-01-20 10:49:17 | 006,639,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2014-01-20 10:49:08 | 002,134,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d9.dll
[2014-01-20 10:49:07 | 001,287,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2014-01-20 10:49:00 | 004,599,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2014-01-20 10:48:56 | 001,399,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmde.dll
[2014-01-20 10:48:55 | 001,160,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Web.Http.dll
[2014-01-20 10:48:55 | 000,481,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll
[2014-01-20 10:48:54 | 002,617,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2014-01-20 10:48:53 | 000,708,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iuilp.dll
[2014-01-20 10:48:52 | 001,373,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2014-01-20 10:48:51 | 001,011,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
[2014-01-20 10:48:49 | 005,769,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2014-01-20 10:48:45 | 000,380,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll
[2014-01-20 10:48:44 | 000,920,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAutomationCore.dll
[2014-01-20 10:48:44 | 000,656,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2014-01-20 10:48:43 | 002,295,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2014-01-20 10:48:43 | 001,231,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.dll
[2014-01-20 10:48:43 | 001,147,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAutomationCore.dll
[2014-01-20 10:48:34 | 000,699,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2014-01-20 10:48:33 | 001,204,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winmde.dll
[2014-01-20 10:48:33 | 000,761,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WorkfoldersControl.dll
[2014-01-20 10:48:33 | 000,631,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WWAHost.exe
[2014-01-20 10:48:32 | 000,578,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.BackgroundTransfer.dll
[2014-01-20 10:48:32 | 000,518,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WWAHost.exe
[2014-01-20 10:48:32 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapphost.dll
[2014-01-20 10:48:31 | 000,888,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.dll
[2014-01-20 10:48:31 | 000,465,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2014-01-20 10:48:31 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2014-01-20 10:48:31 | 000,171,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd_02_8086.dll
[2014-01-20 10:48:31 | 000,031,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ploptin.dll
[2014-01-20 10:48:30 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comdlg32.dll
[2014-01-20 10:48:30 | 000,391,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsmf.dll
[2014-01-20 10:48:29 | 000,795,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TSWorkspace.dll
[2014-01-20 10:48:29 | 000,558,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll
[2014-01-20 10:48:29 | 000,345,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsmf.dll
[2014-01-20 10:48:29 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapp3hst.dll
[2014-01-20 10:48:29 | 000,317,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2014-01-20 10:48:29 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcsvDevice.dll
[2014-01-20 10:48:29 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psmsrv.dll
[2014-01-20 10:48:29 | 000,104,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncryptsslp.dll
[2014-01-20 10:48:29 | 000,088,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncryptsslp.dll
[2014-01-20 10:48:28 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2014-01-20 10:48:28 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Web.Http.dll
[2014-01-20 10:48:28 | 000,262,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapphost.dll
[2014-01-20 10:48:28 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WorkFoldersShell.dll
[2014-01-20 10:48:28 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msched.dll
[2014-01-20 10:48:27 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\miutils.dll
[2014-01-20 10:48:27 | 000,044,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wldp.dll
[2014-01-20 10:48:26 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dafBth.dll
[2014-01-20 10:48:26 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2014-01-20 10:48:26 | 000,057,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\stornvme.sys
[2014-01-20 10:48:24 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dafWfdProvider.dll
[2014-01-20 10:48:23 | 000,381,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUSettingsProvider.dll
[2014-01-20 10:48:23 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eappcfg.dll
[2014-01-20 10:48:23 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shsetup.dll
[2014-01-20 10:48:23 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shsetup.dll
[2014-01-20 10:48:23 | 000,054,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2014-01-20 10:48:22 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eappcfg.dll
[2014-01-20 10:48:22 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapp3hst.dll
[2014-01-20 10:48:22 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\miutils.dll
[2014-01-20 10:48:22 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WiFiDisplay.dll
[2014-01-20 10:48:22 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eappgnui.dll
[2014-01-20 10:48:22 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eappgnui.dll
[2014-01-20 10:48:21 | 001,704,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2014-01-20 10:48:21 | 000,338,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpclip.exe
[2014-01-20 10:48:21 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ftp.exe
[2014-01-20 10:48:21 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ftp.exe
[2014-01-20 10:48:03 | 002,801,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2014-01-20 10:48:02 | 001,085,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.appcore.dll
[2014-01-20 10:48:02 | 000,869,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.appcore.dll
[2014-01-20 10:47:45 | 018,577,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2014-01-20 10:47:38 | 013,925,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2014-01-20 10:47:13 | 001,302,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2014-01-20 10:47:13 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppxAllUserStore.dll
[2014-01-20 10:47:13 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppxAllUserStore.dll
[2014-01-20 10:47:11 | 013,177,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2014-01-20 10:47:07 | 011,674,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2014-01-20 10:46:59 | 007,399,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2014-01-20 10:46:58 | 002,143,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2014-01-20 10:46:58 | 002,140,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2014-01-20 10:46:57 | 001,765,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2014-01-20 10:46:56 | 002,570,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingsHandlers.dll
[2014-01-20 10:46:56 | 001,765,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2014-01-20 10:46:54 | 000,358,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dcomp.dll
[2014-01-20 10:46:53 | 000,516,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2014-01-20 10:46:53 | 000,479,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSyncHost.exe
[2014-01-20 10:46:52 | 000,637,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncHost.exe
[2014-01-20 10:46:52 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dcomp.dll
[2014-01-20 10:46:51 | 002,896,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
[2014-01-20 10:46:51 | 001,642,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2014-01-20 10:46:51 | 000,747,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidcli.dll
[2014-01-20 10:46:50 | 001,506,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2014-01-20 10:46:50 | 001,476,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2014-01-20 10:46:49 | 001,756,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPDMC.exe
[2014-01-20 10:46:49 | 001,345,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2014-01-20 10:46:48 | 002,266,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
[2014-01-20 10:46:48 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncCore.dll
[2014-01-20 10:46:48 | 000,382,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2014-01-20 10:46:48 | 000,372,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\spaceport.sys
[2014-01-20 10:46:47 | 001,391,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPDMC.exe
[2014-01-20 10:46:47 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSyncCore.dll
[2014-01-20 10:46:47 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpncore.dll
[2014-01-20 10:46:47 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentClient.dll
[2014-01-20 10:46:47 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AppXDeploymentClient.dll
[2014-01-20 10:46:46 | 000,922,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.dll
[2014-01-20 10:46:46 | 000,146,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\SerCx2.sys
[2014-01-20 10:46:46 | 000,039,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\intelpep.sys
[2014-01-20 10:46:45 | 001,843,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll
[2014-01-20 10:46:45 | 001,816,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll
[2014-01-20 10:46:45 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlidcli.dll
[2014-01-20 10:46:45 | 000,325,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBXHCI.SYS
[2014-01-20 10:46:45 | 000,086,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pdc.sys
[2014-01-20 10:46:45 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CredentialMigrationHandler.dll
[2014-01-20 10:46:45 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CredentialMigrationHandler.dll
[2014-01-20 10:46:43 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winbici.dll
[2014-01-20 10:43:53 | 007,544,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Search.dll
[2014-01-20 10:43:22 | 011,366,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\glcndFilter.dll
[2014-01-20 10:43:19 | 012,028,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Data.Pdf.dll
[2014-01-20 10:43:13 | 004,975,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Search.dll
[2014-01-20 10:43:08 | 001,555,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidsvc.dll
[2014-01-20 10:43:04 | 002,131,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll
[2014-01-20 10:43:01 | 001,928,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\combase.dll
[2014-01-20 10:42:55 | 001,109,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2014-01-20 10:42:54 | 002,142,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll
[2014-01-20 10:42:53 | 001,370,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\combase.dll
[2014-01-20 10:42:44 | 001,662,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Immersive.dll
[2014-01-20 10:42:44 | 001,106,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFolder.dll
[2014-01-20 10:42:44 | 000,796,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsrcsnk.dll
[2014-01-20 10:42:44 | 000,783,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetcore.dll
[2014-01-20 10:42:37 | 008,712,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\glcndFilter.dll
[2014-01-20 10:42:35 | 001,415,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2014-01-20 10:42:33 | 008,875,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Data.Pdf.dll
[2014-01-20 10:42:33 | 001,455,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Immersive.dll
[2014-01-20 10:42:31 | 001,720,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2014-01-20 10:42:27 | 000,648,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetcore.dll
[2014-01-20 10:42:23 | 000,663,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Security.Authentication.OnlineId.dll
[2014-01-20 10:42:22 | 001,534,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2014-01-20 10:42:15 | 001,150,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Globalization.dll
[2014-01-20 10:42:13 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
[2014-01-20 10:42:13 | 000,401,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidprov.dll
[2014-01-20 10:41:53 | 002,050,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SRH.dll
[2014-01-20 10:41:52 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2014-01-20 10:41:51 | 001,730,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dui70.dll
[2014-01-20 10:41:51 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnike.dll
[2014-01-20 10:41:50 | 000,996,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinTypes.dll
[2014-01-20 10:41:50 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlidprov.dll
[2014-01-20 10:41:49 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Security.Authentication.OnlineId.dll
[2014-01-20 10:41:48 | 000,534,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wer.dll
[2014-01-20 10:41:47 | 000,934,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsrcsnk.dll
[2014-01-20 10:41:46 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll
[2014-01-20 10:41:45 | 000,803,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2014-01-20 10:41:45 | 000,427,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
[2014-01-20 10:41:44 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinapi.dll
[2014-01-20 10:41:43 | 000,802,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Globalization.dll
[2014-01-20 10:41:42 | 001,344,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dui70.dll
[2014-01-20 10:41:42 | 000,570,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSync.dll
[2014-01-20 10:41:42 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tpmvsc.dll
[2014-01-20 10:41:42 | 000,171,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2014-01-20 10:41:41 | 000,365,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wcmsvc.dll
[2014-01-20 10:41:40 | 000,911,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
[2014-01-20 10:41:40 | 000,552,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinapi.dll
[2014-01-20 10:41:40 | 000,419,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll
[2014-01-20 10:41:40 | 000,261,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll
[2014-01-20 10:41:40 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSCard.dll
[2014-01-20 10:41:39 | 001,741,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SRH.dll
[2014-01-20 10:41:39 | 000,366,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvproc.dll
[2014-01-20 10:41:38 | 000,767,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
[2014-01-20 10:41:38 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BulkOperationHost.exe
[2014-01-20 10:41:37 | 000,312,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvproc.dll
[2014-01-20 10:41:37 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TetheringMgr.dll
[2014-01-20 10:41:37 | 000,236,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys
[2014-01-20 10:41:37 | 000,205,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mftranscode.dll
[2014-01-20 10:41:37 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpapisrv.dll
[2014-01-20 10:41:37 | 000,123,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmapi.dll
[2014-01-20 10:41:37 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SkyDriveShell.dll
[2014-01-20 10:41:36 | 001,185,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\printui.dll
[2014-01-20 10:41:36 | 000,528,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2014-01-20 10:41:36 | 000,467,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS
[2014-01-20 10:41:36 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSync.dll
[2014-01-20 10:41:36 | 000,180,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mftranscode.dll
[2014-01-20 10:41:35 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msra.exe
[2014-01-20 10:41:35 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DscCoreConfProv.dll
[2014-01-20 10:41:35 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SkyDriveShell.dll
[2014-01-20 10:41:34 | 000,456,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysmon.ocx
[2014-01-20 10:41:34 | 000,407,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Faultrep.dll
[2014-01-20 10:41:34 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DscCore.dll
[2014-01-20 10:41:33 | 000,408,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFault.exe
[2014-01-20 10:41:33 | 000,368,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Faultrep.dll
[2014-01-20 10:41:33 | 000,358,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmrdvcore.dll
[2014-01-20 10:41:33 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdprint.dll
[2014-01-20 10:41:33 | 000,233,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2014-01-20 10:41:33 | 000,151,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpsd.sys
[2014-01-20 10:41:17 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.Usb.dll
[2014-01-20 10:41:17 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.HumanInterfaceDevice.dll
[2014-01-20 10:41:16 | 000,970,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WebcamUi.dll
[2014-01-20 10:41:16 | 000,458,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFault.exe
[2014-01-20 10:41:14 | 000,738,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctfuimanager.dll
[2014-01-20 10:41:14 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MDEServer.exe
[2014-01-20 10:41:13 | 000,393,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysmon.ocx
[2014-01-20 10:41:13 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CryptoWinRT.dll
[2014-01-20 10:41:13 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\thumbcache.dll
[2014-01-20 10:41:12 | 001,225,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
[2014-01-20 10:41:11 | 000,175,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\VerifierExt.sys
[2014-01-20 10:41:11 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.HumanInterfaceDevice.dll
[2014-01-20 10:41:11 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\windows.immersiveshell.serviceprovider.dll
[2014-01-20 10:41:11 | 000,066,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PSHED.DLL
[2014-01-20 10:41:11 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WorkFoldersGPExt.dll
[2014-01-20 10:41:10 | 001,057,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\printui.dll
[2014-01-20 10:41:10 | 000,813,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WebcamUi.dll
[2014-01-20 10:41:10 | 000,556,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recimg.exe
[2014-01-20 10:41:10 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsClassExtension.dll
[2014-01-20 10:41:10 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Utilman.exe
[2014-01-20 10:41:10 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdsdwmdr.dll
[2014-01-20 10:41:10 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BtaMPM.sys
[2014-01-20 10:41:09 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msctfuimanager.dll
[2014-01-20 10:41:09 | 000,638,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wimgapi.dll
[2014-01-20 10:41:09 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCenter.dll
[2014-01-20 10:41:09 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rascustom.dll
[2014-01-20 10:41:09 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\efswrt.dll
[2014-01-20 10:41:08 | 000,528,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimgapi.dll
[2014-01-20 10:41:08 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.Usb.dll
[2014-01-20 10:41:08 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdprint.dll
[2014-01-20 10:41:08 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.Vpn.dll
[2014-01-20 10:41:08 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CryptoWinRT.dll
[2014-01-20 10:41:08 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WorkFolders.exe
[2014-01-20 10:41:08 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WorkFoldersRes.dll
[2014-01-20 10:41:08 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WorkFoldersRes.dll
[2014-01-20 10:41:08 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BthRadioMedia.dll
[2014-01-20 10:41:08 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pcaui.dll
[2014-01-20 10:41:07 | 001,160,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll
[2014-01-20 10:41:07 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DeviceCenter.dll
[2014-01-20 10:41:07 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2014-01-20 10:41:07 | 000,300,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
[2014-01-20 10:41:07 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2014-01-20 10:41:07 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pcaui.dll
[2014-01-20 10:41:06 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mcbuilder.exe
[2014-01-20 10:41:06 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\efswrt.dll
[2014-01-20 10:41:05 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2014-01-20 10:41:05 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\GeofenceMonitorService.dll
[2014-01-20 10:41:05 | 000,284,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcbuilder.exe
[2014-01-20 10:41:05 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpencom.dll
[2014-01-20 10:41:05 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Utilman.exe
[2014-01-20 10:41:03 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\GeofenceMonitorService.dll
[2014-01-20 10:41:03 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpencom.dll
[2014-01-20 10:41:03 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReInfo.dll
[2014-01-20 10:41:03 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2014-01-20 10:38:15 | 001,286,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msctf.dll
[2014-01-20 10:38:13 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Streaming.dll
[2014-01-20 10:38:12 | 000,977,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Streaming.dll
[2014-01-20 10:38:12 | 000,294,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Devices.Sensors.dll
[2014-01-20 10:38:12 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Devices.Sensors.dll
[2014-01-20 10:38:08 | 000,872,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2014-01-20 10:38:08 | 000,075,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2014-01-20 10:38:07 | 000,698,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2014-01-20 10:38:07 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrrun.dll
[2014-01-20 10:38:07 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrrun.dll
[2014-01-20 10:38:06 | 001,341,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2014-01-20 10:38:05 | 003,395,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSService.dll
[2014-01-20 10:38:04 | 000,848,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSShared.dll
[2014-01-20 10:38:04 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSShared.dll
[2014-01-20 10:38:04 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSClient.dll
[2014-01-20 10:38:04 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSClient.dll
[2014-01-20 10:38:04 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSCollect.exe
[2014-01-20 10:38:03 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2014-01-20 10:38:03 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2014-01-20 10:38:02 | 000,393,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2014-01-20 10:38:02 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2014-01-20 10:38:02 | 000,136,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wfplwfs.sys
[2014-01-20 10:38:00 | 004,105,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SyncEngine.dll
[2014-01-20 10:37:58 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SkyDrive.exe
[2014-01-20 10:30:32 | 005,769,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2014-01-20 10:30:18 | 001,995,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2014-01-20 10:30:18 | 001,928,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2014-01-20 10:30:18 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2014-01-20 10:30:17 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2014-01-20 10:30:17 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2014-01-20 10:30:17 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2014-01-20 10:27:53 | 001,943,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2014-01-20 10:27:22 | 000,787,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll
[2014-01-20 10:27:14 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MDMAgent.exe
[2014-01-20 10:27:14 | 000,287,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mdmregistration.dll
[2014-01-20 10:27:14 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mdmregistration.dll
[2014-01-20 10:27:04 | 000,909,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MrmCoreR.dll
[2014-01-20 10:27:04 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MrmCoreR.dll
[2014-01-20 08:54:01 | 000,000,000 | ---D | C] -- C:\Users\AM\Desktop\Różne
[2014-01-19 18:41:09 | 000,000,000 | ---D | C] -- C:\Users\AM\Desktop\Salarisy
[2014-01-19 18:04:27 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2014-01-19 16:43:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PANDORATV
[2014-01-19 16:43:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PANDORA.TV
[2014-01-19 16:42:01 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
[2014-01-19 16:41:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\The KMPlayer
[2014-01-19 16:38:04 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\RealNetworks
[2014-01-19 16:37:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RealNetworks
[2014-01-19 16:37:25 | 000,000,000 | ---D | C] -- C:\ProgramData\RealNetworks
[2014-01-19 16:37:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
[2014-01-19 16:37:11 | 000,201,872 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2014-01-19 16:37:04 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2014-01-19 16:37:04 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2014-01-19 16:37:03 | 000,272,896 | ---- | C] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2014-01-19 16:37:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
[2014-01-19 16:36:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2014-01-19 16:36:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Real
[2014-01-19 16:35:42 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Real
[2014-01-19 16:29:29 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonIJMIG
[2014-01-19 16:21:34 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Canon
[2014-01-19 16:20:15 | 000,393,728 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNMXLMBM.DLL
[2014-01-19 16:06:56 | 000,000,000 | ---D | C] -- C:\Users\AM\Documents\Agata
[2014-01-19 16:05:10 | 000,321,024 | ---- | C] (CANON INC.) -- C:\Windows\SysWow64\CNC_BML.dll
[2014-01-19 16:05:10 | 000,103,936 | ---- | C] (CANON INC.) -- C:\Windows\SysWow64\CNC_BMU.dll
[2014-01-19 16:05:10 | 000,015,872 | ---- | C] (CANON INC.) -- C:\Windows\SysWow64\CNHMCA.dll
[2014-01-19 16:04:49 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonIJFAX
[2014-01-19 16:03:53 | 000,000,000 | ---D | C] -- C:\Users\AM\Desktop\Z Youtube Motywujące
[2014-01-19 16:03:30 | 000,366,080 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNC_BML.dll
[2014-01-19 16:03:30 | 000,282,624 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNC_BMC.dll
[2014-01-19 16:03:30 | 000,106,496 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNC_BMI.dll
[2014-01-19 16:03:30 | 000,017,920 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNHMCA6.dll
[2014-01-19 16:03:07 | 000,390,656 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNMLMBM.DLL
[2014-01-19 16:03:00 | 000,303,104 | ---- | C] (CANON INC.) -- C:\Windows\SysNative\CNCALBM.DLL
[2014-01-19 16:02:50 | 000,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2014-01-19 15:57:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
[2014-01-19 15:57:42 | 000,000,000 | ---D | C] -- C:\ProgramData\CanonIJWSpt
[2014-01-19 15:49:15 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ
[2014-01-19 15:49:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Canon
[2014-01-19 15:12:14 | 000,000,000 | ---D | C] -- C:\Users\AM\Documents\Niestandardowe szablony pakietu Office
[2014-01-19 15:07:01 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Awem
[2014-01-19 15:05:45 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\AlawarWrapper
[2014-01-19 15:02:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cradle Of Rome 2 Collectors Edition
[2014-01-19 15:02:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Alawar.pl
[2014-01-19 13:59:38 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\WinRAR
[2014-01-19 13:59:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2014-01-19 13:45:49 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2014-01-19 13:45:48 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2014-01-19 13:45:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
[2014-01-19 13:44:55 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Winamp
[2014-01-19 13:44:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Winamp
[2014-01-19 12:16:08 | 000,000,000 | ---D | C] -- C:\Users\AM\Mobile Uploads
[2014-01-19 11:22:00 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Mozilla
[2014-01-19 11:21:59 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Thunderbird
[2014-01-19 11:21:59 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Thunderbird
[2014-01-19 11:21:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2014-01-19 11:21:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2014-01-19 10:47:04 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\assembly
[2014-01-19 10:43:31 | 000,000,000 | ---D | C] -- C:\ProgramData\WPM
[2014-01-19 10:43:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
[2014-01-19 10:41:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft SkyDrive
[2014-01-19 10:39:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2014-01-19 10:39:01 | 000,000,000 | ---D | C] -- C:\Users\AM\Documents\clear.fi
[2014-01-19 10:30:43 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\AcerRemoteFile
[2014-01-19 10:29:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
[2014-01-19 10:28:51 | 000,000,000 | ---D | C] -- C:\AcerCloud
[2014-01-19 10:28:34 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\AcerCloud
[2014-01-19 10:27:50 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office 15
[2014-01-19 10:27:45 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Doc
[2014-01-19 10:26:19 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\ClearfiMedia
[2014-01-19 10:25:20 | 000,000,000 | ---D | C] -- C:\ProgramData\clear.fi
[2014-01-19 10:25:03 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Acer
[2014-01-19 10:24:36 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\acer
[2014-01-19 10:24:15 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\ClearfiPhoto
[2014-01-19 10:22:17 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacje Chrome
[2014-01-19 10:03:14 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Acer Aspire R7 Tutorial
[2014-01-19 09:49:26 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\pl-PL
[2014-01-19 09:49:21 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\pl
[2014-01-19 09:49:17 | 000,000,000 | ---D | C] -- C:\Windows\pl-PL
[2014-01-19 09:49:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\pl-PL
[2014-01-19 09:49:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\pl
[2014-01-19 09:40:10 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\pl-PL\wfplwfs.sys.mui
[2014-01-19 09:40:10 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wfplwfs.sys.mui
[2014-01-19 09:40:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\pl-PL\NdisImPlatform.sys.mui
[2014-01-19 09:40:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\NdisImPlatform.sys.mui
[2014-01-19 09:40:00 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\pl-PL\ndiscap.sys.mui
[2014-01-19 09:40:00 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ndiscap.sys.mui
[2014-01-19 09:39:52 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\usbport.sys.mui
[2014-01-19 09:39:52 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\volsnap.sys.mui
[2014-01-19 09:39:52 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\USBHUB3.SYS.mui
[2014-01-19 09:39:52 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\USBXHCI.SYS.mui
[2014-01-19 09:39:52 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\vhdmp.sys.mui
[2014-01-19 09:39:52 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\usbhub.sys.mui
[2014-01-19 09:39:52 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\spaceport.sys.mui
[2014-01-19 09:39:52 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\UCX01000.SYS.mui
[2014-01-19 09:39:52 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\tpm.sys.mui
[2014-01-19 09:39:52 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\sdbus.sys.mui
[2014-01-19 09:39:52 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\dumpsd.sys.mui
[2014-01-19 09:39:52 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\vdrvroot.sys.mui
[2014-01-19 09:39:52 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\portcls.sys.mui
[2014-01-19 09:39:52 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\pcmcia.sys.mui
[2014-01-19 09:39:52 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BthA2DP.sys.mui
[2014-01-19 09:39:52 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\usbehci.sys.mui
[2014-01-19 09:39:52 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\umbus.sys.mui
[2014-01-19 09:39:52 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\sdstor.sys.mui
[2014-01-19 09:39:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\usbvideo.sys.mui
[2014-01-19 09:39:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\USBSTOR.SYS.mui
[2014-01-19 09:39:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\USBAUDIO.sys.mui
[2014-01-19 09:39:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\serscan.sys.mui
[2014-01-19 09:39:47 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wmbclass.sys.mui
[2014-01-19 09:39:47 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\rndismpx.sys.mui
[2014-01-19 09:39:47 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\rndismp6.sys.mui
[2014-01-19 09:39:47 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\vwifibus.sys.mui
[2014-01-19 09:39:45 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\i8042prt.sys.mui
[2014-01-19 09:39:45 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\serial.sys.mui
[2014-01-19 09:39:45 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ataport.sys.mui
[2014-01-19 09:39:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\sermouse.sys.mui
[2014-01-19 09:39:45 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mouclass.sys.mui
[2014-01-19 09:39:45 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\parport.sys.mui
[2014-01-19 09:39:45 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mssmbios.sys.mui
[2014-01-19 09:39:45 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mouhid.sys.mui
[2014-01-19 09:39:45 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\MTConfig.sys.mui
[2014-01-19 09:39:44 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\afd.sys.mui
[2014-01-19 09:39:42 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wdf01000.sys.mui
[2014-01-19 09:39:42 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\usbrpm.sys.mui
[2014-01-19 09:39:42 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ws2ifsl.sys.mui
[2014-01-19 09:39:41 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\tcpip.sys.mui
[2014-01-19 09:39:41 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\tunnel.sys.mui
[2014-01-19 09:39:41 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\modem.sys.mui
[2014-01-19 09:39:36 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\srv2.sys.mui
[2014-01-19 09:39:36 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mrxsmb.sys.mui
[2014-01-19 09:39:35 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\fvevol.sys.mui
[2014-01-19 09:39:35 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\scfilter.sys.mui
[2014-01-19 09:39:34 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\refs.sys.mui
[2014-01-19 09:39:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\rdbss.sys.mui
[2014-01-19 09:39:33 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\pacer.sys.mui
[2014-01-19 09:39:33 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\qwavedrv.sys.mui
[2014-01-19 09:39:33 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\pdc.sys.mui
[2014-01-19 09:39:32 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\partmgr.sys.mui
[2014-01-19 09:39:28 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ntfs.sys.mui
[2014-01-19 09:39:28 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ndis.sys.mui
[2014-01-19 09:39:28 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\nwifi.sys.mui
[2014-01-19 09:39:28 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ndisuio.sys.mui
[2014-01-19 09:39:26 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\NdisVirtualBus.sys.mui
[2014-01-19 09:39:26 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mshidumdf.sys.mui
[2014-01-19 09:39:25 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mountmgr.sys.mui
[2014-01-19 09:39:24 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mslldp.sys.mui
[2014-01-19 09:39:24 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\luafv.sys.mui
[2014-01-19 09:39:22 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\http.sys.mui
[2014-01-19 09:39:16 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\fltmgr.sys.mui
[2014-01-19 09:39:13 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wudfpf.sys.mui
[2014-01-19 09:39:13 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\volmgrx.sys.mui
[2014-01-19 09:39:01 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\pci.sys.mui
[2014-01-19 09:39:01 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\EhStorTcgDrv.sys.mui
[2014-01-19 09:39:01 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\IPMIDrv.sys.mui
[2014-01-19 09:39:01 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\hidclass.sys.mui
[2014-01-19 09:39:01 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\disk.sys.mui
[2014-01-19 09:39:01 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\kbdclass.sys.mui
[2014-01-19 09:39:01 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wacompen.sys.mui
[2014-01-19 09:39:01 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\isapnp.sys.mui
[2014-01-19 09:39:01 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\hdaudbus.sys.mui
[2014-01-19 09:39:01 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\hidi2c.sys.mui
[2014-01-19 09:39:01 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ULIAGPKX.SYS.mui
[2014-01-19 09:39:01 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\NV_AGP.SYS.mui
[2014-01-19 09:39:01 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\hidbth.sys.mui
[2014-01-19 09:39:01 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\HdAudio.sys.mui
[2014-01-19 09:39:01 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\pnpmem.sys.mui
[2014-01-19 09:39:01 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\kbdhid.sys.mui
[2014-01-19 09:39:01 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\AGP440.sys.mui
[2014-01-19 09:39:00 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\processr.sys.mui
[2014-01-19 09:39:00 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\intelppm.sys.mui
[2014-01-19 09:39:00 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\amdppm.sys.mui
[2014-01-19 09:39:00 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\amdk8.sys.mui
[2014-01-19 09:39:00 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BthLEEnum.sys.mui
[2014-01-19 09:39:00 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\bthpan.sys.mui
[2014-01-19 09:39:00 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\bthhfenum.sys.mui
[2014-01-19 09:39:00 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\cdrom.sys.mui
[2014-01-19 09:39:00 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BthhfHid.sys.mui
[2014-01-19 09:38:59 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\bthport.sys.mui
[2014-01-19 09:38:59 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\1394ohci.sys.mui
[2014-01-19 09:38:59 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\acpi.sys.mui
[2014-01-19 09:38:59 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\battc.sys.mui
[2014-01-19 09:38:59 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\GAGP30KX.SYS.mui
[2014-01-19 09:38:59 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BTHUSB.SYS.mui
[2014-01-19 09:38:59 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BthMini.SYS.mui
[2014-01-19 09:38:59 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\UAGP35.SYS.mui
[2014-01-19 09:38:59 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BthAvrcpTg.sys.mui
[2014-01-19 09:38:59 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\bthenum.sys.mui
[2014-01-19 09:38:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014-01-19 09:36:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2014-01-19 09:36:30 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Google
[2014-01-19 09:36:09 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Deployment
[2014-01-19 09:36:09 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Apps
[2014-01-19 09:22:27 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Macromedia
[2014-01-19 09:16:40 | 000,000,000 | R--D | C] -- C:\Users\AM\SkyDrive.old
[2014-01-19 09:15:38 | 000,000,000 | ---D | C] -- C:\Users\AM\PicStream
[2014-01-19 09:15:38 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\clear.fi
[2014-01-19 09:15:15 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Atheros
[2014-01-19 09:14:13 | 000,000,000 | ---D | C] -- C:\ProgramData\OEM_YAHOO
[2014-01-19 09:14:01 | 000,000,000 | R--D | C] -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014-01-19 09:14:01 | 000,000,000 | R--D | C] -- C:\Users\AM\Searches
[2014-01-19 09:14:01 | 000,000,000 | R--D | C] -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014-01-19 09:14:00 | 000,000,000 | R--D | C] -- C:\Users\AM\Contacts
[2014-01-19 09:14:00 | 000,000,000 | -H-D | C] -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2014-01-19 09:13:48 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Adobe
[2014-01-19 09:13:46 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\VirtualStore
[2014-01-19 09:13:41 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Packages
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\AppData\Local\Temporary Internet Files
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\Templates
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\Start Menu
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\SendTo
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\Recent
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\PrintHood
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\NetHood
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\Documents\My Videos
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\Documents\My Pictures
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\Documents\My Music
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\My Documents
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\Local Settings
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\AppData\Local\History
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\Cookies
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\Application Data
[2014-01-19 09:11:13 | 000,000,000 | -HSD | C] -- C:\Users\AM\AppData\Local\Application Data
[2014-01-19 09:11:07 | 000,000,000 | --SD | C] -- C:\Users\AM\AppData\Roaming\Microsoft
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\Videos
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\Saved Games
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\Pictures
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\Music
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\Links
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\Favorites
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\Downloads
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\Documents
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\Desktop
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014-01-19 09:11:07 | 000,000,000 | R--D | C] -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2014-01-19 09:11:07 | 000,000,000 | -H-D | C] -- C:\Users\AM\AppData
[2014-01-19 09:11:07 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Temp
[2014-01-19 09:11:07 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Pokki
[2014-01-19 09:11:07 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Local\Microsoft
[2014-01-19 09:11:07 | 000,000,000 | ---D | C] -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2014-02-13 14:08:35 | 001,825,074 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014-02-13 14:08:35 | 000,807,134 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2014-02-13 14:08:35 | 000,722,476 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014-02-13 14:08:35 | 000,163,478 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2014-02-13 14:08:35 | 000,135,592 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014-02-13 14:04:22 | 000,002,433 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014-02-13 14:04:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014-02-13 14:03:04 | 000,001,048 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014-02-13 14:01:57 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014-02-13 14:01:56 | 2956,984,320 | -HS- | M] () -- C:\hiberfil.sys
[2014-02-13 11:46:00 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014-02-13 10:56:33 | 000,001,161 | ---- | M] () -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2014-02-13 10:37:05 | 000,001,117 | ---- | M] () -- C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
[2014-02-09 20:45:28 | 000,020,301 | ---- | M] () -- C:\Users\AM\Desktop\safe_image.jpg
[2014-02-08 22:09:12 | 129,004,828 | ---- | M] () -- C:\Users\AM\Desktop\Prawo odwagi..pdf
[2014-02-06 09:35:57 | 000,440,066 | ---- | M] () -- C:\Users\AM\Documents\IMG_20140206_0001.pdf
[2014-02-05 14:58:27 | 000,002,138 | ---- | M] () -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk
[2014-01-30 21:47:26 | 000,693,240 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2014-01-30 21:47:26 | 000,105,464 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014-01-20 22:56:09 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\spu_storage.bin
[2014-01-20 21:30:05 | 000,607,682 | ---- | M] () -- C:\Users\AM\Documents\Polisa Edyty.pdf
[2014-01-20 20:04:37 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2014-01-20 19:38:33 | 000,481,560 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014-01-20 14:03:36 | 000,154,883 | ---- | M] () -- C:\Users\AM\Documents\IMG_20140120_0003.jpg
[2014-01-20 14:00:04 | 000,395,591 | ---- | M] () -- C:\Users\AM\Documents\IMG_20140120_0001.pdf
[2014-01-19 22:52:58 | 002,296,057 | ---- | M] () -- C:\Users\AM\Documents\dlaczego-jestes-glupi-chory-i-biedny.pdf
[2014-01-19 21:28:34 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2014-01-19 16:37:11 | 000,201,872 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
[2014-01-19 16:37:04 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
[2014-01-19 16:37:04 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
[2014-01-19 16:37:03 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
[2014-01-19 10:42:12 | 000,002,533 | ---- | M] () -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014-01-19 10:42:12 | 000,001,684 | ---- | M] () -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2014-01-19 10:15:07 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2014-01-19 09:48:43 | 000,342,912 | ---- | M] () -- C:\Windows\SysNative\perfi015.dat
[2014-01-19 09:48:43 | 000,041,236 | ---- | M] () -- C:\Windows\SysNative\perfd015.dat

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2014-02-13 10:56:33 | 000,001,161 | ---- | C] () -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes Anti-Malware.lnk
[2014-02-13 10:38:16 | 000,001,322 | ---- | C] () -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus.lnk
[2014-02-13 10:37:17 | 000,001,117 | ---- | C] () -- C:\Users\Public\Desktop\Kaspersky Anti-Virus.lnk
[2014-02-09 20:45:27 | 000,020,301 | ---- | C] () -- C:\Users\AM\Desktop\safe_image.jpg
[2014-02-08 22:08:10 | 129,004,828 | ---- | C] () -- C:\Users\AM\Desktop\Prawo odwagi..pdf
[2014-02-06 09:35:55 | 000,440,066 | ---- | C] () -- C:\Users\AM\Documents\IMG_20140206_0001.pdf
[2014-01-20 21:29:47 | 000,607,682 | ---- | C] () -- C:\Users\AM\Documents\Polisa Edyty.pdf
[2014-01-20 20:04:37 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2014-01-20 14:03:36 | 000,154,883 | ---- | C] () -- C:\Users\AM\Documents\IMG_20140120_0003.jpg
[2014-01-20 13:59:26 | 000,395,591 | ---- | C] () -- C:\Users\AM\Documents\IMG_20140120_0001.pdf
[2014-01-20 10:48:24 | 000,385,528 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2014-01-20 10:38:04 | 000,138,240 | ---- | C] () -- C:\Windows\SysNative\OEMLicense.dll
[2014-01-20 10:38:03 | 000,103,936 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2014-01-20 08:52:14 | 000,000,283 | ---- | C] () -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kosz.lnk
[2014-01-19 22:52:41 | 002,296,057 | ---- | C] () -- C:\Users\AM\Documents\dlaczego-jestes-glupi-chory-i-biedny.pdf
[2014-01-19 21:28:34 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2014-01-19 18:04:27 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys
[2014-01-19 18:04:25 | 2956,984,320 | -HS- | C] () -- C:\hiberfil.sys
[2014-01-19 16:05:10 | 000,092,416 | ---- | C] () -- C:\Windows\SysWow64\CNC1766D.TBL
[2014-01-19 16:03:31 | 000,092,416 | ---- | C] () -- C:\Windows\SysNative\CNC1766D.TBL
[2014-01-19 15:03:20 | 000,001,066 | ---- | C] () -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cradle of Rome 2. Edycja kolekcjonerska.lnk
[2014-01-19 11:21:53 | 000,002,138 | ---- | C] () -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk
[2014-01-19 11:21:51 | 000,002,126 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
[2014-01-19 10:17:41 | 000,002,134 | ---- | C] () -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
[2014-01-19 10:15:07 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2014-01-19 09:50:51 | 000,807,134 | ---- | C] () -- C:\Windows\SysNative\perfh015.dat
[2014-01-19 09:50:51 | 000,342,912 | ---- | C] () -- C:\Windows\SysNative\perfi015.dat
[2014-01-19 09:50:51 | 000,163,478 | ---- | C] () -- C:\Windows\SysNative\perfc015.dat
[2014-01-19 09:50:51 | 000,041,236 | ---- | C] () -- C:\Windows\SysNative\perfd015.dat
[2014-01-19 09:38:33 | 000,002,533 | ---- | C] () -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2014-01-19 09:38:32 | 000,002,433 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014-01-19 09:36:39 | 000,001,052 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014-01-19 09:36:37 | 000,001,048 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014-01-19 09:22:03 | 000,001,684 | ---- | C] () -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2014-01-19 09:15:13 | 000,001,288 | ---- | C] () -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RtkGUI.lnk
[2014-01-19 09:13:48 | 000,001,690 | ---- | C] () -- C:\Users\AM\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014-01-19 09:11:07 | 000,000,352 | ---- | C] () -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2014-01-19 09:11:07 | 000,000,334 | ---- | C] () -- C:\Users\AM\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2013-11-25 13:20:20 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2013-11-25 13:15:40 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013-10-03 07:00:22 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2013-10-03 07:00:22 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013-10-03 07:00:22 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2013-10-03 07:00:22 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2013-10-03 07:00:22 | 000,123,392 | ---- | C] () -- C:\Windows\SysWow64\amdhdl32.dll
[2013-10-03 07:00:22 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2013-09-25 15:55:32 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2013-08-22 16:36:43 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2013-08-22 16:36:42 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2013-08-22 15:46:23 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2013-08-22 08:01:23 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2013-08-22 04:32:36 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2013-08-22 00:55:20 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2013-08-22 00:52:39 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2013-11-25 13:47:33 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
" " = C:\Windows\SysNative\shell32.dll -- [2013-11-05 21:21:27 | 021,196,664 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
" " = %SystemRoot%\system32\shell32.dll -- [2013-11-05 19:51:37 | 018,642,504 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
" " = C:\Windows\SysNative\wbem\fastprox.dll -- [2013-08-22 10:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
" " = %systemroot%\system32\wbem\fastprox.dll -- [2013-08-22 03:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
" " = C:\Windows\SysNative\wbem\wbemess.dll -- [2013-08-22 10:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 237 bytes - & gt; C:\Users\AM\SkyDrive.old:ms-properties
@Alternate Data Stream - 162 bytes - & gt; C:\Users\AM\SkyDrive:ms-properties

& lt; End of report & gt;


Download file - link to post
  Search 5 million + Products