Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-11-2013 02
Ran by Karel (administrator) on KAREL-PC on 17-11-2013 18:52:27
Running from C:\Users\Karel\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: French Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Vodafone) C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Smilebox, Inc.) C:\Users\Karel\AppData\Roaming\Smilebox\SmileboxTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(SweetIM Technologies Ltd.) C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
(Belgian Government) C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe
(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-11-29] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2280232 2010-07-29] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11786344 2011-03-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2207848 2011-03-21] (Realtek Semiconductor)
HKLM\...\Run: [Power Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831528 2011-05-10] (Acer Incorporated)
HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET Smart Security\egui.exe [4035152 2011-09-22] (ESET)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [EA Core] - "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKCU\...\Run: [SmileboxTray] - C:\Users\Karel\AppData\Roaming\Smilebox\SmileboxTray.exe [309544 2013-09-03] (Smilebox, Inc.)
HKCU\...\Run: [AdobeBridge] - [x]
MountPoints2: {3426170c-3f04-11e1-aa03-b870f4df2d8d} - E:\Startme.exe
MountPoints2: {e8e0e454-2401-11e2-9905-b870f4df2d8d} - E:\setup_vmb_lite.exe /checkApplicationPresence
MountPoints2: {e8e0e4f7-2401-11e2-9905-b870f4df2d8d} - E:\setup_vmb_lite.exe /checkApplicationPresence
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [340848 2011-04-02] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [408432 2011-03-29] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [202608 2011-03-29] (Egis Technology Inc.)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-04-24] (NTI Corporation)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1103440 2011-07-01] (Dritek System Inc.)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Dolby PCEE4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448 2011-05-10] (CyberLink Corp.)
HKLM-x32\...\Run: [facemoods] - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodssrv.exe [362200 2011-09-05] (facemoods.com)
HKLM-x32\...\Run: [SweetIM] - C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [114992 2011-08-01] (SweetIM Technologies Ltd.)
HKLM-x32\...\Run: [beid] - C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe [2068480 2011-07-06] (Belgian Government)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736 2011-10-09] (Apple Inc.)
HKLM-x32\...\Run: [MobileBroadband] - C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [398848 2010-12-31] (Vodafone)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-07-29] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-07-29] ()
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [226920 2011-03-30] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [193128 2011-03-30] (NVIDIA Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.mywebsearch.com/index.jhtml?n=77DE8857&p2=^9N^xdm080^YY^be&ptb=8AEC9B35-6B7F-419B-B1EA-21F19A88E1BF&si=COTwquD4zrUCFY3LtAod3QkAGg
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
URLSearchHook: HKLM-x32 - Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
URLSearchHook: HKCU - Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox
SearchScopes: HKLM-x32 - DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylon.com/web/{searchTerms}?babsrc=SP_ss&affID=8346&mntrId=34a45bea000000000000ccaf786db9bd
SearchScopes: HKCU - {0D7562AE-8EF6-416d-A838-AB665251703A} URL = http://start.facemoods.com/?a=nv1&s={searchTerms}&f=4
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.babylon.com/web/{searchTerms}?babsrc=SP_ss&affID=8346&mntrId=34a45bea000000000000ccaf786db9bd
SearchScopes: HKCU - {635648F6-A493-425C-92DC-B23472EB6B50} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYBE&apn_uid=C131D186-A238-4E86-89D6-467FF073F82C&apn_sauid=2B32E03A-A064-45CA-A8A0-25CDB666730A
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Karel\AppData\Roaming\Complitly\64\Complitly64.dll (SimplyGen)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Karel\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
BHO-x32: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\bh\BabylonToolbar.dll (Babylon BHO)
BHO-x32: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
BHO-x32: TBSB07359 Class - {42CB2906-3B4F-4A62-B2E0-132481175962} - C:\Program Files (x86)\zap\tbunswF190.tmp\tbcore3.dll ()
BHO-x32: CescrtHlpr Object - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll (facemoods.com BHO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SweetIM Toolbar Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
BHO-x32: TBSB00808 Class - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\WebplayerTool\tbunshE689.tmp\tbcore3.dll ()
Toolbar: HKLM-x32 - facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll (facemoods.com)
Toolbar: HKLM-x32 - SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM-x32 - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.35.10\BabylonToolbarTlbr.dll (Babylon Ltd.)
Toolbar: HKLM-x32 - Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files (x86)\Vuze_Remote\prxtbVuze.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - WebplayerTool - {CDB982ED-F9D6-4E3B-B94B-96F705D35AD1} - C:\Program Files (x86)\WebplayerTool\tbunshE689.tmp\tbcore3.dll ()
Toolbar: HKLM-x32 - zap - {A29B2641-9931-448A-8DE7-B2D63BDC1812} - C:\Program Files (x86)\zap\tbunswF190.tmp\tbcore3.dll ()
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Karel\AppData\Roaming\Mozilla\Firefox\Profiles\q5lxqwsg.default
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: Google
FF Homepage: www.google.be
FF Keyword.URL: hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=8AEC9B35-6B7F-419B-B1EA-21F19A88E1BF&n=77fc4936&ind=2013022518&p2=^9N^xdm080^YY^be&si=COTwquD4zrUCFY3LtAod3QkAGg&searchfor=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @SonyCreativeSoftware.com/Media Go,version=1.0 - C:\Program Files (x86)\Sony\Media Go\npmediago.dll (Sony Network Entertainment International LLC)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\2\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Karel\AppData\Roaming\Mozilla\Firefox\Profiles\q5lxqwsg.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Karel\AppData\Roaming\Mozilla\Firefox\Profiles\q5lxqwsg.default\searchplugins\my-web-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\fcmdSrch.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-france.xml
FF Extension: LyricsSay-16 - C:\Users\Karel\AppData\Roaming\Mozilla\Firefox\Profiles\q5lxqwsg.default\Extensions\f7926b91-8f4c-40c2-919d-101d71251081@b6001269-bdb7-41fd-ac74-ffc0e92f20b9.com
FF Extension: Woordenboek Nederlands - C:\Users\Karel\AppData\Roaming\Mozilla\Firefox\Profiles\q5lxqwsg.default\Extensions\nl-NL@dictionaries.addons.mozilla.org
FF Extension: Vuze Remote - C:\Users\Karel\AppData\Roaming\Mozilla\Firefox\Profiles\q5lxqwsg.default\Extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}
FF Extension: langpack-nl - C:\Users\Karel\AppData\Roaming\Mozilla\Firefox\Profiles\q5lxqwsg.default\Extensions\langpack-nl@firefox.mozilla.org.xpi
FF Extension: Belgium eID - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA}
FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: ESET Smart Security Extension - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (LyricsSay-16) - C:\Users\Karel\AppData\Local\Google\Chrome\User Data\Default\Extensions\akhhdakpodeopjboaakapkhakhlbmlfd\1.25.6_0
CHR HKLM-x32\...\Chrome\Extension: [dlfienamagdnkekbbbocojppncdambda] - C:\Program Files (x86)\Complitly\chrome\ComplitlyChrome.crx
CHR HKLM-x32\...\Chrome\Extension: [ihflimipbcaljfnojhhknppphnnciiif] - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoods.crx

==================== Services (Whitelisted) =================

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [974944 2011-09-22] (ESET)
R2 HPSLPSVC; C:\Users\Karel\AppData\Local\Temp\7zS1898\hpslpsvc64.dll [1039360 2011-09-17] (Hewlett-Packard Co.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256832 2011-04-24] (NTI Corporation)

==================== Drivers (Whitelisted) ====================

S3 ACSSCR; C:\Windows\System32\DRIVERS\a38usb.sys [44672 2011-10-31] (Advanced Card Systems Ltd)
R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [202576 2011-08-09] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [146432 2011-08-04] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [187632 2011-08-04] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [38288 2011-08-04] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [62496 2011-08-04] (ESET)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [196096 2010-12-30] (Huawei Technologies Co., Ltd.)

========================== Drivers MD5 =======================

C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\a38usb.sys 888DFE4137F626CEA9CCE3BD47941B64
C:\Windows\system32\drivers\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 79059559E89D06E8B80CE2944BE20228
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdk8.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\drivers\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Windows\system32\drivers\appid.sys ==> MD5 is legit
C:\Windows\system32\drivers\arc.sys ==> MD5 is legit
C:\Windows\system32\drivers\arcsas.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\system32\drivers\bxvbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57xdbd.sys A424CB46A145E5AABF15621550976DF2
C:\Windows\System32\DRIVERS\b57xdmp.sys BE4E6FD5A898812B85D5817AD9754A9F
C:\Windows\System32\DRIVERS\bcmwl664.sys 11F844B46B631337395651ABE9C4167B
C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\system32\drivers\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\drivers\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bScsiMSa.sys 0970D8B7151E9113BF8D44CE2E954DF7
C:\Windows\System32\DRIVERS\bScsiSDa.sys 0C1EEE5AF32402D306874B110DE237EC
C:\Windows\system32\drivers\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\drivers\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys ==> MD5 is legit
C:\Windows\system32\drivers\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\Drivers\cng.sys EBF28856F69CF094A902F884CF989706
C:\Windows\System32\drivers\compbatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\drivers\disk.sys ==> MD5 is legit
C:\Windows\System32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 88612F1CE3BF42256913BF6E61C70D52
C:\Windows\System32\DRIVERS\eamonm.sys 13533557D01B88C83110D5CF749F14D7
C:\Windows\system32\drivers\evbda.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ehdrv.sys E097728129E7B79BF1089D7AEF42332B
C:\Windows\system32\drivers\elxstor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\epfw.sys 198C6FBC30BBD9632EA051203DCCF204
C:\Windows\System32\DRIVERS\EpfwLWF.sys 56DE463F517710A8AA44EEF82C35B3C9
C:\Windows\System32\DRIVERS\epfwwfp.sys 710B0442BB2F99278D7B8E02A8849C11
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\System32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\System32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\drivers\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\drivers\flpydisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\drivers\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\GEARAspiWDM.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ggflt.sys A4198F2BD8AA592CB90476277A81B5E1
C:\Windows\System32\DRIVERS\ggsemc.sys D266350BDAAB9EB6C1AEC370EEAAFF3A
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\drivers\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidbth.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidir.sys ==> MD5 is legit
C:\Windows\system32\drivers\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ew_jucdcacm.sys 4D6C4B6FC9A8B069DB208B5E8117725B
C:\Windows\System32\DRIVERS\ew_jubusenum.sys 2342E7FECCA0D4E31BEA5FF6A4E20885
C:\Windows\System32\DRIVERS\ew_juextctrl.sys 20B88224F9A4B202D00FA00C9ED28E7F
C:\Windows\System32\DRIVERS\ew_juwwanecm.sys 519B7EA852C713E515C84A1A25006482
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\i8042prt.sys ==> MD5 is legit
C:\Windows\System32\drivers\iaStor.sys 26CF4275034214ECEDD8EC17B0A18A99
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Windows\System32\DRIVERS\igdkmd64.sys 9937600A1584FF00565D5379EB4C9EDB
C:\Windows\system32\drivers\iirsp.sys ==> MD5 is legit
C:\Windows\System32\drivers\RTKVHD64.sys 1CE438B31551746AB450D8FFA403BDB5
C:\Windows\System32\DRIVERS\IntcDAud.sys FC727061C0F47C8059E88E05D5C8E381
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\k57nd60a.sys 455B75C19BF3F1F2EE3AC10E1169826C
C:\Windows\system32\drivers\kbdclass.sys ==> MD5 is legit
C:\Windows\system32\drivers\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys 8F489706472F7E9A06BAAA198703FA64
C:\Windows\System32\Drivers\ksecpkg.sys 868A2CAAB12EFC7A021682BCA0EEC54C
C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\drivers\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\drivers\megasas.sys ==> MD5 is legit
C:\Windows\system32\drivers\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\HECIx64.sys A6518DCC42F7A6E999BB3BEA8FD87567
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 1A4F75E63C9FB84B85DFFC6B63FD5404
C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC
C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163
C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C
C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\drivers\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mwlPSDFilter.sys C009123B206C56854F4E88596035231D
C:\Windows\System32\DRIVERS\mwlPSDNServ.sys BF3739EEB9F008B1DEBAC115089A53F8
C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys 38DD143D95E7A01B86F219DDA9C28779
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\system32\drivers\nfrd960.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Ntfs.sys B98F8C6E31CD07B2E6F71F7F648E38C0
C:\Windows\system32\drivers\NTIDrvr.sys EE3BA1024594D5D09E314F206B94069E
C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nvlddmkm.sys 73DC184AF4D2ADDC41B37344636D2CC7
C:\Windows\System32\DRIVERS\nvpciflt.sys 477A3CF725C4040F77EB9E2C17B922A0
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\drivers\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\drivers\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\drivers\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql2300.sys ==> MD5 is legit
C:\Windows\system32\drivers\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\system32\drivers\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\sdbus.sys 111E0EBC0AD79CB0FA014B907B231CF0
C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\serenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\serial.sys ==> MD5 is legit
C:\Windows\system32\drivers\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\drivers\sfloppy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Sftfslh.sys 2046AA7491DE7EFA4D70E615D9BC9D09
C:\Windows\System32\DRIVERS\Sftplaylh.sys 0E0446BC4D51BE4263ACB7E33491191C
C:\Windows\System32\DRIVERS\Sftredirlh.sys C5FB982CD266E604ED3142102C26D62C
C:\Windows\System32\DRIVERS\Sftvollh.sys 2575511AF67AA1FA068CCC4918E2C2A3
C:\Windows\system32\drivers\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B
C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28
C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3
C:\Windows\system32\drivers\stexstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\SynTP.sys EF51B22706DB03F0857FADE127C804EC
C:\Windows\System32\drivers\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\DRIVERS\tcpip.sys 40AF23633D197905F03AB5628C558C51
C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit
C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09
C:\Windows\System32\drivers\tsusbflt.sys ==> MD5 is legit
C:\Windows\system32\drivers\TsUsbGD.sys 9CC2CCAE8A84820EAECB886D477CBCB8
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\TurboB.sys FD24F98D2898BE093FE926604BE7DB99
C:\Windows\system32\drivers\uagp35.sys ==> MD5 is legit
C:\Windows\system32\drivers\UBHelper.sys A17D5E1A6DF4EAB0A480F2C490DE4C9D
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbccgp.sys ACCEA6BC68D0C9A78EB97EE159028B4E
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\system32\drivers\usbehci.sys 311C1DD1088E55BEAE15954D17F50646
C:\Windows\System32\DRIVERS\usbhub.sys 280E90CBF4B2DDD169F0728CB44D726F
C:\Windows\system32\drivers\usbohci.sys 9406D801042FAF859CF81B2C886413DC
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6
C:\Windows\system32\drivers\usbuhci.sys A83D0EC9AE4C31704442099D40BA2471
C:\Windows\System32\Drivers\usbvideo.sys 1F775DA4CF1A3A1834207E975A72E9D7
C:\Windows\system32\drivers\usb8023x.sys 7B28E2FBE75115660FAB31079C0A9F29
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\drivers\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vwifimp.sys ==> MD5 is legit
C:\Windows\system32\drivers\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\drivers\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\SysWow64\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\System32\DRIVERS\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-17 18:40 - 2013-11-17 18:40 - 00023983 _____ C:\Users\Karel\Downloads\Addition.txt
2013-11-17 18:38 - 2013-11-17 18:52 - 00037809 _____ C:\Users\Karel\Downloads\FRST.txt
2013-11-17 18:38 - 2013-11-17 18:38 - 00000000 ____D C:\FRST
2013-11-17 18:37 - 2013-11-17 18:38 - 01958026 _____ (Farbar) C:\Users\Karel\Downloads\FRST64.exe
2013-11-17 18:36 - 2013-11-17 18:36 - 01090935 _____ (Farbar) C:\Users\Karel\Downloads\FRST.exe
2013-11-17 18:35 - 2013-11-17 18:34 - 00409600 _____ (ParetoLogic Inc.) C:\Users\Karel\Downloads\ParetoLogic%20PC%20Health%20Advisor [1].exe
2013-11-17 18:34 - 2013-11-17 18:34 - 00619176 _____ C:\Users\Karel\Downloads\ParetoLogic%20PC%20Health%20Advisor.exe
2013-11-16 17:11 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-16 17:07 - 2013-11-16 17:07 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-16 17:07 - 2013-11-16 17:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-16 17:07 - 2013-11-16 17:07 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-16 17:07 - 2013-11-16 17:07 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-16 17:07 - 2013-11-16 17:07 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-16 17:07 - 2013-11-16 17:07 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-16 17:07 - 2013-11-16 17:07 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-16 17:07 - 2013-11-16 17:07 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-16 17:07 - 2013-11-16 17:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-16 17:07 - 2013-11-16 17:07 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-16 17:07 - 2013-11-16 17:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-16 17:04 - 2013-11-16 17:11 - 00009961 _____ C:\Windows\IE11_main.log
2013-11-13 20:23 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 20:23 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 20:23 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 20:23 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 20:23 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 20:23 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 20:23 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 20:23 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 20:23 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 20:23 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 20:23 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 20:23 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 20:23 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 20:23 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 20:23 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 20:23 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 20:23 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 20:23 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 20:23 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 20:23 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 20:23 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 20:23 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 20:23 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 20:23 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 20:23 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 20:22 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 20:22 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 20:22 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 20:22 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 20:22 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-07 10:06 - 2013-11-14 08:20 - 00000000 ____D C:\Windows\system32\MRT
2013-11-07 10:06 - 2013-11-14 08:17 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-03 13:32 - 2013-11-03 13:32 - 00311640 _____ (WinterSoft) C:\Users\Karel\Downloads\mnm_sing_your_song_football_edition_torrent.torrent.exe
2013-11-03 13:32 - 2013-11-03 13:32 - 00311624 _____ (WinterSoft) C:\Users\Karel\Downloads\Mnm Sing Your Song Football Edition Torrent.exe
2013-11-03 13:10 - 2013-11-03 13:10 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-03 13:10 - 2013-11-03 13:10 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 ____D C:\ProgramData\Oracle
2013-11-03 13:07 - 2013-11-03 13:07 - 29040552 _____ (Oracle Corporation) C:\Users\Karel\Downloads\jre-7u45-windows-i586.exe
2013-10-30 20:49 - 2013-10-30 20:49 - 00014111 _____ C:\Users\Karel\Downloads\[TorrentDownloads.me]_Halloween Scary Theme Music.torrent
2013-10-30 20:48 - 2013-10-30 20:48 - 00047216 _____ C:\Users\Karel\Downloads\[TorrentDownloads.me]_halloween songs from films and some sound effects for halloween.torrent
2013-10-18 19:38 - 2013-10-18 19:38 - 00300850 _____ C:\Users\Karel\Downloads\mp3directcut_2-19_fr_10838.exe
2013-10-18 19:29 - 2013-11-17 18:21 - 00001960 _____ C:\Windows\Tasks\LyricsSay-16-chromeinstaller.job
2013-10-18 19:29 - 2013-11-17 18:21 - 00001886 _____ C:\Windows\Tasks\LyricsSay-16-firefoxinstaller.job
2013-10-18 19:29 - 2013-11-17 18:21 - 00001346 _____ C:\Windows\Tasks\LyricsSay-16-updater.job
2013-10-18 19:29 - 2013-11-17 18:21 - 00001252 _____ C:\Windows\Tasks\LyricsSay-16-codedownloader.job
2013-10-18 19:29 - 2013-11-17 18:21 - 00001152 _____ C:\Windows\Tasks\LyricsSay-16-enabler.job
2013-10-18 19:29 - 2013-11-07 17:27 - 00000000 ____D C:\Program Files (x86)\LyricsSay-16
2013-10-18 19:29 - 2013-10-18 20:29 - 00000000 ____D C:\Program Files (x86)\mp3DirectCut
2013-10-18 19:29 - 2013-10-18 19:29 - 00004376 _____ C:\Windows\System32\Tasks\LyricsSay-16-updater
2013-10-18 19:29 - 2013-10-18 19:29 - 00004282 _____ C:\Windows\System32\Tasks\LyricsSay-16-codedownloader
2013-10-18 19:29 - 2013-10-18 19:29 - 00004182 _____ C:\Windows\System32\Tasks\LyricsSay-16-enabler
2013-10-18 19:28 - 2013-10-18 19:28 - 00169272 _____ (Firseria·s·l·) C:\Users\Karel\Downloads\mp3DirectCut.exe
2013-10-18 19:25 - 2013-10-18 19:26 - 00294844 _____ C:\Users\Karel\Downloads\mp3DC218.exe
2013-10-18 07:58 - 2013-11-14 08:22 - 00000000 ____D C:\Program Files\McAfee Security Scan

==================== One Month Modified Files and Folders =======

2013-11-17 18:52 - 2013-11-17 18:38 - 00037809 _____ C:\Users\Karel\Downloads\FRST.txt
2013-11-17 18:40 - 2013-11-17 18:40 - 00023983 _____ C:\Users\Karel\Downloads\Addition.txt
2013-11-17 18:38 - 2013-11-17 18:38 - 00000000 ____D C:\FRST
2013-11-17 18:38 - 2013-11-17 18:37 - 01958026 _____ (Farbar) C:\Users\Karel\Downloads\FRST64.exe
2013-11-17 18:36 - 2013-11-17 18:36 - 01090935 _____ (Farbar) C:\Users\Karel\Downloads\FRST.exe
2013-11-17 18:34 - 2013-11-17 18:35 - 00409600 _____ (ParetoLogic Inc.) C:\Users\Karel\Downloads\ParetoLogic%20PC%20Health%20Advisor [1].exe
2013-11-17 18:34 - 2013-11-17 18:34 - 00619176 _____ C:\Users\Karel\Downloads\ParetoLogic%20PC%20Health%20Advisor.exe
2013-11-17 18:29 - 2009-07-14 05:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-17 18:29 - 2009-07-14 05:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-17 18:27 - 2011-08-13 23:05 - 00705166 _____ C:\Windows\system32\perfh00C.dat
2013-11-17 18:27 - 2011-08-13 23:05 - 00131182 _____ C:\Windows\system32\perfc00C.dat
2013-11-17 18:27 - 2009-07-14 06:13 - 01551488 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-17 18:22 - 2011-10-16 18:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-17 18:22 - 2011-10-16 17:44 - 00000000 ____D C:\ProgramData\clear.fi
2013-11-17 18:21 - 2013-10-18 19:29 - 00001960 _____ C:\Windows\Tasks\LyricsSay-16-chromeinstaller.job
2013-11-17 18:21 - 2013-10-18 19:29 - 00001886 _____ C:\Windows\Tasks\LyricsSay-16-firefoxinstaller.job
2013-11-17 18:21 - 2013-10-18 19:29 - 00001346 _____ C:\Windows\Tasks\LyricsSay-16-updater.job
2013-11-17 18:21 - 2013-10-18 19:29 - 00001252 _____ C:\Windows\Tasks\LyricsSay-16-codedownloader.job
2013-11-17 18:21 - 2013-10-18 19:29 - 00001152 _____ C:\Windows\Tasks\LyricsSay-16-enabler.job
2013-11-17 18:21 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-17 18:21 - 2009-07-14 05:51 - 00153626 _____ C:\Windows\setupact.log
2013-11-17 18:19 - 2011-08-13 22:20 - 01089289 _____ C:\Windows\WindowsUpdate.log
2013-11-17 11:55 - 2013-05-28 20:54 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-16 17:32 - 2011-10-16 18:48 - 00000000 ____D C:\Users\Karel\AppData\Local\Mozilla
2013-11-16 17:29 - 2011-10-16 17:28 - 00001437 _____ C:\Users\Karel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-16 17:27 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-16 17:11 - 2013-11-16 17:04 - 00009961 _____ C:\Windows\IE11_main.log
2013-11-16 17:10 - 2011-10-17 19:13 - 00000000 ____D C:\Users\Karel\AppData\Local\Adobe
2013-11-16 17:07 - 2013-11-16 17:07 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-16 17:07 - 2013-11-16 17:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-16 17:07 - 2013-11-16 17:07 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-16 17:07 - 2013-11-16 17:07 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-16 17:07 - 2013-11-16 17:07 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-16 17:07 - 2013-11-16 17:07 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-16 17:07 - 2013-11-16 17:07 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-16 17:07 - 2013-11-16 17:07 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-16 17:07 - 2013-11-16 17:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-16 17:07 - 2013-11-16 17:07 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-16 17:07 - 2013-11-16 17:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-16 17:07 - 2013-11-16 17:07 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-16 17:07 - 2013-11-16 17:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-15 09:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-11-14 08:22 - 2013-10-18 07:58 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-11-14 08:22 - 2013-05-28 20:54 - 00001935 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-11-14 08:21 - 2011-12-18 23:43 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-14 08:20 - 2013-11-07 10:06 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 08:17 - 2013-11-07 10:06 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-11 19:33 - 2011-10-16 21:13 - 00000000 ____D C:\Users\Karel\AppData\Roaming\SoftGrid Client
2013-11-07 17:27 - 2013-10-18 19:29 - 00000000 ____D C:\Program Files (x86)\LyricsSay-16
2013-11-03 13:32 - 2013-11-03 13:32 - 00311640 _____ (WinterSoft) C:\Users\Karel\Downloads\mnm_sing_your_song_football_edition_torrent.torrent.exe
2013-11-03 13:32 - 2013-11-03 13:32 - 00311624 _____ (WinterSoft) C:\Users\Karel\Downloads\Mnm Sing Your Song Football Edition Torrent.exe
2013-11-03 13:17 - 2013-03-09 14:32 - 00000000 ____D C:\Users\Karel\FOTO_com
2013-11-03 13:10 - 2013-11-03 13:10 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-11-03 13:10 - 2013-11-03 13:10 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-11-03 13:10 - 2013-11-03 13:10 - 00000000 ____D C:\ProgramData\Oracle
2013-11-03 13:10 - 2013-02-24 13:37 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-11-03 13:10 - 2013-02-24 13:37 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-03 13:10 - 2012-05-18 09:06 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-03 13:07 - 2013-11-03 13:07 - 29040552 _____ (Oracle Corporation) C:\Users\Karel\Downloads\jre-7u45-windows-i586.exe
2013-10-30 21:28 - 2011-10-16 18:09 - 00000000 ____D C:\Users\Karel\AppData\Roaming\Azureus
2013-10-30 20:49 - 2013-10-30 20:49 - 00014111 _____ C:\Users\Karel\Downloads\[TorrentDownloads.me]_Halloween Scary Theme Music.torrent
2013-10-30 20:48 - 2013-10-30 20:48 - 00047216 _____ C:\Users\Karel\Downloads\[TorrentDownloads.me]_halloween songs from films and some sound effects for halloween.torrent
2013-10-19 19:56 - 2009-07-14 06:08 - 00032570 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-18 20:32 - 2011-10-16 17:25 - 00000000 ____D C:\Users\Karel
2013-10-18 20:30 - 2013-02-24 14:07 - 00000000 ____D C:\Users\Karel\AppData\Roaming\Smilebox
2013-10-18 20:30 - 2011-10-29 19:15 - 00000000 ____D C:\Users\Karel\AppData\Roaming\vlc
2013-10-18 20:30 - 2011-10-16 23:04 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-18 20:30 - 2011-10-16 17:28 - 00000000 ___RD C:\Users\Karel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-18 20:30 - 2011-10-16 17:28 - 00000000 ___RD C:\Users\Karel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-18 20:30 - 2011-10-16 17:25 - 00000000 ____D C:\Users\Karel\AppData\Local\PowerCinema
2013-10-18 20:30 - 2011-07-22 05:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-18 20:30 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-18 20:29 - 2013-10-18 19:29 - 00000000 ____D C:\Program Files (x86)\mp3DirectCut
2013-10-18 20:29 - 2013-05-28 20:54 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-10-18 20:29 - 2013-03-14 08:09 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-18 20:29 - 2013-03-14 08:09 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-18 20:29 - 2011-10-16 21:12 - 00000000 ____D C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-10-18 20:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-10-18 20:26 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2013-10-18 20:25 - 2013-02-24 14:08 - 00000000 ____D C:\Users\Karel\AppData\Local\Google
2013-10-18 20:25 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-10-18 20:11 - 2013-05-28 20:54 - 00000000 ____D C:\Program Files (x86)\McAfee Security Scan
2013-10-18 19:38 - 2013-10-18 19:38 - 00300850 _____ C:\Users\Karel\Downloads\mp3directcut_2-19_fr_10838.exe
2013-10-18 19:29 - 2013-10-18 19:29 - 00004376 _____ C:\Windows\System32\Tasks\LyricsSay-16-updater
2013-10-18 19:29 - 2013-10-18 19:29 - 00004282 _____ C:\Windows\System32\Tasks\LyricsSay-16-codedownloader
2013-10-18 19:29 - 2013-10-18 19:29 - 00004182 _____ C:\Windows\System32\Tasks\LyricsSay-16-enabler
2013-10-18 19:28 - 2013-10-18 19:28 - 00169272 _____ (Firseria·s·l·) C:\Users\Karel\Downloads\mp3DirectCut.exe
2013-10-18 19:26 - 2013-10-18 19:25 - 00294844 _____ C:\Users\Karel\Downloads\mp3DC218.exe

Some content of TEMP:
====================
C:\Users\Karel\AppData\Local\Temp\EADB02C.exe
C:\Users\Karel\AppData\Local\Temp\EADB624.exe
C:\Users\Karel\AppData\Local\Temp\EADBB81.exe
C:\Users\Karel\AppData\Local\Temp\EADBC8A.exe
C:\Users\Karel\AppData\Local\Temp\EADE197.exe
C:\Users\Karel\AppData\Local\Temp\EADE742.exe
C:\Users\Karel\AppData\Local\Temp\i4jdel0.exe
C:\Users\Karel\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Karel\AppData\Local\Temp\UninstallEADM.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== BCD ================================

Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=\Device\HarddiskVolume2
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
default {current}
resumeobject {97653583-c5f6-11e0-9315-826c9b6b4e7e}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale fr-FR
inherit {bootloadersettings}
recoverysequence {97653585-c5f6-11e0-9315-826c9b6b4e7e}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {97653583-c5f6-11e0-9315-826c9b6b4e7e}
nx OptIn

Chargeur de d‚marrage Windows
-----------------------------
identificateur {97653585-c5f6-11e0-9315-826c9b6b4e7e}
device ramdisk=[C:]\Recovery\97653585-c5f6-11e0-9315-826c9b6b4e7e\Winre.wim,{97653586-c5f6-11e0-9315-826c9b6b4e7e}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\97653585-c5f6-11e0-9315-826c9b6b4e7e\Winre.wim,{97653586-c5f6-11e0-9315-826c9b6b4e7e}
systemroot \windows
nx OptIn
winpe Yes

Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {97653583-c5f6-11e0-9315-826c9b6b4e7e}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No

Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=\Device\HarddiskVolume2
path \boot\memtest.exe
description Windows Memory Diagnostic
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes

ParamŠtres EMS
--------------
identificateur {emssettings}
bootems Yes

ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200

Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}

ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}

Options de p‚riph‚rique
-----------------------
identificateur {97653586-c5f6-11e0-9315-826c9b6b4e7e}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\97653585-c5f6-11e0-9315-826c9b6b4e7e\boot.sdi



LastRegBack: 2013-11-03 14:59

==================== End Of Log ============================