OTL.Txt

Jakie wpisy usunąć po skanie OTL? Avast wykrył bombę kompresyjną

Zrobiłam skan z OTL oto logi, które mam usunąć? oczywiście najpierw zeskanowałam malwarebytes i cleanerem. Proszę o pomoc. Avast wykrył bombę kompresyjną.

Download file - link to post

OTL logfile created on: 2015-01-28 18:57:14 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\PaTuSiA I RaFaŁeK\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17498)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,89 Gb Total Physical Memory | 1,61 Gb Available Physical Memory | 41,31% Memory free
4,64 Gb Paging File | 2,03 Gb Available in Paging File | 43,74% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 448,19 Gb Total Space | 262,21 Gb Free Space | 58,50% Space Free | Partition Type: NTFS
Drive F: | 33,84 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: PATUHA | User Name: PaTuSiA I RaFaŁeK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2015-01-28 18:20:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\PaTuSiA I RaFaŁeK\Downloads\OTL.exe
PRC - [2015-01-28 16:00:49 | 005,227,112 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2015-01-28 15:59:47 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2015-01-28 15:59:23 | 000,104,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\afwServ.exe
PRC - [2014-11-21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
PRC - [2014-11-21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2014-11-21 06:12:46 | 007,229,752 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
PRC - [2014-06-01 09:21:58 | 000,448,608 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office 15\root\office15\MSOSYNC.EXE
PRC - [2014-05-21 06:47:40 | 000,515,072 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\PLAY ONLINE.exe
PRC - [2013-10-28 03:02:24 | 000,238,160 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2013-10-26 10:45:14 | 000,651,856 | ---- | M] () -- C:\ProgramData\PLAY ONLINE\OnlineUpdate\ouc.exe
PRC - [2013-09-04 00:53:48 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2013-09-04 00:53:42 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2012-07-14 00:27:00 | 000,769,432 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2012-04-24 22:37:56 | 000,169,752 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe

[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2015-01-28 15:59:51 | 038,562,088 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014-06-01 09:19:34 | 000,354,368 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\office15\c2r32.dll
MOD - [2014-06-01 09:19:34 | 000,312,896 | ---- | M] () -- C:\Program Files\Microsoft Office 15\root\office15\appvisvstream32.dll
MOD - [2014-05-21 06:47:40 | 000,515,072 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\PLAY ONLINE.exe
MOD - [2013-12-26 12:22:45 | 000,287,744 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\XFramePlugin.dll
MOD - [2013-12-23 13:14:26 | 000,103,424 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\MainpagePlugin.dll
MOD - [2013-12-23 13:14:21 | 000,224,768 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\ToolBarMgrPlugin.dll
MOD - [2013-12-23 13:14:08 | 000,338,944 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\MenuMgrPlugin.dll
MOD - [2013-12-23 13:13:35 | 000,855,552 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\SMSUIPlugin.dll
MOD - [2013-12-23 13:12:33 | 000,599,552 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\DialupUIPlugin.dll
MOD - [2013-12-23 13:11:56 | 000,537,088 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\core.dll
MOD - [2013-10-28 09:26:55 | 000,119,296 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\ConnectMgrUIPlugin.dll
MOD - [2013-10-28 09:26:14 | 000,487,424 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\USSDUIPlugin.dll
MOD - [2013-10-28 09:26:11 | 000,493,568 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\NetInfoUIExPlugin.dll
MOD - [2013-10-28 09:26:05 | 000,303,616 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\DiagnosisPlugin.dll
MOD - [2013-10-28 09:25:56 | 000,394,240 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\NetConnectPlugin.dll
MOD - [2013-10-28 09:25:50 | 000,323,072 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\StatusBarMgrPlugin.dll
MOD - [2013-10-28 09:25:50 | 000,117,248 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\LayoutPlugin.dll
MOD - [2013-10-28 09:25:48 | 000,581,120 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\DeviceMgrUIPlugin.dll
MOD - [2013-10-28 09:25:39 | 000,819,712 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\AddrBookUIPlugin.dll
MOD - [2013-10-28 09:25:29 | 000,097,792 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\NotifyServicePlugin.dll
MOD - [2013-10-28 09:25:01 | 000,288,768 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\sdk.dll
MOD - [2013-10-28 09:24:55 | 000,062,976 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\OSCall.dll
MOD - [2013-10-28 09:24:54 | 000,569,344 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\CallLogSrvPlugin.dll
MOD - [2013-10-28 09:24:53 | 000,704,000 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\SmsAppPlugin.dll
MOD - [2013-10-28 09:24:52 | 000,220,160 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\SmsSrvPlugin.dll
MOD - [2013-10-28 09:24:52 | 000,177,152 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\CallSrvPlugin.dll
MOD - [2013-10-28 09:24:51 | 000,702,464 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\NetInfoSrvPlugin.dll
MOD - [2013-10-28 09:24:50 | 000,157,184 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\STKSrvPlugin.dll
MOD - [2013-10-28 09:24:49 | 001,124,352 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\AddrBookPlugin.dll
MOD - [2013-10-28 09:24:49 | 000,187,392 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\CallAppPlugin.dll
MOD - [2013-10-28 09:24:49 | 000,142,336 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\USSDSrvPlugin.dll
MOD - [2013-10-28 09:24:48 | 000,731,136 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\DeviceAppPlugin.dll
MOD - [2013-10-28 09:24:47 | 000,672,768 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\AddrBookSrvPlugin.dll
MOD - [2013-10-28 09:24:45 | 000,730,112 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\DeviceSrvPlugin.dll
MOD - [2013-10-28 09:24:45 | 000,168,960 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\ATR2SMgr.dll
MOD - [2013-10-28 09:24:44 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\NetSrvPlugin.dll
MOD - [2013-10-28 09:24:43 | 000,195,584 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\XCodec.dll
MOD - [2013-10-28 09:24:42 | 000,583,168 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\PluginContainer.dll
MOD - [2013-10-28 09:24:34 | 000,236,032 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\DialUpPlugin.dll
MOD - [2013-10-28 09:24:32 | 000,201,728 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\NDISPlugin.dll
MOD - [2013-10-28 09:24:29 | 000,407,552 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\Proxy.dll
MOD - [2013-10-28 09:24:29 | 000,158,720 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\NetConnectSrvPlugin.dll
MOD - [2013-10-28 09:24:28 | 000,155,136 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\DataServicePlugin.dll
MOD - [2013-10-28 09:24:26 | 000,166,912 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\OSDialup.dll
MOD - [2013-10-28 09:24:26 | 000,131,584 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\OSNDIS.dll
MOD - [2013-10-28 09:24:25 | 000,102,400 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\OSAdapt.dll
MOD - [2013-10-28 09:24:24 | 000,646,144 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\AtCodec.dll
MOD - [2013-10-28 09:24:24 | 000,065,536 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\OSPowerMgr.dll
MOD - [2013-10-28 09:24:22 | 000,628,224 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\Common.dll
MOD - [2013-10-28 09:24:22 | 000,157,696 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\Trace.dll
MOD - [2013-10-26 10:08:24 | 000,692,224 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\LiveUpdateInterface.dll
MOD - [2013-10-15 13:16:21 | 001,146,880 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\NDISAPI.dll
MOD - [2013-08-31 10:41:18 | 015,675,904 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\QtWebKit4.dll
MOD - [2013-08-31 09:43:28 | 000,306,176 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\phonon4.dll
MOD - [2013-08-31 09:42:46 | 003,962,368 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\QtXmlPatterns4.dll
MOD - [2013-08-31 06:59:26 | 009,559,040 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\QtGui4.dll
MOD - [2013-08-31 06:46:34 | 001,148,416 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\QtNetwork4.dll
MOD - [2013-08-31 06:44:58 | 000,398,336 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\QtXml4.dll
MOD - [2013-08-31 06:44:42 | 002,417,152 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\QtCore4.dll
MOD - [2013-06-08 04:46:05 | 000,224,256 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\tdpcvoice.dll
MOD - [2013-06-08 04:46:05 | 000,155,648 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\Win7Support.dll
MOD - [2013-06-08 04:45:29 | 000,370,176 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\plugins\imageformats\qtiff4.dll
MOD - [2013-06-08 04:45:29 | 000,350,720 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\plugins\imageformats\qmng4.dll
MOD - [2013-06-08 04:45:29 | 000,192,000 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\plugins\imageformats\qjpeg4.dll
MOD - [2013-06-08 04:45:29 | 000,082,944 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\plugins\imageformats\qgif4.dll
MOD - [2013-06-08 04:45:29 | 000,081,920 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\plugins\imageformats\qico4.dll
MOD - [2009-06-23 03:42:42 | 000,043,008 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\libgcc_s_dw2-1.dll
MOD - [2009-01-10 19:32:40 | 000,011,362 | ---- | M] () -- C:\Program Files (x86)\PLAY ONLINE\mingwm10.dll

[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2015-01-28 15:59:47 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:[b]64bit:[/b] - [2015-01-28 15:59:24 | 004,012,248 | ---- | M] (Avast Software) [On_Demand | Running] -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe -- (AvastVBoxSvc)
SRV:[b]64bit:[/b] - [2015-01-28 15:59:23 | 000,104,416 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\afwServ.exe -- (avast! Firewall)
SRV:[b]64bit:[/b] - [2014-10-31 05:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2014-10-07 02:54:27 | 000,226,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2014-09-22 04:05:56 | 000,368,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:[b]64bit:[/b] - [2014-09-22 04:05:56 | 000,023,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:[b]64bit:[/b] - [2014-08-16 04:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2014-08-16 01:58:35 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2014-08-16 01:45:51 | 000,267,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2014-04-03 16:15:34 | 000,189,912 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Windows\SysNative\mfevtps.exe -- (mfevtp)
SRV:[b]64bit:[/b] - [2014-04-03 16:07:34 | 000,219,752 | ---- | M] () [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe -- (mfefire)
SRV:[b]64bit:[/b] - [2014-04-03 03:51:48 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:[b]64bit:[/b] - [2014-03-14 07:26:25 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:[b]64bit:[/b] - [2014-03-08 06:41:25 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:[b]64bit:[/b] - [2014-03-06 08:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2014-02-22 16:53:10 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2014-02-22 10:57:16 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2014-02-22 10:26:58 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2014-02-22 10:25:39 | 000,399,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2014-02-22 10:23:58 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2013-12-10 08:35:18 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:[b]64bit:[/b] - [2013-08-22 12:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:[b]64bit:[/b] - [2013-08-22 12:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2013-08-22 12:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2013-08-22 12:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2013-08-22 12:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2013-08-22 11:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:[b]64bit:[/b] - [2013-08-22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:[b]64bit:[/b] - [2013-08-22 11:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:[b]64bit:[/b] - [2013-08-22 10:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:[b]64bit:[/b] - [2013-08-22 10:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2013-08-22 10:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2013-08-22 10:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2013-08-22 10:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:[b]64bit:[/b] - [2013-08-22 10:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2013-08-22 10:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2013-08-22 10:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2013-08-03 02:47:44 | 000,457,768 | ---- | M] (Acer Incorporate) [Auto | Running] -- C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe -- (LMSvc)
SRV:[b]64bit:[/b] - [2013-08-03 02:33:16 | 000,448,040 | ---- | M] (Acer Incorporate) [On_Demand | Running] -- C:\Program Files\Acer\Acer Quick Access\RMSvc.exe -- (RMSvc)
SRV:[b]64bit:[/b] - [2013-08-03 02:33:14 | 000,457,768 | ---- | M] (Acer Incorporate) [On_Demand | Running] -- C:\Program Files\Acer\Acer Quick Access\QASvc.exe -- (QASvc)
SRV:[b]64bit:[/b] - [2013-07-06 00:19:04 | 000,663,592 | ---- | M] (Acer Incorporated) [On_Demand | Running] -- C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe -- (ePowerSvc)
SRV:[b]64bit:[/b] - [2013-05-12 01:45:54 | 000,822,232 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2013-05-12 01:45:38 | 000,733,696 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2012-12-07 06:05:16 | 001,854,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe -- (OfficeSvc)
SRV - [2015-01-27 07:36:57 | 000,114,800 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014-11-21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014-11-21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2014-08-16 04:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014-03-14 07:10:16 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013-10-28 03:02:26 | 000,351,824 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\HWDeviceService64.exe -- (HWDeviceService64.exe)
SRV - [2013-10-26 10:45:14 | 000,651,856 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\PLAY ONLINE\UpdateDog\ouc.exe -- (PLAY ONLINE. RunOuc)
SRV - [2013-09-12 11:03:03 | 000,279,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013-09-07 09:52:20 | 000,312,448 | ---- | M] (Windows (R) Win 7 DDK provider) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe -- (AtherosSvc)
SRV - [2013-09-04 00:53:48 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013-09-04 00:53:42 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2013-08-22 04:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013-08-22 03:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2012-07-14 00:27:00 | 000,769,432 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2012-04-24 22:37:56 | 000,169,752 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2015-01-28 18:49:52 | 000,129,752 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:[b]64bit:[/b] - [2015-01-28 16:00:44 | 000,087,912 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswmonflt.sys -- (aswMonFlt)
DRV:[b]64bit:[/b] - [2015-01-28 16:00:41 | 001,050,432 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswsnx.sys -- (aswSnx)
DRV:[b]64bit:[/b] - [2015-01-28 15:59:54 | 000,436,624 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:[b]64bit:[/b] - [2015-01-28 15:59:54 | 000,267,632 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:[b]64bit:[/b] - [2015-01-28 15:59:54 | 000,116,728 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:[b]64bit:[/b] - [2015-01-28 15:59:54 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:[b]64bit:[/b] - [2015-01-28 15:59:54 | 000,029,208 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:[b]64bit:[/b] - [2015-01-28 15:59:53 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:[b]64bit:[/b] - [2015-01-28 15:59:40 | 000,028,184 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswKbd.sys -- (aswKbd)
DRV:[b]64bit:[/b] - [2015-01-28 15:59:24 | 000,271,752 | ---- | M] (Avast Software) [Kernel | Auto | Running] -- C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys -- (VBoxAswDrv)
DRV:[b]64bit:[/b] - [2015-01-28 15:59:23 | 000,449,936 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswNdisFlt.sys -- (aswNdisFlt)
DRV:[b]64bit:[/b] - [2014-11-21 06:14:26 | 000,064,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:[b]64bit:[/b] - [2014-11-21 06:14:08 | 000,025,816 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:[b]64bit:[/b] - [2014-10-13 03:43:17 | 000,238,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2014-10-13 03:43:17 | 000,086,336 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2014-10-13 03:43:17 | 000,039,744 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:[b]64bit:[/b] - [2014-10-10 02:58:57 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2014-09-22 04:06:16 | 000,258,368 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2014-09-22 04:06:16 | 000,114,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:[b]64bit:[/b] - [2014-09-22 03:49:43 | 000,035,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2014-08-15 01:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2014-07-24 16:28:38 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2014-06-10 06:33:23 | 000,309,248 | ---- | M] (Disc Soft Ltd) [Kernel | On_Demand | Unknown] -- C:\Windows\SysNative\drivers\dtscsidrv.sys -- (dtscsidrv)
DRV:[b]64bit:[/b] - [2014-06-10 05:48:09 | 000,386,680 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:[b]64bit:[/b] - [2014-06-10 05:13:47 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:[b]64bit:[/b] - [2014-05-01 14:31:39 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2014-04-03 16:23:54 | 000,070,592 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\cfwids.sys -- (cfwids)
DRV:[b]64bit:[/b] - [2014-04-03 16:16:04 | 000,346,760 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfewfpk.sys -- (mfewfpk)
DRV:[b]64bit:[/b] - [2014-04-03 16:10:34 | 000,784,760 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mfehidk.sys -- (mfehidk)
DRV:[b]64bit:[/b] - [2014-04-03 16:08:04 | 000,522,360 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfefirek.sys -- (mfefirek)
DRV:[b]64bit:[/b] - [2014-04-03 16:06:04 | 000,311,856 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mfeavfk.sys -- (mfeavfk)
DRV:[b]64bit:[/b] - [2014-04-03 16:03:32 | 000,177,544 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mfeapfk.sys -- (mfeapfk)
DRV:[b]64bit:[/b] - [2014-04-03 15:43:16 | 000,069,352 | ---- | M] (McAfee, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mfeelamk.sys -- (mfeelamk)
DRV:[b]64bit:[/b] - [2014-04-01 07:23:41 | 000,384,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2014-03-20 04:41:20 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2014-03-13 13:35:24 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\wof.sys -- (Wof)
DRV:[b]64bit:[/b] - [2014-03-08 21:40:16 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2014-02-22 16:49:51 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2014-02-22 16:49:49 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2014-02-22 16:49:49 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2014-02-22 16:44:13 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\refs.sys -- (ReFS)
DRV:[b]64bit:[/b] - [2014-02-22 13:14:02 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2013-12-04 19:41:54 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:[b]64bit:[/b] - [2013-10-26 02:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:[b]64bit:[/b] - [2013-10-05 16:25:54 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:[b]64bit:[/b] - [2013-09-14 15:06:57 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2013-09-09 18:41:07 | 000,449,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2013-09-09 18:35:40 | 004,170,752 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2013-09-07 09:29:14 | 000,594,120 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:[b]64bit:[/b] - [2013-09-07 09:29:14 | 000,338,120 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:[b]64bit:[/b] - [2013-09-07 09:29:14 | 000,179,432 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:[b]64bit:[/b] - [2013-09-07 09:29:14 | 000,137,928 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:[b]64bit:[/b] - [2013-09-07 09:29:14 | 000,116,424 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_avdt.sys -- (btath_avdt)
DRV:[b]64bit:[/b] - [2013-09-07 09:29:14 | 000,089,800 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:[b]64bit:[/b] - [2013-09-07 09:29:14 | 000,077,464 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:[b]64bit:[/b] - [2013-09-07 09:29:14 | 000,034,384 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:[b]64bit:[/b] - [2013-09-04 00:53:44 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2013-08-28 13:41:52 | 000,524,016 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2013-08-28 13:41:52 | 000,034,544 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:[b]64bit:[/b] - [2013-08-22 23:51:12 | 000,039,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:[b]64bit:[/b] - [2013-08-22 23:51:12 | 000,026,008 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:[b]64bit:[/b] - [2013-08-22 20:11:03 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2013-08-22 14:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2013-08-22 14:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2013-08-22 13:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2013-08-22 13:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2013-08-22 13:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2013-08-22 13:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2013-08-22 13:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:[b]64bit:[/b] - [2013-08-22 13:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2013-08-22 13:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2013-08-22 12:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:[b]64bit:[/b] - [2013-08-22 12:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2013-08-22 12:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2013-08-22 12:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2013-08-22 12:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2013-08-22 12:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2013-08-22 12:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:[b]64bit:[/b] - [2013-08-22 12:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:[b]64bit:[/b] - [2013-08-22 12:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2013-08-22 12:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2013-08-22 12:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2013-08-22 09:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2013-08-16 04:13:30 | 003,859,968 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athwbx.sys -- (athr)
DRV:[b]64bit:[/b] - [2013-08-13 00:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:[b]64bit:[/b] - [2013-08-10 01:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:[b]64bit:[/b] - [2013-07-30 19:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:[b]64bit:[/b] - [2013-07-25 20:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:[b]64bit:[/b] - [2013-07-19 22:26:32 | 000,082,128 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bScsiSDa.sys -- (bScsiSDa)
DRV:[b]64bit:[/b] - [2013-07-17 10:59:00 | 000,021,360 | ---- | M] (Acer Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMDriver.sys -- (LMDriver)
DRV:[b]64bit:[/b] - [2013-07-17 10:59:00 | 000,014,680 | ---- | M] (Acer Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RadioShim.sys -- (RadioShim)
DRV:[b]64bit:[/b] - [2013-06-29 10:17:56 | 000,246,272 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_juwwanecm.sys -- (huawei_wwanecm)
DRV:[b]64bit:[/b] - [2013-06-18 15:45:14 | 000,425,984 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:[b]64bit:[/b] - [2013-03-04 09:32:48 | 000,110,592 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jucdcacm.sys -- (huawei_cdcacm)
DRV:[b]64bit:[/b] - [2013-03-04 09:32:48 | 000,091,648 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV:[b]64bit:[/b] - [2013-03-04 09:32:48 | 000,030,720 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl)
DRV:[b]64bit:[/b] - [2013-01-25 02:16:40 | 000,109,568 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV:[b]64bit:[/b] - [2012-12-22 02:46:11 | 000,014,976 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)

[color=#E56717]========== Standard Registry (SafeList) ==========[/color]

[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://www.bing.com/search?q={searchTerms} & FORM=IE8SRC
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{171CA8D3-E5D4-4C27-84D2-82E9E1BA6EBE}: " URL " = http://www.bing.com/search?q={searchTerms} & form=IE10TR & src=IE10TR & pc=ACJB
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://www.bing.com/search?q={searchTerms} & FORM=IE8SRC
IE - HKLM\..\SearchScopes\{171CA8D3-E5D4-4C27-84D2-82E9E1BA6EBE}: " URL " = http://www.bing.com/search?q={searchTerms} & form=IE10TR & src=IE10TR & pc=ACJB

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: " URL " = http://www.bing.com/search?q={searchTerms} & src=IE-SearchBox & FORM=IE8SRC
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: " URL " = http://www.google.com/search?q={searcerms} & src=IE-SearchBox & FORM=IE8SRC
IE - HKCU\..\SearchScopes\{CFC84A1F-BC02-44CA-8F80-8AF8BA92A779}: " URL " = http://www.google.com/search?q={searchTerms} & sourceid=ie7 & rls=com.microsoft:en-US & ie=utf8 & oe=utf8
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: " ProxyEnable " = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.isUS: false
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:10.1.0.170
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:35.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.67.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\PaTuSiA I RaFaŁeK\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-01-28 16:07:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2014-06-18 17:30:10 | 000,000,000 | ---D | M] (No name found) -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\mozilla\Extensions
[2015-01-23 10:38:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\mozilla\Firefox\Profiles\eapwtj1l.default\extensions
[2015-01-23 10:27:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2015-01-27 07:36:58 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2015-01-28 16:07:08 | 000,000,000 | ---D | M] ( " Avast Online Security " ) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF

[color=#E56717]========== Chrome ==========[/color]

CHR - Extension: No name found = C:\Users\PaTuSiA I RaFaŁeK\AppData\Local\Google\Chrome\User Data\Default\Extensions\engicogbeohjmmlnddedkplgiclgdmdc\1.0_0\
CHR - Extension: No name found = C:\Users\PaTuSiA I RaFaŁeK\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.0.2502.149_0\
CHR - Extension: No name found = C:\Users\PaTuSiA I RaFaŁeK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\

O1 HOSTS File: ([2013-08-22 14:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe (Microsoft Corporation)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKCU..\Run: [AcerCloud] C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe (Acer)
O4 - HKCU..\Run: [ALLUpdate] " C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe " " sleep " File not found
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: BtvStack = " C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe " (Atheros Communications)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O8:[b]64bit:[/b] - Extra context menu item: Add to Google Photos Screensa & ver - res://C:\Windows\system32\GPhotos.scr/200 File not found
O8:[b]64bit:[/b] - Extra context menu item: E & xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8:[b]64bit:[/b] - Extra context menu item: Se & nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: Add to Google Photos Screensa & ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E & xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Se & nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Se & nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: OneNote Lin & ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : OneNote Lin & ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se & nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin & ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin & ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{15CA66FF-5CF1-4D43-B974-ECB0A24286AF}: NameServer = 89.108.202.20 89.108.195.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4C8DAED1-9CD7-478E-93A8-ECD342FC0D73}: NameServer = 89.108.202.20 89.108.195.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DC38F7B0-18C9-4F2D-9A6E-F039DAEDD03F}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E73FE678-BB47-4BA6-81F2-73593F2E36F2}: NameServer = 89.108.202.20 89.108.195.20
O18:[b]64bit:[/b] - Protocol\Handler\osf - No CLSID value found
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29:[b]64bit:[/b] - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013-10-28 16:32:22 | 000,150,608 | R--- | M] () - F:\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2008-10-01 10:12:34 | 000,000,045 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{0bd24e8c-e11a-11e3-8259-f8a963010fe9}\Shell - " " = AutoRun
O33 - MountPoints2\{0bd24e8c-e11a-11e3-8259-f8a963010fe9}\Shell\AutoRun\command - " " = F:\AutoRun.exe -- [2013-10-28 16:32:22 | 000,150,608 | R--- | M] ()
O33 - MountPoints2\{1b728232-019c-11e4-8280-142d2715dde8}\Shell - " " = AutoRun
O33 - MountPoints2\{1b728232-019c-11e4-8280-142d2715dde8}\Shell\AutoRun\command - " " = " H:\HTC_Sync_Manager_PC.exe "
O33 - MountPoints2\{24c1c06b-f239-11e3-8263-142d2715dde8}\Shell - " " = AutoRun
O33 - MountPoints2\{24c1c06b-f239-11e3-8263-142d2715dde8}\Shell\AutoRun\command - " " = " E:\AutoRun.exe "
O33 - MountPoints2\{3ad41b4c-9c7e-11e4-82d2-142d2715dde8}\Shell - " " = AutoRun
O33 - MountPoints2\{3ad41b4c-9c7e-11e4-82d2-142d2715dde8}\Shell\AutoRun\command - " " = " H:\.\Driver\DriverInstaller.exe " -eject
O33 - MountPoints2\{3ad41baf-9c7e-11e4-82d2-142d2715dde8}\Shell - " " = AutoRun
O33 - MountPoints2\{3ad41baf-9c7e-11e4-82d2-142d2715dde8}\Shell\AutoRun\command - " " = F:\AutoRun.exe -- [2013-10-28 16:32:22 | 000,150,608 | R--- | M] ()
O33 - MountPoints2\{43a0b682-e0a8-11e3-8257-806e6f6e6963}\Shell - " " = AutoRun
O33 - MountPoints2\{43a0b682-e0a8-11e3-8257-806e6f6e6963}\Shell\AutoRun\command - " " = " E:\AutoRun.exe "
O33 - MountPoints2\{94106218-9f9f-11e4-82d2-142d2715dde8}\Shell - " " = AutoRun
O33 - MountPoints2\{94106218-9f9f-11e4-82d2-142d2715dde8}\Shell\AutoRun\command - " " = " H:\setup.exe "
O33 - MountPoints2\{acd4221f-238b-11e4-828b-142d2715dde8}\Shell - " " = AutoRun
O33 - MountPoints2\{acd4221f-238b-11e4-828b-142d2715dde8}\Shell\AutoRun\command - " " = F:\AutoRun.exe -- [2013-10-28 16:32:22 | 000,150,608 | R--- | M] ()
O33 - MountPoints2\{af23d553-eff7-11e3-825f-142d2715dde8}\Shell - " " = AutoRun
O33 - MountPoints2\{af23d553-eff7-11e3-825f-142d2715dde8}\Shell\AutoRun\command - " " = " E:\Autorun.exe "
O33 - MountPoints2\{c72b52b2-4bd3-11e4-8298-142d2715dde8}\Shell - " " = AutoRun
O33 - MountPoints2\{c72b52b2-4bd3-11e4-8298-142d2715dde8}\Shell\AutoRun\command - " " = F:\AutoRun.exe -- [2013-10-28 16:32:22 | 000,150,608 | R--- | M] ()
O33 - MountPoints2\{cf74709c-fba4-11e3-827a-142d2715dde8}\Shell - " " = AutoRun
O33 - MountPoints2\{cf74709c-fba4-11e3-827a-142d2715dde8}\Shell\AutoRun\command - " " = " G:\HTC_Sync_Manager_PC.exe "
O33 - MountPoints2\{e5c0a410-e0a8-11e3-8258-142d2715dde7}\Shell - " " = AutoRun
O33 - MountPoints2\{e5c0a410-e0a8-11e3-8258-142d2715dde7}\Shell\AutoRun\command - " " = F:\AutoRun.exe -- [2013-10-28 16:32:22 | 000,150,608 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- " %1 " %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- " %1 " %*
O35 - HKLM\..comfile [open] -- " %1 " %*
O35 - HKLM\..exefile [open] -- " %1 " %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- " %1 " %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- " %1 " %*
O37 - HKLM\...com [@ = comfile] -- " %1 " %*
O37 - HKLM\...exe [@ = exefile] -- " %1 " %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015-01-28 18:19:12 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2015-01-28 18:10:35 | 000,129,752 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2015-01-28 18:10:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2015-01-28 18:10:09 | 000,093,400 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2015-01-28 18:10:09 | 000,064,216 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2015-01-28 18:10:09 | 000,025,816 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2015-01-28 18:10:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2015-01-28 18:10:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2015-01-28 16:02:49 | 000,000,000 | ---D | C] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\AVAST Software
[2015-01-28 16:02:41 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\vbox
[2015-01-28 16:02:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\vbox
[2015-01-28 16:01:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2015-01-28 16:00:44 | 000,087,912 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswmonflt.sys
[2015-01-28 16:00:41 | 001,050,432 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswsnx.sys
[2015-01-28 16:00:11 | 000,436,624 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2015-01-28 16:00:11 | 000,116,728 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2015-01-28 16:00:11 | 000,093,568 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2015-01-28 16:00:10 | 000,028,184 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswKbd.sys
[2015-01-28 16:00:02 | 000,364,512 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2015-01-28 15:59:52 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2015-01-28 15:59:23 | 000,449,936 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswNdisFlt.sys
[2015-01-28 15:57:57 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2015-01-28 15:54:35 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2015-01-28 15:50:07 | 000,000,000 | ---D | C] -- C:\Users\PaTuSiA I RaFaŁeK\Desktop\acer
[2015-01-28 15:39:55 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2015-01-23 10:38:15 | 000,000,000 | ---D | C] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Local\Macromedia
[2015-01-23 10:27:32 | 000,000,000 | ---D | C] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Local\Mozilla
[2015-01-23 10:27:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2015-01-23 10:27:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2015-01-23 10:27:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2015-01-22 20:32:09 | 000,000,000 | ---D | C] -- C:\ProgramData\{68f197b9-2991-f4ae-68f1-197b92995ee4}
[2015-01-22 19:52:56 | 000,000,000 | ---D | C] -- C:\ProgramData\{d4e49bb6-c8a5-b2b7-d4e4-49bb6c8a6edb}
[2015-01-22 19:07:38 | 000,000,000 | ---D | C] -- C:\Users\PaTuSiA I RaFaŁeK\Desktop\Nowy folder (5)
[2015-01-19 15:33:16 | 000,000,000 | ---D | C] -- C:\filmy pawel
[2015-01-19 06:41:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
[2015-01-19 06:41:48 | 000,000,000 | ---D | C] -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Euro Truck Simulator 2
[2015-01-19 06:39:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Euro Truck Simulator 2
[2015-01-06 20:54:19 | 000,000,000 | ---D | C] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Local\OnetDysk
[2015-01-06 20:50:55 | 000,000,000 | R--D | C] -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Scanned Documents
[2015-01-06 20:50:54 | 000,000,000 | ---D | C] -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Fax
[2015-01-04 21:29:49 | 000,000,000 | ---D | C] -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Eidos
[2015-01-04 21:23:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Eidos
[2015-01-04 21:23:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eidos
[2015-01-01 21:41:41 | 000,000,000 | ---D | C] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Local\GGEmpire
[17 C:\Windows\SysWow64\*.tmp files - & gt; C:\Windows\SysWow64\*.tmp - & gt; ]
[1 C:\Windows\*.tmp files - & gt; C:\Windows\*.tmp - & gt; ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2021-10-21 14:36:56 | 000,000,852 | ---- | M] () -- C:\Windows\SysNative\drivers\RTKHDRC.dat
[2021-10-04 08:34:42 | 000,000,712 | ---- | M] () -- C:\Windows\SysNative\drivers\RTMICEQ0.dat
[2015-01-28 19:05:37 | 001,825,074 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015-01-28 19:05:37 | 000,807,160 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2015-01-28 19:05:37 | 000,722,476 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015-01-28 19:05:37 | 000,163,478 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2015-01-28 19:05:37 | 000,135,592 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015-01-28 18:50:17 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015-01-28 18:49:52 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2015-01-28 18:47:37 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2015-01-28 18:47:32 | 3343,089,664 | -HS- | M] () -- C:\hiberfil.sys
[2015-01-28 18:10:13 | 000,001,094 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2015-01-28 16:01:06 | 000,002,036 | ---- | M] () -- C:\Users\Public\Desktop\Avast SafeZone.lnk
[2015-01-28 16:01:06 | 000,001,976 | ---- | M] () -- C:\Users\Public\Desktop\Avast Premier.lnk
[2015-01-28 16:00:44 | 000,087,912 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswmonflt.sys
[2015-01-28 16:00:41 | 001,050,432 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswsnx.sys
[2015-01-28 15:59:54 | 000,436,624 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2015-01-28 15:59:54 | 000,364,512 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2015-01-28 15:59:54 | 000,267,632 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2015-01-28 15:59:54 | 000,116,728 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2015-01-28 15:59:54 | 000,065,776 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2015-01-28 15:59:54 | 000,029,208 | ---- | M] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2015-01-28 15:59:53 | 000,093,568 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2015-01-28 15:59:52 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2015-01-28 15:59:40 | 000,028,184 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswKbd.sys
[2015-01-28 15:59:23 | 000,449,936 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswNdisFlt.sys
[2015-01-26 15:49:16 | 000,003,857 | ---- | M] () -- C:\Windows\SysNative\ScanResults.xml
[2015-01-26 15:44:33 | 000,000,464 | ---- | M] () -- C:\Windows\SysNative\ScannerSettings
[2015-01-23 10:27:26 | 000,001,129 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2015-01-23 10:22:20 | 000,000,072 | ---- | M] () -- C:\Windows\efix.ini
[2015-01-20 19:26:21 | 000,000,451 | ---- | M] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Stacja dysków CD — skrót.lnk
[2015-01-04 21:23:15 | 000,001,912 | ---- | M] () -- C:\Users\Public\Desktop\Tomb Raider - Anniversary.lnk
[17 C:\Windows\SysWow64\*.tmp files - & gt; C:\Windows\SysWow64\*.tmp - & gt; ]
[1 C:\Windows\*.tmp files - & gt; C:\Windows\*.tmp - & gt; ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015-01-28 18:10:13 | 000,001,094 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2015-01-28 16:01:06 | 000,002,036 | ---- | C] () -- C:\Users\Public\Desktop\Avast SafeZone.lnk
[2015-01-28 16:01:06 | 000,001,976 | ---- | C] () -- C:\Users\Public\Desktop\Avast Premier.lnk
[2015-01-28 16:00:11 | 000,267,632 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2015-01-28 16:00:11 | 000,065,776 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2015-01-28 16:00:11 | 000,029,208 | ---- | C] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2015-01-26 15:49:16 | 000,003,857 | ---- | C] () -- C:\Windows\SysNative\ScanResults.xml
[2015-01-26 15:44:33 | 000,000,464 | ---- | C] () -- C:\Windows\SysNative\ScannerSettings
[2015-01-23 10:27:26 | 000,001,141 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2015-01-23 10:27:26 | 000,001,129 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2015-01-23 10:21:05 | 000,000,072 | ---- | C] () -- C:\Windows\efix.ini
[2015-01-20 19:26:21 | 000,000,451 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Stacja dysków CD — skrót.lnk
[2015-01-18 17:11:42 | 590,333,952 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Desktop\Euro Truck Simulator 2 PL [ 2012 ] PC.iso
[2015-01-06 20:54:28 | 000,001,144 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OnetDysk.lnk
[2015-01-05 18:25:54 | 002,870,575 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Elvis Presley - Burning Love (1).mp3
[2015-01-05 18:25:54 | 002,359,796 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Elvis Presley - Jailhouse Rock (1).mp3
[2015-01-05 18:25:54 | 002,261,251 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Elvis Presley - Viva Las Vegas.mp3
[2015-01-05 18:25:54 | 002,209,782 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Elvis Presley - Hound dog.mp3
[2015-01-05 18:25:54 | 001,957,752 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\elvis presley - all shook up.mp3
[2015-01-05 18:25:54 | 001,919,718 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Elvis Presley - Blue Suede Shoes.mp3
[2015-01-05 18:25:53 | 006,197,948 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\jerry lee lewis - legends (1).mp3
[2015-01-05 18:25:53 | 005,521,606 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\mój jest ten kawałek podłogi - oryginał.mp3
[2015-01-05 18:25:53 | 005,051,486 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Dżem - Czerwony jak cegła.mp3
[2015-01-05 18:25:53 | 004,830,804 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Lady Pank - Zostawcie Titanica.mp3
[2015-01-05 18:25:53 | 004,797,367 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\lady pank - Nie wierz nigdy kobiecie.mp3
[2015-01-05 18:25:53 | 004,602,984 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Bee Gees - Stayin Alive pobrano z www.DjOles.pl.mp3
[2015-01-05 18:25:53 | 004,557,041 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Lady Pank - Tańcz, głupia tańcz (1).mp3
[2015-01-05 18:25:53 | 004,547,009 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Chylinska - winna.mp3
[2015-01-05 18:25:53 | 004,525,694 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Guns N- Roses - Dont Cry.mp3
[2015-01-05 18:25:53 | 004,484,734 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Republika - Gdzie są moi przyjaciele.mp3
[2015-01-05 18:25:53 | 004,483,283 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\1-03-i-cant-get-no-satisfaction — kopia.mp3
[2015-01-05 18:25:53 | 004,262,379 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Budka Suflera - Bal Wszystkich Swietych.mp3
[2015-01-05 18:25:53 | 003,810,598 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Lady Pank - Kryzysowa narzeczona (1).mp3
[2015-01-05 18:25:53 | 003,720,704 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\BRATANKI - GDZIE TEN KTORY POWIE MI.mp3
[2015-01-05 18:25:53 | 003,580,237 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Lucille - Jerry Lee Lewis.mp3
[2015-01-05 18:25:53 | 003,469,511 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\BRATANKI - Siebie dam po slubie.mp3
[2015-01-05 18:25:53 | 003,349,624 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Boney M - Daddy Cool.mp3
[2015-01-05 18:25:53 | 003,332,336 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Bill Haley Rock-A-Beatin' Boogie..mp3
[2015-01-05 18:25:53 | 003,313,528 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Trouble - Elvis Presley.mp3
[2015-01-05 18:25:53 | 003,307,256 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Jerry Lee Lewis - I'm on Fire.mp3
[2015-01-05 18:25:53 | 003,291,878 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\bratanki - w kinie- w lublinie - kochaj mnie.mp3
[2015-01-05 18:25:53 | 003,155,968 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\100 Jukebox Hits of the 50's & - Betty Everett - It's In His Kiss (The Shoop, Shoop Song).mp3
[2015-01-05 18:25:53 | 003,072,384 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Blues Brothers John Lee Hooker Boom Boom Boom.mp3
[2015-01-05 18:25:53 | 002,970,592 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Dzem - Wehikuł Czasu tekst.mp3
[2015-01-05 18:25:53 | 002,797,014 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\JOAN JETT - I LOVE ROCK N ROLL.mp3
[2015-01-05 18:25:53 | 002,797,014 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Jerry Lee Lewis - Sweet Little Sixteen.mp3
[2015-01-05 18:25:53 | 002,739,256 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Elvis Presley Rip It Up.mp3
[2015-01-05 18:25:53 | 002,665,325 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\James Brown - I Feel Good (1).mp3
[2015-01-05 18:25:53 | 002,659,087 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\60's Labamba.mp3
[2015-01-05 18:25:53 | 002,477,192 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Nowa wersja - Budka Suflera Takie Tango.mp3
[2015-01-05 18:25:53 | 002,453,034 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Little Richard - Twist And Shout.mp3
[2015-01-05 18:25:53 | 002,421,687 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\The Isley Brothers - Shout! (czołówka).mp3
[2015-01-05 18:25:53 | 002,393,604 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Agnieszka Chylińska - Drzwi.mp3
[2015-01-05 18:25:53 | 002,390,047 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Tango - Flamenco©.mp3
[2015-01-05 18:25:53 | 002,348,669 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\BUDKA SUFLERA - Nie wierz nigdy kobiecie.mp3
[2015-01-05 18:25:53 | 002,297,402 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Little Richard - Tutti Frutti.mp3
[2015-01-05 18:25:53 | 002,255,757 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\chubby checker - let's twist again.mp3
[2015-01-05 18:25:53 | 002,245,842 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Muddy Waters - Hoochie Coochie Man.mp3
[2015-01-05 18:25:53 | 002,228,172 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\richie vallens - la bamba.mp3.mp3
[2015-01-05 18:25:53 | 002,183,784 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Tom Jones & Jerry Lee Lewis - Rock 'n' Roll Medley (1969).mp3
[2015-01-05 18:25:53 | 002,116,577 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Bill Haley - Rock Around The Clock.mp3
[2015-01-05 18:25:53 | 002,100,192 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Lady Pank - Tacy sami.mp3
[2015-01-05 18:25:53 | 002,093,296 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\LADY PANK - Stacja Warszawa.mp3
[2015-01-05 18:25:53 | 002,041,580 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Chubby Checker - Dancin' Party.mp3
[2015-01-05 18:25:53 | 001,948,975 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Little Richard - Long Tall Sally (1).mp3
[2015-01-05 18:25:53 | 001,938,525 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Ray Charles - Hit The Road Jack (1).mp3
[2015-01-05 18:25:53 | 001,771,904 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\h 17 Antonio Banderas & Los Lobos - Desperado.mp3
[2015-01-05 18:25:53 | 001,765,376 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Jerry Lee Lewis - Wild One.mp3
[2015-01-05 18:25:53 | 001,763,526 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Bratanki-czerwone korale.mp3
[2015-01-05 18:25:53 | 001,716,314 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Pink Panter.mp3
[2015-01-05 18:25:53 | 001,689,757 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Szklana Pogoda - Małgorzata Ostrowska - nowa wersja 2001.mp3
[2015-01-05 18:25:53 | 001,586,103 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Piersi - Bałkanica.mp3
[2015-01-05 18:25:53 | 001,044,849 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Little Richard - Keep a Knockin'.mp3
[2015-01-05 18:25:53 | 000,984,711 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\fasolki - Szczotka, pasta.mp3
[2015-01-05 18:25:53 | 000,692,172 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\Reksio Dzwonek mp3.mp3
[2015-01-05 18:25:53 | 000,614,014 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\Documents\koziolek matolek.mp3
[2015-01-04 21:23:15 | 000,001,912 | ---- | C] () -- C:\Users\Public\Desktop\Tomb Raider - Anniversary.lnk
[2014-12-29 14:18:26 | 000,000,266 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2014-09-01 09:18:44 | 000,001,248 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\WXITZAAW
[2014-08-14 12:27:37 | 000,064,048 | ---- | C] () -- C:\Windows\SysWow64\Hidhlp.dll
[2014-08-14 12:27:37 | 000,049,152 | ---- | C] () -- C:\Windows\SysWow64\iFT33C2.dll
[2014-08-14 12:27:37 | 000,026,672 | ---- | C] () -- C:\Windows\SysWow64\drivers\Mac606.sys
[2014-07-06 11:46:00 | 000,178,176 | ---- | C] () -- C:\Windows\SysWow64\binkw32.dll
[2014-06-15 12:31:46 | 000,002,255 | ---- | C] () -- C:\Windows\SysWow64\WimBootCompress.ini
[2014-06-15 12:29:51 | 000,103,936 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2014-06-12 14:54:38 | 000,000,000 | ---- | C] () -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Local\{C8E8AB2C-515A-4130-8323-11EB2F85C218}
[2014-03-13 00:53:14 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2013-10-15 16:14:58 | 000,303,104 | ---- | C] () -- C:\Windows\SysWow64\igdmd32.dll
[2013-10-15 16:14:57 | 000,180,736 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013-10-15 16:14:57 | 000,142,848 | ---- | C] () -- C:\Windows\SysWow64\igdail32.dll
[2013-08-22 16:36:43 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2013-08-22 16:36:42 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2013-08-22 15:46:23 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2013-08-22 08:01:23 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2013-08-22 04:32:36 | 000,046,080 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2013-08-22 00:55:20 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2013-08-22 00:52:39 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2013-05-12 01:17:52 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2014-03-13 01:18:14 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
" " = C:\Windows\SysNative\shell32.dll -- [2014-08-31 01:15:33 | 021,197,152 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
" " = %SystemRoot%\system32\shell32.dll -- [2014-08-30 23:59:13 | 018,723,112 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
" " = C:\Windows\SysNative\wbem\fastprox.dll -- [2013-08-22 10:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
" " = %systemroot%\system32\wbem\fastprox.dll -- [2013-08-22 03:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
" " = C:\Windows\SysNative\wbem\wbemess.dll -- [2013-08-22 10:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
" ThreadingModel " = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== LOP Check ==========[/color]

[2014-09-06 19:33:12 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\.mono
[2014-05-21 17:23:48 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\acer
[2015-01-28 16:02:49 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\AVAST Software
[2015-01-23 16:51:37 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\DAEMON Tools Lite
[2014-08-15 19:11:09 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\fltk.org
[2014-09-14 16:03:32 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\NapiProjekt
[2014-08-24 04:42:24 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\Oracle
[2015-01-01 21:21:52 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\PhotoScape
[2014-05-21 06:33:20 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\Synaptics
[2014-07-06 09:20:09 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\TuneUp Software
[2014-08-19 16:00:00 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\Unity
[2015-01-24 22:45:59 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\uTorrent
[2014-06-08 20:46:01 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\Wargaming.net
[2014-08-13 21:50:09 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\Wayforward Technologies
[2014-08-19 17:56:37 | 000,000,000 | ---D | M] -- C:\Users\PaTuSiA I RaFaŁeK\AppData\Roaming\WildTangent

[color=#E56717]========== Purity Check ==========[/color]

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 94 bytes - & gt; C:\Users\PaTuSiA I RaFaŁeK\SkyDrive:ms-properties
@Alternate Data Stream - 162 bytes - & gt; C:\Users\PaTuSiA I RaFaŁeK\SkyDrive.old:ms-properties

& lt; End of report & gt;