Prosim kontrolu Logu

Zpráva

#16 Příspěvek od **vyosek** » 12 dub 2014 16:08

Extra velky rozdil v kvalite neni, spise jde o to, ze Avast je zdarma a ESET placeny...

Pokud byste chtel investovat, tak uz bych doporucil ESET Smart Security, coz je komplexni balicek

andrei55 · #17 Příspěvek od **andrei55** » 12 dub 2014 16:19

tak ten avast by som chcel ked vravite ze kvalita je ta ista , chcem sa spytat mal som avast a po restarte my začalo robit sken compu takze ked som dal ze dat do karanteny ostatne programy,hry mi nesli ... co myslite uz mam comp odvireny ???

andrei55 · #18 Příspěvek od **andrei55** » 12 dub 2014 16:26

prepacte mam 1 dotaz ked zapnem hru fifa 14 tak mi vyskakuje internet explorer nechapem dakujem

#19 Příspěvek od **vyosek** » 12 dub 2014 17:28

Odinstalujte Combofix

Prejmenujte ComboFix na Uninstall
Spustte jej
Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Fifa je koupena nebo nejak polecene

Pak dle kolegy aplikujte MBAM

cernohous13 píše: Stáhni a nainstaluj MBAM zde http://www.bleepingcomputer.com/downloa ... i-malware/
"Sken hrozeb" - výsledek mi ukaž

andrei55 · #20 Příspěvek od **andrei55** » 12 dub 2014 17:38

dobre pane, fifa je jasne ze koupena , dakujem ti za rady pokracovat budem zitra musim jit do prace tak zatim

#21 Příspěvek od **vyosek** » 12 dub 2014 18:09

Ou Kej, tak at to v praci rychle utika

andrei55 · #22 Příspěvek od **andrei55** » 13 dub 2014 13:26

Malwarebytes Anti-Malware
www.malwarebytes.org

Dátum skenovania: 13. 4. 2014
Scan čas: 14:23:59
Logfile: logmbam.txt
Správca: áno

Verzia: 2.00.1.1004
Malware Database: v2014.04.13.02
Rootkit Database: v2014.03.27.01
Licencia: Skúšobná verzia
Ochrana pred škodlivým softvérom: Povolené
Škodlivých webových stránok Ochrana: Povolené
Chameleon: Telesne

OS: Windows 7 Service Pack 1
CPU: x64
Systém súborov: NTFS
Používateľ: Shooty

Typ skenu: Hrozba Scan
Výsledok: Dokončené
Objekty naskenované: 293652
Uplynulý čas: 31 min, 21 sec

Pamäť: Povolené
Pri spustení: Povolené
Filesystem: Povolené
Archív: Povolené
Rootkity: Telesne
Shuriken: Povolené
ŠTEŇA: Warn
VYKUROVAC: Povolené

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Kľúče databázy Registry: 14
Virus.Ramnit, HKLM\SOFTWARE\CLASSES\TYPELIB\{46072945-A3E8-477D-B70F-8B66AA05C7FE}, , [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\CLASSES\INTERFACE\{1602C177-01DB-4C7F-963F-D01AD98CD287}, , [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\CLASSES\INTERFACE\{64609F30-9552-4FF9-B3B4-E928CA8038A2}, , [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\CLASSES\INTERFACE\{71DDF0D4-8AA9-4F69-80D3-031879DA4D2C}, , [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{1602C177-01DB-4C7F-963F-D01AD98CD287}, , [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{64609F30-9552-4FF9-B3B4-E928CA8038A2}, , [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{71DDF0D4-8AA9-4F69-80D3-031879DA4D2C}, , [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{46072945-A3E8-477D-B70F-8B66AA05C7FE}, , [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ICCS, , [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\CLASSES\TYPELIB\{7EC41441-2247-4DEC-BBFB-9E798627A17B}, , [538364c553287fb7e033fd7467997c84],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A16AB1E1-377D-4DF2-8D8A-C9F283857DDC}, , [538364c553287fb7e033fd7467997c84],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{7EC41441-2247-4DEC-BBFB-9E798627A17B}, , [538364c553287fb7e033fd7467997c84],
Virus.Ramnit, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IDriverT, , [538364c553287fb7e033fd7467997c84],
PUP.Optional.TornTV.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V9.0, , [0ccaf6338cef023408aba5cc659d38c8],

Hodnoty databázy Registry: 2
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS|C:\PROGRAM FILES (X86)\GIGABYTE\ET6\ETCALL.EXE, 1, , [5f7761c8c9b244f269aa51208080bf41]
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|EasyTuneVI, C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe, , [5f7761c8c9b244f269aa51208080bf41]

Údaje databázy Registry: 1
Hijack.UserInit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Userinit, c:\windows\system32\userinit.exe,,c:\program files (x86)\microsoft\desktoplayer.exe, Good: (userinit.exe), Bad: (c:\windows\system32\userinit.exe,,c:\program files (x86)\microsoft\desktoplayer.exe),,[18be3eeb98e3e353759d20fd6f95718f]

Priečinky: 0
(No malicious items detected)

Súbory: 21
Virus.Ramnit, C:\Program Files (x86)\GIGABYTE\ET6\ETcall.exe, , [5f7761c8c9b244f269aa51208080bf41],
Virus.Ramnit, C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe, , [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe, , [538364c553287fb7e033fd7467997c84],
Virus.Ramnit, C:\Users\Shooty\AppData\Roaming\DOXXBet\libeay32.dll, , [756142e7d8a3e84eba584f22f10fd828],
Malware.Packer, C:\Windows\SysWOW64\WOWReg32Srv.exe, , [3e983eebaad178bedb2b4302b8485ca4],
Malware.Packer, C:\Users\Shooty\AppData\Local\Temp\svchost.exe, , [bb1b260337445fd718ee0243fb057b85],
Malware.Packer, C:\Users\andrej\Microsoft\DesktopLayer.exe, , [8a4c3eeb3b4069cd5caa281d1ee28080],
PUP.BitMiner, C:\Users\Shooty\Downloads\guiminer-20110701.exe, , [21b5d7527dfeb185bfad2f01a75de51b],
Riskware.BitCoinMiner, C:\Users\Shooty\Downloads\guiminer-20110824.exe, , [19bd85a45625bc7ae7e83bba7e85a55b],
Trojan.BtcMiner.TS, C:\Users\Shooty\Downloads\guiminer-20121118.exe, , [9a3c5fca97e491a565b6f8fc5ba8867a],
Trojan.BtcMiner.TS, C:\Users\Shooty\Downloads\guiminer-scrypt_win32_binaries_v0.03(1).zip, , [bb1b75b4e794b97d34e7d024c83b5fa1],
Trojan.BtcMiner.TS, C:\Users\Shooty\Downloads\guiminer-scrypt_win32_binaries_v0.03.zip, , [686ea881f4877cba0b102cc83ac9ba46],
Trojan.BitcoinMiner, C:\Users\Shooty\Downloads\guiminer-scrypt_win32_binaries_v0.04.zip, , [a03656d3f487a294b34ac72fd42f21df],
PUP.Optional.InstallCore.A, C:\Users\Shooty\Downloads\nvidia-physx.exe, , [8a4c62c71e5d65d1fbf3e717659e34cc],
PUP.Optional.OneClickDownloader.A, C:\Users\Shooty\Downloads\Performers_Of_The_Year_2014_XXX_DVDRip_x264-CiCXXX.exe, , [bd1999908fec3ff7896b9c6fa061639d],
PUP.Optional.Somoto, C:\Users\Shooty\Downloads\ClickHeretoDownload-5S57CtN.exe, , [63731316572472c419640d35e222b54b],
PUP.Optional.OneClickDownloader.A, C:\Users\Shooty\Downloads\Agricultural_Simulator_2013_SKIDROW.exe, , [af27a188245778be679c0d2990718080],
Malware.Packer, C:\Users\Shooty\Microsoft\DesktopLayer.exe, , [0ec89f8ac8b3c76fb05642033ac69d63],
Malware.Packer, C:\Users\Shooty\Microsoft\DesktopLayerSrv.exe, , [22b4b9707ffcc373b74f3f062ad6b947],
Trojan.Agent, C:\Program Files (x86)\Microsoft\DesktopLayer.exe, , [518570b98dee3006fa41a8090cf616ea],
Trojan.Agent, C:\Program Files (x86)\Microsoft\DesktopLayerSrv.exe, , [07cf4fda2853bc7a112b951c45bd60a0],

Physical Sectors: 0
(No malicious items detected)

(end)

#23 Příspěvek od **vyosek** » 13 dub 2014 13:35

Nalezy MBAMu smazte, objevi se log, ten rad uvidim

andrei55 · #24 Příspěvek od **andrei55** » 13 dub 2014 13:49

neviem co mam stym robit

#25 Příspěvek od **vyosek** » 13 dub 2014 14:02

Kliknete na Použit akce

andrei55 · #26 Příspěvek od **andrei55** » 13 dub 2014 14:09

asi mate na mysli toto ale asi je to ten isty log ...
Malwarebytes Anti-Malware
www.malwarebytes.org

Dátum skenovania: 13. 4. 2014
Scan čas: 15:06:14
Logfile: mbammlog.txt
Správca: áno

Verzia: 2.00.1.1004
Malware Database: v2014.04.13.02
Rootkit Database: v2014.03.27.01
Licencia: Skúšobná verzia
Ochrana pred škodlivým softvérom: Povolené
Škodlivých webových stránok Ochrana: Povolené
Chameleon: Telesne

OS: Windows 7 Service Pack 1
CPU: x64
Systém súborov: NTFS
Používateľ: Shooty

Typ skenu: Hrozba Scan
Výsledok: Dokončené
Objekty naskenované: 293652
Uplynulý čas: 1 hr, 13 min 36 sekúnd

Pamäť: Povolené
Pri spustení: Povolené
Filesystem: Povolené
Archív: Povolené
Rootkity: Telesne
Shuriken: Povolené
ŠTEŇA: Warn
VYKUROVAC: Povolené

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Kľúče databázy Registry: 14
Virus.Ramnit, HKLM\SOFTWARE\CLASSES\TYPELIB\{46072945-A3E8-477D-B70F-8B66AA05C7FE}, Quarantined, [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\CLASSES\INTERFACE\{1602C177-01DB-4C7F-963F-D01AD98CD287}, Quarantined, [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\CLASSES\INTERFACE\{64609F30-9552-4FF9-B3B4-E928CA8038A2}, Quarantined, [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\CLASSES\INTERFACE\{71DDF0D4-8AA9-4F69-80D3-031879DA4D2C}, Quarantined, [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{1602C177-01DB-4C7F-963F-D01AD98CD287}, Quarantined, [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{64609F30-9552-4FF9-B3B4-E928CA8038A2}, Quarantined, [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{71DDF0D4-8AA9-4F69-80D3-031879DA4D2C}, Quarantined, [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{46072945-A3E8-477D-B70F-8B66AA05C7FE}, Quarantined, [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\ICCS, Quarantined, [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, HKLM\SOFTWARE\CLASSES\TYPELIB\{7EC41441-2247-4DEC-BBFB-9E798627A17B}, Quarantined, [538364c553287fb7e033fd7467997c84],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A16AB1E1-377D-4DF2-8D8A-C9F283857DDC}, Quarantined, [538364c553287fb7e033fd7467997c84],
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{7EC41441-2247-4DEC-BBFB-9E798627A17B}, Quarantined, [538364c553287fb7e033fd7467997c84],
Virus.Ramnit, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IDriverT, Quarantined, [538364c553287fb7e033fd7467997c84],
PUP.Optional.TornTV.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Torntv V9.0, Quarantined, [0ccaf6338cef023408aba5cc659d38c8],

Hodnoty databázy Registry: 2
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\SHAREDDLLS|C:\PROGRAM FILES (X86)\GIGABYTE\ET6\ETCALL.EXE, 1, Quarantined, [5f7761c8c9b244f269aa51208080bf41]
Virus.Ramnit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|EasyTuneVI, C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe, Quarantined, [5f7761c8c9b244f269aa51208080bf41]

Údaje databázy Registry: 1
Hijack.UserInit, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Userinit, c:\windows\system32\userinit.exe,,c:\program files (x86)\microsoft\desktoplayer.exe, Good: (userinit.exe), Bad: (c:\windows\system32\userinit.exe,,c:\program files (x86)\microsoft\desktoplayer.exe),No Action By User,[18be3eeb98e3e353759d20fd6f95718f]

Priečinky: 0
(No malicious items detected)

Súbory: 21
PUP.BitMiner, C:\Users\Shooty\Downloads\guiminer-20110701.exe, No Action By User, [21b5d7527dfeb185bfad2f01a75de51b],
PUP.Optional.InstallCore.A, C:\Users\Shooty\Downloads\nvidia-physx.exe, No Action By User, [8a4c62c71e5d65d1fbf3e717659e34cc],
PUP.Optional.OneClickDownloader.A, C:\Users\Shooty\Downloads\Performers_Of_The_Year_2014_XXX_DVDRip_x264-CiCXXX.exe, No Action By User, [bd1999908fec3ff7896b9c6fa061639d],
PUP.Optional.Somoto, C:\Users\Shooty\Downloads\ClickHeretoDownload-5S57CtN.exe, No Action By User, [63731316572472c419640d35e222b54b],
PUP.Optional.OneClickDownloader.A, C:\Users\Shooty\Downloads\Agricultural_Simulator_2013_SKIDROW.exe, No Action By User, [af27a188245778be679c0d2990718080],
Virus.Ramnit, C:\Program Files (x86)\GIGABYTE\ET6\ETcall.exe, Quarantined, [5f7761c8c9b244f269aa51208080bf41],
Virus.Ramnit, C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe, Quarantined, [5383ce5be2998caa1bf7224fd03057a9],
Virus.Ramnit, C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe, Quarantined, [538364c553287fb7e033fd7467997c84],
Virus.Ramnit, C:\Users\Shooty\AppData\Roaming\DOXXBet\libeay32.dll, Quarantined, [756142e7d8a3e84eba584f22f10fd828],
Malware.Packer, C:\Windows\SysWOW64\WOWReg32Srv.exe, Quarantined, [3e983eebaad178bedb2b4302b8485ca4],
Malware.Packer, C:\Users\Shooty\AppData\Local\Temp\svchost.exe, Quarantined, [bb1b260337445fd718ee0243fb057b85],
Malware.Packer, C:\Users\andrej\Microsoft\DesktopLayer.exe, Quarantined, [8a4c3eeb3b4069cd5caa281d1ee28080],
Riskware.BitCoinMiner, C:\Users\Shooty\Downloads\guiminer-20110824.exe, Quarantined, [19bd85a45625bc7ae7e83bba7e85a55b],
Trojan.BtcMiner.TS, C:\Users\Shooty\Downloads\guiminer-20121118.exe, Quarantined, [9a3c5fca97e491a565b6f8fc5ba8867a],
Trojan.BtcMiner.TS, C:\Users\Shooty\Downloads\guiminer-scrypt_win32_binaries_v0.03(1).zip, Quarantined, [bb1b75b4e794b97d34e7d024c83b5fa1],
Trojan.BtcMiner.TS, C:\Users\Shooty\Downloads\guiminer-scrypt_win32_binaries_v0.03.zip, Quarantined, [686ea881f4877cba0b102cc83ac9ba46],
Trojan.BitcoinMiner, C:\Users\Shooty\Downloads\guiminer-scrypt_win32_binaries_v0.04.zip, Quarantined, [a03656d3f487a294b34ac72fd42f21df],
Malware.Packer, C:\Users\Shooty\Microsoft\DesktopLayer.exe, Quarantined, [0ec89f8ac8b3c76fb05642033ac69d63],
Malware.Packer, C:\Users\Shooty\Microsoft\DesktopLayerSrv.exe, Quarantined, [22b4b9707ffcc373b74f3f062ad6b947],
Trojan.Agent, C:\Program Files (x86)\Microsoft\DesktopLayer.exe, Delete-on-Reboot, [518570b98dee3006fa41a8090cf616ea],
Trojan.Agent, C:\Program Files (x86)\Microsoft\DesktopLayerSrv.exe, Quarantined, [07cf4fda2853bc7a112b951c45bd60a0],

Physical Sectors: 0
(No malicious items detected)

(end)

#27 Příspěvek od **vyosek** » 13 dub 2014 14:20

Nene, tenhle je rozdilny a v poradku, zde je videt co MBAM s polozkami udelal

Poprosim o log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

andrei55 · #28 Příspěvek od **andrei55** » 13 dub 2014 14:29

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-04-2014 01
Ran by Shooty (administrator) on SHOOTY-PC on 13-04-2014 15:25:46
Running from C:\Users\Shooty\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe
(AddGadgets) C:\Program Files (x86)\PCMeter\PCMeterV0.3.exe
() C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Windows\vsnpstd3.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(forum.viry.cz) C:\Users\Shooty\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Cm108Sound] - C:\Windows\Syswow64\cm108.dll [8757248 2013-01-16] (C-Media Corporation)
HKLM\...\Run: [snpstd3] - C:\Windows\vsnpstd3.exe [827392 2006-09-19] ()
HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5119600 2012-05-11] (VIA)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Winlogon: [Userinit] c:\windows\system32\userinit.exe,c:\program files (x86)\microsoft\desktoplayer.exe, [X]

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Shooty\AppData\Roaming\Mozilla\Firefox\Profiles\ohg90lin.default
FF NewTab: hxxp://www.google.com/
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.7 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Shooty\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\atlas-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\azet-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\dunaj-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slovnik-sk.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\zoznam-sk.xml
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-05-04] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

S3 AODDriver; C:\Program Files (x86)\GIGABYTE\ET6\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-20] (Advanced Micro Devices)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-07-01] (DT Soft Ltd)
R3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2014-04-13] ()
U0 lakw; C:\Windows\System32\drivers\aiiauutj.sys [79064 2014-04-13] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-13] (Malwarebytes Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2013-03-07] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [9584 2013-03-07] ()
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 SNPSTD3; C:\Windows\System32\DRIVERS\snpstd3.sys [10550272 2007-03-27] (Sonix Co. Ltd.)
S3 GPCIDrv; \??\C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [X]
R3 WinRing0_1_2_0; \??\C:\Users\Shooty\AppData\Local\Temp\tmp9951.tmp [X]

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-04-13 15:25 - 2014-04-13 15:25 - 00008366 _____ () C:\Users\Shooty\Desktop\FRST.txt
2014-04-13 15:25 - 2014-04-13 15:25 - 00000000 ____D () C:\FRST
2014-04-13 15:24 - 2014-04-13 15:24 - 02157568 _____ (Farbar) C:\Users\Shooty\Desktop\FRST64.exe
2014-04-13 15:24 - 2014-04-13 15:24 - 00112640 _____ (forum.viry.cz) C:\Users\Shooty\Desktop\FRSTLauncher.exe
2014-04-13 15:06 - 2014-04-13 15:06 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\aiiauutj.sys
2014-04-13 13:49 - 2014-04-13 13:50 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-13 13:49 - 2014-04-13 13:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-13 13:49 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-13 13:49 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-13 13:47 - 2014-04-13 13:49 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-13 13:47 - 2014-04-13 13:49 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Malwarebytes
2014-04-13 13:47 - 2014-04-13 13:49 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-13 13:47 - 2014-04-13 13:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-04-13 13:47 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-13 13:46 - 2014-04-13 13:46 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Shooty\Downloads\mbam-setup-1.75.0.1300.exe
2014-04-13 13:44 - 2014-04-13 13:44 - 00134310 _____ () C:\Users\Shooty\Documents\cc_20140413_134403.reg
2014-04-13 13:44 - 2014-04-13 13:44 - 00000746 _____ () C:\Users\Shooty\Documents\cc_20140413_134440.reg
2014-04-13 13:32 - 2014-04-13 13:37 - 00000004 _____ () C:\Windows\SysWOW64\GVTunner.ref
2014-04-12 16:49 - 2014-02-15 19:40 - 00000426 _____ () C:\AVScanner.ini
2014-04-12 10:25 - 2014-04-12 10:25 - 00000000 ____D () C:\Windows\ERUNT
2014-04-12 10:02 - 2014-04-12 10:04 - 00000000 ____D () C:\Program Files\trend micro
2014-04-12 10:02 - 2014-04-12 10:02 - 00935175 _____ () C:\Users\Shooty\Downloads\RSITx64.exe
2014-04-12 09:38 - 2014-04-12 09:38 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-04-10 19:07 - 2014-04-10 19:07 - 00000172 _____ () C:\Users\Shooty\Downloads\wot_pref.zip
2014-04-10 18:40 - 2014-04-10 18:40 - 00000000 ____D () C:\Users\andrej\AppData\Roaming\AVAST Software
2014-04-10 14:58 - 2014-04-10 14:58 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\AVAST Software
2014-04-10 14:57 - 2014-04-10 14:57 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-10 14:57 - 2014-04-10 14:57 - 00000000 ____D () C:\Program Files\AVAST Software
2014-04-09 21:34 - 2014-04-10 08:55 - 810045473 ____R () C:\Users\Shooty\Downloads\vbt-sloal.mp4
2014-04-09 17:14 - 2014-04-09 21:29 - 00000000 ____D () C:\Users\Shooty\Downloads\Student Bodies [XXX]
2014-04-07 18:12 - 2014-04-07 18:12 - 00000000 ____D () C:\Users\Shooty\Downloads\peckr.mp4
2014-04-07 16:17 - 2014-04-07 17:50 - 2512269459 ____R () C:\Users\Shooty\Downloads\xcite.-college.rules.15.mp4
2014-04-07 15:25 - 2014-04-07 15:25 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Xilisoft
2014-04-07 15:25 - 2014-04-07 15:25 - 00000000 ____D () C:\Users\Shooty\AppData\Local\Xilisoft
2014-04-07 15:24 - 2014-04-07 15:24 - 00002170 _____ () C:\Users\Public\Desktop\Xilisoft MP4 to DVD Converter.lnk
2014-04-07 15:23 - 2014-04-07 15:23 - 00000000 ____D () C:\ProgramData\Xilisoft
2014-04-07 15:23 - 2014-04-07 15:23 - 00000000 ____D () C:\Program Files (x86)\Xilisoft
2014-04-06 09:32 - 2014-04-06 09:39 - 00000000 ____D () C:\Users\Shooty\Documents\i68Fifa14
2014-04-06 09:31 - 2014-04-06 09:31 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CSEP 14 1.1
2014-04-06 09:23 - 2014-04-06 09:29 - 204311091 _____ () C:\Users\Shooty\Downloads\CSEP14v1_1withFIX.exe
2014-04-05 23:22 - 2014-04-05 23:22 - 03690487 _____ () C:\Users\Shooty\Downloads\FIFA14_Updated_Rosters_05.04.2014_FIFAX.net.zip
2014-04-05 18:34 - 2014-04-05 18:34 - 00438160 _____ () C:\Users\Shooty\Downloads\Performers_Of_The_Year_2014_XXX_DVDRip_x264-CiCXXX.exe
2014-04-05 14:06 - 2014-04-10 15:12 - 01388526 _____ () C:\Users\Shooty\Downloads\vertminer-0.5.2.zip
2014-04-04 11:38 - 2014-04-04 11:38 - 00064573 _____ () C:\Users\Shooty\Downloads\Multiload_grabber_V20.zip
2014-03-30 14:44 - 2014-03-30 14:44 - 00000507 _____ () C:\Users\Public\Desktop\Cabela's Big Game Hunter Pro Hunts.lnk
2014-03-30 09:30 - 2014-03-30 10:34 - 00000000 ____D () C:\Users\Shooty\Downloads\Cabelas.Big.Game.Hunter.Pro.Hunts-RELOADED
2014-03-29 13:28 - 2014-03-29 13:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 13:14 - 2014-03-29 13:14 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Milestone
2014-03-29 13:12 - 2014-03-29 13:12 - 00000345 _____ () C:\Users\Public\Desktop\MXGP.lnk
2014-03-26 16:17 - 2014-03-26 16:17 - 00000000 ____D () C:\Users\Shooty\Documents\Banished
2014-03-25 22:54 - 2014-03-25 22:54 - 00000000 ____D () C:\Users\Shooty\Desktop\banished
2014-03-25 22:46 - 2014-03-26 22:46 - 00000000 ____D () C:\Users\Shooty\Downloads\Banished.x32.x64
2014-03-25 15:47 - 2014-03-25 15:47 - 305065377 _____ () C:\Users\Shooty\Desktop\patch Drivable Vehicles machete.zip
2014-03-25 12:12 - 2014-03-25 12:12 - 00031045 _____ () C:\Users\Shooty\Downloads\[kickass.to]dayz.standalone.v.0.42.116002.2014.pc.alpha.torrent
2014-03-25 11:24 - 2014-03-25 11:24 - 07188536 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\vcredist_x64.exe
2014-03-25 11:24 - 2014-03-25 11:24 - 06498200 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\vcredist_x86(1).exe
2014-03-25 11:24 - 2014-03-25 11:24 - 01415888 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\vcredist_arm.exe
2014-03-25 11:23 - 2014-03-25 11:23 - 02723264 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\vcredist_x86.exe
2014-03-24 22:49 - 2014-03-24 22:49 - 05124743 _____ (DayZ.ml Team) C:\Users\Shooty\Downloads\DayZ_update_v1.0.03.exe
2014-03-24 21:36 - 2014-03-24 21:37 - 13987015 _____ () C:\Users\Shooty\Downloads\DayZ SA Multiplayer Crack.zip
2014-03-23 19:28 - 2014-03-23 19:28 - 00014426 _____ () C:\Users\Shooty\Downloads\v28_IP_Finder.bat
2014-03-23 18:41 - 2014-03-25 12:12 - 00000118 _____ () C:\Users\Shooty\Desktop\Nový textový dokument (3).txt
2014-03-23 18:16 - 2014-03-24 17:45 - 00000000 _____ () C:\Windows\SysWOW64\Access.dat
2014-03-23 18:15 - 2014-03-25 17:54 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Tunngle
2014-03-23 18:15 - 2014-03-23 18:15 - 00000000 ____D () C:\Users\Shooty\Documents\Tunngle
2014-03-23 18:15 - 2009-09-16 08:02 - 00031232 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys
2014-03-23 18:08 - 2014-03-23 18:08 - 04055968 _____ (Tunngle.net GmbH ) C:\Users\Shooty\Downloads\Tunngle_Setup_v4.5.1.4b.exe
2014-03-23 18:07 - 2014-04-12 13:20 - 00952912 _____ () C:\Users\Shooty\Desktop\dayz_alpha_mpfix.rar
2014-03-23 17:58 - 2014-03-23 17:58 - 00000000 ____D () C:\ProgramData\LumaEmu_SteamCloud
2014-03-23 17:51 - 2014-03-25 11:13 - 00000000 ____D () C:\Users\Shooty\AppData\Local\DayZ
2014-03-23 17:51 - 2014-03-23 17:51 - 00000000 ____D () C:\Users\Shooty\Documents\DayZ
2014-03-23 16:56 - 2014-03-23 16:56 - 00000000 ____D () C:\Users\Shooty\AppData\Local\Skyrim
2014-03-23 16:54 - 2014-03-23 16:54 - 00000667 _____ () C:\Users\Public\Desktop\The Elder Scrolls V Skyrim LE.lnk
2014-03-22 10:34 - 2014-03-23 16:29 - 00000000 ____D () C:\Users\Shooty\Downloads\The Elder Scrolls V Skyrim Legendary Edition - t2k9
2014-03-22 00:39 - 2014-03-22 00:45 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Shooty\Downloads\13-12_win7_win8_64_dd_ccc_whql(1).exe
2014-03-22 00:19 - 2014-03-22 00:19 - 00292184 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\dxwebsetup(1).exe
2014-03-22 00:03 - 2014-03-22 00:06 - 108279664 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\directx.exe
2014-03-21 22:59 - 2014-03-21 22:59 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-03-21 22:40 - 2014-03-21 22:40 - 00450328 _____ () C:\Users\Shooty\Downloads\Agricultural_Simulator_2013_SKIDROW.exe
2014-03-21 22:37 - 2013-12-21 11:39 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-21 22:37 - 2013-12-21 09:56 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-03-21 22:33 - 2014-02-23 10:13 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-21 22:33 - 2014-02-23 10:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-21 22:33 - 2014-02-23 10:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-21 22:33 - 2014-02-23 10:12 - 19273216 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-21 22:33 - 2014-02-23 10:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-21 22:33 - 2014-02-23 10:12 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-21 22:33 - 2014-02-23 10:11 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-21 22:33 - 2014-02-23 10:11 - 03960320 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-21 22:33 - 2014-02-23 10:11 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-21 22:33 - 2014-02-23 10:11 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-21 22:33 - 2014-02-23 10:11 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-21 22:33 - 2014-02-23 10:11 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-03-21 22:33 - 2014-02-23 10:11 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-21 22:33 - 2014-02-23 10:11 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-21 22:33 - 2014-02-23 10:11 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-21 22:33 - 2014-02-23 08:54 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-21 22:33 - 2014-02-23 08:54 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 14358016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-21 22:33 - 2014-02-23 08:53 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-21 22:33 - 2014-02-23 08:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-21 22:33 - 2014-02-23 08:31 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-21 22:33 - 2014-02-23 07:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-03-21 22:33 - 2014-02-23 07:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-03-21 22:30 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-21 22:29 - 2014-02-07 03:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-21 22:29 - 2014-02-04 04:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-21 22:29 - 2014-02-04 04:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-21 22:29 - 2014-02-04 04:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-21 22:29 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-21 22:29 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-21 22:29 - 2014-01-01 01:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-03-21 22:29 - 2014-01-01 01:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-03-21 22:29 - 2013-12-25 01:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-03-21 22:29 - 2013-12-25 00:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-03-21 22:29 - 2013-12-06 04:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-03-21 22:29 - 2013-12-06 04:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-03-21 22:29 - 2013-12-06 04:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-03-21 22:29 - 2013-12-06 04:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-03-21 22:29 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-03-21 22:29 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-03-21 22:29 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-03-21 22:29 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-03-21 22:29 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-03-21 22:29 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-03-21 22:29 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-03-21 22:29 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-03-21 22:29 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-03-21 22:29 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-03-21 22:29 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-03-21 22:29 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-03-21 22:29 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-03-21 22:29 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-03-21 22:29 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-03-21 22:29 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-03-21 22:29 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-03-21 22:29 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-03-21 22:29 - 2013-11-27 03:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-03-21 22:29 - 2013-11-27 03:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-03-21 22:29 - 2013-11-27 03:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-03-21 22:29 - 2013-11-27 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-03-21 22:29 - 2013-11-27 03:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-03-21 22:29 - 2013-11-27 03:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-03-21 22:29 - 2013-11-27 03:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-03-21 22:29 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-03-21 22:29 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-03-21 22:29 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-03-21 22:28 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-21 22:08 - 2014-03-21 22:09 - 45099266 _____ () C:\Users\Shooty\Downloads\DirectX_11_Technology_Update_US.zip
2014-03-21 22:05 - 2014-04-12 11:53 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Raptr
2014-03-21 22:05 - 2014-03-21 22:05 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\library_dir
2014-03-21 22:04 - 2014-04-10 19:24 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-03-21 22:04 - 2014-03-21 22:04 - 01007930 _____ () C:\Users\Shooty\Downloads\amddriverdownload_installer.exe
2014-03-21 21:41 - 2014-03-21 21:41 - 00000000 ____D () C:\Users\Shooty\Downloads\Agricultural.Simulator.2013-SKIDROW
2014-03-21 21:37 - 2014-03-21 21:37 - 01218772 _____ () C:\Users\Shooty\Downloads\AGRICULTURAL.SIMULATOR.2K13.V1.0.ALL.SKIDROW.NODVD.ZIP
2014-03-21 21:30 - 2014-03-21 21:31 - 01244829 _____ () C:\Users\Shooty\Downloads\Farming-Simulator-2013-Crack-(HeadShot.cz).zip
2014-03-21 21:12 - 2014-03-21 21:12 - 00292184 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\dxwebsetup.exe
2014-03-21 21:05 - 2014-03-21 21:05 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-03-21 21:03 - 2014-03-21 21:04 - 28080640 _____ () C:\Users\Shooty\Downloads\PhysX-9.13.0604-SystemSoftware.msi
2014-03-21 20:58 - 2014-03-21 20:58 - 00003008 _____ () C:\Windows\System32\Tasks\{FA6AA6BD-A56D-43FF-A22D-103E5C6E978F}
2014-03-21 20:55 - 2014-03-21 20:55 - 00686456 _____ ( ) C:\Users\Shooty\Downloads\nvidia-physx.exe
2014-03-21 20:43 - 2014-03-21 20:43 - 00003008 _____ () C:\Windows\System32\Tasks\{EFA0E45C-5BDE-4711-9ADC-1BB49250665B}
2014-03-21 20:43 - 2014-03-21 20:43 - 00003008 _____ () C:\Windows\System32\Tasks\{E340860C-039A-4E33-B825-5D9F5737C54C}
2014-03-21 20:40 - 2014-03-21 20:40 - 00061440 _____ () C:\Users\Shooty\Downloads\Crack-na-farming-simulator-2013.iso
2014-03-21 17:17 - 2014-03-21 17:17 - 00000000 ____D () C:\Users\Shooty\Documents\Assassin's Creed Freedom Cry
2014-03-21 17:11 - 2012-12-10 17:21 - 00163376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx
2014-03-21 17:11 - 2012-11-26 12:10 - 00221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tabctl32.ocx
2014-03-21 17:11 - 2012-07-06 21:03 - 00617816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx
2014-03-21 17:11 - 2012-05-02 12:17 - 01070152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomctl.ocx
2014-03-21 17:11 - 2011-01-12 14:36 - 01054208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71u.dll
2014-03-21 17:11 - 2011-01-12 14:25 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71deu.dll
2014-03-21 17:11 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ita.dll
2014-03-21 17:11 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71fra.dll
2014-03-21 17:11 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71esp.dll
2014-03-21 17:11 - 2011-01-12 14:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71enu.dll
2014-03-21 17:11 - 2011-01-12 14:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71kor.dll
2014-03-21 17:11 - 2011-01-12 14:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71jpn.dll
2014-03-21 17:11 - 2011-01-12 14:25 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71cht.dll
2014-03-21 17:11 - 2011-01-12 14:25 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71chs.dll
2014-03-21 17:11 - 2011-01-12 13:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl71.dll
2014-03-21 17:11 - 2010-02-16 15:22 - 00659264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomct2.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00443488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshflxgd.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00415552 _____ (Microsoft Corporation ) C:\Windows\SysWOW64\comct332.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00278352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatgrd.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00258880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msflxgrd.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00252240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatlst.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00222528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dblist32.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00218432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\richtx32.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00215880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mci32.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00178512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmask32.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00170080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comct232.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00136008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00129872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstdfmt.dll
2014-03-21 17:11 - 2010-02-16 15:22 - 00126800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswinsck.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00119616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomm32.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00107840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstkprp.dll
2014-03-21 17:11 - 2010-02-16 15:22 - 00100160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\picclp32.ocx
2014-03-21 17:11 - 2010-02-16 15:22 - 00080208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysinfo.ocx
2014-03-21 17:11 - 2007-02-01 23:13 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-03-21 17:11 - 2007-01-30 23:04 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2014-03-21 17:11 - 2006-08-26 01:28 - 01017344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2014-03-21 17:11 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ita.dll
2014-03-21 17:11 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70fra.dll
2014-03-21 17:11 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70esp.dll
2014-03-21 17:11 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70deu.dll
2014-03-21 17:11 - 2006-08-26 01:15 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70enu.dll
2014-03-21 17:11 - 2006-08-26 01:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70kor.dll
2014-03-21 17:11 - 2006-08-26 01:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70jpn.dll
2014-03-21 17:11 - 2006-08-26 01:15 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70cht.dll
2014-03-21 17:11 - 2006-08-26 01:15 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70chs.dll
2014-03-21 17:11 - 2006-08-26 01:07 - 01024000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2014-03-21 17:11 - 2006-08-26 00:17 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl70.dll
2014-03-21 17:11 - 2006-04-10 14:41 - 01066176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomctl32.ocx
2014-03-21 17:11 - 2005-01-20 20:25 - 00054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvci70.dll
2014-03-21 17:11 - 2002-01-05 06:40 - 00487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp70.dll
2014-03-21 17:11 - 2001-08-23 01:00 - 01355776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvbvm50.dll
2014-03-21 17:11 - 1996-01-12 04:00 - 00722192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb40032.dll
2014-03-21 17:11 - 1993-07-23 20:31 - 00210944 _____ () C:\Windows\SysWOW64\msvcrt10.dll
2014-03-21 17:00 - 2014-03-21 17:00 - 00000677 _____ () C:\Users\Public\Desktop\Assassins Creed Freedom Cry (2014) - Repack by Danik1B9.lnk
2014-03-20 23:06 - 2014-03-20 23:50 - 1527250944 ____R () C:\Users\Shooty\Downloads\Traktor Simulator 4 CZ - t2k9.iso
2014-03-20 19:30 - 2014-03-20 21:17 - 00000000 ____D () C:\Users\Shooty\Documents\ConvertXtoDVD
2014-03-20 19:28 - 2014-03-20 19:29 - 00000000 ____D () C:\ProgramData\VSO
2014-03-20 19:28 - 2014-03-20 19:28 - 00082816 _____ (VSO Software) C:\Users\Shooty\AppData\Roaming\pcouffin.sys
2014-03-20 19:28 - 2014-03-20 19:28 - 00007859 _____ () C:\Users\Shooty\AppData\Roaming\pcouffin.cat
2014-03-20 19:28 - 2014-03-20 19:28 - 00001228 _____ () C:\Users\Shooty\Desktop\ConvertXToDVD 5.lnk
2014-03-20 19:28 - 2014-03-20 19:28 - 00000055 _____ () C:\Users\Shooty\AppData\Roaming\pcouffin.log
2014-03-20 19:28 - 2014-03-20 19:28 - 00000000 ____D () C:\Users\Shooty\Documents\PcSetup
2014-03-20 19:28 - 2014-03-20 19:28 - 00000000 ____D () C:\Program Files (x86)\VSO
2014-03-20 19:27 - 2014-03-20 19:28 - 31830344 _____ (VSO Software ) C:\Users\Shooty\Downloads\vsoConvertXtoDVD5_setup.exe
2014-03-20 17:33 - 2014-03-20 17:33 - 00000000 ____D () C:\Saves
2014-03-20 14:36 - 2014-03-20 17:33 - 00000000 ____D () C:\Users\Shooty\Documents\Assassin's Creed Liberation HD
2014-03-19 17:17 - 2014-03-19 17:17 - 00000657 _____ () C:\Users\Public\Desktop\Assassin's Creed Liberation HD.lnk
2014-03-18 18:32 - 2014-03-18 23:56 - 00000000 ____D () C:\Users\Shooty\Downloads\Assassins.Creed.Liberation.HD-SKIDROW
2014-03-18 17:29 - 2014-03-18 17:29 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Black_Box
2014-03-18 14:23 - 2014-03-18 15:20 - 00000000 ____D () C:\Users\Shooty\Downloads\Assassin's Creed Freedom Cry
2014-03-17 20:15 - 2014-03-17 20:15 - 00000000 ____D () C:\Users\Shooty\Documents\Thief
2014-03-17 18:04 - 2014-03-17 18:04 - 00000762 _____ () C:\Users\Public\Desktop\Thief x64.lnk
2014-03-16 19:28 - 2014-03-17 02:25 - 00000000 ____D () C:\Users\Shooty\Downloads\Thief
2014-03-16 18:41 - 2014-03-16 18:41 - 00000685 _____ () C:\Users\Public\Desktop\Lost Planet 3.lnk
2014-03-15 10:29 - 2014-03-15 10:35 - 00000000 ____D () C:\Program Files (x86)\Deadfall Adventures
2014-03-14 23:29 - 2014-03-15 00:24 - 00000000 ____D () C:\Users\Shooty\Downloads\Deadfall Adventures (CZ.MULTi7) [Repack] by 'Teag
2014-03-14 23:16 - 2014-03-16 00:43 - 00000000 ____D () C:\Users\Shooty\Downloads\Lost Planet 3

==================== One Month Modified Files and Folders =======

2014-04-13 15:25 - 2014-04-13 15:25 - 00008366 _____ () C:\Users\Shooty\Desktop\FRST.txt
2014-04-13 15:25 - 2014-04-13 15:25 - 00000000 ____D () C:\FRST
2014-04-13 15:24 - 2014-04-13 15:24 - 02157568 _____ (Farbar) C:\Users\Shooty\Desktop\FRST64.exe
2014-04-13 15:24 - 2014-04-13 15:24 - 00112640 _____ (forum.viry.cz) C:\Users\Shooty\Desktop\FRSTLauncher.exe
2014-04-13 15:06 - 2014-04-13 15:06 - 00079064 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\aiiauutj.sys
2014-04-13 15:06 - 2014-02-18 17:19 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\DOXXBet
2014-04-13 15:06 - 2013-06-02 04:56 - 00000000 ____D () C:\Windows\Panther
2014-04-13 13:50 - 2014-04-13 13:49 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-13 13:49 - 2014-04-13 13:49 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-13 13:49 - 2014-04-13 13:47 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-13 13:49 - 2014-04-13 13:47 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Malwarebytes
2014-04-13 13:49 - 2014-04-13 13:47 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-13 13:49 - 2014-04-13 13:47 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-04-13 13:46 - 2014-04-13 13:46 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Shooty\Downloads\mbam-setup-1.75.0.1300.exe
2014-04-13 13:44 - 2014-04-13 13:44 - 00134310 _____ () C:\Users\Shooty\Documents\cc_20140413_134403.reg
2014-04-13 13:44 - 2014-04-13 13:44 - 00000746 _____ () C:\Users\Shooty\Documents\cc_20140413_134440.reg
2014-04-13 13:44 - 2009-07-14 06:45 - 00021280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-13 13:44 - 2009-07-14 06:45 - 00021280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-13 13:42 - 2009-07-14 07:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-13 13:40 - 2013-06-01 19:04 - 01374745 ____N () C:\Windows\WindowsUpdate.log
2014-04-13 13:37 - 2014-04-13 13:32 - 00000004 _____ () C:\Windows\SysWOW64\GVTunner.ref
2014-04-13 13:37 - 2013-06-01 22:25 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2014-04-13 13:37 - 2013-06-01 19:34 - 00030528 _____ () C:\Windows\GVTDrv64.sys
2014-04-13 13:37 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-13 13:28 - 2013-06-01 19:03 - 00000000 ____D () C:\Users\Shooty
2014-04-12 18:10 - 2014-02-01 16:09 - 00000000 ____D () C:\Users\Shooty\Documents\FIFA 14
2014-04-12 17:00 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-04-12 16:59 - 2009-07-14 04:34 - 67895296 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-04-12 16:59 - 2009-07-14 04:34 - 21233664 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-04-12 16:59 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2014-04-12 16:59 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2014-04-12 16:59 - 2009-07-14 04:34 - 00262144 _____ () C:\Windows\system32\config\DEFAULT.bak
2014-04-12 16:08 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-04-12 14:21 - 2014-01-31 08:46 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-04-12 14:19 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-04-12 13:20 - 2014-03-23 18:07 - 00952912 _____ () C:\Users\Shooty\Desktop\dayz_alpha_mpfix.rar
2014-04-12 11:53 - 2014-03-21 22:05 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Raptr
2014-04-12 10:25 - 2014-04-12 10:25 - 00000000 ____D () C:\Windows\ERUNT
2014-04-12 10:04 - 2014-04-12 10:02 - 00000000 ____D () C:\Program Files\trend micro
2014-04-12 10:02 - 2014-04-12 10:02 - 00935175 _____ () C:\Users\Shooty\Downloads\RSITx64.exe
2014-04-12 09:38 - 2014-04-12 09:38 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-04-10 19:24 - 2014-03-21 22:04 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-04-10 19:24 - 2014-02-23 19:35 - 00000000 ____D () C:\giminer
2014-04-10 19:24 - 2014-02-23 18:48 - 00000000 ____D () C:\Users\Shooty\Downloads\guiminer
2014-04-10 19:24 - 2014-02-23 13:31 - 00000000 ____D () C:\Users\andrej
2014-04-10 19:24 - 2014-01-02 20:11 - 00000000 ____D () C:\Program Files (x86)\DVD Shrink
2014-04-10 19:24 - 2014-01-02 19:16 - 00000000 ____D () C:\Program Files (x86)\DVDFab 9
2014-04-10 19:24 - 2013-12-30 18:32 - 00000000 ____D () C:\Users\Shooty\Downloads\Crack
2014-04-10 19:24 - 2013-12-20 13:27 - 00000000 ____D () C:\Program Files (x86)\ParadisePoker
2014-04-10 19:24 - 2013-11-02 16:29 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-04-10 19:24 - 2013-10-11 21:06 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Wargaming.net
2014-04-10 19:24 - 2013-07-06 00:35 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\uTorrent
2014-04-10 19:24 - 2013-06-01 19:44 - 00000000 ____D () C:\Program Files (x86)\PCMeter
2014-04-10 19:24 - 2013-06-01 19:42 - 00000000 ____D () C:\Program Files (x86)\HD Tune Pro
2014-04-10 19:24 - 2013-06-01 19:27 - 00000000 ____D () C:\Program Files\WinRAR
2014-04-10 19:24 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-04-10 19:23 - 2014-02-20 17:18 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-04-10 19:19 - 2013-06-02 13:38 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Free YouTube to MP3 Converter Studio
2014-04-10 19:07 - 2014-04-10 19:07 - 00000172 _____ () C:\Users\Shooty\Downloads\wot_pref.zip
2014-04-10 18:40 - 2014-04-10 18:40 - 00000000 ____D () C:\Users\andrej\AppData\Roaming\AVAST Software
2014-04-10 18:40 - 2014-02-23 13:32 - 00108232 _____ () C:\Users\andrej\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-10 15:12 - 2014-04-05 14:06 - 01388526 _____ () C:\Users\Shooty\Downloads\vertminer-0.5.2.zip
2014-04-10 15:11 - 2014-02-23 19:09 - 00179065 _____ () C:\Users\Shooty\Downloads\pooler-cpuminer-2.3.2-win64(1).zip
2014-04-10 15:11 - 2014-02-20 14:55 - 07338430 _____ () C:\Users\Shooty\Downloads\cgminer-2.11.4-windows.zip
2014-04-10 15:10 - 2014-02-20 12:23 - 00179065 _____ () C:\Users\Shooty\Downloads\pooler-cpuminer-2.3.2-win64.zip
2014-04-10 15:10 - 2014-01-05 22:54 - 35594542 _____ () C:\Users\Shooty\Downloads\FIFA14-CRACK.3DM.rar
2014-04-10 15:09 - 2014-02-23 19:10 - 01029534 _____ () C:\Users\Shooty\Downloads\bfgminer-3.5.7-win64.zip
2014-04-10 14:58 - 2014-04-10 14:58 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\AVAST Software
2014-04-10 14:57 - 2014-04-10 14:57 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-10 14:57 - 2014-04-10 14:57 - 00000000 ____D () C:\Program Files\AVAST Software
2014-04-10 08:55 - 2014-04-09 21:34 - 810045473 ____R () C:\Users\Shooty\Downloads\vbt-sloal.mp4
2014-04-09 22:15 - 2014-03-09 20:26 - 00009524 _____ () C:\Users\Shooty\Documents\TombRaider.log
2014-04-09 21:29 - 2014-04-09 17:14 - 00000000 ____D () C:\Users\Shooty\Downloads\Student Bodies [XXX]
2014-04-08 20:23 - 2013-07-01 23:17 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\DAEMON Tools Lite
2014-04-08 20:23 - 2013-06-27 21:02 - 00000000 ____D () C:\Windows\Minidump
2014-04-08 15:47 - 2013-07-06 19:29 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\vlc
2014-04-08 15:46 - 2013-09-28 19:33 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\dvdcss
2014-04-07 18:12 - 2014-04-07 18:12 - 00000000 ____D () C:\Users\Shooty\Downloads\peckr.mp4
2014-04-07 17:50 - 2014-04-07 16:17 - 2512269459 ____R () C:\Users\Shooty\Downloads\xcite.-college.rules.15.mp4
2014-04-07 15:25 - 2014-04-07 15:25 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Xilisoft
2014-04-07 15:25 - 2014-04-07 15:25 - 00000000 ____D () C:\Users\Shooty\AppData\Local\Xilisoft
2014-04-07 15:24 - 2014-04-07 15:24 - 00002170 _____ () C:\Users\Public\Desktop\Xilisoft MP4 to DVD Converter.lnk
2014-04-07 15:23 - 2014-04-07 15:23 - 00000000 ____D () C:\ProgramData\Xilisoft
2014-04-07 15:23 - 2014-04-07 15:23 - 00000000 ____D () C:\Program Files (x86)\Xilisoft
2014-04-06 09:39 - 2014-04-06 09:32 - 00000000 ____D () C:\Users\Shooty\Documents\i68Fifa14
2014-04-06 09:31 - 2014-04-06 09:31 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CSEP 14 1.1
2014-04-06 09:29 - 2014-04-06 09:23 - 204311091 _____ () C:\Users\Shooty\Downloads\CSEP14v1_1withFIX.exe
2014-04-05 23:22 - 2014-04-05 23:22 - 03690487 _____ () C:\Users\Shooty\Downloads\FIFA14_Updated_Rosters_05.04.2014_FIFAX.net.zip
2014-04-05 18:41 - 2013-06-01 19:36 - 00108232 _____ () C:\Users\Shooty\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-05 18:41 - 2009-07-14 06:45 - 00417304 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-05 18:34 - 2014-04-05 18:34 - 00438160 _____ () C:\Users\Shooty\Downloads\Performers_Of_The_Year_2014_XXX_DVDRip_x264-CiCXXX.exe
2014-04-04 11:38 - 2014-04-04 11:38 - 00064573 _____ () C:\Users\Shooty\Downloads\Multiload_grabber_V20.zip
2014-04-03 09:51 - 2014-04-13 13:49 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-13 13:49 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-13 13:47 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-30 14:46 - 2014-02-20 00:48 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Litecoin
2014-03-30 14:44 - 2014-03-30 14:44 - 00000507 _____ () C:\Users\Public\Desktop\Cabela's Big Game Hunter Pro Hunts.lnk
2014-03-30 10:34 - 2014-03-30 09:30 - 00000000 ____D () C:\Users\Shooty\Downloads\Cabelas.Big.Game.Hunter.Pro.Hunts-RELOADED
2014-03-30 08:51 - 2014-01-05 18:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-03-29 13:39 - 2013-09-04 19:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox.bak
2014-03-29 13:28 - 2014-03-29 13:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 13:14 - 2014-03-29 13:14 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Milestone
2014-03-29 13:12 - 2014-03-29 13:12 - 00000345 _____ () C:\Users\Public\Desktop\MXGP.lnk
2014-03-26 22:46 - 2014-03-25 22:46 - 00000000 ____D () C:\Users\Shooty\Downloads\Banished.x32.x64
2014-03-26 16:17 - 2014-03-26 16:17 - 00000000 ____D () C:\Users\Shooty\Documents\Banished
2014-03-25 22:54 - 2014-03-25 22:54 - 00000000 ____D () C:\Users\Shooty\Desktop\banished
2014-03-25 17:54 - 2014-03-23 18:15 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Tunngle
2014-03-25 15:47 - 2014-03-25 15:47 - 305065377 _____ () C:\Users\Shooty\Desktop\patch Drivable Vehicles machete.zip
2014-03-25 12:12 - 2014-03-25 12:12 - 00031045 _____ () C:\Users\Shooty\Downloads\[kickass.to]dayz.standalone.v.0.42.116002.2014.pc.alpha.torrent
2014-03-25 12:12 - 2014-03-23 18:41 - 00000118 _____ () C:\Users\Shooty\Desktop\Nový textový dokument (3).txt
2014-03-25 11:24 - 2014-03-25 11:24 - 07188536 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\vcredist_x64.exe
2014-03-25 11:24 - 2014-03-25 11:24 - 06498200 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\vcredist_x86(1).exe
2014-03-25 11:24 - 2014-03-25 11:24 - 01415888 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\vcredist_arm.exe
2014-03-25 11:23 - 2014-03-25 11:23 - 02723264 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\vcredist_x86.exe
2014-03-25 11:13 - 2014-03-23 17:51 - 00000000 ____D () C:\Users\Shooty\AppData\Local\DayZ
2014-03-24 23:09 - 2013-06-01 22:34 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-03-24 22:49 - 2014-03-24 22:49 - 05124743 _____ (DayZ.ml Team) C:\Users\Shooty\Downloads\DayZ_update_v1.0.03.exe
2014-03-24 21:37 - 2014-03-24 21:36 - 13987015 _____ () C:\Users\Shooty\Downloads\DayZ SA Multiplayer Crack.zip
2014-03-24 18:20 - 2013-11-22 14:24 - 00000144 _____ () C:\Users\Shooty\Desktop\Nový textový dokument (2).txt
2014-03-24 17:45 - 2014-03-23 18:16 - 00000000 _____ () C:\Windows\SysWOW64\Access.dat
2014-03-24 17:16 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-23 19:28 - 2014-03-23 19:28 - 00014426 _____ () C:\Users\Shooty\Downloads\v28_IP_Finder.bat
2014-03-23 18:15 - 2014-03-23 18:15 - 00000000 ____D () C:\Users\Shooty\Documents\Tunngle
2014-03-23 18:08 - 2014-03-23 18:08 - 04055968 _____ (Tunngle.net GmbH ) C:\Users\Shooty\Downloads\Tunngle_Setup_v4.5.1.4b.exe
2014-03-23 17:58 - 2014-03-23 17:58 - 00000000 ____D () C:\ProgramData\LumaEmu_SteamCloud
2014-03-23 17:51 - 2014-03-23 17:51 - 00000000 ____D () C:\Users\Shooty\Documents\DayZ
2014-03-23 16:56 - 2014-03-23 16:56 - 00000000 ____D () C:\Users\Shooty\AppData\Local\Skyrim
2014-03-23 16:56 - 2013-10-19 17:51 - 00000000 ____D () C:\Users\Shooty\Documents\My Games
2014-03-23 16:54 - 2014-03-23 16:54 - 00000667 _____ () C:\Users\Public\Desktop\The Elder Scrolls V Skyrim LE.lnk
2014-03-23 16:29 - 2014-03-22 10:34 - 00000000 ____D () C:\Users\Shooty\Downloads\The Elder Scrolls V Skyrim Legendary Edition - t2k9
2014-03-23 15:37 - 2013-07-01 23:39 - 00000000 ____D () C:\Users\Shooty\AppData\Local\SKIDROW
2014-03-22 11:16 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-03-22 00:50 - 2013-06-01 19:31 - 00766336 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-03-22 00:45 - 2014-03-22 00:39 - 212753896 _____ (Advanced Micro Devices, Inc.) C:\Users\Shooty\Downloads\13-12_win7_win8_64_dd_ccc_whql(1).exe
2014-03-22 00:19 - 2014-03-22 00:19 - 00292184 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\dxwebsetup(1).exe
2014-03-22 00:06 - 2014-03-22 00:03 - 108279664 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\directx.exe
2014-03-21 22:59 - 2014-03-21 22:59 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-03-21 22:48 - 2013-06-01 19:30 - 00000000 ____D () C:\Program Files\Google
2014-03-21 22:48 - 2013-06-01 19:29 - 00000000 ____D () C:\Program Files (x86)\Google
2014-03-21 22:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\sk-SK
2014-03-21 22:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-03-21 22:44 - 2013-06-01 19:29 - 00000000 ____D () C:\Users\Shooty\AppData\Local\Google
2014-03-21 22:44 - 2013-06-01 19:29 - 00000000 ____D () C:\ProgramData\Google
2014-03-21 22:40 - 2014-03-21 22:40 - 00450328 _____ () C:\Users\Shooty\Downloads\Agricultural_Simulator_2013_SKIDROW.exe
2014-03-21 22:34 - 2013-10-19 15:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-21 22:09 - 2014-03-21 22:08 - 45099266 _____ () C:\Users\Shooty\Downloads\DirectX_11_Technology_Update_US.zip
2014-03-21 22:05 - 2014-03-21 22:05 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\library_dir
2014-03-21 22:04 - 2014-03-21 22:04 - 01007930 _____ () C:\Users\Shooty\Downloads\amddriverdownload_installer.exe
2014-03-21 21:41 - 2014-03-21 21:41 - 00000000 ____D () C:\Users\Shooty\Downloads\Agricultural.Simulator.2013-SKIDROW
2014-03-21 21:37 - 2014-03-21 21:37 - 01218772 _____ () C:\Users\Shooty\Downloads\AGRICULTURAL.SIMULATOR.2K13.V1.0.ALL.SKIDROW.NODVD.ZIP
2014-03-21 21:31 - 2014-03-21 21:30 - 01244829 _____ () C:\Users\Shooty\Downloads\Farming-Simulator-2013-Crack-(HeadShot.cz).zip
2014-03-21 21:12 - 2014-03-21 21:12 - 00292184 _____ (Microsoft Corporation) C:\Users\Shooty\Downloads\dxwebsetup.exe
2014-03-21 21:05 - 2014-03-21 21:05 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-03-21 21:05 - 2013-06-01 19:26 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-03-21 21:04 - 2014-03-21 21:03 - 28080640 _____ () C:\Users\Shooty\Downloads\PhysX-9.13.0604-SystemSoftware.msi
2014-03-21 20:58 - 2014-03-21 20:58 - 00003008 _____ () C:\Windows\System32\Tasks\{FA6AA6BD-A56D-43FF-A22D-103E5C6E978F}
2014-03-21 20:55 - 2014-03-21 20:55 - 00686456 _____ ( ) C:\Users\Shooty\Downloads\nvidia-physx.exe
2014-03-21 20:43 - 2014-03-21 20:43 - 00003008 _____ () C:\Windows\System32\Tasks\{EFA0E45C-5BDE-4711-9ADC-1BB49250665B}
2014-03-21 20:43 - 2014-03-21 20:43 - 00003008 _____ () C:\Windows\System32\Tasks\{E340860C-039A-4E33-B825-5D9F5737C54C}
2014-03-21 20:40 - 2014-03-21 20:40 - 00061440 _____ () C:\Users\Shooty\Downloads\Crack-na-farming-simulator-2013.iso
2014-03-21 17:17 - 2014-03-21 17:17 - 00000000 ____D () C:\Users\Shooty\Documents\Assassin's Creed Freedom Cry
2014-03-21 17:11 - 2013-10-26 12:20 - 00466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2014-03-21 17:11 - 2013-10-26 12:20 - 00444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2014-03-21 17:11 - 2013-10-26 12:20 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2014-03-21 17:11 - 2013-10-26 12:20 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2014-03-21 17:11 - 2013-10-26 12:20 - 00000000 ____D () C:\Program Files (x86)\OpenAL
2014-03-21 17:00 - 2014-03-21 17:00 - 00000677 _____ () C:\Users\Public\Desktop\Assassins Creed Freedom Cry (2014) - Repack by Danik1B9.lnk
2014-03-20 23:50 - 2014-03-20 23:06 - 1527250944 ____R () C:\Users\Shooty\Downloads\Traktor Simulator 4 CZ - t2k9.iso
2014-03-20 21:17 - 2014-03-20 19:30 - 00000000 ____D () C:\Users\Shooty\Documents\ConvertXtoDVD
2014-03-20 19:44 - 2014-01-02 19:32 - 00000000 ____D () C:\ProgramData\vsosdk
2014-03-20 19:29 - 2014-03-20 19:28 - 00000000 ____D () C:\ProgramData\VSO
2014-03-20 19:28 - 2014-03-20 19:28 - 00082816 _____ (VSO Software) C:\Users\Shooty\AppData\Roaming\pcouffin.sys
2014-03-20 19:28 - 2014-03-20 19:28 - 00007859 _____ () C:\Users\Shooty\AppData\Roaming\pcouffin.cat
2014-03-20 19:28 - 2014-03-20 19:28 - 00001228 _____ () C:\Users\Shooty\Desktop\ConvertXToDVD 5.lnk
2014-03-20 19:28 - 2014-03-20 19:28 - 00000055 _____ () C:\Users\Shooty\AppData\Roaming\pcouffin.log
2014-03-20 19:28 - 2014-03-20 19:28 - 00000000 ____D () C:\Users\Shooty\Documents\PcSetup
2014-03-20 19:28 - 2014-03-20 19:28 - 00000000 ____D () C:\Program Files (x86)\VSO
2014-03-20 19:28 - 2014-03-20 19:27 - 31830344 _____ (VSO Software ) C:\Users\Shooty\Downloads\vsoConvertXtoDVD5_setup.exe
2014-03-20 17:33 - 2014-03-20 17:33 - 00000000 ____D () C:\Saves
2014-03-20 17:33 - 2014-03-20 14:36 - 00000000 ____D () C:\Users\Shooty\Documents\Assassin's Creed Liberation HD
2014-03-19 17:17 - 2014-03-19 17:17 - 00000657 _____ () C:\Users\Public\Desktop\Assassin's Creed Liberation HD.lnk
2014-03-19 12:35 - 2013-06-01 19:03 - 00001383 _____ () C:\Users\Shooty\Desktop\Internet Explorer.lnk
2014-03-18 23:56 - 2014-03-18 18:32 - 00000000 ____D () C:\Users\Shooty\Downloads\Assassins.Creed.Liberation.HD-SKIDROW
2014-03-18 17:29 - 2014-03-18 17:29 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Black_Box
2014-03-18 15:20 - 2014-03-18 14:23 - 00000000 ____D () C:\Users\Shooty\Downloads\Assassin's Creed Freedom Cry
2014-03-17 20:15 - 2014-03-17 20:15 - 00000000 ____D () C:\Users\Shooty\Documents\Thief
2014-03-17 18:04 - 2014-03-17 18:04 - 00000762 _____ () C:\Users\Public\Desktop\Thief x64.lnk
2014-03-17 02:25 - 2014-03-16 19:28 - 00000000 ____D () C:\Users\Shooty\Downloads\Thief
2014-03-16 18:41 - 2014-03-16 18:41 - 00000685 _____ () C:\Users\Public\Desktop\Lost Planet 3.lnk
2014-03-16 00:43 - 2014-03-14 23:16 - 00000000 ____D () C:\Users\Shooty\Downloads\Lost Planet 3
2014-03-15 10:35 - 2014-03-15 10:29 - 00000000 ____D () C:\Program Files (x86)\Deadfall Adventures
2014-03-15 00:24 - 2014-03-14 23:29 - 00000000 ____D () C:\Users\Shooty\Downloads\Deadfall Adventures (CZ.MULTi7) [Repack] by 'Teag

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-04-09 15:38

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:292.97 GB) (Free:41.62 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:638.53 GB) (Free:304.29 GB) NTFS

Available physical RAM: 13533.3 MB
Total physical RAM: 16365.24 MB
Percentage of memory in use: 17%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 39C439C3)
Partition 1: (Active) - (Size=293 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=639 GB) - (Type=OF Extended)

==================== Scheduled Tasks (whitelisted) ==================

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Shooty\Desktop" je 1019 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DefaultOutboundAction REG_DWORD 0x0
DefaultInboundAction REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-04-2014 01
Ran by Shooty at 2014-04-13 15:26:02
Running from C:\Users\Shooty\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

@BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.24 - GIGABYTE)
«Need For Speed Rivals» 1.2.0.0 (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}_is1) (Version: 1.2.0.0 - EA Gamed)
µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.30740 - BitTorrent Inc.)
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Slovak (HKLM-x32\...\{AC76BA86-7AD7-1051-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
AIDA64 Extreme Edition v2.50 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 2.50 - FinalWire Ltd.)
AMD Accelerated Video Transcoding (Version: 13.20.100.31206 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Název společnosti:) Hidden
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2013.1206.1603.28764 - Název společnosti:) Hidden
AMD Media Foundation Decoders (Version: 1.0.81206.1620 - Advanced Micro Devices, Inc.) Hidden
AMD Steady Video Plug-In (Version: 2.06.0000 - AMD) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
Assassins Creed Freedom Cry (2014) verze 1.0 (HKLM-x32\...\Assassins Creed Freedom Cry (2014)_is1) (Version: 1.0 - Repack by Danik1B9)
Assassins Creed IV Black Flag (HKLM-x32\...\{65C2799C-BEE1-4AB7-82D5-751B9F670767}) (Version: 6.0 - Black Box)
Assassin's Creed Liberation HD (HKLM-x32\...\Assassin's Creed Liberation HD_is1) (Version: - )
AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B12.0206.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.0.0.0 - Electronic Arts)
Cabela's Big Game Hunter Pro Hunts (HKLM-x32\...\Q2FiZWxhc0JpZ0dhbWVIdW50ZXJQcm9IdW50cw==_is1) (Version: 1 - )
Call of Duty Black Ops II v1.0.0.1 (HKLM-x32\...\Call of Duty Black Ops II_is1) (Version: 1.0.0.1 - Treyarch)
Call of Duty Ghosts (HKLM-x32\...\Q2FsbG9mRHV0eUdob3N0cw==_is1) (Version: 1 - )
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.24 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4478 - CDBurnerXP)
Counter-Strike 1.6 (HKLM-x32\...\{13B792AA-C078-43A4-8A3A-8B12D629940D}) (Version: 1.00.0000 - )
CPUID CPU-Z 1.60 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Crysis 3 v1.0.0.1 (HKLM-x32\...\Crysis 3_is1) (Version: - )
CrystalDiskInfo 5.5.1 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 5.5.1 - Crystal Dew World)
CSEP 14 1.1 (HKCU\...\CSEP 14 1.1) (Version: - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0333 - Disc Soft Ltd)
Deadfall Adventures verzia 1.0u2 (HKLM-x32\...\Deadfall Adventures_is1) (Version: 1.0u2 - CzTorrent.net)
DiRT 3 (HKLM-x32\...\GFWL_{434D0FA0-1558-4D8E-AC3D-BD1000008200}) (Version: 1.0.0000.130 - Codemasters)
DiRT 3 (x32 Version: 1.0.0000.130 - Codemasters) Hidden
Dishonored verze 1.2 (HKLM-x32\...\{E52B76E9-F6DE-4EF1-BAFD-1684B037C7FA}_is1) (Version: 1.2 - tomi2k9)
DOXXbet 1.0.0 (HKLM-x32\...\DOXXbet_is1) (Version: 1.0.0 - DOXXbet)
DVD Shrink 3.2 (HKLM-x32\...\DVD Shrink_is1) (Version: - DVD Shrink)
DVDFab 9.1.1.1 (29/11/2013) (HKLM-x32\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.)
Easy Tune 6 B13.0323.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B13.0323.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.115 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.115 - Etron Technology) Hidden
F1 2013 verzia 1.0 (HKLM-x32\...\F1 2013_is1) (Version: 1.0 - CzTorrent.net)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.2 - Electronic Arts)
FIFA 14 1.2 (HKLM-x32\...\FIFA 14_is1) (Version: - )
File Master Version 14.0 (HKLM-x32\...\File Master_is1) (Version: - FIFA MASTER)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)
HD Tune Pro 5.00 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Java(TM) SE Runtime Environment 6 Update 1 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0160010}) (Version: 1.6.0.10 - Sun Microsystems, Inc.)
Just Cause 2 1.20 (HKLM-x32\...\Just Cause 2 1.20) (Version: - )
KtLauncher (HKCU\...\Megatonn) (Version: - )
L.A. Noire verzia 1.3.2617 (HKLM-x32\...\L.A. Noire_is1) (Version: 1.3.2617 - CzTorrent.net)
Left 4 Dead v1.0.0.5 (HKLM-x32\...\Left 4 Dead_is1) (Version: - )
Litecoin (HKCU\...\Litecoin) (Version: 0.8.6.2 - Litecoin project)
Lost Planet 3 1.0 (HKLM-x32\...\Lost Planet 3_is1) (Version: - )
Malwarebytes Anti-Malware verzia 2.0.1.1004 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Max Payne 3 (HKLM-x32\...\Max Payne 3_is1) (Version: - )
Medal of Honor Warfighter v1.0.0.2 (HKLM-x32\...\{1040143F-FEFB-4B90-8E51-E47D40E14C4E}_is1) (Version: 1.0.0.2 - EA Games)
Metro Last Light (HKLM-x32\...\Metro Last Light_is1) (Version: - )
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE (HKLM-x32\...\{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}) (Version: 2.0.675.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60830 (HKLM\...\{122B909F-9DCF-360E-91E7-0679E033FBE1}) (Version: 11.0.60830 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60830 (HKLM\...\{083808D6-6235-37A8-82C1-98D226EB681F}) (Version: 11.0.60830 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60830 (HKLM-x32\...\{F68B404C-0E04-337F-A132-796508EE337A}) (Version: 11.0.60830 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60830 (HKLM-x32\...\{50AF8559-F490-381F-A6E7-06A07DE227DC}) (Version: 11.0.60830 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 28.0 (x86 sk) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 sk)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MXGP (HKLM-x32\...\TVhHUA==_is1) (Version: 1 - )
NVIDIA PhysX (HKLM-x32\...\{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}) (Version: 9.13.0604 - NVIDIA Corporation)
ON_OFF Charge B11.1102.1 (HKLM-x32\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
ParadisePoker (HKLM-x32\...\ParadisePoker ) (Version: - Boss Media AB)
Pazera Free MP4 to AVI Converter 1.6 (HKLM-x32\...\{42442BC6-5A92-4BC2-9E0C-3D359D548A21}_is1) (Version: 1.6 - Pazera Jacek)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Pro Evolution Soccer 2014 (HKLM-x32\...\{5EFD3544-2371-4900-8ACA-F157BA80FB0C}) (Version: 1.00.0000 - KONAMI)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Resident Evil 6 verzia 1.0.6.165 (HKLM-x32\...\Resident Evil 6_is1) (Version: 1.0.6.165 - CzTorrent.net)
Resident Evil Revelations verzia 1.0u1 (HKLM-x32\...\Resident Evil Revelations_is1) (Version: 1.0u1 - CzTorrent.net)
Rockstar Games Social Club (HKLM-x32\...\{08B3869E-D282-424C-9AFC-870E04A4BA14}) (Version: 1.00.0000 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.0.6 - Rockstar Games)
Sniper Elite V2 1.0 (HKLM-x32\...\Sniper Elite V2_is1) (Version: - ea)
Sniper Ghost Warrior 2 1.09 (HKLM-x32\...\Sniper Ghost Warrior 2_is1) (Version: - )
Splinter Cell - Blacklist 1.01 (HKLM-x32\...\{A6356F2F-D3E1-4D83-9AA2-72871DD0C298}_is1) (Version: - )
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
The Elder Scrolls V Skyrim LE (HKLM-x32\...\The Elder Scrolls V Skyrim LE_is1) (Version: - )
Thief (HKLM-x32\...\Thief_is1) (Version: 4107.3 - Eidos)
Tom Clancy's Splinter Cell® Blacklist™ (HKLM-x32\...\{A6356F2F-D3E1-4D83-9AA2-72871DD0C298}) (Version: 1.01 - Ubisoft)
Tomb Raider (HKLM-x32\...\Tomb Raider_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for Microsoft .NET Framework 4.5 (KB2750147) (HKLM-x32\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB2750147) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4.5 (KB2805221) (HKLM-x32\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB2805221) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4.5 (KB2805226) (HKLM-x32\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB2805226) (Version: 1 - Microsoft Corporation)
USB PnP Sound Device (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006300}) (Version: - )
VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player 2.0.7 (HKLM-x32\...\VLC media player) (Version: 2.0.7 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.1.0.12 - VSO Software)
Windows 7 Codec Pack 4.0.3 (HKLM-x32\...\Windows 7 - Codec Pack) (Version: 4.0.3 - Windows 7 Codec Pack)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
Xilisoft MP4 to DVD Converter (HKLM-x32\...\Xilisoft MP4 to DVD Converter) (Version: 7.1.3.20121219 - Xilisoft)

==================== Restore Points =========================

13-04-2014 11:27:55 ComboFix created restore point

==================== Hosts content: ==========================

2009-07-14 04:34 - 2014-04-12 17:00 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {04D28229-B053-4C31-9E83-B05935F52EB7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-01] (Google Inc.)
Task: {0C336C65-A313-4068-B385-0A542647F98B} - \{2094D23A-BD5D-4B3D-8425-4543B025A147} ATTENTION ====> No Task File
Task: {0CB60480-D23E-4035-88DF-73AAD67743A9} - System32\Tasks\{EFA0E45C-5BDE-4711-9ADC-1BB49250665B} => D:\Agricultural Simulator 2013 - Steam Edition\agrarsimulator2013.exe
Task: {0F9AAB91-0901-4B2F-836A-508B8C04C756} - \updater ATTENTION ====> No Task File
Task: {11EDA478-7904-456B-B45A-11A885F1A835} - \{2E47347C-47A9-4F66-9FB6-BBFD90CAE975} ATTENTION ====> No Task File
Task: {26428303-4FA2-42C2-A6AA-B4A539C5DF56} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-06-01] (Google Inc.)
Task: {37D9BF0E-B246-4AC6-BA76-761E9F0EC2C1} - System32\Tasks\{E340860C-039A-4E33-B825-5D9F5737C54C} => D:\Agricultural Simulator 2013 - Steam Edition\agrarsimulator2013.exe
Task: {60A5B590-0128-4992-A66A-9AB08FD81CBC} - System32\Tasks\{FA6AA6BD-A56D-43FF-A22D-103E5C6E978F} => D:\Agricultural Simulator 2013 - Steam Edition\agrarsimulator2013.exe
Task: {A074C8E5-0476-4628-AE7D-93AFBCA6C472} - \{9D83F411-DF10-40A6-8F4C-3A59ECA6ABC8} ATTENTION ====> No Task File
Task: {B9B7B94D-154F-4289-8268-C738A9448F99} - System32\Tasks\PCMeter\Startup => C:\Program Files (x86)\PCMeter\PCMeterV0.3.exe [2012-08-25] (AddGadgets)
Task: {C002B41C-9F9A-4700-941B-47331E3FB289} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated)
Task: {E00F17EA-83F9-4683-87CC-E7267E930D58} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-10-24] (Piriform Ltd)
Task: {E2C608B5-1EDC-4B13-B41E-0B4BEB9F43F7} - \{8B90F331-097E-4345-A504-8199225139AB} ATTENTION ====> No Task File
Task: {EE3B525F-94AF-469E-905A-B036E8550E37} - \{2E290E47-67CC-4B7F-902F-76BA0B3D35E7} ATTENTION ====> No Task File

==================== Loaded Modules (whitelisted) =============

2013-12-06 17:06 - 2013-12-06 17:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 06:59 - 2013-07-26 06:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 06:59 - 2013-07-26 06:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-06-01 19:27 - 2011-03-02 12:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2012-01-13 14:04 - 2012-01-13 14:04 - 00219760 _____ () C:\Program Files (x86)\GIGABYTE\ET6\GUI.exe
2006-09-19 09:07 - 2006-09-19 09:07 - 00827392 _____ () C:\Windows\vsnpstd3.exe
2013-06-24 16:21 - 2013-06-24 16:21 - 00012520 _____ () C:\Users\Shooty\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\CoreTempReader.dll
2013-06-24 16:21 - 2013-06-24 16:21 - 00015080 _____ () C:\Users\Shooty\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\GetCoreTempInfoNET.dll
2013-06-24 16:21 - 2013-06-24 16:21 - 00014056 _____ () C:\Users\Shooty\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter_V4.7.3.gadget\SystemInfo.dll
2013-06-01 19:20 - 2012-05-11 09:46 - 00078448 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2013-06-01 19:20 - 2012-05-11 09:46 - 00386160 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2013-12-06 17:06 - 2013-12-06 17:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2013-03-23 10:19 - 2013-03-23 10:19 - 02883651 _____ () C:\Program Files (x86)\GIGABYTE\ET6\Normal.dll
2013-01-25 17:43 - 2013-01-25 17:43 - 00651331 _____ () C:\Program Files (x86)\GIGABYTE\ET6\work.dll
2013-02-01 13:26 - 2013-02-01 13:26 - 01331266 _____ () C:\Program Files (x86)\GIGABYTE\ET6\SF.dll
2008-05-07 15:22 - 2008-05-07 15:22 - 00102400 _____ () C:\Program Files (x86)\GIGABYTE\ET6\CIAMIB.dll
2012-05-08 15:01 - 2012-05-08 15:01 - 00069632 _____ () C:\Program Files (x86)\GIGABYTE\ET6\GPTT.dll
2012-11-27 15:03 - 2012-11-27 15:03 - 00102400 _____ () C:\Program Files (x86)\GIGABYTE\ET6\ycc.dll
2010-06-24 15:50 - 2010-06-24 15:50 - 00094208 _____ () C:\Program Files (x86)\GIGABYTE\ET6\IccLibDll.dll
2011-03-01 19:00 - 2011-03-01 19:00 - 00126976 _____ () C:\Program Files (x86)\GIGABYTE\ET6\StabilityLib.dll
2011-10-18 09:26 - 2011-10-18 09:26 - 00024576 _____ () C:\Program Files (x86)\GIGABYTE\ET6\STT.dll
2013-02-01 13:23 - 2013-02-01 13:23 - 01499204 _____ () C:\Program Files (x86)\GIGABYTE\ET6\OCK.dll
2013-03-05 18:45 - 2013-03-05 18:45 - 01335362 _____ () C:\Program Files (x86)\GIGABYTE\ET6\HM.dll
2013-03-23 10:59 - 2013-03-23 10:59 - 01433674 _____ () C:\Program Files (x86)\GIGABYTE\ET6\GVTunner.dll
2003-02-14 14:11 - 2003-02-14 14:11 - 00102400 _____ () C:\Program Files (x86)\GIGABYTE\ET6\Sound.dll
2012-12-25 15:14 - 2012-12-25 15:14 - 01318988 _____ () C:\Program Files (x86)\GIGABYTE\ET6\AMD8.dll
2012-09-24 01:49 - 2012-09-24 01:49 - 03854336 _____ () C:\Program Files (x86)\GIGABYTE\ET6\Platform.dll
2012-09-24 01:49 - 2012-09-24 01:49 - 00573440 _____ () C:\Program Files (x86)\GIGABYTE\ET6\Device.dll
2013-01-09 17:26 - 2013-01-09 17:26 - 00307200 _____ () C:\Program Files (x86)\GIGABYTE\ET6\MFCCPU.DLL
2014-03-29 13:28 - 2014-03-29 13:28 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-03-12 18:45 - 2014-03-12 18:45 - 16276872 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll

==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================

==================== Disabled items from MSCONFIG ==============

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (04/13/2014 01:39:02 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/13/2014 01:33:43 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/13/2014 01:29:43 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (04/13/2014 08:03:24 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/12/2014 05:02:17 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/12/2014 02:23:33 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/12/2014 02:16:54 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (04/12/2014 11:52:47 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/12/2014 10:47:45 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (04/13/2014 01:37:42 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby WinRing0_1_2_0 zlyhalo kvôli nasledujúcej chybe:
%%2

Error: (04/13/2014 01:34:21 PM) (Source: Service Control Manager) (User: )
Description: Služba Adobe Acrobat Update Service sa neočakávane ukončila. Služba sa týmto spôsobom ukončila už 1-krát.

Error: (04/13/2014 01:33:54 PM) (Source: Service Control Manager) (User: )
Description: Spustenie služby WinRing0_1_2_0 zlyhalo kvôli nasledujúcej chybe:
%%2

Error: (04/12/2014 04:58:39 PM) (Source: Service Control Manager) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (04/12/2014 04:58:35 PM) (Source: Service Control Manager) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (04/12/2014 04:58:19 PM) (Source: Application Popup) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (04/12/2014 04:58:19 PM) (Source: Application Popup) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (04/12/2014 04:56:44 PM) (Source: Service Control Manager) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (04/12/2014 04:55:14 PM) (Source: Application Popup) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Error: (04/12/2014 04:55:14 PM) (Source: Application Popup) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Microsoft Office Sessions:
=========================
Error: (04/13/2014 01:39:02 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/13/2014 01:33:43 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/13/2014 01:29:43 PM) (Source: SideBySide)(User: )
Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="arm",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Users\Shooty\Downloads\vcredist_arm.exe

Error: (04/13/2014 08:03:24 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/12/2014 05:02:17 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/12/2014 02:23:33 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/12/2014 02:16:54 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Shooty\Downloads\esetsmartinstaller_csy.exe

Error: (04/12/2014 11:52:47 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/12/2014 10:47:45 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

CodeIntegrity Errors:
===================================
Date: 2014-04-12 16:58:19.638
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-04-12 16:58:19.582
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-04-12 16:58:19.526
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-04-12 16:58:19.471
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-04-12 16:55:14.781
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-04-12 16:55:14.726
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-04-12 16:55:14.669
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-04-12 16:55:14.613
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-04-12 16:06:06.394
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2014-04-12 16:06:06.332
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Percentage of memory in use: 17%
Total physical RAM: 16365.24 MB
Available physical RAM: 13533.3 MB
Total Pagefile: 32728.66 MB
Available Pagefile: 29720.84 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:292.97 GB) (Free:41.62 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:638.53 GB) (Free:304.29 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 39C439C3)
Partition 1: (Active) - (Size=293 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=639 GB) - (Type=OF Extended)

==================== End Of Log ============================

#29 Příspěvek od **vyosek** » 13 dub 2014 14:57

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
HKLM-x32\...\Winlogon: [Userinit] c:\windows\system32\userinit.exe,c:\program files (x86)\microsoft\desktoplayer.exe, [X]

SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 

FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

U0 lakw; C:\Windows\System32\drivers\aiiauutj.sys [79064 2014-04-13] (Malwarebytes Corporation)
S3 GPCIDrv; \??\C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [X]
R3 WinRing0_1_2_0; \??\C:\Users\Shooty\AppData\Local\Temp\tmp9951.tmp [X]

2014-04-10 18:40 - 2014-04-10 18:40 - 00000000 ____D () C:\Users\andrej\AppData\Roaming\AVAST Software
2014-04-10 14:58 - 2014-04-10 14:58 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\AVAST Software
2014-04-10 14:57 - 2014-04-10 14:57 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-10 14:57 - 2014-04-10 14:57 - 00000000 ____D () C:\Program Files\AVAST Software

Task: {0C336C65-A313-4068-B385-0A542647F98B} - \{2094D23A-BD5D-4B3D-8425-4543B025A147} ATTENTION ====> No Task File
Task: {0F9AAB91-0901-4B2F-836A-508B8C04C756} - \updater ATTENTION ====> No Task File
Task: {11EDA478-7904-456B-B45A-11A885F1A835} - \{2E47347C-47A9-4F66-9FB6-BBFD90CAE975} ATTENTION ====> No Task File
Task: {A074C8E5-0476-4628-AE7D-93AFBCA6C472} - \{9D83F411-DF10-40A6-8F4C-3A59ECA6ABC8} ATTENTION ====> No Task File
Task: {E2C608B5-1EDC-4B13-B41E-0B4BEB9F43F7} - \{8B90F331-097E-4345-A504-8199225139AB} ATTENTION ====> No Task File
Task: {EE3B525F-94AF-469E-905A-B036E8550E37} - \{2E290E47-67CC-4B7F-902F-76BA0B3D35E7} ATTENTION ====> No Task File

c:\program files (x86)\microsoft\desktoplayer.exe

Hosts:
End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

andrei55 · #30 Příspěvek od **andrei55** » 13 dub 2014 15:04

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-04-2014 01
Ran by Shooty at 2014-04-13 16:00:45 Run:1
Running from C:\Users\Shooty\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
HKLM-x32\...\Winlogon: [Userinit] c:\windows\system32\userinit.exe,c:\program files (x86)\microsoft\desktoplayer.exe, [X]

SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =

FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

U0 lakw; C:\Windows\System32\drivers\aiiauutj.sys [79064 2014-04-13] (Malwarebytes Corporation)
S3 GPCIDrv; \??\C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [X]
R3 WinRing0_1_2_0; \??\C:\Users\Shooty\AppData\Local\Temp\tmp9951.tmp [X]

2014-04-10 18:40 - 2014-04-10 18:40 - 00000000 ____D () C:\Users\andrej\AppData\Roaming\AVAST Software
2014-04-10 14:58 - 2014-04-10 14:58 - 00000000 ____D () C:\Users\Shooty\AppData\Roaming\AVAST Software
2014-04-10 14:57 - 2014-04-10 14:57 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-10 14:57 - 2014-04-10 14:57 - 00000000 ____D () C:\Program Files\AVAST Software

Task: {0C336C65-A313-4068-B385-0A542647F98B} - \{2094D23A-BD5D-4B3D-8425-4543B025A147} ATTENTION ====> No Task File
Task: {0F9AAB91-0901-4B2F-836A-508B8C04C756} - \updater ATTENTION ====> No Task File
Task: {11EDA478-7904-456B-B45A-11A885F1A835} - \{2E47347C-47A9-4F66-9FB6-BBFD90CAE975} ATTENTION ====> No Task File
Task: {A074C8E5-0476-4628-AE7D-93AFBCA6C472} - \{9D83F411-DF10-40A6-8F4C-3A59ECA6ABC8} ATTENTION ====> No Task File
Task: {E2C608B5-1EDC-4B13-B41E-0B4BEB9F43F7} - \{8B90F331-097E-4345-A504-8199225139AB} ATTENTION ====> No Task File
Task: {EE3B525F-94AF-469E-905A-B036E8550E37} - \{2E290E47-67CC-4B7F-902F-76BA0B3D35E7} ATTENTION ====> No Task File

c:\program files (x86)\microsoft\desktoplayer.exe

Hosts:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon\\Userinit => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.
HKLM\Software\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => Value deleted successfully.
HKLM\Software\Wow6432Node\Mozilla\Thunderbird\Extensions\\eplgTb@eset.com => Value deleted successfully.
lakw => Service deleted successfully.
GPCIDrv => Service deleted successfully.
WinRing0_1_2_0 => Unable to stop service
WinRing0_1_2_0 => Service deleted successfully.
C:\Users\andrej\AppData\Roaming\AVAST Software => Moved successfully.
C:\Users\Shooty\AppData\Roaming\AVAST Software => Moved successfully.
C:\ProgramData\AVAST Software => Moved successfully.
C:\Program Files\AVAST Software => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0C336C65-A313-4068-B385-0A542647F98B} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C336C65-A313-4068-B385-0A542647F98B} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2094D23A-BD5D-4B3D-8425-4543B025A147} ATTENTION ====> => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0F9AAB91-0901-4B2F-836A-508B8C04C756} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F9AAB91-0901-4B2F-836A-508B8C04C756} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\updater ATTENTION ====> => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{11EDA478-7904-456B-B45A-11A885F1A835} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{11EDA478-7904-456B-B45A-11A885F1A835} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2E47347C-47A9-4F66-9FB6-BBFD90CAE975} ATTENTION ====> => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A074C8E5-0476-4628-AE7D-93AFBCA6C472} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A074C8E5-0476-4628-AE7D-93AFBCA6C472} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{9D83F411-DF10-40A6-8F4C-3A59ECA6ABC8} ATTENTION ====> => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E2C608B5-1EDC-4B13-B41E-0B4BEB9F43F7} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E2C608B5-1EDC-4B13-B41E-0B4BEB9F43F7} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8B90F331-097E-4345-A504-8199225139AB} ATTENTION ====> => Key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EE3B525F-94AF-469E-905A-B036E8550E37} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EE3B525F-94AF-469E-905A-B036E8550E37} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2E290E47-67CC-4B7F-902F-76BA0B3D35E7} ATTENTION ====> => Key not found.
Could not move "c:\program files (x86)\microsoft\desktoplayer.exe" => Scheduled to move on reboot.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2014-04-13 16:03:06)<=

c:\program files (x86)\microsoft\desktoplayer.exe => Is moved successfully.

==== End of Fixlog ====

VIRY.CZ

Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu

Re: Prosim kontrolu Logu