zpomalení internetu, padá chrome (shopper pro)

[Sergeii]

Ahoj, po instalaci daemon tools sem i přes zákaz instalovat toolbary stáhnul do pc havěť - vidím shopper pro, dále speed up my computer a fix my registry -> kdyz se snazim odinstalovat jedno, nainstaluje se druhé a naopak .. shopper pro nevidím mezi programy, v chrome ani exploleru doplnky nejsou, prosím o radu

[vyosek]

Zdravim

A budeme vesit z kristalove koule nebo logru od kafe

Aspon log z RSIT nebo FRST mi dejte

[Sergeii]

//omluva//

Logfile of random's system information tool 1.09 (written by random/random)
Run by sergeii at 2014-03-12 21:32:48
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 46 GB (40%) free of 114 GB
Total RAM: 20478 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:32:52, on 12.3.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16518)
Boot mode: Normal

Running processes:
C:\Windows\SysWOW64\HsMgr.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Users\sergeii\AppData\Roaming\uTorrent\uTorrent.exe
G:\origin\Origin.exe
C:\Program Files\ASUS Xonar DS Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe
C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe
C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\sergeii.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\Office\Office12\GR469A~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: ShopperProBHO - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [SPDriver] C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe
O4 - HKLM\..\Run: [GrooveMonitor] "E:\Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Users\sergeii\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [EADM] "G:\origin\Origin.exe" -AutoStart
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
O4 - HKCU\..\Run: [SPDriver] C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe
O4 - HKCU\..\Run: [FixMyRegistry] C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss
O4 - HKCU\..\Run: [SpeedUpMyComputer] C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://E:\Office\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\Office\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\Office\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\Office\Office12\GRA32A~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
O23 - Service: ESET SHA Service (ESHASRV) - ESET - C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: JMB36X - Unknown owner - C:\Windows\SysWOW64\XSrvSetup.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe (file missing)
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11398 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe"
C:\Windows\SysWOW64\XSrvSetup.exe
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"taskhost.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\system32\PnkBstrA.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\Windows\system32\conhost.exe "215183199-11158067111019941651-7668256211936212325-17476188814757562601518709528
"C:\Windows\SysWOW64\HsMgr.exe" Envoke
"C:\Windows\system\HsMgr64.exe" Envoke
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
"C:\Users\sergeii\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
"G:\origin\Origin.exe" -AutoStart
"C:\Program Files\ASUS Xonar DS Audio\Customapp\ASUSAUDIOCENTER.EXE"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum
"C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe"
"C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe" /ot /as /ss
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5472.0.1929857883\1824607624" --disable-image-transport-surface --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,1,14,27,33 --gpu-vendor-id=0x10de --gpu-device-id=0x1187 --gpu-driver-vendor=NVIDIA --gpu-driver-version=9.18.13.3523 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --extension-process --renderer-print-preview --enable-software-compositing --channel="5472.1.1267452780\1028065227" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.2.1741552150\911181226" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.3.1524368230\974242407" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --extension-process --renderer-print-preview --enable-software-compositing --channel="5472.4.244222773\86032402" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.7.1079795550\600186758" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.10.619228289\1865364711" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=ppapi --channel="5472.11.1646488569\1870398620" --ppapi-flash-args --lang=cs --ignored=" --type=renderer " /prefetch:-632637702
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.12.734250186\1703400449" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.13.696926396\1039354382" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.14.672481813\1842387468" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll" --lang=cs --channel="5472.15.437661966\1825495836" /prefetch:-390060480
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.16.313483717\1302184194" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.17.1086098027\1335740845" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.18.170986158\1510239145" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.19.1988347089\898885013" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.20.808699137\2012619643" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AutocompleteDynamicTrial_2/DefaultControl_R2_Stable/BrowserPreReadExperiment/100-pct-default/ChromeSuggestions/Default/EmbeddedSearch/Group1 pct:10a stable:r1/ExtensionInstallVerification/None/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_08/UMA-Uniformity-Trial-1-Percent/group_67/UMA-Uniformity-Trial-10-Percent/group_01/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-50-Percent/default/" --enable-threaded-compositing --enable-delegated-renderer --enable-deadline-scheduling --renderer-print-preview --enable-software-compositing --channel="5472.21.611816677\1177223378" /prefetch:673131151
C:\Windows\servicing\TrustedInstaller.exe
"G:\EA_Games\Battlefield 4\Battlefield 4\bf4.exe" -webMode MP -Origin_NoAppFocus -onlineEnvironment prod -AuthCode AC9980yp9O5R800z3js7riO2XrMjhbH2PM0zia0K2w -requestState State_ClaimReservation -requestStateParams "<data putinsquad=\"true\" gameid=\"720575940382653854\" role=\"soldier\" personaref=\"188659384\" levelmode=\"mp\"></data>"
C:\Windows\SysWOW64\PnkBstrB.exe
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-283f2911-0ae0-4c71-8aef-d69b854cb998 -SystemEventPortName:HostProcess-bcc402f5-f9fa-4cbd-8a2d-cbf3ad9c007b -IoCancelEventPortName:HostProcess-1c008b03-c04e-4a51-a9c3-d79383082470 -NonStateChangingEventPortName:HostProcess-35ba5efa-3448-428d-9aa0-4d6fbc916504 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:278400e5-b860-4cc1-913a-e1d41d9b359e
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 548 552 560 65536 556
"C:\Users\sergeii\Desktop\RSITx64 (1).exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2014-03-05 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-03-05 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - E:\Office\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-03-05 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C}]
Shopper Pro

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-03-05 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
"Cmaudio8788"=C:\Windows\syswow64\RunDll32.exe [2009-07-14 44544]
"Cmaudio8788GX"=C:\Windows\syswow64\HsMgr.exe [2008-07-11 200704]
"Cmaudio8788GX64"=C:\Windows\system\HsMgr64.exe [2008-07-11 282112]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-10-24 13662936]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-02-05 2234144]
"ShadowPlay"=C:\Windows\system32\nvspcap64.dll [2014-02-05 1179576]
"egui"=C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe [2013-10-07 4148664]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-02-10 20917408]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-01-06 6563608]
"uTorrent"=C:\Users\sergeii\AppData\Roaming\uTorrent\uTorrent.exe [2014-03-06 1853008]
"EADM"=G:\origin\Origin.exe [2014-03-07 3588952]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Bloody2"=C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [2014-01-15 14066176]
"SPDriver"=C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe [2014-03-11 3209920]
"FixMyRegistry"=C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss []
"SpeedUpMyComputer"=C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe [2013-07-22 2054776]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21 959904]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-09-13 59720]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2014-01-17 421888]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-09-07 43608]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"NUSB3MON"=C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-11-17 113288]
"SPDriver"=C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe [2014-03-11 3209920]
"GrooveMonitor"=E:\Office\Office12\GrooveMonitor.exe [2006-10-27 31016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=E:\Office\Office12\GR469A~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-03-12 21:32:48 ----D---- C:\rsit
2014-03-12 21:32:48 ----D---- C:\Program Files\trend micro
2014-03-12 21:17:21 ----SHD---- C:\$RECYCLE.BIN
2014-03-12 21:17:18 ----D---- C:\Windows\temp
2014-03-12 21:17:17 ----A---- C:\ComboFix.txt
2014-03-12 21:11:59 ----A---- C:\Windows\zip.exe
2014-03-12 21:11:59 ----A---- C:\Windows\SWSC.exe
2014-03-12 21:11:59 ----A---- C:\Windows\SWREG.exe
2014-03-12 21:11:59 ----A---- C:\Windows\sed.exe
2014-03-12 21:11:59 ----A---- C:\Windows\PEV.exe
2014-03-12 21:11:59 ----A---- C:\Windows\NIRCMD.exe
2014-03-12 21:11:59 ----A---- C:\Windows\MBR.exe
2014-03-12 21:11:59 ----A---- C:\Windows\grep.exe
2014-03-12 21:11:24 ----D---- C:\Qoobox
2014-03-12 21:11:17 ----D---- C:\Windows\erdnt
2014-03-12 21:01:38 ----D---- C:\AdwCleaner
2014-03-12 20:48:43 ----A---- C:\autoexec.bat
2014-03-12 20:48:25 ----D---- C:\Program Files\Enigma Software Group
2014-03-12 20:48:05 ----D---- C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-03-12 20:04:16 ----D---- C:\ProgramData\ESET
2014-03-12 20:04:16 ----D---- C:\Program Files\ESET
2014-03-12 19:53:16 ----D---- C:\Users\sergeii\AppData\Roaming\NVIDIA
2014-03-12 18:50:58 ----D---- C:\Program Files (x86)\Microsoft Works
2014-03-12 18:50:52 ----D---- C:\Program Files (x86)\Microsoft Visual Studio
2014-03-12 18:50:47 ----D---- C:\Windows\PCHEALTH
2014-03-12 18:49:57 ----D---- C:\Program Files\Microsoft Office
2014-03-12 18:49:55 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2014-03-12 18:49:42 ----D---- C:\ProgramData\Microsoft Help
2014-03-12 18:46:26 ----D---- C:\Program Files (x86)\SmartTweak
2014-03-12 18:45:49 ----D---- C:\ProgramData\ShopperPro
2014-03-12 18:45:48 ----D---- C:\Program Files (x86)\ShopperPro
2014-03-12 18:45:00 ----D---- C:\Users\sergeii\AppData\Roaming\DAEMON Tools Lite
2014-03-12 18:44:24 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-03-11 18:26:40 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2014-03-11 18:26:11 ----D---- C:\ProgramData\NVIDIA
2014-03-11 18:26:04 ----A---- C:\Windows\system32\nvvsvc.exe
2014-03-11 18:26:04 ----A---- C:\Windows\system32\nvsvcr.dll
2014-03-11 18:26:04 ----A---- C:\Windows\system32\nvsvc64.dll
2014-03-11 18:26:04 ----A---- C:\Windows\system32\nvshext.dll
2014-03-11 18:26:04 ----A---- C:\Windows\system32\nvmctray.dll
2014-03-11 18:26:04 ----A---- C:\Windows\system32\nvcpl.dll
2014-03-11 18:25:44 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2014-03-11 18:25:44 ----A---- C:\Windows\system32\OpenCL.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2014-03-11 18:23:32 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvwgf2umx.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvumdshimx.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvopencl.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvoglv64.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvoglshim64.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvinitx.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\NvIFR64.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvhdap64.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\NvFBC64.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvdispgenco6433523.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvdispco6433523.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvd3dumx.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvcuvid.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvcuvenc.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\nvcuda.dll
2014-03-11 18:23:32 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2014-03-11 18:23:32 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2014-03-11 18:23:31 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2014-03-11 18:23:31 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2014-03-11 18:23:31 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2014-03-11 18:23:31 ----A---- C:\Windows\system32\nvcompiler.dll
2014-03-11 18:23:31 ----A---- C:\Windows\system32\nvapi64.dll
2014-03-11 17:21:36 ----D---- C:\Program Files (x86)\Bloody3
2014-03-10 22:47:10 ----D---- C:\Program Files (x86)\Bloody5
2014-03-08 14:57:17 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2014-03-08 14:57:09 ----A---- C:\Windows\system32\PnkBstrA.exe
2014-03-08 13:48:37 ----A---- C:\Users\sergeii\AppData\Roaming\All CPU MeterV3_Settings.ini
2014-03-08 13:48:19 ----A---- C:\Users\sergeii\AppData\Roaming\GPU MeterV2_Settings.ini
2014-03-08 13:43:55 ----A---- C:\Windows\SYSWOW64\nvspcap.dll
2014-03-08 13:43:55 ----A---- C:\Windows\system32\nvspcap64.dll
2014-03-08 13:41:46 ----A---- C:\Windows\SYSWOW64\nvaudcap32v.dll
2014-03-08 13:41:46 ----A---- C:\Windows\system32\nvaudcap64v.dll
2014-03-08 13:41:46 ----A---- C:\Windows\system32\drivers\nvvad64v.sys
2014-03-08 02:39:04 ----D---- C:\Program Files (x86)\Intel Corporation
2014-03-08 02:16:58 ----D---- C:\Program Files (x86)\NeoSmart Technologies
2014-03-08 01:51:05 ----D---- C:\Windows\system32\appmgmt
2014-03-08 01:49:40 ----D---- C:\ProgramData\Licenses
2014-03-08 01:49:40 ----D---- C:\ProgramData\Binarysense
2014-03-08 01:49:40 ----AD---- C:\ProgramData\TEMP
2014-03-08 01:46:31 ----D---- C:\ProgramData\Intel(R) Update Manager
2014-03-08 01:37:49 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-03-08 01:37:49 ----A---- C:\Windows\system32\vbscript.dll
2014-03-08 01:37:19 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-03-08 01:37:19 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-03-08 01:37:19 ----A---- C:\Windows\system32\msrating.dll
2014-03-08 01:37:19 ----A---- C:\Windows\system32\ieui.dll
2014-03-08 01:37:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-03-08 01:37:18 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-03-08 01:37:18 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-03-08 01:37:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-03-08 01:37:18 ----A---- C:\Windows\system32\msfeeds.dll
2014-03-08 01:37:18 ----A---- C:\Windows\system32\jsproxy.dll
2014-03-08 01:37:18 ----A---- C:\Windows\system32\ieUnatt.exe
2014-03-08 01:37:18 ----A---- C:\Windows\system32\iernonce.dll
2014-03-08 01:37:18 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-03-08 01:37:18 ----A---- C:\Windows\system32\ie4uinit.exe
2014-03-08 01:37:17 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-03-08 01:37:17 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-03-08 01:37:17 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-03-08 01:37:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-03-08 01:37:17 ----A---- C:\Windows\system32\mshtml.dll
2014-03-08 01:37:17 ----A---- C:\Windows\system32\jscript9diag.dll
2014-03-08 01:37:17 ----A---- C:\Windows\system32\iesetup.dll
2014-03-08 01:37:17 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-03-08 01:37:17 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-03-08 01:37:16 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-03-08 01:37:16 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-03-08 01:37:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-03-08 01:37:16 ----A---- C:\Windows\system32\wininet.dll
2014-03-08 01:37:16 ----A---- C:\Windows\system32\urlmon.dll
2014-03-08 01:37:16 ----A---- C:\Windows\system32\iertutil.dll
2014-03-08 01:37:16 ----A---- C:\Windows\system32\ieapfltr.dll
2014-03-08 01:37:15 ----A---- C:\Windows\system32\ieframe.dll
2014-03-08 01:37:14 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-03-08 01:37:14 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-03-08 01:37:14 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-03-08 01:37:14 ----A---- C:\Windows\system32\jscript9.dll
2014-03-08 01:31:25 ----D---- C:\Windows\SYSWOW64\RTCOM
2014-03-08 01:31:25 ----D---- C:\Program Files\Realtek
2014-03-08 01:31:03 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\WavesGUILib64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\tossaeapo64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\toseaeapo64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\tosasfapo64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\tosade.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\tepeqapo64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\tadefxapo264.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\tadefxapo.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\SRSWOW64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\SRSTSX64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\SRSTSH64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\SRSHP64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\sltech64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\slprp64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\slcnt64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\sl3apo64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\SFSS_APO.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\SFNHK64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\SFCOM64.dll
2014-03-08 01:31:03 ----A---- C:\Windows\system32\SFAPO64.dll
2014-03-08 01:31:02 ----A---- C:\Windows\system32\RtPgEx64.dll
2014-03-08 01:31:02 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2014-03-08 01:31:02 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2014-03-08 01:31:02 ----A---- C:\Windows\system32\drivers\rtvienna.dat
2014-03-08 01:31:02 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RtkCfg64.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RtkAPO64.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RtkApi64.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RTEEP64A.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RTEEL64A.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RTEEG64A.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RTEED64A.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RtDataProc64.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RTCOM64.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RP3DHT64.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RP3DAA64.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RCoRes64.dat
2014-03-08 01:31:01 ----A---- C:\Windows\system32\RCoInstII64.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\R4EEP64A.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\R4EEL64A.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\R4EEG64A.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\R4EED64A.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\R4EEA64A.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\NAHIMICAPOSettingsIPC.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\NAHIMICAPOlfx.dll
2014-03-08 01:31:01 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2014-03-08 01:31:00 ----A---- C:\Windows\SYSWOW64\MaxxAudioAPOShell.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MISS_APO.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxVoiceAPO2064.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxSpeechAPO64.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxAudioVnN64.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxAudioVnA64.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxAudioRealtek64.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxAudioRealtek264.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxAudioEQ64.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxAudioAPO5064.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxAudioAPO4064.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2014-03-08 01:31:00 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\KAAPORT64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\FMAPO64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DDPP64A.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DDPO64A.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DDPD64A.dll
2014-03-08 01:30:59 ----A---- C:\Windows\system32\DDPA64.dll
2014-03-08 01:30:58 ----A---- C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-03-08 01:30:58 ----A---- C:\Windows\system32\audioLibVc.dll
2014-03-08 01:30:58 ----A---- C:\Windows\system32\AERTAR64.dll
2014-03-08 01:30:58 ----A---- C:\Windows\system32\AERTAC64.dll
2014-03-08 01:30:58 ----A---- C:\Windows\system32\AcpiServiceVnA64.dll
2014-03-07 21:58:29 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2014-03-07 21:58:29 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2014-03-07 21:58:29 ----A---- C:\Windows\system32\d3d10warp.dll
2014-03-07 21:58:29 ----A---- C:\Windows\system32\d2d1.dll
2014-03-07 19:16:10 ----A---- C:\Windows\system32\IEUDINIT.EXE
2014-03-07 19:13:56 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2014-03-07 19:13:56 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\wextract.exe
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\url.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\occache.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\msls31.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\mshta.exe
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\jsIntl.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\jscript.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\inseng.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\icardie.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-03-07 19:13:55 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\wextract.exe
2014-03-07 19:13:55 ----A---- C:\Windows\system32\webcheck.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\url.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2014-03-07 19:13:55 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2014-03-07 19:13:55 ----A---- C:\Windows\system32\pngfilt.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\occache.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\msls31.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\mshtmler.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\mshtmled.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\mshta.exe
2014-03-07 19:13:55 ----A---- C:\Windows\system32\msfeedssync.exe
2014-03-07 19:13:55 ----A---- C:\Windows\system32\msfeedsbs.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\licmgr10.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\jsIntl.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\jscript.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\inseng.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\imgutil.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\iexpress.exe
2014-03-07 19:13:55 ----A---- C:\Windows\system32\iesysprep.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\iepeers.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\iedkcs32.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\ieapfltr.dat
2014-03-07 19:13:55 ----A---- C:\Windows\system32\IEAdvpack.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\icardie.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\elshyph.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\dxtrans.dll
2014-03-07 19:13:55 ----A---- C:\Windows\system32\dxtmsft.dll
2014-03-07 19:13:37 ----A---- C:\Windows\SYSWOW64\wow32.dll
2014-03-07 19:13:37 ----A---- C:\Windows\SYSWOW64\user.exe
2014-03-07 19:13:37 ----A---- C:\Windows\SYSWOW64\tdh.dll
2014-03-07 19:13:37 ----A---- C:\Windows\SYSWOW64\setup16.exe
2014-03-07 19:13:37 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2014-03-07 19:13:37 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2014-03-07 19:13:37 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2014-03-07 19:13:37 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2014-03-07 19:13:37 ----A---- C:\Windows\SYSWOW64\instnm.exe
2014-03-07 19:13:37 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2014-03-07 19:13:37 ----A---- C:\Windows\system32\wow64win.dll
2014-03-07 19:13:37 ----A---- C:\Windows\system32\wow64cpu.dll
2014-03-07 19:13:37 ----A---- C:\Windows\system32\wow64.dll
2014-03-07 19:13:37 ----A---- C:\Windows\system32\tdh.dll
2014-03-07 19:13:37 ----A---- C:\Windows\system32\ntvdm64.dll
2014-03-07 19:13:37 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-03-07 19:13:37 ----A---- C:\Windows\system32\ntdll.dll
2014-03-07 19:13:37 ----A---- C:\Windows\system32\advapi32.dll
2014-03-07 19:13:28 ----A---- C:\Windows\SYSWOW64\mswsock.dll
2014-03-07 19:13:28 ----A---- C:\Windows\system32\mswsock.dll
2014-03-07 19:13:28 ----A---- C:\Windows\system32\drivers\tcpip.sys
2014-03-07 19:10:23 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2014-03-07 19:10:21 ----D---- C:\Windows\system32\Macromed
2014-03-07 18:50:25 ----D---- C:\Windows\Migration
2014-03-07 18:39:03 ----D---- C:\Windows\SYSWOW64\Wat
2014-03-07 18:39:03 ----D---- C:\Windows\system32\Wat
2014-03-07 17:55:47 ----D---- C:\Windows\system32\MRT
2014-03-07 17:55:46 ----A---- C:\Windows\system32\MRT.exe
2014-03-07 17:31:52 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-07 17:31:52 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-07 17:31:52 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-03-07 17:31:50 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2014-03-07 17:31:50 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\XpsPrint.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\WMPhoto.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\WindowsCodecs.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\UIAnimation.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\FntCache.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\dxgi.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\DWrite.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\d3d10level9.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\d3d10core.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\d3d10_1core.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\d3d10_1.dll
2014-03-07 17:31:50 ----A---- C:\Windows\system32\d3d10.dll
2014-03-07 17:31:21 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2014-03-07 17:31:21 ----A---- C:\Windows\system32\d3d11.dll
2014-03-07 17:28:52 ----A---- C:\Windows\system32\browserchoice.exe
2014-03-07 17:16:25 ----D---- C:\Program Files\CCleaner
2014-03-06 22:34:29 ----D---- C:\ProgramData\Electronic Arts
2014-03-06 21:09:09 ----D---- C:\ProgramData\Package Cache
2014-03-06 21:09:02 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2014-03-06 21:09:02 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2014-03-06 21:09:02 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2014-03-06 21:09:02 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2014-03-06 21:09:02 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2014-03-06 21:09:02 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-03-06 21:09:02 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-03-06 21:09:02 ----A---- C:\Windows\system32\xactengine3_7.dll
2014-03-06 21:09:02 ----A---- C:\Windows\system32\d3dcsx_43.dll
2014-03-06 21:09:02 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-03-06 21:09:01 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2014-03-06 21:09:01 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2014-03-06 21:09:01 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2014-03-06 21:09:01 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2014-03-06 21:09:01 ----A---- C:\Windows\system32\XAudio2_6.dll
2014-03-06 21:09:01 ----A---- C:\Windows\system32\XAPOFX1_4.dll

[Sergeii]

2014-03-06 21:09:01 ----A---- C:\Windows\system32\xactengine3_6.dll
2014-03-06 21:09:01 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2014-03-06 21:09:00 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2014-03-06 21:09:00 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2014-03-06 21:09:00 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2014-03-06 21:09:00 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2014-03-06 21:09:00 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2014-03-06 21:09:00 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2014-03-06 21:09:00 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2014-03-06 21:09:00 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2014-03-06 21:09:00 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2014-03-06 21:09:00 ----A---- C:\Windows\system32\XAudio2_5.dll
2014-03-06 21:09:00 ----A---- C:\Windows\system32\xactengine3_5.dll
2014-03-06 21:09:00 ----A---- C:\Windows\system32\D3DX9_42.dll
2014-03-06 21:09:00 ----A---- C:\Windows\system32\d3dx11_42.dll
2014-03-06 21:09:00 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-03-06 21:09:00 ----A---- C:\Windows\system32\d3dx10_41.dll
2014-03-06 21:09:00 ----A---- C:\Windows\system32\d3dcsx_42.dll
2014-03-06 21:09:00 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2014-03-06 21:09:00 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2014-03-06 21:08:59 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\XAudio2_4.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\XAudio2_3.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\xactengine3_4.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\xactengine3_3.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\D3DX9_41.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\D3DX9_40.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\d3dx10_40.dll
2014-03-06 21:08:59 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2014-03-06 21:08:58 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\XAudio2_2.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\XAudio2_1.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\xactengine3_2.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\xactengine3_1.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\D3DX9_39.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\d3dx10_39.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\d3dx10_38.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2014-03-06 21:08:58 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2014-03-06 21:08:57 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2014-03-06 21:08:57 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2014-03-06 21:08:57 ----A---- C:\Windows\system32\XAudio2_0.dll
2014-03-06 21:08:57 ----A---- C:\Windows\system32\D3DX9_38.dll
2014-03-06 21:08:56 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2014-03-06 21:08:56 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2014-03-06 21:08:56 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2014-03-06 21:08:56 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2014-03-06 21:08:56 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2014-03-06 21:08:56 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2014-03-06 21:08:56 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2014-03-06 21:08:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2014-03-06 21:08:56 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2014-03-06 21:08:56 ----A---- C:\Windows\system32\xactengine3_0.dll
2014-03-06 21:08:56 ----A---- C:\Windows\system32\xactengine2_10.dll
2014-03-06 21:08:56 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2014-03-06 21:08:56 ----A---- C:\Windows\system32\D3DX9_37.dll
2014-03-06 21:08:56 ----A---- C:\Windows\system32\d3dx9_36.dll
2014-03-06 21:08:56 ----A---- C:\Windows\system32\d3dx10_37.dll
2014-03-06 21:08:56 ----A---- C:\Windows\system32\d3dx10_36.dll
2014-03-06 21:08:56 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2014-03-06 21:08:56 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2014-03-06 21:08:55 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\xinput1_3.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\xactengine2_9.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\xactengine2_8.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\xactengine2_7.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\d3dx9_35.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\d3dx9_34.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\d3dx10_35.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\d3dx10_34.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\d3dx10_33.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2014-03-06 21:08:55 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2014-03-06 21:08:54 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2014-03-06 21:08:54 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2014-03-06 21:08:54 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2014-03-06 21:08:54 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2014-03-06 21:08:54 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2014-03-06 21:08:54 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2014-03-06 21:08:54 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2014-03-06 21:08:54 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2014-03-06 21:08:54 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2014-03-06 21:08:54 ----A---- C:\Windows\system32\xactengine2_6.dll
2014-03-06 21:08:54 ----A---- C:\Windows\system32\xactengine2_5.dll
2014-03-06 21:08:54 ----A---- C:\Windows\system32\xactengine2_4.dll
2014-03-06 21:08:54 ----A---- C:\Windows\system32\xactengine2_3.dll
2014-03-06 21:08:54 ----A---- C:\Windows\system32\x3daudio1_1.dll
2014-03-06 21:08:54 ----A---- C:\Windows\system32\d3dx9_33.dll
2014-03-06 21:08:54 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-03-06 21:08:54 ----A---- C:\Windows\system32\d3dx9_31.dll
2014-03-06 21:08:54 ----A---- C:\Windows\system32\d3dx10.dll
2014-03-06 21:08:53 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2014-03-06 21:08:53 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2014-03-06 21:08:53 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2014-03-06 21:08:53 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2014-03-06 21:08:53 ----A---- C:\Windows\system32\xinput1_2.dll
2014-03-06 21:08:53 ----A---- C:\Windows\system32\xinput1_1.dll
2014-03-06 21:08:53 ----A---- C:\Windows\system32\xactengine2_2.dll
2014-03-06 21:08:53 ----A---- C:\Windows\system32\xactengine2_1.dll
2014-03-06 21:08:52 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2014-03-06 21:08:52 ----A---- C:\Windows\system32\d3dx9_30.dll
2014-03-06 21:08:51 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2014-03-06 21:08:51 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2014-03-06 21:08:51 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2014-03-06 21:08:51 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2014-03-06 21:08:51 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2014-03-06 21:08:51 ----A---- C:\Windows\system32\xactengine2_0.dll
2014-03-06 21:08:51 ----A---- C:\Windows\system32\x3daudio1_0.dll
2014-03-06 21:08:51 ----A---- C:\Windows\system32\d3dx9_29.dll
2014-03-06 21:08:51 ----A---- C:\Windows\system32\d3dx9_28.dll
2014-03-06 21:08:51 ----A---- C:\Windows\system32\d3dx9_27.dll
2014-03-06 21:08:50 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2014-03-06 21:08:50 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2014-03-06 21:08:50 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2014-03-06 21:08:50 ----A---- C:\Windows\system32\d3dx9_26.dll
2014-03-06 21:08:50 ----A---- C:\Windows\system32\d3dx9_25.dll
2014-03-06 21:08:50 ----A---- C:\Windows\system32\d3dx9_24.dll
2014-03-06 20:12:06 ----D---- C:\Users\sergeii\AppData\Roaming\vlc
2014-03-06 19:25:40 ----D---- C:\ProgramData\FLEXnet
2014-03-06 19:19:49 ----D---- C:\Program Files (x86)\Bonjour
2014-03-06 19:19:02 ----D---- C:\Windows\SYSWOW64\spool
2014-03-06 17:44:22 ----D---- C:\Users\sergeii\AppData\Roaming\MPC-HC
2014-03-06 17:32:16 ----D---- C:\Users\sergeii\AppData\Roaming\uTorrent
2014-03-06 17:14:53 ----D---- C:\Program Files (x86)\REVisionEffects
2014-03-06 17:14:23 ----D---- C:\ProgramData\REVisionEffects
2014-03-06 04:52:26 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2014-03-06 04:52:26 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2014-03-06 04:52:26 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2014-03-06 04:52:26 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2014-03-06 04:52:26 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2014-03-06 04:52:26 ----A---- C:\Windows\system32\odbctrac.dll
2014-03-06 04:52:26 ----A---- C:\Windows\system32\odbccu32.dll
2014-03-06 04:52:26 ----A---- C:\Windows\system32\odbccr32.dll
2014-03-06 04:52:26 ----A---- C:\Windows\system32\odbccp32.dll
2014-03-06 04:52:25 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2014-03-06 04:52:25 ----A---- C:\Windows\system32\comctl32.dll
2014-03-06 04:52:23 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2014-03-06 04:52:23 ----A---- C:\Windows\system32\poqexec.exe
2014-03-06 04:52:23 ----A---- C:\Windows\system32\mstscax.dll
2014-03-06 04:52:22 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2014-03-06 04:52:22 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2014-03-06 04:52:22 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2014-03-06 04:52:22 ----A---- C:\Windows\system32\tsgqec.dll
2014-03-06 04:52:22 ----A---- C:\Windows\system32\aaclient.dll
2014-03-06 04:52:21 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2014-03-06 04:52:21 ----A---- C:\Windows\system32\wintrust.dll
2014-03-06 04:52:20 ----A---- C:\Windows\SYSWOW64\sbe.dll
2014-03-06 04:52:20 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2014-03-06 04:52:20 ----A---- C:\Windows\system32\sbe.dll
2014-03-06 04:52:20 ----A---- C:\Windows\system32\CPFilters.dll
2014-03-06 04:52:19 ----A---- C:\Windows\SYSWOW64\quartz.dll
2014-03-06 04:52:19 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2014-03-06 04:52:19 ----A---- C:\Windows\system32\quartz.dll
2014-03-06 04:52:19 ----A---- C:\Windows\system32\qdvd.dll
2014-03-06 04:52:18 ----A---- C:\Windows\SYSWOW64\authui.dll
2014-03-06 04:52:18 ----A---- C:\Windows\system32\consent.exe
2014-03-06 04:52:18 ----A---- C:\Windows\system32\authui.dll
2014-03-06 04:52:18 ----A---- C:\Windows\system32\appinfo.dll
2014-03-06 04:52:16 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2014-03-06 04:52:16 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2014-03-06 04:52:16 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2014-03-06 04:52:15 ----A---- C:\Windows\SYSWOW64\webio.dll
2014-03-06 04:52:15 ----A---- C:\Windows\system32\webio.dll
2014-03-06 04:52:13 ----A---- C:\Windows\system32\drivers\ntfs.sys
2014-03-06 04:52:12 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2014-03-06 04:52:12 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2014-03-06 04:52:12 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2014-03-06 04:52:12 ----A---- C:\Windows\system32\cryptsvc.dll
2014-03-06 04:52:12 ----A---- C:\Windows\system32\cryptnet.dll
2014-03-06 04:52:12 ----A---- C:\Windows\system32\crypt32.dll
2014-03-06 04:52:11 ----A---- C:\Windows\SYSWOW64\wmi.dll
2014-03-06 04:52:11 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2014-03-06 04:52:11 ----A---- C:\Windows\system32\wmi.dll
2014-03-06 04:52:11 ----A---- C:\Windows\system32\imagehlp.dll
2014-03-06 04:52:11 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2014-03-06 04:52:10 ----A---- C:\Windows\SYSWOW64\tzres.dll
2014-03-06 04:52:10 ----A---- C:\Windows\system32\tzres.dll
2014-03-06 04:52:08 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2014-03-06 04:52:08 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2014-03-06 04:52:08 ----A---- C:\Windows\system32\msxml3r.dll
2014-03-06 04:52:08 ----A---- C:\Windows\system32\msxml3.dll
2014-03-06 04:51:46 ----A---- C:\Windows\system32\drivers\portcls.sys
2014-03-06 04:51:46 ----A---- C:\Windows\system32\drivers\drmk.sys
2014-03-06 04:51:46 ----A---- C:\Windows\system32\drivers\afd.sys
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\lpk.dll
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2014-03-06 04:51:42 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\sspisrv.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\sspicli.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\schannel.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\secur32.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\ncrypt.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\mfc42u.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\mfc42.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\lsass.exe
2014-03-06 04:51:42 ----A---- C:\Windows\system32\lsasrv.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\lpk.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\fontsub.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2014-03-06 04:51:42 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2014-03-06 04:51:42 ----A---- C:\Windows\system32\drivers\cng.sys
2014-03-06 04:51:42 ----A---- C:\Windows\system32\dciman32.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\atmlib.dll
2014-03-06 04:51:42 ----A---- C:\Windows\system32\atmfd.dll
2014-03-06 04:51:30 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2014-03-06 04:51:30 ----A---- C:\Windows\system32\drivers\usbport.sys
2014-03-06 04:51:30 ----A---- C:\Windows\system32\drivers\usbohci.sys
2014-03-06 04:51:30 ----A---- C:\Windows\system32\drivers\usbhub.sys
2014-03-06 04:51:30 ----A---- C:\Windows\system32\drivers\usbehci.sys
2014-03-06 04:51:30 ----A---- C:\Windows\system32\drivers\usbd.sys
2014-03-06 04:51:30 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-03-06 04:51:29 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-03-06 04:51:29 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2014-03-06 04:51:29 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2014-03-06 04:51:29 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2014-03-06 04:51:29 ----A---- C:\Windows\system32\winsrv.dll
2014-03-06 04:51:29 ----A---- C:\Windows\system32\smss.exe
2014-03-06 04:51:29 ----A---- C:\Windows\system32\KernelBase.dll
2014-03-06 04:51:29 ----A---- C:\Windows\system32\kernel32.dll
2014-03-06 04:51:29 ----A---- C:\Windows\system32\csrsrv.dll
2014-03-06 04:51:29 ----A---- C:\Windows\system32\conhost.exe
2014-03-06 04:51:29 ----A---- C:\Windows\system32\apisetschema.dll
2014-03-06 04:51:25 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2014-03-06 04:51:25 ----A---- C:\Windows\system32\WMVDECOD.DLL
2014-03-06 04:51:24 ----A---- C:\Windows\system32\rdrmemptylst.exe
2014-03-06 04:51:24 ----A---- C:\Windows\system32\rdpwsx.dll
2014-03-06 04:51:24 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-03-06 04:51:24 ----A---- C:\Windows\system32\drivers\usb8023.sys
2014-03-06 04:51:23 ----A---- C:\Windows\system32\Wdfres.dll
2014-03-06 04:51:23 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2014-03-06 04:51:23 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2014-03-06 04:51:22 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2014-03-06 04:51:22 ----A---- C:\Windows\system32\rpcrt4.dll
2014-03-06 04:51:22 ----A---- C:\Windows\system32\drivers\usbcir.sys
2014-03-06 04:51:21 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2014-03-06 04:51:21 ----A---- C:\Windows\system32\msxml6.dll
2014-03-06 04:51:20 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2014-03-06 04:51:20 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2014-03-06 04:51:20 ----A---- C:\Windows\system32\drivers\hidparse.sys
2014-03-06 04:51:20 ----A---- C:\Windows\system32\drivers\hidclass.sys
2014-03-06 04:51:20 ----A---- C:\Windows\system32\dnsrslvr.dll
2014-03-06 04:51:20 ----A---- C:\Windows\system32\dnscacheugc.exe
2014-03-06 04:51:20 ----A---- C:\Windows\system32\dnsapi.dll
2014-03-06 04:51:07 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-03-06 04:51:07 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2014-03-06 04:51:07 ----A---- C:\Windows\system32\qedit.dll
2014-03-06 04:51:07 ----A---- C:\Windows\system32\dpnet.dll
2014-03-06 04:50:47 ----A---- C:\Windows\system32\rdpcorets.dll
2014-03-06 04:50:47 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-03-06 04:50:47 ----A---- C:\Windows\system32\drivers\srvnet.sys
2014-03-06 04:50:47 ----A---- C:\Windows\system32\drivers\srv2.sys
2014-03-06 04:50:47 ----A---- C:\Windows\system32\drivers\srv.sys
2014-03-06 04:50:46 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2014-03-06 04:50:46 ----A---- C:\Windows\system32\psisdecd.dll
2014-03-06 04:50:46 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-03-06 04:50:38 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-03-06 04:50:38 ----A---- C:\Windows\system32\win32k.sys
2014-03-06 04:50:38 ----A---- C:\Windows\system32\kerberos.dll
2014-03-06 04:50:38 ----A---- C:\Windows\system32\drivers\partmgr.sys
2014-03-06 04:50:34 ----A---- C:\Windows\SYSWOW64\synceng.dll
2014-03-06 04:50:34 ----A---- C:\Windows\system32\synceng.dll
2014-03-06 04:50:33 ----A---- C:\Windows\system32\winresume.exe
2014-03-06 04:50:33 ----A---- C:\Windows\system32\winload.exe
2014-03-06 04:50:33 ----A---- C:\Windows\system32\kdusb.dll
2014-03-06 04:50:33 ----A---- C:\Windows\system32\kdcom.dll
2014-03-06 04:50:33 ----A---- C:\Windows\system32\kd1394.dll
2014-03-06 04:50:32 ----A---- C:\Windows\SYSWOW64\shell32.dll
2014-03-06 04:50:32 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2014-03-06 04:50:32 ----A---- C:\Windows\system32\shell32.dll
2014-03-06 04:50:32 ----A---- C:\Windows\system32\shdocvw.dll
2014-03-06 04:50:30 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2014-03-06 04:50:30 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2014-03-06 04:50:30 ----A---- C:\Windows\system32\win32spl.dll
2014-03-06 04:50:30 ----A---- C:\Windows\system32\taskhost.exe
2014-03-06 04:50:30 ----A---- C:\Windows\system32\gdi32.dll
2014-03-06 04:50:29 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2014-03-06 04:50:29 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2014-03-06 04:50:29 ----A---- C:\Windows\SYSWOW64\devobj.dll
2014-03-06 04:50:29 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2014-03-06 04:50:29 ----A---- C:\Windows\system32\umpnpmgr.dll
2014-03-06 04:50:27 ----A---- C:\Windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-03-06 04:50:27 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-03-06 04:50:27 ----A---- C:\Windows\system32\drivers\netio.sys
2014-03-06 04:50:27 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2014-03-06 04:50:26 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2014-03-06 04:50:26 ----A---- C:\Windows\SYSWOW64\browcli.dll
2014-03-06 04:50:26 ----A---- C:\Windows\system32\netapi32.dll
2014-03-06 04:50:26 ----A---- C:\Windows\system32\FXSCOVER.exe
2014-03-06 04:50:26 ----A---- C:\Windows\system32\browser.dll
2014-03-06 04:50:26 ----A---- C:\Windows\system32\browcli.dll
2014-03-06 04:50:25 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2014-03-06 04:50:25 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2014-03-06 04:50:25 ----A---- C:\Windows\system32\msvcrt.dll
2014-03-06 04:50:25 ----A---- C:\Windows\system32\inetcomm.dll
2014-03-06 04:50:24 ----A---- C:\Windows\SYSWOW64\certutil.exe
2014-03-06 04:50:24 ----A---- C:\Windows\SYSWOW64\certenc.dll
2014-03-06 04:50:24 ----A---- C:\Windows\system32\certutil.exe
2014-03-06 04:50:24 ----A---- C:\Windows\system32\certenc.dll
2014-03-06 04:50:21 ----A---- C:\Windows\SYSWOW64\wscript.exe
2014-03-06 04:50:21 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2014-03-06 04:50:21 ----A---- C:\Windows\SYSWOW64\cscript.exe
2014-03-06 04:50:21 ----A---- C:\Windows\system32\wscript.exe
2014-03-06 04:50:21 ----A---- C:\Windows\system32\scrrun.dll
2014-03-06 04:50:21 ----A---- C:\Windows\system32\localspl.dll
2014-03-06 04:50:21 ----A---- C:\Windows\system32\cscript.exe
2014-03-06 04:50:20 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2014-03-06 04:50:20 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2014-03-06 04:50:20 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2014-03-06 04:50:20 ----A---- C:\Windows\system32\oleaut32.dll
2014-03-06 04:50:20 ----A---- C:\Windows\system32\oleacc.dll
2014-03-06 04:50:20 ----A---- C:\Windows\system32\EncDec.dll
2014-03-06 04:50:20 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-03-06 04:50:20 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-03-06 04:50:20 ----A---- C:\Windows\system32\drivers\bowser.sys
2014-03-06 04:50:20 ----A---- C:\Windows\system32\cdd.dll
2014-03-06 04:50:14 ----A---- C:\Windows\SYSWOW64\nshwfp.dll
2014-03-06 04:50:14 ----A---- C:\Windows\SYSWOW64\FWPUCLNT.DLL
2014-03-06 04:50:14 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2014-03-06 04:50:14 ----A---- C:\Windows\system32\nshwfp.dll
2014-03-06 04:50:14 ----A---- C:\Windows\system32\IKEEXT.DLL
2014-03-06 04:50:14 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2014-03-06 04:50:14 ----A---- C:\Windows\system32\cdosys.dll
2014-03-06 04:50:13 ----A---- C:\Windows\SYSWOW64\packager.dll
2014-03-06 04:50:13 ----A---- C:\Windows\system32\packager.dll
2014-03-06 04:43:53 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2014-03-06 04:43:53 ----A---- C:\Windows\system32\rdpcore.dll
2014-03-06 04:43:53 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2014-03-06 04:40:44 ----A---- C:\Windows\system32\wups2.dll
2014-03-06 04:40:44 ----A---- C:\Windows\system32\wucltux.dll
2014-03-06 04:40:44 ----A---- C:\Windows\system32\wuaueng.dll
2014-03-06 04:40:44 ----A---- C:\Windows\system32\wuauclt.exe
2014-03-06 04:40:42 ----A---- C:\Windows\system32\wups.dll
2014-03-06 04:40:42 ----A---- C:\Windows\system32\wudriver.dll
2014-03-06 04:40:42 ----A---- C:\Windows\system32\wuapi.dll
2014-03-06 04:40:41 ----A---- C:\Windows\system32\wuwebv.dll
2014-03-06 04:40:41 ----A---- C:\Windows\system32\wuapp.exe
2014-03-06 00:01:56 ----D---- C:\Users\sergeii\AppData\Roaming\ASUS
2014-03-06 00:01:55 ----D---- C:\Program Files (x86)\OpenAL
2014-03-06 00:01:55 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2014-03-06 00:01:55 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2014-03-06 00:01:55 ----A---- C:\Windows\system32\wrap_oal.dll
2014-03-06 00:01:55 ----A---- C:\Windows\system32\OpenAL32.dll
2014-03-06 00:01:49 ----N---- C:\Windows\SYSWOW64\VmixP8.dll
2014-03-06 00:01:49 ----N---- C:\Windows\SYSWOW64\HsSrv2.dll
2014-03-06 00:01:49 ----N---- C:\Windows\SYSWOW64\HsSrv.dll
2014-03-06 00:01:49 ----N---- C:\Windows\SYSWOW64\Cmpaoxy.dll
2014-03-06 00:01:49 ----N---- C:\Windows\SYSWOW64\CmiCnfgp.dll
2014-03-06 00:01:49 ----N---- C:\Windows\SYSWOW64\cmasiop.ini
2014-03-06 00:01:49 ----N---- C:\Windows\SYSWOW64\cmasiop.dll
2014-03-06 00:01:49 ----N---- C:\Windows\SYSWOW64\Cm_Oal.dll
2014-03-06 00:01:49 ----N---- C:\Windows\system32\cmasiopx.ini
2014-03-06 00:01:49 ----N---- C:\Windows\system32\cmasiopx.dll
2014-03-06 00:01:49 ----N---- C:\Windows\system32\Cm_Oal.dll
2014-03-06 00:01:49 ----A---- C:\Windows\SYSWOW64\HsMgr.exe
2014-03-06 00:01:48 ----N---- C:\Windows\system32\Cmeauoxy.exe
2014-03-06 00:01:48 ----D---- C:\Program Files\ASUS Xonar DS Audio
2014-03-06 00:01:24 ----A---- C:\Windows\SYSWOW64\CmiFltr.dll
2014-03-06 00:01:24 ----A---- C:\Windows\system32\drivers\cmudaxp.sys
2014-03-06 00:01:24 ----A---- C:\Windows\system32\cmudaxp.dll
2014-03-05 23:23:33 ----HD---- C:\Program Files (x86)\Temp
2014-03-05 23:23:33 ----A---- C:\Windows\RtlExUpd.dll
2014-03-05 23:10:23 ----D---- C:\Users\sergeii\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2014-03-05 23:04:43 ----D---- C:\Users\sergeii\AppData\Roaming\PACE Anti-Piracy
2014-03-05 23:04:43 ----D---- C:\ProgramData\PACE Anti-Piracy
2014-03-05 23:04:43 ----D---- C:\Program Files\Common Files\PACE Anti-Piracy
2014-03-05 23:04:43 ----A---- C:\Windows\SurCode.INI
2014-03-05 22:59:22 ----D---- C:\Program Files (x86)\Renesas Electronics
2014-03-05 22:57:02 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2014-03-05 22:56:45 ----D---- C:\Program Files\Adobe
2014-03-05 22:56:12 ----N---- C:\Windows\system32\drivers\PxHlpa64.sys
2014-03-05 22:56:12 ----N---- C:\Windows\system32\drivers\cdralw2k.sys
2014-03-05 22:56:12 ----N---- C:\Windows\system32\drivers\cdr4_xp.sys
2014-03-05 22:56:08 ----D---- C:\Program Files (x86)\My Company Name
2014-03-05 22:55:48 ----D---- C:\Users\sergeii\AppData\Roaming\FileZilla
2014-03-05 22:55:11 ----D---- C:\Windows\SYSWOW64\Macromed
2014-03-05 22:54:50 ----D---- C:\Program Files\Common Files\Adobe
2014-03-05 22:54:03 ----D---- C:\Users\sergeii\AppData\Roaming\Macromedia
2014-03-05 22:53:59 ----D---- C:\Users\sergeii\AppData\Roaming\Adobe
2014-03-05 22:40:37 ----D---- C:\Program Files (x86)\Marvell
2014-03-05 22:38:02 ----N---- C:\Windows\system32\CmiInstallResAll64.dll
2014-03-05 22:38:01 ----N---- C:\Windows\cmudaxp.ini
2014-03-05 22:38:01 ----A---- C:\Windows\difxapi.dll
2014-03-05 22:37:56 ----D---- C:\Users\sergeii\AppData\Roaming\WinRAR
2014-03-05 22:36:12 ----D---- C:\Users\sergeii\AppData\Roaming\Origin
2014-03-05 22:35:30 ----D---- C:\ProgramData\Origin
2014-03-05 22:34:27 ----A---- C:\Windows\SYSWOW64\XSrvSetup.exe
2014-03-05 22:34:27 ----A---- C:\Windows\SYSWOW64\xRaidSetup.exe
2014-03-05 22:34:27 ----A---- C:\Windows\SYSWOW64\xRaidAPI.dll
2014-03-05 22:34:15 ----D---- C:\RaidTool
2014-03-05 22:34:03 ----D---- C:\Windows\RaidTool
2014-03-05 22:33:17 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2014-03-05 22:32:37 ----A---- C:\Windows\system32\drivers\jraid.sys
2014-03-05 22:29:43 ----D---- C:\Users\sergeii\AppData\Roaming\Skype
2014-03-05 22:29:41 ----D---- C:\Users\sergeii\AppData\Roaming\Apple Computer
2014-03-05 22:27:20 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2014-03-05 22:27:20 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2014-03-05 22:27:20 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2014-03-05 22:27:20 ----A---- C:\Windows\system32\D3DX9_43.dll
2014-03-05 22:27:20 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-03-05 22:27:20 ----A---- C:\Windows\system32\d3dx10_43.dll
2014-03-05 22:26:54 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-03-05 22:26:13 ----D---- C:\ProgramData\NVIDIA Corporation
2014-03-05 22:26:10 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-03-05 22:24:32 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2014-03-05 22:22:58 ----D---- C:\Program Files (x86)\Microsoft.NET
2014-03-05 22:21:06 ----D---- C:\Program Files\NVIDIA Corporation
2014-03-05 22:18:34 ----D---- C:\Users\sergeii\AppData\Roaming\SUPERAntiSpyware.com
2014-03-05 22:18:32 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2014-03-05 22:18:32 ----D---- C:\Program Files\SUPERAntiSpyware
2014-03-05 22:18:26 ----D---- C:\ProgramData\Apple Computer
2014-03-05 22:18:26 ----D---- C:\Program Files (x86)\QuickTime
2014-03-05 22:18:24 ----D---- C:\Program Files (x86)\Apple Software Update
2014-03-05 22:18:22 ----D---- C:\ProgramData\Apple
2014-03-05 22:18:05 ----D---- C:\Program Files (x86)\Adobe
2014-03-05 22:18:00 ----D---- C:\ProgramData\Adobe
2014-03-05 22:17:37 ----A---- C:\Windows\SYSWOW64\unrar.dll
2014-03-05 22:17:37 ----A---- C:\Windows\system32\unrar64.dll
2014-03-05 22:17:33 ----D---- C:\Program Files (x86)\K-Lite Codec Pack
2014-03-05 22:16:29 ----RD---- C:\Program Files (x86)\Skype
2014-03-05 22:16:29 ----D---- C:\ProgramData\Skype
2014-03-05 22:16:20 ----D---- C:\Program Files (x86)\VideoLAN
2014-03-05 22:16:04 ----D---- C:\Program Files (x86)\Audacity
2014-03-05 22:16:03 ----D---- C:\ProgramData\Mozilla
2014-03-05 22:16:03 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2014-03-05 22:16:03 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-05 22:15:56 ----D---- C:\Users\sergeii\AppData\Roaming\Winamp
2014-03-05 22:15:56 ----D---- C:\Program Files (x86)\Winamp
2014-03-05 22:15:54 ----D---- C:\Program Files\WinRAR
2014-03-05 22:15:54 ----D---- C:\Program Files (x86)\FileZilla FTP Client
2014-03-05 22:15:52 ----A---- C:\Windows\system32\javaws.exe
2014-03-05 22:15:51 ----A---- C:\Windows\system32\WindowsAccessBridge-64.dll
2014-03-05 22:15:51 ----A---- C:\Windows\system32\javaw.exe
2014-03-05 22:15:51 ----A---- C:\Windows\system32\java.exe
2014-03-05 22:15:48 ----D---- C:\Program Files\Java
2014-03-05 22:15:42 ----D---- C:\ProgramData\Sun
2014-03-05 22:15:41 ----A---- C:\Windows\SYSWOW64\javaws.exe
2014-03-05 22:15:39 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2014-03-05 22:15:39 ----A---- C:\Windows\SYSWOW64\javaw.exe
2014-03-05 22:15:39 ----A---- C:\Windows\SYSWOW64\java.exe
2014-03-05 22:15:37 ----D---- C:\Program Files (x86)\Java
2014-03-05 22:14:58 ----D---- C:\Program Files\Microsoft Silverlight
2014-03-05 22:14:58 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-03-05 22:14:46 ----D---- C:\Program Files (x86)\Google
2014-03-05 22:14:41 ----SHD---- C:\Windows\Installer
2014-03-05 22:11:04 ----A---- C:\Windows\system32\RTNUninst64.dll
2014-03-05 22:11:04 ----A---- C:\Windows\system32\RtNicProp64.dll
2014-03-05 22:11:04 ----A---- C:\Windows\system32\drivers\Rt64win7.sys
2014-03-05 22:11:01 ----D---- C:\Program Files (x86)\Realtek
2014-03-05 22:10:51 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-03-05 22:08:58 ----D---- C:\Program Files (x86)\Intel
2014-03-05 22:08:58 ----A---- C:\Windows\SYSWOW64\CSVer.dll
2014-03-05 22:08:28 ----D---- C:\Intel
2014-03-05 22:00:02 ----D---- C:\Users\sergeii\AppData\Roaming\Identities
2014-03-05 21:59:46 ----SD---- C:\Users\sergeii\AppData\Roaming\Microsoft
2014-03-05 21:59:46 ----D---- C:\Users\sergeii\AppData\Roaming\Media Center Programs
2014-03-05 21:58:41 ----SHD---- C:\ProgramData\Šablony
2014-03-05 21:58:41 ----SHD---- C:\ProgramData\Plocha
2014-03-05 21:58:41 ----SHD---- C:\ProgramData\Oblíbené položky
2014-03-05 21:58:41 ----SHD---- C:\ProgramData\Nabídka Start
2014-03-05 21:58:41 ----SHD---- C:\ProgramData\Dokumenty
2014-03-05 21:58:41 ----SHD---- C:\ProgramData\Data aplikací
2014-03-05 21:58:41 ----D---- C:\Recovery
2014-03-05 21:58:39 ----D---- C:\Windows\SoftwareDistribution
2014-03-05 21:54:04 ----D---- C:\Windows\Prefetch
2014-03-05 21:53:56 ----ASH---- C:\pagefile.sys
2014-03-05 21:53:54 ----ASH---- C:\hiberfil.sys
2014-03-05 21:40:33 ----D---- C:\Temp
2014-03-05 21:29:41 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-03-05 20:46:16 ----D---- C:\Boot
2014-03-05 20:45:34 ----SHD---- C:\System Volume Information
2014-03-05 20:23:10 ----D---- C:\Windows\Panther

======List of files/folders modified in the last 1 month======

2014-03-12 21:32:48 ----RD---- C:\Program Files
2014-03-12 21:26:36 ----D---- C:\Windows\SysWOW64
2014-03-12 21:26:34 ----D---- C:\Windows\System32
2014-03-12 21:26:34 ----D---- C:\Windows\inf
2014-03-12 21:26:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-03-12 21:25:53 ----D---- C:\Windows\system32\Tasks
2014-03-12 21:23:37 ----D---- C:\Windows\system32\config
2014-03-12 21:20:35 ----D---- C:\Windows
2014-03-12 21:16:08 ----A---- C:\Windows\system.ini
2014-03-12 21:16:03 ----D---- C:\Windows\system32\drivers\etc
2014-03-12 21:14:06 ----D---- C:\Windows\SYSWOW64\drivers
2014-03-12 21:14:06 ----D---- C:\Windows\AppPatch
2014-03-12 21:14:05 ----D---- C:\Program Files (x86)\Common Files
2014-03-12 21:11:24 ----D---- C:\Windows\system32\drivers
2014-03-12 21:02:17 ----D---- C:\ProgramData
2014-03-12 20:33:41 ----D---- C:\Windows\Logs
2014-03-12 20:33:41 ----D---- C:\Windows\debug
2014-03-12 20:04:40 ----D---- C:\Windows\system32\DriverStore
2014-03-12 20:04:40 ----D---- C:\Windows\system32\catroot
2014-03-12 19:53:04 ----RD---- C:\Program Files (x86)
2014-03-12 19:48:27 ----D---- C:\Windows\Tasks
2014-03-12 18:51:49 ----RSD---- C:\Windows\assembly
2014-03-12 18:51:48 ----D---- C:\Windows\winsxs
2014-03-12 18:50:55 ----D---- C:\Program Files (x86)\MSBuild
2014-03-12 18:50:51 ----D---- C:\Windows\ShellNew
2014-03-12 18:50:49 ----RSD---- C:\Windows\Fonts
2014-03-12 18:50:47 ----ASD---- C:\ProgramData\Microsoft
2014-03-12 18:50:31 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-03-12 18:49:49 ----A---- C:\Windows\win.ini
2014-03-11 18:25:59 ----D---- C:\Windows\Help
2014-03-11 18:25:35 ----D---- C:\Windows\system32\catroot2
2014-03-08 13:43:53 ----D---- C:\Windows\Microsoft.NET
2014-03-08 12:59:14 ----D---- C:\Windows\system32\wbem
2014-03-08 05:54:56 ----D---- C:\Windows\rescache
2014-03-08 02:00:30 ----D---- C:\Program Files\Internet Explorer
2014-03-08 02:00:30 ----D---- C:\Program Files (x86)\Internet Explorer
2014-03-08 01:29:04 ----D---- C:\Windows\SYSWOW64\migration
2014-03-08 01:29:04 ----D---- C:\Windows\SYSWOW64\en-US
2014-03-08 01:29:04 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-03-08 01:29:04 ----D---- C:\Windows\system32\cs-CZ
2014-03-08 01:29:03 ----D---- C:\Windows\system32\migration
2014-03-08 01:29:03 ----D---- C:\Windows\system32\en-US
2014-03-08 01:29:03 ----D---- C:\Windows\PolicyDefinitions
2014-03-07 18:39:51 ----D---- C:\Windows\system32\wdi
2014-03-07 18:39:09 ----D---- C:\Windows\ehome
2014-03-07 18:39:09 ----D---- C:\Program Files\Common Files\System
2014-03-07 18:39:08 ----D---- C:\Program Files\Windows Defender
2014-03-07 18:39:08 ----D---- C:\Program Files (x86)\Windows Defender
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\zh-TW
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\zh-HK
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\zh-CN
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\tr-TR
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\sv-SE
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\ru-RU
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\pt-PT
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\pt-BR
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\pl-PL
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\nl-NL
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\nb-NO
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\ko-KR
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\ja-JP
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\it-IT
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\hu-HU
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\fr-FR
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\fi-FI
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\es-ES
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\el-GR
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\de-DE
2014-03-07 18:39:05 ----D---- C:\Windows\SYSWOW64\da-DK
2014-03-07 18:39:05 ----D---- C:\Windows\system32\zh-TW
2014-03-07 18:39:05 ----D---- C:\Windows\system32\zh-HK
2014-03-07 18:39:05 ----D---- C:\Windows\system32\tr-TR
2014-03-07 18:39:05 ----D---- C:\Windows\system32\sv-SE
2014-03-07 18:39:05 ----D---- C:\Windows\system32\pt-PT
2014-03-07 18:39:05 ----D---- C:\Windows\system32\pt-BR
2014-03-07 18:39:05 ----D---- C:\Windows\system32\pl-PL
2014-03-07 18:39:05 ----D---- C:\Windows\system32\nl-NL
2014-03-07 18:39:05 ----D---- C:\Windows\system32\ko-KR
2014-03-07 18:39:05 ----D---- C:\Windows\system32\it-IT
2014-03-07 18:39:05 ----D---- C:\Windows\system32\hu-HU
2014-03-07 18:39:05 ----D---- C:\Windows\system32\fr-FR
2014-03-07 18:39:05 ----D---- C:\Windows\system32\fi-FI
2014-03-07 18:39:05 ----D---- C:\Windows\system32\es-ES
2014-03-07 18:39:05 ----D---- C:\Windows\system32\el-GR
2014-03-07 18:39:04 ----D---- C:\Windows\system32\zh-CN
2014-03-07 18:39:04 ----D---- C:\Windows\system32\ru-RU
2014-03-07 18:39:04 ----D---- C:\Windows\system32\nb-NO
2014-03-07 18:39:04 ----D---- C:\Windows\system32\ja-JP
2014-03-07 18:39:04 ----D---- C:\Windows\system32\de-DE
2014-03-07 18:39:04 ----D---- C:\Windows\system32\da-DK
2014-03-07 18:38:58 ----D---- C:\Windows\system32\Boot
2014-03-07 18:38:57 ----D---- C:\Program Files\Windows Journal
2014-03-06 21:09:28 ----D---- C:\Windows\system32\LogFiles
2014-03-06 00:01:49 ----D---- C:\Windows\system
2014-03-05 23:04:43 ----D---- C:\Program Files\Common Files
2014-03-05 22:10:46 ----D---- C:\Windows\system32\restore
2014-03-05 22:09:40 ----D---- C:\Windows\system32\CodeIntegrity
2014-03-05 21:59:46 ----RD---- C:\Users
2014-03-05 21:58:41 ----D---- C:\Program Files\Windows NT
2014-03-05 21:56:57 ----D---- C:\Windows\system32\sysprep
2014-03-05 21:54:20 ----D---- C:\Windows\system32\drivers\UMDF
2014-03-05 21:54:03 ----D---- C:\Windows\CSC
2014-03-05 20:22:50 ----D---- C:\Windows\Setup

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2010-09-07 121432]
R0 mv91xx;mv91xx; C:\Windows\system32\DRIVERS\mv91xx.sys [2010-03-17 302632]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2013-10-25 219184]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2013-09-09 155896]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2013-09-09 147096]
R2 SPDRIVER_1.30.1.146;SPDRIVER_1.30.1.146; \??\C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.sys [2014-03-11 52072]
R3 cmudaxp;ASUS Xonar DS Audio Interface; C:\Windows\system32\drivers\cmudaxp.sys [2011-03-10 2725376]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2013-11-05 3707864]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-11-19 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-11-19 181248]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2013-11-28 197408]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2013-12-27 39200]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-09-29 646248]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-21 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-21 34816]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Users\sergeii\AppData\Local\Temp\tmp7020.tmp []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe [2013-10-07 1025584]
R2 JMB36X;JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [2010-09-07 72280]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-02-05 1593632]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-02-05 16941856]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-03-04 922968]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2014-03-08 76888]
R2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2014-03-12 214392]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-03-04 411936]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-11 257928]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Endpoint Antivirus\EHttpSrv.exe [2013-10-07 42048]
S3 ESHASRV;ESET SHA Service; C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe [2013-10-07 191368]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-03-06 654848]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-05 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-02-06 111616]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; E:\Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-01-31 119408]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-03-07 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[vyosek]

Na tohle se podivam radeji OTLkem

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu

• Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
• Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
• Zaskrtnete okenko Pro vsechny uzivatele
• Zaskrtnete okenko Kontrola na havet "LOP"
• Zaskrtnete okenko Kontrola na havet "Purity"
• Stari souboru zmente z 30 dnu na 7 dnu
• Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

• Kód: Vybrat vše

  CREATERESTOREPOINT
  
  netsvcs
  drivers32
  savembr:0
  
  /md5start
  atapi.sys
  autochk.exe
  cdrom.sys
  explorer.exe
  hal.dll
  scecli.dll
  services.exe
  svchost.exe
  tcpip.sys
  userinit.exe
  winlogon.exe
  /md5stop
  
  %systemroot%*.* /U /s
  %SYSTEMDRIVE%\*.exe
  %ALLUSERSPROFILE%\Application Data\*.
  %ALLUSERSPROFILE%\Application Data\*.exe /s
  %APPDATA%\*.
  %APPDATA%\*.exe /s
  %systemroot%\*. /mp /s
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\Tasks\*.job
  %systemroot%\system32\drivers\*.sys /lockedfiles
  %systemroot%\System32\config\*.sav
  %systemroot%\system32\*.dll /lockedfiles
  %systemroot%\system32\drivers\*.sys /3
  %systemroot%\system32\*.* /3
  %SYSTEMDRIVE%\*.exe
  
  HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
  
  %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
  %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
  %PROGRAMFILES%\Opera\opera.exe /md5
  %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
  
  %SystemDrive%\PhysicalMBR.bin /md5 
  
  *crack* /s
  *keygen* /s
  *loader* /s

• Kliknete na tlacitko Prohledat
• Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte
• Pokud budou logy dlouhe (forum bude kricet o prekroceni maximalniho poctu znaku), tak je rozdelte do vice prispevku

[vyosek]

A opet vidim spusteny Combofix, nebylo Vam uz jednou receno ze CF se pouziva az na doporuceni??

Takze, ktera vyskolena osoba v jeho pouzivani Vam jej doporucila ted??

[Sergeii]

extremne dlouhe

qOTL logfile created on: 12.3.2014 21:48:10 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\sergeii\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16518)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

20,00 Gb Total Physical Memory | 13,20 Gb Available Physical Memory | 66,00% Memory free
40,00 Gb Paging File | 32,22 Gb Available in Paging File | 80,57% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,79 Gb Total Space | 44,84 Gb Free Space | 40,11% Space Free | Partition Type: NTFS
Drive E: | 931,51 Gb Total Space | 831,42 Gb Free Space | 89,25% Space Free | Partition Type: NTFS
Drive F: | 1863,01 Gb Total Space | 413,89 Gb Free Space | 22,22% Space Free | Partition Type: NTFS
Drive G: | 111,79 Gb Total Space | 50,48 Gb Free Space | 45,16% Space Free | Partition Type: NTFS
Drive H: | 1,87 Gb Total Space | 1,86 Gb Free Space | 99,62% Space Free | Partition Type: FAT32

Computer Name: SERGEII-PC | User Name: sergeii | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - File not found --
PRC - [2014.03.12 21:46:47 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\sergeii\Desktop\OTL.exe
PRC - [2014.03.11 14:00:26 | 003,209,920 | ---- | M] () -- C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe
PRC - [2014.03.07 07:07:27 | 003,588,952 | ---- | M] (Electronic Arts) -- G:\origin\Origin.exe
PRC - [2014.03.06 17:32:50 | 001,853,008 | ---- | M] (BitTorrent Inc.) -- C:\Users\sergeii\AppData\Roaming\uTorrent\uTorrent.exe
PRC - [2014.03.04 12:32:56 | 000,411,936 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2014.03.02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2014.02.05 10:32:47 | 002,234,144 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014.02.05 10:32:34 | 001,593,632 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014.01.15 14:31:23 | 014,066,176 | ---- | M] () -- C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe
PRC - [2013.12.21 07:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013.10.07 10:29:40 | 001,025,584 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe
PRC - [2013.07.22 13:34:08 | 002,054,776 | ---- | M] () -- C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe
PRC - [2011.05.12 16:50:03 | 001,990,656 | ---- | M] (CMedia) -- C:\Program Files\ASUS Xonar DS Audio\Customapp\AsusAudioCenter.exe
PRC - [2010.11.17 02:53:16 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2010.09.07 10:46:56 | 000,072,280 | ---- | M] () -- C:\Windows\SysWOW64\XSrvSetup.exe
PRC - [2008.07.11 15:04:22 | 000,200,704 | ---- | M] () -- C:\Windows\SysWOW64\HsMgr.exe


========== Modules (No Company Name) ==========

MOD - [2014.03.11 14:00:26 | 003,209,920 | ---- | M] () -- C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe
MOD - [2014.03.07 15:49:00 | 000,284,568 | ---- | M] () -- C:\Program Files (x86)\Battlelog Web Plugins\launcher-131.dll
MOD - [2014.03.07 07:07:26 | 000,962,560 | ---- | M] () -- G:\origin\platforms\qwindows.dll
MOD - [2014.03.07 07:07:26 | 000,302,592 | ---- | M] () -- G:\origin\imageformats\qtiff.dll
MOD - [2014.03.07 07:07:26 | 000,261,632 | ---- | M] () -- G:\origin\imageformats\qmng.dll
MOD - [2014.03.07 07:07:26 | 000,217,088 | ---- | M] () -- G:\origin\imageformats\qjpeg.dll
MOD - [2014.03.07 07:07:26 | 000,025,088 | ---- | M] () -- G:\origin\imageformats\qico.dll
MOD - [2014.03.07 07:07:26 | 000,024,064 | ---- | M] () -- G:\origin\imageformats\qgif.dll
MOD - [2014.03.07 07:07:26 | 000,019,968 | ---- | M] () -- G:\origin\imageformats\qtga.dll
MOD - [2014.03.07 07:07:26 | 000,018,944 | ---- | M] () -- G:\origin\imageformats\qwbmp.dll
MOD - [2014.03.02 03:35:25 | 000,394,568 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ppgooglenaclpluginchrome.dll
MOD - [2014.03.02 03:35:24 | 013,632,840 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll
MOD - [2014.03.02 03:35:23 | 004,061,000 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\pdf.dll
MOD - [2014.03.02 03:35:20 | 000,716,616 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libglesv2.dll
MOD - [2014.03.02 03:35:19 | 000,100,168 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\libegl.dll
MOD - [2014.03.02 03:35:17 | 001,647,432 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\ffmpegsumo.dll
MOD - [2014.03.02 03:35:15 | 000,051,016 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll
MOD - [2014.02.11 20:29:20 | 000,093,696 | ---- | M] () -- C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
MOD - [2014.01.15 14:31:23 | 014,066,176 | ---- | M] () -- C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe
MOD - [2014.01.10 17:48:41 | 004,260,352 | ---- | M] () -- C:\Program Files (x86)\Bloody5\Bloody5\Data\RES\Forms\Internet_Advertisement\Internet_Advertisement_DLL.dll
MOD - [2013.07.22 13:34:08 | 002,054,776 | ---- | M] () -- C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe
MOD - [2013.04.03 18:29:03 | 000,085,504 | ---- | M] () -- C:\Program Files (x86)\Bloody5\Bloody5\Dll\DLL_ZoomControl.dll
MOD - [2013.04.03 18:29:03 | 000,054,272 | ---- | M] () -- C:\Program Files (x86)\Bloody5\Bloody5\Dll\DLL_ScrollbarControl.dll
MOD - [2011.04.19 14:56:58 | 000,143,360 | ---- | M] () -- C:\Program Files\ASUS Xonar DS Audio\Customapp\VmixP8.dll
MOD - [2009.07.14 02:15:45 | 000,364,544 | ---- | M] () -- C:\Windows\SysWOW64\msjetoledb40.dll
MOD - [2008.07.11 15:04:22 | 000,200,704 | ---- | M] () -- C:\Windows\SysWOW64\HsMgr.exe


========== Services (SafeList) ==========

SRV:64bit: - [2014.03.08 14:57:09 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysNative\PnkBstrA.exe -- (PnkBstrA)
SRV:64bit: - [2014.02.06 11:48:45 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014.02.05 10:32:24 | 016,941,856 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2013.10.10 23:54:28 | 000,144,152 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2013.10.07 10:31:20 | 000,191,368 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Endpoint Antivirus\EShaSrv.exe -- (ESHASRV)
SRV:64bit: - [2013.10.07 10:30:56 | 000,042,048 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Endpoint Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV:64bit: - [2013.10.07 10:29:40 | 001,025,584 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Endpoint Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2013.05.27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014.03.12 21:26:31 | 000,214,392 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrB.exe -- (PnkBstrB)
SRV - [2014.03.11 22:39:08 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.03.06 19:18:21 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2014.03.04 12:32:56 | 000,411,936 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014.02.05 10:32:34 | 001,593,632 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014.01.31 23:35:49 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.12.21 07:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013.09.11 21:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010.09.07 10:46:56 | 000,072,280 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\XSrvSetup.exe -- (JMB36X)
SRV - [2010.02.19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009.06.10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2006.10.27 00:47:54 | 000,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- E:\Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)


========== Driver Services (SafeList) ==========

DRV:64bit: - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV:64bit: - [2013.12.27 19:42:26 | 000,039,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2013.11.28 14:38:18 | 000,197,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2013.10.25 13:35:54 | 000,219,184 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2013.09.09 13:47:04 | 000,147,096 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2013.09.09 13:47:02 | 000,155,896 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.11.03 03:01:00 | 000,056,208 | ---- | M] (Rovi Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2011.09.29 10:30:34 | 000,646,248 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.07.22 17:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011.07.12 22:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011.03.10 15:44:16 | 002,725,376 | ---- | M] (C-Media Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\cmudaxp.sys -- (cmudaxp)
DRV:64bit: - [2010.11.21 04:24:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010.11.21 04:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.21 04:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010.11.21 04:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010.11.21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010.11.21 04:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2010.11.21 04:23:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010.11.21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.21 04:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010.11.21 04:23:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.19 03:34:26 | 000,181,248 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2010.11.19 03:34:26 | 000,080,384 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2010.09.07 03:37:28 | 000,121,432 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID)
DRV:64bit: - [2010.03.17 09:14:02 | 000,302,632 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mv91xx.sys -- (mv91xx)
DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2014.03.11 14:00:26 | 000,052,072 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.sys -- (SPDRIVER_1.30.1.146)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR
IE - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF - HKLM\Software\MozillaPlugins\@esn.me/esnsonar,version=0.70.4: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/esnlaunch,version=2.3.0: C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF - HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.3.2: C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET ENDPOINT ANTIVIRUS\MOZILLA THUNDERBIRD [2014.03.12 20:04:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.3.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.3.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Endpoint Antivirus\Mozilla Thunderbird [2014.03.12 20:04:20 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://seznam.cz/
CHR - plugin: Error reading preferences file
CHR - Extension: Dokumenty Google = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\
CHR - Extension: Dokumenty Google = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: Disk Google = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: Turn Off the Lights = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn\2.3.0.20_0\
CHR - Extension: Turn Off the Lights = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn\2.3.0.22_0\
CHR - Extension: YouTube = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: YouTube = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhledávání Google = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Vyhledávání Google = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Photo Zoom pro Facebook = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhapiedbmffnpkahkcjdjpikmodjipmd\22.0_0\
CHR - Extension: Photo Zoom for Facebook = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi\1.1312.1.2_0\
CHR - Extension: Chuck Anderson = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegkoiakifeoejnjkbnnojkkdoegeofp\3_0\
CHR - Extension: Chain Reaction = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\gemgfpodpjapjhfohdlibagceiknakpa\1.2_0\
CHR - Extension: AdBlock = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.25_0\
CHR - Extension: Peněženka Google = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
CHR - Extension: Gmail = C:\Users\sergeii\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2014.03.12 21:16:03 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Shopper Pro) - {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} - Reg Error: Value error. File not found
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [Cmaudio8788] C:\Windows\Syswow64\cmicnfgp.dll (C-Media Corporation)
O4:64bit: - HKLM..\Run: [Cmaudio8788GX] C:\Windows\syswow64\HsMgr.exe ()
O4:64bit: - HKLM..\Run: [Cmaudio8788GX64] C:\Windows\system\HsMgr64.exe ()
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Endpoint Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [GrooveMonitor] E:\Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKLM..\Run: [SPDriver] C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe ()
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000..\Run: [Bloody2] C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe ()
O4 - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000..\Run: [EADM] G:\origin\Origin.exe (Electronic Arts)
O4 - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000..\Run: [FixMyRegistry] C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss File not found
O4 - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000..\Run: [SPDriver] C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe ()
O4 - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000..\Run: [SpeedUpMyComputer] C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe ()
O4 - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware)
O4 - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000..\Run: [uTorrent] C:\Users\sergeii\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3338603107-2773124130-4247328820-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: E&xportovat do aplikace Microsoft Excel - E:\Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - E:\Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 77.48.254.254 77.48.100.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{20460E65-D097-4A5D-8940-4C55FA4F174A}: DhcpNameServer = 77.48.254.254 77.48.100.254
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - E:\Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2014.03.12 20:48:43 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2014.03.12 21:46:45 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\sergeii\Desktop\OTL.exe
[2014.03.12 21:32:48 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.03.12 21:32:48 | 000,000,000 | ---D | C] -- C:\rsit
[2014.03.12 21:17:21 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014.03.12 21:17:18 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2014.03.12 21:11:59 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2014.03.12 21:11:59 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2014.03.12 21:11:59 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2014.03.12 21:11:24 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014.03.12 21:11:17 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2014.03.12 21:07:50 | 005,188,693 | R--- | C] (Swearware) -- C:\Users\sergeii\Desktop\ComboFix.exe
[2014.03.12 21:01:38 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014.03.12 20:48:25 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2014.03.12 20:48:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2014.03.12 20:09:27 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\ESET
[2014.03.12 20:04:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2014.03.12 20:04:16 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2014.03.12 20:04:16 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2014.03.12 19:53:16 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\NVIDIA
[2014.03.12 18:51:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2014.03.12 18:50:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2014.03.12 18:50:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2014.03.12 18:50:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2014.03.12 18:50:47 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2014.03.12 18:49:57 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2014.03.12 18:49:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2014.03.12 18:49:43 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Microsoft Help
[2014.03.12 18:49:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2014.03.12 18:46:26 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTweak Software
[2014.03.12 18:46:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SmartTweak
[2014.03.12 18:46:09 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Installer
[2014.03.12 18:46:04 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\GOOBZO
[2014.03.12 18:45:49 | 000,000,000 | ---D | C] -- C:\ProgramData\ShopperPro
[2014.03.12 18:45:48 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\ShopperPro
[2014.03.12 18:45:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ShopperPro
[2014.03.12 18:45:25 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\CrashRpt
[2014.03.12 18:45:00 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\DAEMON Tools Lite
[2014.03.12 18:44:24 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2014.03.12 18:24:06 | 000,000,000 | ---D | C] -- C:\Users\sergeii\Desktop\sklady
[2014.03.11 20:22:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody
[2014.03.11 18:26:40 | 000,599,840 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2014.03.11 18:26:11 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2014.03.11 18:26:04 | 006,714,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2014.03.11 18:26:04 | 003,497,816 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2014.03.11 18:26:04 | 002,558,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2014.03.11 18:26:04 | 000,386,336 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2014.03.11 18:26:04 | 000,064,968 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2014.03.11 18:25:44 | 000,062,408 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2014.03.11 18:25:44 | 000,054,216 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2014.03.11 18:23:32 | 031,474,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2014.03.11 18:23:32 | 023,716,640 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2014.03.11 18:23:32 | 018,302,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2014.03.11 18:23:32 | 017,755,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2014.03.11 18:23:32 | 015,783,992 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2014.03.11 18:23:32 | 014,709,720 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2014.03.11 18:23:32 | 011,636,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2014.03.11 18:23:32 | 011,589,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2014.03.11 18:23:32 | 009,690,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2014.03.11 18:23:32 | 003,143,456 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2014.03.11 18:23:32 | 002,958,792 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2014.03.11 18:23:32 | 002,783,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2014.03.11 18:23:32 | 002,411,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2014.03.11 18:23:32 | 001,885,472 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6433523.dll
[2014.03.11 18:23:32 | 001,516,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6433523.dll
[2014.03.11 18:23:32 | 001,515,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420103.dll
[2014.03.11 18:23:32 | 000,947,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2014.03.11 18:23:32 | 000,892,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2014.03.11 18:23:32 | 000,877,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2014.03.11 18:23:32 | 000,863,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2014.03.11 18:23:32 | 000,846,168 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2014.03.11 18:23:32 | 000,832,936 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2014.03.11 18:23:32 | 000,484,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll
[2014.03.11 18:23:32 | 000,409,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll
[2014.03.11 18:23:32 | 000,377,688 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFROpenGL.dll
[2014.03.11 18:23:32 | 000,353,504 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll
[2014.03.11 18:23:32 | 000,333,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFROpenGL.dll
[2014.03.11 18:23:32 | 000,305,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll
[2014.03.11 18:23:32 | 000,197,408 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2014.03.11 18:23:32 | 000,174,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2014.03.11 18:23:32 | 000,148,016 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2014.03.11 18:23:32 | 000,031,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2014.03.11 18:23:31 | 025,255,256 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2014.03.11 18:23:31 | 017,561,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2014.03.11 18:23:31 | 009,728,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2014.03.11 18:23:31 | 003,093,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2014.03.11 18:23:31 | 002,715,264 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2014.03.11 17:21:57 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Bloody3
[2014.03.11 17:21:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bloody3
[2014.03.10 22:47:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bloody5
[2014.03.08 13:43:55 | 001,179,576 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll
[2014.03.08 13:43:55 | 001,048,152 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll
[2014.03.08 13:43:55 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\NVIDIA
[2014.03.08 13:43:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2014.03.08 13:41:46 | 000,039,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvad64v.sys
[2014.03.08 13:41:46 | 000,035,104 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvaudcap64v.dll
[2014.03.08 13:41:46 | 000,033,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll
[2014.03.08 02:39:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel(R) Processor ID Utility
[2014.03.08 02:39:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel Corporation
[2014.03.08 02:19:12 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\NeoSmart_Technologies
[2014.03.08 02:16:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NeoSmart Technologies
[2014.03.08 02:16:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NeoSmart Technologies
[2014.03.08 02:00:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte Technology Corp
[2014.03.08 01:55:54 | 000,434,176 | ---- | C] (Alex Schepeljanski) -- C:\Users\sergeii\Desktop\AS SSD Benchmark 1.6.4237.30508.exe
[2014.03.08 01:51:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2014.03.08 01:49:40 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2014.03.08 01:49:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Licenses
[2014.03.08 01:49:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Binarysense
[2014.03.08 01:46:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel(R) Update Manager
[2014.03.08 01:37:49 | 000,548,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2014.03.08 01:37:19 | 000,574,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2014.03.08 01:37:19 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2014.03.08 01:37:19 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2014.03.08 01:37:19 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2014.03.08 01:37:18 | 000,627,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2014.03.08 01:37:18 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2014.03.08 01:37:18 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2014.03.08 01:37:18 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2014.03.08 01:37:18 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2014.03.08 01:37:18 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2014.03.08 01:37:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2014.03.08 01:37:17 | 000,708,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2014.03.08 01:37:17 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2014.03.08 01:37:17 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2014.03.08 01:37:17 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2014.03.08 01:37:17 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2014.03.08 01:37:17 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2014.03.08 01:37:17 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2014.03.08 01:37:17 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2014.03.08 01:37:16 | 001,964,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2014.03.08 01:37:16 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2014.03.08 01:37:15 | 002,041,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2014.03.08 01:37:14 | 005,768,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2014.03.08 01:31:25 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2014.03.08 01:31:25 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2014.03.08 01:31:03 | 002,103,040 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib64.dll
[2014.03.08 01:31:03 | 001,361,336 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll
[2014.03.08 01:31:03 | 001,014,016 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\slcnt64.dll
[2014.03.08 01:31:03 | 000,947,760 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\SFSS_APO.dll
[2014.03.08 01:31:03 | 000,897,792 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\sl3apo64.dll
[2014.03.08 01:31:03 | 000,871,856 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tossaeapo64.dll
[2014.03.08 01:31:03 | 000,836,544 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll
[2014.03.08 01:31:03 | 000,722,688 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\sltech64.dll
[2014.03.08 01:31:03 | 000,582,056 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosasfapo64.dll
[2014.03.08 01:31:03 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2014.03.08 01:31:03 | 000,244,480 | ---- | C] (TODO: <Company name>) -- C:\Windows\SysNative\slprp64.dll
[2014.03.08 01:31:03 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll
[2014.03.08 01:31:03 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2014.03.08 01:31:03 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2014.03.08 01:31:03 | 000,162,224 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\toseaeapo64.dll
[2014.03.08 01:31:03 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2014.03.08 01:31:03 | 000,148,416 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll
[2014.03.08 01:31:03 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll
[2014.03.08 01:31:03 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll
[2014.03.08 01:31:03 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll
[2014.03.08 01:31:03 | 000,065,944 | ---- | C] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll
[2014.03.08 01:31:02 | 002,810,072 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2014.03.08 01:31:02 | 001,662,024 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2014.03.08 01:31:02 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2014.03.08 01:31:02 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll
[2014.03.08 01:31:01 | 038,385,664 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
[2014.03.08 01:31:01 | 007,164,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll
[2014.03.08 01:31:01 | 005,751,576 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICAPOlfx.dll
[2014.03.08 01:31:01 | 002,587,864 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2014.03.08 01:31:01 | 001,286,360 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2014.03.08 01:31:01 | 001,021,656 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2014.03.08 01:31:01 | 000,929,080 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICAPOSettingsIPC.dll
[2014.03.08 01:31:01 | 000,617,176 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll
[2014.03.08 01:31:01 | 000,434,960 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll
[2014.03.08 01:31:01 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2014.03.08 01:31:01 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2014.03.08 01:31:01 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2014.03.08 01:31:01 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2014.03.08 01:31:01 | 000,153,304 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2014.03.08 01:31:01 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2014.03.08 01:31:01 | 000,141,584 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll
[2014.03.08 01:31:01 | 000,124,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll
[2014.03.08 01:31:01 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2014.03.08 01:31:01 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2014.03.08 01:31:01 | 000,075,024 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll
[2014.03.08 01:31:00 | 027,644,160 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioVnA64.dll
[2014.03.08 01:31:00 | 014,152,960 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll
[2014.03.08 01:31:00 | 003,714,304 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioVnN64.dll
[2014.03.08 01:31:00 | 002,036,992 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll
[2014.03.08 01:31:00 | 001,921,792 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek264.dll
[2014.03.08 01:31:00 | 001,345,280 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO5064.dll
[2014.03.08 01:31:00 | 001,286,400 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxSpeechAPO64.dll
[2014.03.08 01:31:00 | 001,084,160 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO4064.dll
[2014.03.08 01:31:00 | 001,012,992 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2014.03.08 01:31:00 | 000,907,008 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO2064.dll
[2014.03.08 01:31:00 | 000,906,800 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\MISS_APO.dll
[2014.03.08 01:31:00 | 000,790,272 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysWow64\MaxxAudioAPOShell.dll
[2014.03.08 01:31:00 | 000,663,296 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2014.03.08 01:31:00 | 000,662,784 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2014.03.08 01:31:00 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2014.03.08 01:30:59 | 006,217,904 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPP64A.dll
[2014.03.08 01:30:59 | 002,743,328 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2014.03.08 01:30:59 | 001,938,608 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPD64A.dll
[2014.03.08 01:30:59 | 001,756,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2014.03.08 01:30:59 | 001,568,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2014.03.08 01:30:59 | 001,486,952 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2014.03.08 01:30:59 | 000,728,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2014.03.08 01:30:59 | 000,712,296 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2014.03.08 01:30:59 | 000,693,352 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2014.03.08 01:30:59 | 000,603,984 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll
[2014.03.08 01:30:59 | 000,501,184 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll
[2014.03.08 01:30:59 | 000,491,112 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2014.03.08 01:30:59 | 000,487,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll
[2014.03.08 01:30:59 | 000,432,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2014.03.08 01:30:59 | 000,428,648 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2014.03.08 01:30:59 | 000,415,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll
[2014.03.08 01:30:59 | 000,313,520 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPO64A.dll
[2014.03.08 01:30:59 | 000,260,272 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\DDPA64.dll
[2014.03.08 01:30:59 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2014.03.08 01:30:59 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2014.03.08 01:30:59 | 000,241,768 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2014.03.08 01:30:58 | 000,209,096 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2014.03.08 01:30:58 | 000,113,576 | ---- | C] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll
[2014.03.08 01:30:58 | 000,108,640 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2014.03.07 23:36:07 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Common Files\EAInstaller
[2014.03.07 23:36:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
[2014.03.07 21:58:29 | 003,928,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2014.03.07 21:58:29 | 002,565,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2014.03.07 19:16:10 | 000,028,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEUDINIT.EXE
[2014.03.07 19:13:56 | 000,940,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2014.03.07 19:13:56 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2014.03.07 19:13:55 | 001,228,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2014.03.07 19:13:55 | 001,051,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2014.03.07 19:13:55 | 000,942,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jsIntl.dll
[2014.03.07 19:13:55 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2014.03.07 19:13:55 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jsIntl.dll
[2014.03.07 19:13:55 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2014.03.07 19:13:55 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2014.03.07 19:13:55 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2014.03.07 19:13:55 | 000,453,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2014.03.07 19:13:55 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2014.03.07 19:13:55 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2014.03.07 19:13:55 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2014.03.07 19:13:55 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2014.03.07 19:13:55 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2014.03.07 19:13:55 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2014.03.07 19:13:55 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2014.03.07 19:13:55 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2014.03.07 19:13:55 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2014.03.07 19:13:55 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2014.03.07 19:13:55 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2014.03.07 19:13:55 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2014.03.07 19:13:55 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2014.03.07 19:13:55 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll
[2014.03.07 19:13:55 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2014.03.07 19:13:55 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2014.03.07 19:13:55 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2014.03.07 19:13:55 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2014.03.07 19:13:55 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2014.03.07 19:13:55 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2014.03.07 19:13:55 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2014.03.07 19:13:55 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2014.03.07 19:13:55 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2014.03.07 19:13:55 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2014.03.07 19:13:55 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2014.03.07 19:13:55 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2014.03.07 19:13:55 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2014.03.07 19:13:55 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2014.03.07 19:13:55 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2014.03.07 19:13:55 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2014.03.07 19:13:55 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2014.03.07 19:13:55 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2014.03.07 19:13:55 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2014.03.07 19:13:55 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2014.03.07 19:13:55 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2014.03.07 19:13:55 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2014.03.07 19:13:55 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2014.03.07 19:13:55 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2014.03.07 19:13:55 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2014.03.07 19:13:55 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2014.03.07 19:13:55 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2014.03.07 19:13:55 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2014.03.07 19:13:55 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2014.03.07 19:13:55 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2014.03.07 19:13:55 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2014.03.07 19:13:37 | 005,549,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2014.03.07 19:13:37 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2014.03.07 19:13:37 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2014.03.07 19:13:37 | 001,732,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2014.03.07 19:13:37 | 000,878,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\advapi32.dll
[2014.03.07 19:13:37 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdh.dll
[2014.03.07 19:13:37 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2014.03.07 19:13:37 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2014.03.07 19:13:37 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2014.03.07 19:13:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2014.03.07 19:13:37 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2014.03.07 19:13:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2014.03.07 19:13:37 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2014.03.07 19:13:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2014.03.07 19:13:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2014.03.07 19:13:37 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2014.03.07 19:10:23 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2014.03.07 19:10:23 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014.03.07 19:10:21 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2014.03.07 18:50:25 | 000,000,000 | ---D | C] -- C:\Windows\Migration
[2014.03.07 18:39:03 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2014.03.07 18:39:03 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2014.03.07 17:55:47 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2014.03.07 17:31:52 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2014.03.07 17:31:52 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2014.03.07 17:31:52 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2014.03.07 17:31:50 | 002,776,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2014.03.07 17:31:50 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2014.03.07 17:31:50 | 001,682,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2014.03.07 17:31:50 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2014.03.07 17:31:50 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2014.03.07 17:31:50 | 001,238,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2014.03.07 17:31:50 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2014.03.07 17:31:50 | 000,648,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2014.03.07 17:31:50 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2014.03.07 17:31:50 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2014.03.07 17:31:50 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2014.03.07 17:31:50 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2014.03.07 17:31:50 | 000,363,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2014.03.07 17:31:50 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2014.03.07 17:31:50 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2014.03.07 17:31:50 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2014.03.07 17:31:50 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2014.03.07 17:31:50 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2014.03.07 17:31:50 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2014.03.07 17:31:50 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014.03.07 17:31:50 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014.03.07 17:31:50 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014.03.07 17:31:50 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014.03.07 17:31:50 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014.03.07 17:31:50 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014.03.07 17:31:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2014.03.07 17:31:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014.03.07 17:31:50 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014.03.07 17:31:21 | 001,887,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2014.03.07 17:31:21 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2014.03.07 17:28:52 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browserchoice.exe
[2014.03.07 17:16:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014.03.07 17:16:25 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014.03.07 17:01:31 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\PunkBuster
[2014.03.07 17:00:30 | 000,000,000 | ---D | C] -- C:\Users\sergeii\Documents\Battlefield 4
[2014.03.06 22:35:12 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Origin
[2014.03.06 22:34:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2014.03.06 22:34:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2014.03.06 21:09:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache

[Sergeii]

[2014.03.06 21:09:02 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2014.03.06 21:09:02 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2014.03.06 21:09:02 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2014.03.06 21:09:02 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2014.03.06 21:09:02 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2014.03.06 21:09:02 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2014.03.06 21:09:02 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2014.03.06 21:09:02 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2014.03.06 21:09:02 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2014.03.06 21:09:02 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2014.03.06 21:09:01 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2014.03.06 21:09:01 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2014.03.06 21:09:01 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2014.03.06 21:09:01 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2014.03.06 21:09:01 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2014.03.06 21:09:01 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2014.03.06 21:09:01 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2014.03.06 21:09:01 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2014.03.06 21:09:00 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2014.03.06 21:09:00 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2014.03.06 21:09:00 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2014.03.06 21:09:00 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2014.03.06 21:09:00 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2014.03.06 21:09:00 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2014.03.06 21:09:00 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2014.03.06 21:09:00 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2014.03.06 21:09:00 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2014.03.06 21:09:00 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2014.03.06 21:09:00 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2014.03.06 21:09:00 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2014.03.06 21:09:00 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2014.03.06 21:09:00 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2014.03.06 21:09:00 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2014.03.06 21:09:00 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2014.03.06 21:09:00 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2014.03.06 21:09:00 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2014.03.06 21:08:59 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2014.03.06 21:08:59 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2014.03.06 21:08:59 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2014.03.06 21:08:59 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2014.03.06 21:08:59 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2014.03.06 21:08:59 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2014.03.06 21:08:59 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2014.03.06 21:08:59 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2014.03.06 21:08:59 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2014.03.06 21:08:59 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2014.03.06 21:08:59 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2014.03.06 21:08:59 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2014.03.06 21:08:59 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2014.03.06 21:08:59 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2014.03.06 21:08:59 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2014.03.06 21:08:59 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2014.03.06 21:08:59 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2014.03.06 21:08:59 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2014.03.06 21:08:59 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2014.03.06 21:08:59 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2014.03.06 21:08:59 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2014.03.06 21:08:59 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2014.03.06 21:08:58 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2014.03.06 21:08:58 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2014.03.06 21:08:58 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2014.03.06 21:08:58 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2014.03.06 21:08:58 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2014.03.06 21:08:58 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2014.03.06 21:08:58 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2014.03.06 21:08:58 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2014.03.06 21:08:58 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2014.03.06 21:08:58 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2014.03.06 21:08:58 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2014.03.06 21:08:58 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2014.03.06 21:08:58 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2014.03.06 21:08:58 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2014.03.06 21:08:58 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2014.03.06 21:08:58 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2014.03.06 21:08:58 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2014.03.06 21:08:58 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2014.03.06 21:08:58 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2014.03.06 21:08:58 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2014.03.06 21:08:58 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2014.03.06 21:08:58 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2014.03.06 21:08:58 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2014.03.06 21:08:58 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2014.03.06 21:08:58 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2014.03.06 21:08:58 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2014.03.06 21:08:57 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2014.03.06 21:08:57 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2014.03.06 21:08:57 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2014.03.06 21:08:57 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2014.03.06 21:08:56 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2014.03.06 21:08:56 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2014.03.06 21:08:56 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2014.03.06 21:08:56 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2014.03.06 21:08:56 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2014.03.06 21:08:56 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2014.03.06 21:08:56 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2014.03.06 21:08:56 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2014.03.06 21:08:56 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2014.03.06 21:08:56 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2014.03.06 21:08:56 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2014.03.06 21:08:56 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2014.03.06 21:08:56 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2014.03.06 21:08:56 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2014.03.06 21:08:56 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2014.03.06 21:08:56 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2014.03.06 21:08:56 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2014.03.06 21:08:56 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2014.03.06 21:08:55 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2014.03.06 21:08:55 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2014.03.06 21:08:55 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2014.03.06 21:08:55 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2014.03.06 21:08:55 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2014.03.06 21:08:55 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2014.03.06 21:08:55 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2014.03.06 21:08:55 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2014.03.06 21:08:55 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2014.03.06 21:08:55 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2014.03.06 21:08:55 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2014.03.06 21:08:55 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2014.03.06 21:08:55 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2014.03.06 21:08:55 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2014.03.06 21:08:55 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2014.03.06 21:08:55 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2014.03.06 21:08:55 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2014.03.06 21:08:55 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2014.03.06 21:08:55 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2014.03.06 21:08:55 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2014.03.06 21:08:55 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2014.03.06 21:08:55 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2014.03.06 21:08:55 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2014.03.06 21:08:55 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2014.03.06 21:08:55 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2014.03.06 21:08:55 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2014.03.06 21:08:54 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2014.03.06 21:08:54 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2014.03.06 21:08:54 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2014.03.06 21:08:54 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2014.03.06 21:08:54 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2014.03.06 21:08:54 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2014.03.06 21:08:54 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2014.03.06 21:08:54 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2014.03.06 21:08:54 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2014.03.06 21:08:54 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2014.03.06 21:08:54 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2014.03.06 21:08:54 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2014.03.06 21:08:54 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2014.03.06 21:08:54 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2014.03.06 21:08:54 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2014.03.06 21:08:54 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2014.03.06 21:08:54 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2014.03.06 21:08:54 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2014.03.06 21:08:53 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2014.03.06 21:08:53 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2014.03.06 21:08:53 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2014.03.06 21:08:53 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2014.03.06 21:08:53 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2014.03.06 21:08:53 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2014.03.06 21:08:53 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2014.03.06 21:08:53 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2014.03.06 21:08:52 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2014.03.06 21:08:52 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2014.03.06 21:08:51 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2014.03.06 21:08:51 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2014.03.06 21:08:51 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2014.03.06 21:08:51 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2014.03.06 21:08:51 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2014.03.06 21:08:51 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2014.03.06 21:08:51 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2014.03.06 21:08:51 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2014.03.06 21:08:51 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2014.03.06 21:08:51 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2014.03.06 21:08:50 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2014.03.06 21:08:50 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2014.03.06 21:08:50 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2014.03.06 21:08:50 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2014.03.06 21:08:50 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2014.03.06 21:08:50 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2014.03.06 20:12:06 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\vlc
[2014.03.06 20:11:56 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Apple Computer
[2014.03.06 19:33:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photoshop-CS3-Crack-Funkn
[2014.03.06 19:25:40 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2014.03.06 19:19:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2014.03.06 19:19:02 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\spool
[2014.03.06 19:18:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Macrovision Shared
[2014.03.06 17:44:22 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\MPC-HC
[2014.03.06 17:32:16 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\uTorrent
[2014.03.06 17:14:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\REVisionEffects
[2014.03.06 17:14:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REVisionEffects
[2014.03.06 17:14:23 | 000,000,000 | ---D | C] -- C:\ProgramData\REVisionEffects
[2014.03.06 04:52:26 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2014.03.06 04:52:26 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2014.03.06 04:52:26 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2014.03.06 04:52:26 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2014.03.06 04:52:26 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2014.03.06 04:52:26 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2014.03.06 04:52:26 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2014.03.06 04:52:26 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2014.03.06 04:52:26 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2014.03.06 04:52:25 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2014.03.06 04:52:23 | 003,717,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2014.03.06 04:52:23 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2014.03.06 04:52:23 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2014.03.06 04:52:22 | 003,217,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2014.03.06 04:52:22 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2014.03.06 04:52:22 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2014.03.06 04:52:22 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2014.03.06 04:52:22 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2014.03.06 04:52:21 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2014.03.06 04:52:20 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll
[2014.03.06 04:52:20 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2014.03.06 04:52:20 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2014.03.06 04:52:20 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2014.03.06 04:52:20 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2014.03.06 04:52:20 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2014.03.06 04:52:19 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2014.03.06 04:52:19 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2014.03.06 04:52:19 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2014.03.06 04:52:19 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2014.03.06 04:52:18 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2014.03.06 04:52:18 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2014.03.06 04:52:18 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2014.03.06 04:52:15 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2014.03.06 04:52:15 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2014.03.06 04:52:12 | 001,474,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2014.03.06 04:52:12 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2014.03.06 04:52:11 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2014.03.06 04:52:11 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2014.03.06 04:52:08 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxml3r.dll
[2014.03.06 04:52:08 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msxml3r.dll
[2014.03.06 04:51:46 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys
[2014.03.06 04:51:46 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys
[2014.03.06 04:51:42 | 001,447,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2014.03.06 04:51:42 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2014.03.06 04:51:42 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2014.03.06 04:51:42 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2014.03.06 04:51:42 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2014.03.06 04:51:42 | 000,368,128 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2014.03.06 04:51:42 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2014.03.06 04:51:42 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2014.03.06 04:51:42 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2014.03.06 04:51:42 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2014.03.06 04:51:42 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2014.03.06 04:51:42 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2014.03.06 04:51:42 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
[2014.03.06 04:51:42 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2014.03.06 04:51:42 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2014.03.06 04:51:42 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2014.03.06 04:51:42 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
[2014.03.06 04:51:30 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2014.03.06 04:51:30 | 000,007,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2014.03.06 04:51:29 | 001,161,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2014.03.06 04:51:29 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2014.03.06 04:51:29 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2014.03.06 04:51:29 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2014.03.06 04:51:29 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2014.03.06 04:51:29 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2014.03.06 04:51:29 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2014.03.06 04:51:29 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2014.03.06 04:51:29 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2014.03.06 04:51:29 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2014.03.06 04:51:29 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2014.03.06 04:51:29 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2014.03.06 04:51:29 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2014.03.06 04:51:29 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2014.03.06 04:51:25 | 001,888,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2014.03.06 04:51:25 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2014.03.06 04:51:24 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2014.03.06 04:51:24 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2014.03.06 04:51:24 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usb8023.sys
[2014.03.06 04:51:24 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2014.03.06 04:51:23 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2014.03.06 04:51:23 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2014.03.06 04:51:22 | 001,217,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2014.03.06 04:51:20 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2014.03.06 04:51:20 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2014.03.06 04:51:20 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidparse.sys
[2014.03.06 04:51:20 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2014.03.06 04:51:20 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2014.03.06 04:51:07 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2014.03.06 04:51:07 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2014.03.06 04:51:07 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnet.dll
[2014.03.06 04:51:07 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnet.dll
[2014.03.06 04:50:47 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2014.03.06 04:50:46 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisdecd.dll
[2014.03.06 04:50:46 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisdecd.dll
[2014.03.06 04:50:46 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2014.03.06 04:50:46 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2014.03.06 04:50:34 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
[2014.03.06 04:50:34 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
[2014.03.06 04:50:33 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2014.03.06 04:50:33 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2014.03.06 04:50:33 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2014.03.06 04:50:33 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2014.03.06 04:50:33 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2014.03.06 04:50:33 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2014.03.06 04:50:33 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2014.03.06 04:50:32 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2014.03.06 04:50:30 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2014.03.06 04:50:30 | 000,492,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2014.03.06 04:50:30 | 000,404,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2014.03.06 04:50:30 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2014.03.06 04:50:29 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2014.03.06 04:50:29 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2014.03.06 04:50:27 | 000,376,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2014.03.06 04:50:27 | 000,288,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2014.03.06 04:50:27 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2014.03.06 04:50:27 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2014.03.06 04:50:26 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2014.03.06 04:50:26 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2014.03.06 04:50:26 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2014.03.06 04:50:26 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2014.03.06 04:50:25 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2014.03.06 04:50:24 | 001,192,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certutil.exe
[2014.03.06 04:50:24 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certutil.exe
[2014.03.06 04:50:24 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certenc.dll
[2014.03.06 04:50:24 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certenc.dll
[2014.03.06 04:50:21 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2014.03.06 04:50:21 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrrun.dll
[2014.03.06 04:50:21 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrrun.dll
[2014.03.06 04:50:21 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscript.exe
[2014.03.06 04:50:21 | 000,150,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshom.ocx
[2014.03.06 04:50:21 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscript.exe
[2014.03.06 04:50:21 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshom.ocx
[2014.03.06 04:50:20 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2014.03.06 04:50:20 | 000,723,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2014.03.06 04:50:20 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2014.03.06 04:50:20 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2014.03.06 04:50:20 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2014.03.06 04:50:20 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2014.03.06 04:50:14 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2014.03.06 04:50:14 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshwfp.dll
[2014.03.06 04:50:14 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2014.03.06 04:50:14 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
[2014.03.06 04:50:14 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FWPUCLNT.DLL
[2014.03.06 04:50:14 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
[2014.03.06 04:50:13 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2014.03.06 04:50:13 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2014.03.06 04:43:53 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2014.03.06 04:43:53 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2014.03.06 04:40:44 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2014.03.06 04:40:44 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2014.03.06 04:40:44 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2014.03.06 04:40:42 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2014.03.06 04:40:42 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2014.03.06 04:40:42 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2014.03.06 04:40:41 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2014.03.06 04:40:41 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2014.03.06 00:01:56 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\ASUS
[2014.03.06 00:01:55 | 000,419,840 | ---- | C] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2014.03.06 00:01:55 | 000,413,696 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2014.03.06 00:01:55 | 000,111,616 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2014.03.06 00:01:55 | 000,102,400 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2014.03.06 00:01:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenAL
[2014.03.06 00:01:49 | 008,769,536 | ---- | C] (C-Media Corporation) -- C:\Windows\SysWow64\CmiCnfgp.dll
[2014.03.06 00:01:49 | 000,465,408 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\SysNative\cmasiopx.dll
[2014.03.06 00:01:49 | 000,303,104 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\SysWow64\cmasiop.dll
[2014.03.06 00:01:49 | 000,217,088 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\SysWow64\HsSrv2.dll
[2014.03.06 00:01:49 | 000,217,088 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\SysWow64\HsSrv.dll
[2014.03.06 00:01:49 | 000,200,704 | ---- | C] (C-Media) -- C:\Windows\SysWow64\Cmpaoxy.dll
[2014.03.06 00:01:49 | 000,122,880 | ---- | C] (CMedia Electronics Inc.) -- C:\Windows\SysWow64\Cm_Oal.dll
[2014.03.06 00:01:49 | 000,122,880 | ---- | C] (CMedia Electronics Inc.) -- C:\Windows\SysNative\Cm_Oal.dll
[2014.03.06 00:01:49 | 000,121,856 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\System\HsSrv642.dll
[2014.03.06 00:01:49 | 000,121,856 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\System\HsSrv64.dll
[2014.03.06 00:01:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Xonar DS Audio
[2014.03.06 00:01:48 | 000,000,000 | ---D | C] -- C:\Program Files\ASUS Xonar DS Audio
[2014.03.06 00:01:24 | 002,725,376 | ---- | C] (C-Media Inc) -- C:\Windows\SysNative\drivers\cmudaxp.sys
[2014.03.06 00:01:24 | 000,315,392 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\SysWow64\CmiFltr.dll
[2014.03.06 00:01:24 | 000,315,392 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\System\CmiFltr.dll
[2014.03.06 00:01:24 | 000,032,768 | ---- | C] (C-Media Electronics Inc.) -- C:\Windows\SysNative\cmudaxp.dll
[2014.03.05 23:43:27 | 000,000,000 | ---D | C] -- C:\Users\sergeii\Desktop\ESET
[2014.03.05 23:23:33 | 002,080,472 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2014.03.05 23:23:33 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2014.03.05 23:10:23 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2014.03.05 23:10:23 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Adobe
[2014.03.05 23:10:14 | 000,000,000 | ---D | C] -- C:\Users\sergeii\Documents\Untitled
[2014.03.05 23:04:43 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\PACE Anti-Piracy
[2014.03.05 23:04:43 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\PACE Anti-Piracy
[2014.03.05 23:04:43 | 000,000,000 | ---D | C] -- C:\ProgramData\PACE Anti-Piracy
[2014.03.05 23:04:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PACE Anti-Piracy
[2014.03.05 23:04:41 | 000,000,000 | ---D | C] -- C:\Users\sergeii\Documents\Adobe
[2014.03.05 22:59:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
[2014.03.05 22:59:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Renesas Electronics
[2014.03.05 22:57:02 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2014.03.05 22:56:45 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2014.03.05 22:56:12 | 000,056,208 | ---- | C] (Rovi Corporation) -- C:\Windows\SysNative\drivers\PxHlpa64.sys
[2014.03.05 22:56:12 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdralw2k.sys
[2014.03.05 22:56:12 | 000,010,224 | ---- | C] (Sonic Solutions) -- C:\Windows\SysNative\drivers\cdr4_xp.sys
[2014.03.05 22:56:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sonic Shared
[2014.03.05 22:56:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\My Company Name
[2014.03.05 22:55:48 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\FileZilla
[2014.03.05 22:55:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2014.03.05 22:55:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
[2014.03.05 22:55:11 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2014.03.05 22:54:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2014.03.05 22:54:03 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Macromedia
[2014.03.05 22:53:59 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Adobe
[2014.03.05 22:53:38 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Adobe
[2014.03.05 22:40:43 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Marvell
[2014.03.05 22:40:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Marvell
[2014.03.05 22:40:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Marvell
[2014.03.05 22:38:01 | 000,524,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\difxapi.dll
[2014.03.05 22:37:56 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\WinRAR
[2014.03.05 22:36:12 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Origin
[2014.03.05 22:35:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2014.03.05 22:34:27 | 001,981,016 | ---- | C] (Gigabyte Technology Corp.) -- C:\Windows\SysWow64\xRaidSetup.exe
[2014.03.05 22:34:27 | 000,162,392 | ---- | C] (JMicron Technology Corp.) -- C:\Windows\SysWow64\xRaidAPI.dll
[2014.03.05 22:34:15 | 000,000,000 | ---D | C] -- C:\RaidTool
[2014.03.05 22:34:03 | 000,000,000 | ---D | C] -- C:\Windows\RaidTool
[2014.03.05 22:33:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2014.03.05 22:33:17 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\ESN
[2014.03.05 22:33:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Battlelog Web Plugins
[2014.03.05 22:32:37 | 000,121,432 | ---- | C] (JMicron Technology Corp.) -- C:\Windows\SysNative\drivers\jraid.sys
[2014.03.05 22:29:44 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Skype
[2014.03.05 22:29:43 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Skype
[2014.03.05 22:29:41 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Apple Computer
[2014.03.05 22:28:16 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\NVIDIA Corporation
[2014.03.05 22:27:20 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2014.03.05 22:27:20 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2014.03.05 22:27:20 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2014.03.05 22:27:20 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2014.03.05 22:27:20 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2014.03.05 22:27:20 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2014.03.05 22:26:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2014.03.05 22:26:13 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2014.03.05 22:26:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2014.03.05 22:22:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2014.03.05 22:21:06 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2014.03.05 22:18:34 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\SUPERAntiSpyware.com
[2014.03.05 22:18:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2014.03.05 22:18:32 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2014.03.05 22:18:32 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2014.03.05 22:18:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2014.03.05 22:18:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2014.03.05 22:18:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2014.03.05 22:18:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2014.03.05 22:18:24 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Apple
[2014.03.05 22:18:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2014.03.05 22:18:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2014.03.05 22:18:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2014.03.05 22:18:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2014.03.05 22:18:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2014.03.05 22:17:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
[2014.03.05 22:17:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack
[2014.03.05 22:16:29 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2014.03.05 22:16:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2014.03.05 22:16:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014.03.05 22:16:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2014.03.05 22:16:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2014.03.05 22:16:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2014.03.05 22:16:04 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Programs
[2014.03.05 22:16:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Audacity
[2014.03.05 22:16:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
[2014.03.05 22:16:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2014.03.05 22:16:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2014.03.05 22:15:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
[2014.03.05 22:15:56 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Winamp
[2014.03.05 22:15:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Winamp
[2014.03.05 22:15:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
[2014.03.05 22:15:54 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014.03.05 22:15:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014.03.05 22:15:54 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2014.03.05 22:15:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FileZilla FTP Client
[2014.03.05 22:15:52 | 000,312,744 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2014.03.05 22:15:51 | 000,189,352 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2014.03.05 22:15:51 | 000,189,352 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2014.03.05 22:15:51 | 000,108,968 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2014.03.05 22:15:48 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2014.03.05 22:15:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2014.03.05 22:15:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2014.03.05 22:15:41 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2014.03.05 22:15:39 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2014.03.05 22:15:39 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2014.03.05 22:15:39 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2014.03.05 22:15:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014.03.05 22:15:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2014.03.05 22:15:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2014.03.05 22:14:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2014.03.05 22:14:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2014.03.05 22:14:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014.03.05 22:14:46 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Google
[2014.03.05 22:14:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2014.03.05 22:14:41 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2014.03.05 22:11:04 | 000,646,248 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2014.03.05 22:11:04 | 000,107,552 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll
[2014.03.05 22:11:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2014.03.05 22:10:51 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2014.03.05 22:08:58 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2014.03.05 22:08:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2014.03.05 22:08:28 | 000,000,000 | ---D | C] -- C:\Intel
[2014.03.05 22:00:07 | 000,000,000 | R--D | C] -- C:\Users\sergeii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014.03.05 22:00:07 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Searches
[2014.03.05 22:00:07 | 000,000,000 | R--D | C] -- C:\Users\sergeii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014.03.05 22:00:02 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Identities
[2014.03.05 22:00:01 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Contacts
[2014.03.05 22:00:00 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\VirtualStore
[2014.03.05 21:59:46 | 000,000,000 | --SD | C] -- C:\Users\sergeii\AppData\Roaming\Microsoft
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Videos
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Saved Games
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Pictures
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Music
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Links
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Favorites
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Downloads
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Documents
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\Desktop
[2014.03.05 21:59:46 | 000,000,000 | R--D | C] -- C:\Users\sergeii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\AppData\Local\Temporary Internet Files
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Šablony
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Soubory cookie
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\SendTo
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Poslední
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Okolní tiskárny
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Okolní síť
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Documents\Obrázky
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Nabídka Start
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Local Settings
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Documents\Hudba
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\AppData\Local\History
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Documents\Filmy
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Dokumenty
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\Data aplikací
[2014.03.05 21:59:46 | 000,000,000 | -HSD | C] -- C:\Users\sergeii\AppData\Local\Data aplikací
[2014.03.05 21:59:46 | 000,000,000 | -H-D | C] -- C:\Users\sergeii\AppData
[2014.03.05 21:59:46 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Temp
[2014.03.05 21:59:46 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Local\Microsoft
[2014.03.05 21:59:46 | 000,000,000 | ---D | C] -- C:\Users\sergeii\AppData\Roaming\Media Center Programs
[2014.03.05 21:58:41 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2014.03.05 21:58:41 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2014.03.05 21:58:41 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2014.03.05 21:58:41 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2014.03.05 21:58:41 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2014.03.05 21:58:41 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2014.03.05 21:58:41 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2014.03.05 21:58:41 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2014.03.05 21:58:41 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2014.03.05 21:58:41 | 000,000,000 | ---D | C] -- C:\Recovery
[2014.03.05 21:58:39 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2014.03.05 21:54:04 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2014.03.12 21:49:54 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.03.12 21:46:47 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\sergeii\Desktop\OTL.exe
[2014.03.12 21:39:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.03.12 21:32:52 | 000,935,175 | ---- | M] () -- C:\Users\sergeii\Desktop\RSITx64 (1).exe
[2014.03.12 21:30:58 | 000,832,273 | ---- | M] () -- C:\Users\sergeii\Desktop\Nepotvrzeno 965020.crdownload
[2014.03.12 21:27:45 | 000,021,280 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.03.12 21:27:45 | 000,021,280 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.03.12 21:26:34 | 001,584,554 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014.03.12 21:26:34 | 000,668,866 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2014.03.12 21:26:34 | 000,654,254 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014.03.12 21:26:34 | 000,141,526 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2014.03.12 21:26:34 | 000,122,126 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014.03.12 21:26:31 | 000,214,392 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2014.03.12 21:25:00 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.03.12 21:20:45 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.03.12 21:20:38 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.03.12 21:20:35 | 3219,984,381 | -HS- | M] () -- C:\hiberfil.sys
[2014.03.12 21:19:25 | 000,001,264 | ---- | M] () -- C:\Users\sergeii\Desktop\SpeedUpMyComputer.lnk
[2014.03.12 21:16:03 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2014.03.12 21:10:58 | 005,188,693 | R--- | M] (Swearware) -- C:\Users\sergeii\Desktop\ComboFix.exe
[2014.03.12 20:48:43 | 000,000,000 | ---- | M] () -- C:\autoexec.bat
[2014.03.12 19:53:19 | 005,290,872 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014.03.11 22:39:08 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2014.03.11 22:39:08 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2014.03.11 20:48:13 | 000,214,392 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2014.03.11 20:22:00 | 000,002,025 | ---- | M] () -- C:\Users\Public\Desktop\Bloody5.lnk
[2014.03.11 20:19:23 | 000,001,304 | ---- | M] () -- C:\Users\sergeii\Desktop\license.bld
[2014.03.11 17:20:15 | 019,115,156 | ---- | M] () -- C:\Users\sergeii\Desktop\Bloody3. Drivers.V2013.0611A.exe
[2014.03.11 00:13:00 | 000,134,144 | ---- | M] () -- C:\Users\sergeii\Desktop\BloodyLicenseCryptor.exe
[2014.03.08 14:57:09 | 000,076,888 | ---- | M] () -- C:\Windows\SysNative\PnkBstrA.exe
[2014.03.08 13:48:37 | 000,000,624 | ---- | M] () -- C:\Users\sergeii\AppData\Roaming\All CPU MeterV3_Settings.ini
[2014.03.08 13:48:19 | 000,000,294 | ---- | M] () -- C:\Users\sergeii\AppData\Roaming\GPU MeterV2_Settings.ini
[2014.03.08 02:17:10 | 000,028,672 | ---- | M] () -- C:\Users\sergeii\Documents\EasyBCD Backup (2014-03-08).bcd
[2014.03.08 02:16:58 | 000,001,217 | ---- | M] () -- C:\Users\Public\Desktop\EasyBCD 2.2.lnk
[2014.03.08 01:38:25 | 001,559,268 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014.03.08 01:31:32 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl
[2014.03.07 23:36:07 | 000,000,821 | ---- | M] () -- C:\Users\Public\Desktop\Battlefield 4.lnk
[2014.03.07 23:36:07 | 000,000,805 | ---- | M] () -- C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
[2014.03.07 19:13:56 | 000,940,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2014.03.07 19:13:56 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\elshyph.dll
[2014.03.07 19:13:55 | 001,228,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2014.03.07 19:13:55 | 001,051,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2014.03.07 19:13:55 | 000,942,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jsIntl.dll
[2014.03.07 19:13:55 | 000,774,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2014.03.07 19:13:55 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jsIntl.dll
[2014.03.07 19:13:55 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dat
[2014.03.07 19:13:55 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dat
[2014.03.07 19:13:55 | 000,610,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2014.03.07 19:13:55 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2014.03.07 19:13:55 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2014.03.07 19:13:55 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2014.03.07 19:13:55 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2014.03.07 19:13:55 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msls31.dll
[2014.03.07 19:13:55 | 000,235,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2014.03.07 19:13:55 | 000,235,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\elshyph.dll
[2014.03.07 19:13:55 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2014.03.07 19:13:55 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iexpress.exe
[2014.03.07 19:13:55 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iexpress.exe
[2014.03.07 19:13:55 | 000,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2014.03.07 19:13:55 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wextract.exe
[2014.03.07 19:13:55 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wextract.exe
[2014.03.07 19:13:55 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2014.03.07 19:13:55 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IEAdvpack.dll

[Sergeii]

[2014.03.07 19:13:55 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2014.03.07 19:13:55 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2014.03.07 19:13:55 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\IEAdvpack.dll
[2014.03.07 19:13:55 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2014.03.07 19:13:55 | 000,101,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2014.03.07 19:13:55 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SetIEInstalledDate.exe
[2014.03.07 19:13:55 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RegisterIEPKEYs.exe
[2014.03.07 19:13:55 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2014.03.07 19:13:55 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2014.03.07 19:13:55 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2014.03.07 19:13:55 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2014.03.07 19:13:55 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\icardie.dll
[2014.03.07 19:13:55 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdc.ocx
[2014.03.07 19:13:55 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SetIEInstalledDate.exe
[2014.03.07 19:13:55 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\RegisterIEPKEYs.exe
[2014.03.07 19:13:55 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2014.03.07 19:13:55 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\icardie.dll
[2014.03.07 19:13:55 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdc.ocx
[2014.03.07 19:13:55 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pngfilt.dll
[2014.03.07 19:13:55 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2014.03.07 19:13:55 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\pngfilt.dll
[2014.03.07 19:13:55 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmler.dll
[2014.03.07 19:13:55 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmler.dll
[2014.03.07 19:13:55 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\imgutil.dll
[2014.03.07 19:13:55 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2014.03.07 19:13:55 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2014.03.07 19:13:55 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2014.03.07 19:13:55 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2014.03.07 19:13:55 | 000,016,284 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2014.03.07 19:13:55 | 000,016,284 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2014.03.07 19:13:55 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshta.exe
[2014.03.07 19:13:55 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2014.03.07 19:13:55 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2014.03.07 19:13:37 | 005,549,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2014.03.07 19:13:37 | 003,969,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2014.03.07 19:13:37 | 003,914,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2014.03.07 19:13:37 | 001,732,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2014.03.07 19:13:37 | 000,878,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\advapi32.dll
[2014.03.07 19:13:37 | 000,859,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdh.dll
[2014.03.07 19:13:37 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2014.03.07 19:13:37 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2014.03.07 19:13:37 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2014.03.07 19:13:37 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2014.03.07 19:13:37 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2014.03.07 19:13:37 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2014.03.07 19:13:37 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2014.03.07 19:13:37 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2014.03.07 19:13:37 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2014.03.07 19:13:37 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2014.03.07 17:31:52 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
[2014.03.07 17:31:52 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-user32-l1-1-0.dll
[2014.03.07 17:31:52 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-version-l1-1-0.dll
[2014.03.07 17:31:50 | 002,776,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2014.03.07 17:31:50 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2014.03.07 17:31:50 | 001,682,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2014.03.07 17:31:50 | 001,643,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2014.03.07 17:31:50 | 001,424,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2014.03.07 17:31:50 | 001,238,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10.dll
[2014.03.07 17:31:50 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2014.03.07 17:31:50 | 000,648,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2014.03.07 17:31:50 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2014.03.07 17:31:50 | 000,465,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2014.03.07 17:31:50 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2014.03.07 17:31:50 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2014.03.07 17:31:50 | 000,363,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2014.03.07 17:31:50 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2014.03.07 17:31:50 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10core.dll
[2014.03.07 17:31:50 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecsExt.dll
[2014.03.07 17:31:50 | 000,221,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UIAnimation.dll
[2014.03.07 17:31:50 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
[2014.03.07 17:31:50 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\UIAnimation.dll
[2014.03.07 17:31:50 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014.03.07 17:31:50 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2014.03.07 17:31:50 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014.03.07 17:31:50 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2014.03.07 17:31:50 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-ole32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014.03.07 17:31:50 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2014.03.07 17:31:50 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
[2014.03.07 17:31:50 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-shell32-l1-1-0.dll
[2014.03.07 17:31:50 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014.03.07 17:31:50 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2014.03.07 17:31:21 | 001,887,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2014.03.07 17:31:21 | 001,505,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2014.03.06 23:52:12 | 000,001,635 | ---- | M] () -- C:\Users\Public\Desktop\Lightroom 5.3 64-bit.lnk
[2014.03.06 23:50:04 | 000,065,130 | ---- | M] () -- C:\Users\sergeii\Desktop\buck_and_kitty_fucking_machine-5.jpg
[2014.03.06 22:34:29 | 000,000,530 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk
[2014.03.06 21:26:52 | 000,234,010 | ---- | M] () -- C:\Windows\SysWow64\poclbm130302GeForce GTX 760gv1w256l4.bin
[2014.03.06 21:26:47 | 000,000,000 | ---- | M] () -- C:\Users\sergeii\regbcm
[2014.03.06 17:32:50 | 000,000,855 | ---- | M] () -- C:\Users\sergeii\Desktop\µTorrent.lnk
[2014.03.06 17:14:36 | 000,000,021 | ---- | M] () -- C:\Windows\SurCode.INI
[2014.03.06 00:01:55 | 000,419,840 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2014.03.06 00:01:55 | 000,413,696 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2014.03.06 00:01:55 | 000,111,616 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2014.03.06 00:01:55 | 000,102,400 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2014.03.06 00:01:49 | 000,042,457 | ---- | M] () -- C:\Windows\Cmicnfgp.ini.cfl
[2014.03.06 00:01:49 | 000,000,928 | ---- | M] () -- C:\Windows\Cmicnfgp.ini.imi
[2014.03.06 00:01:49 | 000,000,867 | ---- | M] () -- C:\Windows\System\Cmicnfgp.ini
[2014.03.06 00:01:49 | 000,000,140 | ---- | M] () -- C:\Windows\System\Dlap.pfx
[2014.03.05 23:10:14 | 000,005,077 | ---- | M] () -- C:\Users\sergeii\Documents\Untitled.ncor
[2014.03.05 22:18:34 | 000,001,808 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2014.03.05 22:18:28 | 000,001,845 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2014.03.05 22:18:05 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2014.03.05 22:18:02 | 002,277,292 | ---- | M] () -- C:\Users\sergeii\Desktop\1652180.jpg
[2014.03.05 22:16:29 | 000,002,697 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014.03.05 22:16:23 | 000,001,070 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014.03.05 22:16:07 | 000,001,011 | ---- | M] () -- C:\Users\Public\Desktop\Audacity.lnk
[2014.03.05 22:16:04 | 000,002,090 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2014.03.05 22:15:59 | 000,000,983 | ---- | M] () -- C:\Users\Public\Desktop\Winamp.lnk
[2014.03.05 22:15:55 | 000,001,211 | ---- | M] () -- C:\Users\Public\Desktop\FileZilla.lnk
[2014.03.05 22:15:54 | 000,000,989 | ---- | M] () -- C:\Users\Public\Desktop\WinRAR.lnk
[2014.03.05 22:15:49 | 000,312,744 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2014.03.05 22:15:49 | 000,189,352 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2014.03.05 22:15:49 | 000,189,352 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2014.03.05 22:15:49 | 000,108,968 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2014.03.05 22:15:37 | 000,264,616 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2014.03.05 22:15:37 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2014.03.05 22:15:37 | 000,174,504 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2014.03.05 22:15:37 | 000,096,168 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2014.03.05 22:14:53 | 000,002,218 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014.03.05 21:58:43 | 000,203,464 | RHS- | M] () -- C:\grldr
[2014.03.05 21:58:43 | 000,000,012 | RHS- | M] () -- C:\win7.ld
[2014.03.05 21:57:09 | 000,219,876 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2014.03.05 21:57:09 | 000,219,876 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2014.03.05 21:54:28 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014.03.12 21:49:54 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.03.12 21:32:43 | 000,935,175 | ---- | C] () -- C:\Users\sergeii\Desktop\RSITx64 (1).exe
[2014.03.12 21:30:58 | 000,832,273 | ---- | C] () -- C:\Users\sergeii\Desktop\Nepotvrzeno 965020.crdownload
[2014.03.12 21:19:25 | 000,001,264 | ---- | C] () -- C:\Users\sergeii\Desktop\SpeedUpMyComputer.lnk
[2014.03.12 21:11:59 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2014.03.12 21:11:59 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2014.03.12 21:11:59 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2014.03.12 21:11:59 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2014.03.12 21:11:59 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2014.03.12 20:48:43 | 000,000,000 | ---- | C] () -- C:\autoexec.bat
[2014.03.11 20:22:00 | 000,002,025 | ---- | C] () -- C:\Users\Public\Desktop\Bloody5.lnk
[2014.03.11 18:26:04 | 003,649,185 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2014.03.11 18:23:32 | 000,024,544 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2014.03.11 17:19:50 | 019,115,156 | ---- | C] () -- C:\Users\sergeii\Desktop\Bloody3. Drivers.V2013.0611A.exe
[2014.03.11 00:12:59 | 000,134,144 | ---- | C] () -- C:\Users\sergeii\Desktop\BloodyLicenseCryptor.exe
[2014.03.10 22:49:40 | 000,134,144 | ---- | C] () -- C:\Users\sergeii\Desktop\Bloody3-keygen.exe
[2014.03.10 22:49:40 | 000,001,304 | ---- | C] () -- C:\Users\sergeii\Desktop\license.bld
[2014.03.08 14:57:17 | 000,214,392 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2014.03.08 14:57:17 | 000,214,392 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2014.03.08 14:57:09 | 000,076,888 | ---- | C] () -- C:\Windows\SysNative\PnkBstrA.exe
[2014.03.08 13:48:37 | 000,000,624 | ---- | C] () -- C:\Users\sergeii\AppData\Roaming\All CPU MeterV3_Settings.ini
[2014.03.08 13:48:19 | 000,000,294 | ---- | C] () -- C:\Users\sergeii\AppData\Roaming\GPU MeterV2_Settings.ini
[2014.03.08 02:17:10 | 000,028,672 | ---- | C] () -- C:\Users\sergeii\Documents\EasyBCD Backup (2014-03-08).bcd
[2014.03.08 02:16:58 | 000,001,217 | ---- | C] () -- C:\Users\Public\Desktop\EasyBCD 2.2.lnk
[2014.03.08 01:31:32 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2014.03.08 01:31:02 | 005,681,192 | ---- | C] () -- C:\Windows\SysNative\drivers\rtvienna.dat
[2014.03.08 01:31:01 | 000,681,905 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2014.03.08 01:30:58 | 000,605,496 | ---- | C] () -- C:\Windows\SysNative\audioLibVc.dll
[2014.03.08 01:30:58 | 000,109,848 | ---- | C] () -- C:\Windows\SysNative\AcpiServiceVnA64.dll
[2014.03.07 23:36:07 | 000,000,821 | ---- | C] () -- C:\Users\Public\Desktop\Battlefield 4.lnk
[2014.03.07 23:36:07 | 000,000,805 | ---- | C] () -- C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
[2014.03.07 19:13:55 | 000,016,284 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2014.03.07 19:13:55 | 000,016,284 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2014.03.07 19:10:24 | 000,000,914 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.03.06 23:52:12 | 000,001,643 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Lightroom 5.3 64-bit.lnk
[2014.03.06 23:52:12 | 000,001,635 | ---- | C] () -- C:\Users\Public\Desktop\Lightroom 5.3 64-bit.lnk
[2014.03.06 23:50:04 | 000,065,130 | ---- | C] () -- C:\Users\sergeii\Desktop\buck_and_kitty_fucking_machine-5.jpg
[2014.03.06 22:34:29 | 000,000,530 | ---- | C] () -- C:\Users\Public\Desktop\Origin.lnk
[2014.03.06 21:26:52 | 000,234,010 | ---- | C] () -- C:\Windows\SysWow64\poclbm130302GeForce GTX 760gv1w256l4.bin
[2014.03.06 21:26:47 | 000,000,000 | ---- | C] () -- C:\Users\sergeii\regbcm
[2014.03.06 19:20:08 | 000,000,861 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS3.lnk
[2014.03.06 19:19:40 | 000,000,915 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Stock Photos CS3.lnk
[2014.03.06 19:19:26 | 000,001,403 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk
[2014.03.06 19:19:20 | 000,000,898 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk
[2014.03.06 19:18:46 | 000,000,835 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk
[2014.03.06 17:32:50 | 000,000,855 | ---- | C] () -- C:\Users\sergeii\Desktop\µTorrent.lnk
[2014.03.06 04:51:23 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2014.03.06 00:01:49 | 001,144,983 | ---- | C] () -- C:\Windows\KB936225x64.msu
[2014.03.06 00:01:49 | 000,389,120 | ---- | C] () -- C:\Windows\SysNative\CmiCnfgp.cpl
[2014.03.06 00:01:49 | 000,282,112 | ---- | C] () -- C:\Windows\System\HsMgr64.exe
[2014.03.06 00:01:49 | 000,200,704 | ---- | C] () -- C:\Windows\SysWow64\HsMgr.exe
[2014.03.06 00:01:49 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\VmixP8.dll
[2014.03.06 00:01:49 | 000,000,052 | ---- | C] () -- C:\Windows\SysNative\cmasiopx.ini
[2014.03.06 00:01:49 | 000,000,048 | ---- | C] () -- C:\Windows\SysWow64\cmasiop.ini
[2014.03.06 00:01:48 | 000,805,376 | ---- | C] () -- C:\Windows\SysNative\Cmeauoxy.exe
[2014.03.06 00:01:48 | 000,042,457 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.cfl
[2014.03.06 00:01:48 | 000,000,140 | ---- | C] () -- C:\Windows\System\Dlap.pfx
[2014.03.06 00:01:36 | 000,000,928 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.imi
[2014.03.06 00:01:34 | 000,004,969 | ---- | C] () -- C:\Windows\Cmicnfgp.ini.cfg
[2014.03.05 23:10:14 | 000,005,077 | ---- | C] () -- C:\Users\sergeii\Documents\Untitled.ncor
[2014.03.05 23:04:43 | 000,000,021 | ---- | C] () -- C:\Windows\SurCode.INI
[2014.03.05 22:55:30 | 000,000,997 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
[2014.03.05 22:38:02 | 000,359,424 | ---- | C] () -- C:\Windows\SysNative\CmiInstallResAll64.dll
[2014.03.05 22:38:02 | 000,000,867 | ---- | C] () -- C:\Windows\System\Cmicnfgp.ini
[2014.03.05 22:38:01 | 000,000,516 | ---- | C] () -- C:\Windows\cmudaxp.ini
[2014.03.05 22:34:27 | 000,072,280 | ---- | C] () -- C:\Windows\SysWow64\XSrvSetup.exe
[2014.03.05 22:24:32 | 001,559,268 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014.03.05 22:18:34 | 000,001,808 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2014.03.05 22:18:28 | 000,001,845 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2014.03.05 22:18:24 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2014.03.05 22:18:05 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2014.03.05 22:18:05 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2014.03.05 22:18:01 | 002,277,292 | ---- | C] () -- C:\Users\sergeii\Desktop\1652180.jpg
[2014.03.05 22:17:37 | 000,257,624 | ---- | C] () -- C:\Windows\SysNative\unrar64.dll
[2014.03.05 22:17:37 | 000,218,200 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2014.03.05 22:16:29 | 000,002,697 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014.03.05 22:16:23 | 000,001,070 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014.03.05 22:16:07 | 000,001,023 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
[2014.03.05 22:16:07 | 000,001,011 | ---- | C] () -- C:\Users\Public\Desktop\Audacity.lnk
[2014.03.05 22:16:04 | 000,002,102 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
[2014.03.05 22:16:04 | 000,002,090 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
[2014.03.05 22:15:59 | 000,000,983 | ---- | C] () -- C:\Users\Public\Desktop\Winamp.lnk
[2014.03.05 22:15:56 | 000,001,211 | ---- | C] () -- C:\Users\Public\Desktop\FileZilla.lnk
[2014.03.05 22:15:54 | 000,000,989 | ---- | C] () -- C:\Users\Public\Desktop\WinRAR.lnk
[2014.03.05 22:14:53 | 000,002,218 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014.03.05 22:14:46 | 000,000,952 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.03.05 22:14:46 | 000,000,948 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.03.05 22:11:04 | 000,074,272 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll
[2014.03.05 22:00:09 | 000,001,397 | ---- | C] () -- C:\Users\sergeii\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014.03.05 21:58:43 | 000,203,464 | RHS- | C] () -- C:\grldr
[2014.03.05 21:58:43 | 000,000,012 | RHS- | C] () -- C:\win7.ld
[2014.03.05 21:57:01 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2014.03.05 21:57:01 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2014.03.05 21:54:28 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014.03.05 21:53:54 | 3219,984,381 | -HS- | C] () -- C:\hiberfil.sys
[2014.03.05 21:52:48 | 000,383,786 | RHS- | C] () -- C:\bootmgr

========== ZeroAccess Check ==========

[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.07.26 03:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.07.26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014.03.06 00:01:56 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\ASUS
[2014.03.05 23:10:23 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2014.03.12 20:33:41 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\DAEMON Tools Lite
[2014.03.05 22:55:52 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\FileZilla
[2014.03.06 17:44:22 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\MPC-HC
[2014.03.05 22:44:27 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\Origin
[2014.03.05 23:04:43 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\PACE Anti-Piracy
[2014.03.12 21:52:53 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\uTorrent

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,009,416 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2014.03.05 22:14:46 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2014.03.05 22:14:46 | 000,000,952 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2014.03.07 19:10:24 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\erdnt\cache64\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.21 04:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.21 04:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.21 04:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.21 04:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2010.11.21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.21 04:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2010.11.21 04:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\SysWOW64\explorer.exe
[2010.11.21 04:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2010.11.21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\erdnt\cache86\explorer.exe
[2010.11.21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\explorer.exe
[2010.11.21 04:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.21 04:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.21 04:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: SCECLI.DLL >
[2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\erdnt\cache86\scecli.dll
[2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 04:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\erdnt\cache64\scecli.dll
[2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 04:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\erdnt\cache64\services.exe
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 02:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache86\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\erdnt\cache64\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2014.03.07 19:13:28 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\erdnt\cache64\tcpip.sys
[2014.03.07 19:13:28 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\SysNative\drivers\tcpip.sys
[2014.03.07 19:13:28 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_1118bb977d265d27\tcpip.sys
[2010.11.21 04:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2014.03.07 19:13:28 | 001,896,896 | ---- | M] (Microsoft Corporation) MD5=75F9106B74585D38C8FF6BB5CAD262D7 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_11ad2a34963bde27\tcpip.sys
[2013.07.06 06:20:38 | 001,900,992 | ---- | M] (Microsoft Corporation) MD5=B27F13153343BC37A27EAE01634D94E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_1190b9b296509a2f\tcpip.sys
[2013.07.06 07:03:53 | 001,910,208 | ---- | M] (Microsoft Corporation) MD5=DB74544B75566C974815E79A62433F29 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_114dcae97cfeb81b\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache86\userinit.exe
[2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 04:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\erdnt\cache64\userinit.exe
[2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 04:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\erdnt\cache64\winlogon.exe
[2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.21 04:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[5 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014.03.06 23:53:45 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\Adobe
[2014.03.05 22:29:41 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\Apple Computer
[2014.03.06 00:01:56 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\ASUS
[2014.03.05 23:10:23 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2014.03.12 20:33:41 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\DAEMON Tools Lite
[2014.03.05 22:55:52 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\FileZilla
[2014.03.05 22:00:02 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\Identities
[2014.03.05 22:54:03 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\Macromedia
[2010.11.21 10:38:07 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\Media Center Programs
[2014.03.12 21:24:18 | 000,000,000 | --SD | M] -- C:\Users\sergeii\AppData\Roaming\Microsoft
[2014.03.06 17:44:22 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\MPC-HC
[2014.03.12 19:53:16 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\NVIDIA
[2014.03.05 22:44:27 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\Origin
[2014.03.05 23:04:43 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\PACE Anti-Piracy
[2014.03.12 19:53:24 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\Skype
[2014.03.05 22:18:34 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\SUPERAntiSpyware.com
[2014.03.12 21:54:53 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\uTorrent
[2014.03.12 19:15:48 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\vlc
[2014.03.07 17:17:08 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\Winamp
[2014.03.05 22:37:56 | 000,000,000 | ---D | M] -- C:\Users\sergeii\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2014.03.05 22:55:27 | 000,053,632 | ---- | M] (Adobe Systems Inc.) -- C:\Users\sergeii\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2014.03.06 17:32:50 | 001,853,008 | ---- | M] (BitTorrent Inc.) -- C:\Users\sergeii\AppData\Roaming\uTorrent\uTorrent.exe
[2014.03.06 17:32:50 | 001,853,008 | ---- | M] (BitTorrent Inc.) -- C:\Users\sergeii\AppData\Roaming\uTorrent\updates\3.4.0_30635.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2014.03.12 21:39:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2014.03.12 21:20:45 | 000,000,948 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2014.03.12 21:25:00 | 000,000,952 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2014.03.11 22:39:08 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\FlashPlayerApp.exe
[2014.03.11 22:39:08 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\FlashPlayerCPLApp.cpl
[2014.03.11 20:48:13 | 000,214,392 | ---- | M] () -- C:\Windows\system32\PnkBstrB.ex0
[2014.03.12 21:26:31 | 000,214,392 | ---- | M] () -- C:\Windows\system32\PnkBstrB.exe

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Skype" = "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun -- [2014.02.10 17:46:06 | 020,917,408 | R--- | M] (Skype Technologies S.A.)
"SUPERAntiSpyware" = C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe -- [2014.01.06 22:36:11 | 006,563,608 | ---- | M] (SUPERAntiSpyware)
"uTorrent" = "C:\Users\sergeii\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED -- [2014.03.06 17:32:50 | 001,853,008 | ---- | M] (BitTorrent Inc.)
"EADM" = "G:\origin\Origin.exe" -AutoStart -- [2014.03.07 07:07:27 | 003,588,952 | ---- | M] (Electronic Arts)
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2010.11.21 04:24:51 | 001,475,584 | ---- | M] (Microsoft Corporation)
"Bloody2" = "C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe" Minimum -- [2014.01.15 14:31:23 | 014,066,176 | ---- | M] ()
"SPDriver" = C:\Program Files (x86)\ShopperPro\JSDriver\1.30.1.146\jsdrv.exe -- [2014.03.11 14:00:26 | 003,209,920 | ---- | M] ()
"FixMyRegistry" = C:\Program Files (x86)\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as /ss
"SpeedUpMyComputer" = C:\Program Files (x86)\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as -- [2013.07.22 13:34:08 | 002,054,776 | ---- | M] ()
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2014.02.06 23:24:01 | 000,808,152 | ---- | M] (Microsoft Corporation) MD5=4263F6C131E513CEA1AE82B5B81A4E1A -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2014.03.02 03:35:27 | 000,859,464 | ---- | M] (Google Inc.) MD5=026C4CA19FAE1F84894A99735B15AACA -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.03.12 21:49:54 | 000,000,512 | ---- | M] () MD5=BFD554155186CDFADCC5DFB418C28250 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2014.03.06 19:33:13 | 000,000,937 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Photoshop-CS3-Crack-Funkn\Photoshop-CS3-Crack-Funkn.lnk
[2014.03.06 19:33:13 | 000,000,937 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Photoshop-CS3-Crack-Funkn\Photoshop-CS3-Crack-Funkn.lnk
[2014.03.06 19:25:14 | 011,454,659 | ---- | M] () -- \Users\sergeii\Downloads\Adobe-photoshop-CS3-crack+navod-by-Erko.zip

< *keygen* /s >
[2013.06.23 12:51:03 | 000,134,144 | ---- | M] () -- \ProgramData\Microsoft\Windows\Templates\Bloody3\Bloody3-keygen.exe
[2013.06.23 12:51:03 | 000,134,144 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Templates\Bloody3\Bloody3-keygen.exe
[2013.06.23 12:51:03 | 000,134,144 | ---- | M] () -- \Users\sergeii\Desktop\Bloody3-keygen.exe
[2014.03.09 21:29:39 | 000,057,084 | ---- | M] () -- \Users\sergeii\Downloads\BloodyKeygen.rar

< *loader* /s >
[2012.02.22 23:11:56 | 000,078,336 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_BinaryLoader_4.4.3.dll
[2012.02.22 23:11:56 | 000,155,136 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader2_4.4.3.dll
[2012.02.22 23:11:56 | 000,117,248 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\dynamiclinkmediaserver\1.0\MXF_SDK_MetaMetadata_XSDLoader_4.4.3.dll
[2007.03.14 17:10:18 | 000,088,333 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ar_AE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:20 | 000,025,188 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\cs_CZ\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:26 | 000,032,022 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\da_DK\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:28 | 000,032,216 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\de_DE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:30 | 000,027,655 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\el_GR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:36 | 000,030,891 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\en_US\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:38 | 000,032,399 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\es_ES\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:42 | 000,032,333 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\fi_FI\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:42 | 000,032,393 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\fr_FR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:46 | 000,022,871 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\he_IL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:48 | 000,025,272 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\hu_HU\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:50 | 000,032,109 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\it_IT\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:50 | 000,032,441 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ja_JP\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:52 | 000,032,499 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ko_KR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:54 | 000,032,074 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\nb_NO\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:56 | 000,032,110 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\nl_NL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:10:58 | 000,024,996 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\pl_PL\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:00 | 000,031,772 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\pt_BR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:02 | 000,024,463 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ro_RO\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:04 | 000,025,054 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\ru_RU\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:06 | 000,032,171 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\sv_SE\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:06 | 000,024,411 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\tr_TR\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:08 | 000,025,525 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\uk_UA\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:10 | 000,032,741 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\zh_CN\Bridge\2.0\images\br_photo_downloader.png
[2007.03.14 17:11:10 | 000,032,833 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Help\zh_TW\Bridge\2.0\images\br_photo_downloader.png
[2007.03.08 16:35:32 | 000,004,239 | ---- | M] () -- \Program Files (x86)\Common Files\Adobe\Startup Scripts CS3\Adobe Version Cue\VersionCueSDKLoader.jsx
[2013.09.13 19:51:30 | 000,008,827 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2006.10.26 13:40:34 | 000,057,344 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.dll
[2006.10.26 13:40:34 | 000,005,120 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\coloader.tlb
[2011.12.01 18:03:26 | 000,019,056 | ---- | M] () -- \Program Files (x86)\NeoSmart Technologies\EasyBCD\bin\NST Downloader.exe
[2014.02.05 10:31:23 | 001,169,184 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2013.12.20 01:37:56 | 000,065,344 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2013.12.20 01:37:56 | 000,067,904 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2013.12.20 01:37:44 | 000,073,536 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2013.12.20 01:37:44 | 000,080,704 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2014.02.05 10:31:23 | 001,169,184 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.GFExperience.{7F3E41F9-A20B-4BB1-A8D9-B9B770A678CC}\ExtensionLoader.dll
[2013.12.01 14:09:05 | 000,061,528 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2014.03.12 20:49:28 | 000,086,457 | ---- | M] () -- \Users\sergeii\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1ZU9TQGQ\sf_preloader[1].js
[2014.01.28 19:35:56 | 000,072,638 | ---- | M] () -- \Users\sergeii\AppData\Local\Skype\Apps\login\images\loader.gif
[2014.01.28 19:35:56 | 000,003,032 | ---- | M] () -- \Users\sergeii\AppData\Local\Skype\Apps\login\images\loader.png
[2014.01.28 19:35:56 | 000,006,012 | ---- | M] () -- \Users\sergeii\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.01.28 19:35:56 | 000,021,956 | ---- | M] () -- \Users\sergeii\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.01.28 19:35:56 | 000,009,772 | ---- | M] () -- \Users\sergeii\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2014.03.12 18:50:57 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2014.03.05 19:48:48 | 002,202,645 | ---- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2011.02.05 14:09:31 | 000,005,745 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 14:04:44 | 000,005,745 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2011.02.05 14:09:50 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_9c05f879842e1792.manifest
[2011.02.05 14:05:03 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_9c6455949d6c2720.manifest
[2011.02.05 18:34:40 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_9deb553581556a27.manifest
[2011.02.05 14:10:12 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_9e73f1b69a73f09a.manifest
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 17:32:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_68daf829926cc6a9\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 17:33:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:38:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 19:13:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:12:19 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_68d20a7192733a4d\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 17:32:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_695ac552ab919bbb\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 17:33:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 07:20:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_695e76beab8ff095\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 19:13:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_694dd858ab9ba72a\api-ms-win-core-libraryloader-l1-1-0.dll
[2010.11.21 10:27:28 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.21 10:27:28 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2010.11.21 10:27:28 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2010.11.21 10:27:28 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2010.11.21 10:27:28 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2014.03.07 17:23:39 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2014.03.07 17:23:39 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2014.03.07 17:23:39 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2014.03.07 17:23:39 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2014.03.07 17:23:39 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 03:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2010.11.21 10:26:16 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.21 04:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 18:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 14:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 17:32:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_0cbc5ca5da0f5573\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 17:33:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 19:13:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 17:32:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_0d3c29cef3342a85\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 17:33:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 06:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.07 19:13:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_0d2f3cd4f33e35f4\api-ms-win-core-libraryloader-l1-1-0.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 146 bytes -> C:\ProgramData\TEMP:56E2E879
@Alternate Data Stream - 1136 bytes -> C:\ProgramData\Microsoft:Q2hngJOsy89UeSBQQJgNyMdT
@Alternate Data Stream - 1090 bytes -> C:\Users\sergeii\AppData\Local\vIEKBtcR5b:cYGl7onVrmDHSWWJNgrcj9Snj
@Alternate Data Stream - 1072 bytes -> C:\ProgramData\Microsoft:b3q6zLhhPzZjqlxMAf1R3oqRGo5

< End of report >

[Sergeii]

OTL Extras logfile created on: 12.3.2014 21:48:10 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\sergeii\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16518)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

20,00 Gb Total Physical Memory | 13,20 Gb Available Physical Memory | 66,00% Memory free
40,00 Gb Paging File | 32,22 Gb Available in Paging File | 80,57% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,79 Gb Total Space | 44,84 Gb Free Space | 40,11% Space Free | Partition Type: NTFS
Drive E: | 931,51 Gb Total Space | 831,42 Gb Free Space | 89,25% Space Free | Partition Type: NTFS
Drive F: | 1863,01 Gb Total Space | 413,89 Gb Free Space | 22,22% Space Free | Partition Type: NTFS
Drive G: | 111,79 Gb Total Space | 50,48 Gb Free Space | 45,16% Space Free | Partition Type: NTFS
Drive H: | 1,87 Gb Total Space | 1,86 Gb Free Space | 99,62% Space Free | Partition Type: FAT32

Computer Name: SERGEII-PC | User Name: sergeii | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-3338603107-2773124130-4247328820-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [edit] -- "E:\Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- G:\Programs\CS6\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- E:\Office\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htafile [open] -- "%1" %*
htmlfile [edit] -- "E:\Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [Bridge] -- G:\Programs\CS6\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- E:\Office\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0C7E6034-2F2E-4FA1-B066-2B11A711091E}" = lport=445 | protocol=6 | dir=in | app=system |
"{0D9030C5-6221-49EC-9A6D-35648E3D1DE7}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{12EBB22D-6B5F-4359-A4C8-73156A09F331}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{177F378A-0AC1-4B70-9F8B-41C4350D2DBC}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{1788177A-27DF-4CA0-ADE7-6FB095A0DF83}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{1E911449-70E8-4B83-A58F-95504E9A298A}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{2572CD44-8633-44AD-8EB5-33BEAC2C6F71}" = lport=6004 | protocol=17 | dir=in | app=e:\office\office12\outlook.exe |
"{26A4462B-1D6D-4589-8753-35FB6E9BD8EC}" = rport=138 | protocol=17 | dir=out | app=system |
"{27FC2C8B-1A6A-4A40-9831-0170FF1D34ED}" = rport=445 | protocol=6 | dir=out | app=system |
"{3000B1D2-6456-4BDD-869D-2DD510C7C136}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{34D56C2E-08E9-48CF-9E26-45D476634560}" = lport=2869 | protocol=6 | dir=in | app=system |
"{43336DC5-04FD-425D-9751-3056C87EA55D}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{44E2C494-D3CD-4275-8BF0-35D560FAF01D}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{44EF7026-2859-471D-916B-3F765BF677B2}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{47F166CE-64A8-40BA-92D0-2A99337159AE}" = rport=137 | protocol=17 | dir=out | app=system |
"{4D0B12FD-2761-41A4-B3B1-0C998E51E9F0}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{4F4ED269-4364-4BA4-8882-6C776EB62E94}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{511CFE4D-B8AA-4337-B72B-1E747CB82FBF}" = rport=139 | protocol=6 | dir=out | app=system |
"{526FA5AB-1547-4A6B-9FDA-42FD055A71E7}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{54C32F25-C2FE-4B25-BF28-CD801C6811C1}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{69886CDC-1558-4804-BA84-57AD7387CCC6}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6E630BC5-8AEA-49F0-86A2-85F02275CA4B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8A010830-6B15-4518-9B29-5B107A79AC19}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9898B8B3-32B4-4D33-B9F9-4095ABF29A0C}" = lport=139 | protocol=6 | dir=in | app=system |
"{A94331A9-B722-47FC-85A7-05D7352C7122}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{AAEEFBC3-6B65-4FD8-B31F-878134EF1CFF}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B6B83F29-AA30-4F47-ACC8-EE65BFD5E277}" = lport=137 | protocol=17 | dir=in | app=system |
"{C0F7A4E8-1983-49B4-ACC9-39D3D6987146}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{CD911DA1-FEC9-476F-9AD5-2E19A5AED5C6}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D310B9AC-51E3-4514-B4C6-FA7B3ECB8EF8}" = lport=138 | protocol=17 | dir=in | app=system |
"{D61F85CF-0D26-47B6-95B5-95ECD87014D3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{E1AD8780-4838-4837-B17F-37B609A24B63}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{E5671D3F-DB4A-4C69-8A8C-00CE88D6F2F6}" = rport=10243 | protocol=6 | dir=out | app=system |
"{F6226E8E-4F3D-4D99-8B9E-0EBBE6432F95}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{FEDADEA7-6B8A-47D6-9358-007174E41D7B}" = lport=10243 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00B49775-B022-490F-A7B5-8D26895E6FCC}" = protocol=6 | dir=in | app=g:\ea_games\battlefield 4\battlefield 4\bf4.exe |
"{070B2BFB-99E4-4397-BCE0-535E552F5BB1}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0DBF281F-950A-4731-88AD-EE7160C6BBC7}" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"{1D2779E1-4342-465E-A2DD-5C85512AA145}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{20D066D0-47DA-47AA-93F1-B5900687AE86}" = protocol=6 | dir=in | app=c:\users\sergeii\appdata\roaming\utorrent\utorrent.exe |
"{34CE6E36-0562-4920-BA7F-42F9F3F943A6}" = protocol=6 | dir=in | app=e:\office\office12\onenote.exe |
"{34D2ACFB-7131-40F3-8D86-D652BCBFC171}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{3739FD0D-303F-4254-9267-D152DD08E659}" = protocol=17 | dir=in | app=c:\users\sergeii\appdata\roaming\utorrent\utorrent.exe |
"{3E58DD06-9036-47FB-8DCA-541631142E01}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{3F26644C-0CC7-45C0-9B47-0AA6E549FE71}" = protocol=6 | dir=in | app=e:\office\office12\groove.exe |
"{46B6B371-05CF-4B4B-9C20-205AF5522B43}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{489BCB3B-C11A-40A0-9AFA-23B4A3785D64}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{4D967D59-A616-4E93-8F8F-0B57F6BEA9F5}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{51EA019F-18FC-44B9-8052-F2FEF9ED27A2}" = protocol=17 | dir=in | app=e:\office\office12\onenote.exe |
"{554BE442-F9E8-4849-8E38-1F7F94951771}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{556FC079-E556-4E23-A7BE-291AB218FEDB}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{55F78EAC-FF04-45A2-AF26-1EAAFB9A79C0}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5649D23A-34D1-40E5-A5F5-0FA847B950DD}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{5D1EF3AE-D890-4C6A-814B-B6F8F295AF14}" = protocol=6 | dir=in | app=g:\ea_games\battlefield 4\battlefield 4\bf4_x86.exe |
"{62814D44-54B5-4082-AAB6-4E1736E3BEC3}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{6B2C3268-8679-4A6F-91A9-100BCBC1B3DE}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6DAA8FAC-F642-4F80-942A-7ADDB448975D}" = protocol=17 | dir=in | app=c:\users\sergeii\downloads\utorrent.exe |
"{74465372-89E5-41E9-B2B5-61EF2E859679}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{907CC1EC-222F-4EF6-9784-4552E8AEE57F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{9204D26D-06D0-46C7-8843-740DB54CD2A8}" = protocol=6 | dir=in | app=c:\users\sergeii\downloads\utorrent.exe |
"{9EECE342-2E30-4882-8838-51FD3C5A6314}" = protocol=17 | dir=in | app=g:\ea_games\battlefield 4\battlefield 4\bf4_x86.exe |
"{C1936CCE-7102-4E6B-849B-D6802C4E29A6}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{C6905529-0626-43EC-8A13-88A1C66BBC40}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C71A33B6-4AF5-4847-9157-C201EB8704BB}" = protocol=17 | dir=in | app=e:\office\office12\groove.exe |
"{C9892304-9E1C-4C33-8500-625900A9B56B}" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe |
"{CC887106-A624-443E-B1A6-94E3F70D81C1}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D51B0AC3-9990-41A9-958C-72AEDC9493E2}" = protocol=6 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |
"{D9695CE7-64CF-4E0A-ADEE-04806734046C}" = protocol=17 | dir=in | app=g:\ea_games\battlefield 4\battlefield 4\bf4.exe |
"{D9C42FCC-AC25-4DFE-9876-6BF55C0DD3FC}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{DCC8570F-E310-40C3-80A1-0F74231798A0}" = protocol=6 | dir=out | app=system |
"{DF9B7C2A-4859-4790-B7D6-75308730C388}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F084879A-DA9E-4E78-8581-6CE6BF4AE4C5}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F3A10D9B-3E6E-45C2-A0ED-32591C36F6B7}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{FF222788-9324-4F5D-B157-3BB8AD6065C2}" = protocol=17 | dir=in | app=c:\program files (x86)\battlelog web plugins\sonar\0.70.4\sonarhost.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86417051FF}" = Java 7 Update 51 (64-bit)
"{2DD71ACB-552D-402C-9529-7906ACB95C30}" = Adobe Photoshop Lightroom 5.3 64-bit
"{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{50813B8C-FCBB-3C61-8039-EAAA93029066}" = Microsoft .NET Framework 4.5.1 (CSY)
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6FDDC552-CEAB-4245-B059-0EAFCC01E9EB}" = ESET Endpoint Antivirus
"{764384C5-BCA9-307C-9AAC-FD443662686A}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0405-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.1 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 335.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 335.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 335.23
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.8.2.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 335.21
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.1220
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 11.10.13
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.3.30.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 11.10.13
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.20
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"CCleaner" = CCleaner
"C-Media Oxygen HD Audio Driver" = ASUS Xonar DS Audio Driver
"Twixtor AE 6_is1" = RE:Vision Effects Twixtor AE
"WinRAR archiver" = WinRAR 5.01 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3
"{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{111EE7DF-FC45-40C7-98A7-753AC46B12FB}" = QuickTime 7
"{1845470B-EB14-4ABC-835B-E36C693DC07D}" = Skype™ 6.14
"{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin
"{185F9795-9663-4F13-9EF9-307A282ADB5A}" = ph
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83217051FF}" = Java 7 Update 51
"{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3
"{2A075BB4-E976-4278-BF3F-E5C6945D84C0}" = bl
"{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}" = Gigabyte Raid Configurer
"{3D6AD258-61EA-35F5-812C-B7A02152996E}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610
"{3D7E3EC9-46CF-4359-9289-39CE01DFB82F}" = Adobe Photoshop CS3
"{424E74F9-FCD0-0D6F-4C5B-AE4C9D63D69D}_is1" = Photoshop-CS3-Crack-Funkn version for Windows
"{46F044A5-CE8B-4196-984E-5BD6525E361D}" = Apple Application Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{51846830-E7B2-4218-8968-B77F0FF475B8}" = Adobe Color EU Extra Settings
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3
"{66729445-424F-3444-BAAB-6C3DE1FD3C53}" = Google Chrome
"{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All
"{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}" = Adobe Asset Services CS3
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7176B973-6011-43C1-AEBC-2D73FE7C6982}" = Adobe Premiere Pro CS6
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3
"{80407BA7-7763-4395-AB98-5233F1B34E65}" = NVIDIA PhysX
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3
"{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{95655ED4-7CA5-46DF-907F-7144877A32E5}" = Adobe Color NA Recommended Settings
"{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
"{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3
"{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
"{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps
"{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific
"{A92A4DB0-CD37-42D1-BE1D-603D53C24328}" = Intel(R) Processor ID Utility
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{ABADE36E-EC37-413B-8179-B432AD3FACE7}" = Battlefield 4™
"{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}" = PDF Settings
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) - Czech
"{AF37176A-78CA-545B-34EF-8B6A21514DD1}" = Adobe Help Manager
"{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0
"{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3
"{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2
"{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client
"{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files
"{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings
"{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}" = Adobe Color JA Extra Settings
"{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3
"{E7D4E834-93EB-351F-B8FB-82CDAE623003}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"{FF11004C-F42A-4A31-9BCF-7F5C8FDBE53C}" = Adobe Setup
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 12 Plugin
"Adobe_719d6f144d0c086a0dfa7ff76bb9ac1" = Adobe Photoshop CS3
"Audacity_is1" = Audacity 2.0.5
"Battlelog Web Plugins" = Battlelog Web Plugins
"Bloody3" = Bloody5
"EasyBCD" = EasyBCD 2.2
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ESN Sonar-0.70.4" = ESN Sonar
"FileZilla Client" = FileZilla Client 3.7.4.1
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Help Manager
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"KLiteCodecPack_is1" = K-Lite Codec Pack 10.3.5 Full
"MagniDriver" = marvell 91xx driver
"Mozilla Thunderbird 24.3.0 (x86 cs)" = Mozilla Thunderbird 24.3.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenAL" = OpenAL
"Origin" = Origin
"SpeedUpMyComputer" = SpeedUpMyComputer
"VLC media player" = VLC media player 2.1.3
"Winamp" = Winamp

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3338603107-2773124130-4247328820-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 12.3.2014 15:35:58 | Computer Name = sergeii-PC | Source = Windows Search Service | ID = 9002
Description =

Error - 12.3.2014 15:35:58 | Computer Name = sergeii-PC | Source = Windows Search Service | ID = 3029
Description =

Error - 12.3.2014 15:35:58 | Computer Name = sergeii-PC | Source = Windows Search Service | ID = 3029
Description =

Error - 12.3.2014 15:35:58 | Computer Name = sergeii-PC | Source = Windows Search Service | ID = 3028
Description =

Error - 12.3.2014 15:35:58 | Computer Name = sergeii-PC | Source = Windows Search Service | ID = 3058
Description =

Error - 12.3.2014 15:35:58 | Computer Name = sergeii-PC | Source = Windows Search Service | ID = 7010
Description =

Error - 12.3.2014 15:37:33 | Computer Name = sergeii-PC | Source = WinMgmt | ID = 10
Description =

Error - 12.3.2014 16:08:08 | Computer Name = sergeii-PC | Source = WinMgmt | ID = 10
Description =

Error - 12.3.2014 16:11:26 | Computer Name = sergeii-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Skype.exe, verze: 6.14.32.104, časové razítko:
0x52f90e40 Název chybujícího modulu: Skype.exe, verze: 6.14.32.104, časové razítko:
0x52f90e40 Kód výjimky: 0xc0000005 Posun chyby: 0x00b34c68 ID chybujícího procesu:
0xa58 Čas spuštění chybující aplikace: 0x01cf3e2e8d37d35d Cesta k chybující aplikaci:
C:\Program Files (x86)\Skype\Phone\Skype.exe Cesta k chybujícímu modulu: C:\Program
Files (x86)\Skype\Phone\Skype.exe ID zprávy: 7d3d2547-aa22-11e3-98de-1c6f659fbf5b

Error - 12.3.2014 16:22:22 | Computer Name = sergeii-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 12.3.2014 16:51:48 | Computer Name = sergeii-PC | Source = NetBT | ID = 4321
Description = Název SERGEII-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.0.102. Počítač s IP adresou 192.168.0.111 nepovolil získání názvu tímto počítačem.

Error - 12.3.2014 16:51:56 | Computer Name = sergeii-PC | Source = NetBT | ID = 4321
Description = Název SERGEII-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.0.102. Počítač s IP adresou 192.168.0.111 nepovolil získání názvu tímto počítačem.

Error - 12.3.2014 16:52:47 | Computer Name = sergeii-PC | Source = NetBT | ID = 4321
Description = Název SERGEII-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.0.102. Počítač s IP adresou 192.168.0.111 nepovolil získání názvu tímto počítačem.

Error - 12.3.2014 16:52:53 | Computer Name = sergeii-PC | Source = NetBT | ID = 4321
Description = Název SERGEII-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.0.102. Počítač s IP adresou 192.168.0.111 nepovolil získání názvu tímto počítačem.

Error - 12.3.2014 16:55:49 | Computer Name = sergeii-PC | Source = NetBT | ID = 4321
Description = Název SERGEII-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.0.102. Počítač s IP adresou 192.168.0.111 nepovolil získání názvu tímto počítačem.

Error - 12.3.2014 16:55:56 | Computer Name = sergeii-PC | Source = NetBT | ID = 4321
Description = Název SERGEII-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.0.102. Počítač s IP adresou 192.168.0.111 nepovolil získání názvu tímto počítačem.

Error - 12.3.2014 16:57:01 | Computer Name = sergeii-PC | Source = NetBT | ID = 4321
Description = Název SERGEII-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.0.102. Počítač s IP adresou 192.168.0.111 nepovolil získání názvu tímto počítačem.

Error - 12.3.2014 16:57:03 | Computer Name = sergeii-PC | Source = NetBT | ID = 4321
Description = Název SERGEII-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.0.102. Počítač s IP adresou 192.168.0.111 nepovolil získání názvu tímto počítačem.

Error - 12.3.2014 16:57:03 | Computer Name = sergeii-PC | Source = NetBT | ID = 4321
Description = Název SERGEII-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.0.102. Počítač s IP adresou 192.168.0.111 nepovolil získání názvu tímto počítačem.

Error - 12.3.2014 16:58:32 | Computer Name = sergeii-PC | Source = NetBT | ID = 4321
Description = Název SERGEII-PC :0 nelze zaregistrovat v rozhraní s IP adresou
192.168.0.102. Počítač s IP adresou 192.168.0.111 nepovolil získání názvu tímto počítačem.


< End of report >

[vyosek]

A opet vidim spusteny Combofix, nebylo Vam uz jednou receno ze CF se pouziva az na doporuceni??

Takze, ktera vyskolena osoba v jeho pouzivani Vam jej doporucila ted??

A jeste pridam dotaz, jak je na tom legalita systemu???

[Sergeii]

combofix je spusteny ? mam ho jen na plose

win dvd mam z práce, nainstaloval jsem ho a windows je aktivován, nijak sem to neresil ...

[vyosek]

ComboFix byl spusten dnes v 21:11:59, sam jen tak od sebe se nespustil...A o jeho svevolnem pouziti jste byl jiz drive tez informovan.

V logu jsou zcela jasne prvky cracku\aktivatoru na windows, takze prosim ted tu pohadku o karkulce...

Zrejme se potvrzuje to, co jste tu uz jednou napsal

Legální windows nemam a ani jej nehodlám kupovat

Takze Vas odkazu jako v minulosti kolegyne motji na pravidla fora - my tu nelegalni systemy neresime

[Sergeii]

diky za pomoc

[vyosek]

Neni zac, pravidla platila a plati stale a pro vsechny...