Problem s odstraněním viru (Avast)

[frajer252]

Tak jsem nainstaloval a problem přetrvává..

[Rudy]

Pak se ta hra s něčím hádá. Zkuste herní fórum, tohle jde zcela mimo nás, není to virový problém.

[frajer252]

Nestává se to jen ve hře..Stává se to i normálně..

[Rudy]

Virový problém to ale není. V jakém programu ještě se to stane?

[frajer252]

Stává se to i normálně za běžného provozu..Prohlížim internet a obraz zamrzne..musim restart..Všechny ovladače,teplota PC komponentů jsou ok..Už nevím co s tim

[Rudy]

Těžko říci, proč.Virový problém to není, zbývá systémový, nebo hardwarový problém. Kdyby pád do bsod, vytvořily by se minidumpy, ke kterých by se po jejich analýze dalo "vařit". Takhle nevím, odkud začít.
Takže střelba od boku. Stáhněte, nainstalujte a spusťte CrystalDiskInfo: http://www.stahuj.centrum.cz/utility_a_ ... ldiskinfo/ a přes Úpravy>kopírovat sem dejte log.

[frajer252]

Mam tu jen jeden soubor v tom Minidump..Ale zas mi nejde dát na leteckou poštu..Nechápu to..Píše to:Nemáte oprávnení k otevření tohoto souboru.Požádejte vlastníka souboru nebo správce o přidělení oprávnění..přitom jsem tady vlastníkem už jen já..Tady máte ten log z toho programu:
----------------------------------------------------------------------------
CrystalDiskInfo 6.1.10 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Ultimate [6.1 Build 7600] (x64)
Date : 2014/05/08 9:24:13

-- Controller Map ----------------------------------------------------------
+ Intel(R) ICH10 Family 2 port Serial ATA Storage Controller 2 - 3A26 [ATA]
+ ATA Channel 0 (0)
- WDC WD10EALS-00Z8A0 ATA Device
+ ATA Channel 1 (1)
- HL-DT-ST DVDRAM GH22NS50 ATA Device
+ Intel(R) ICH10 Family 4 port Serial ATA Storage Controller 1 - 3A20 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)

-- Disk List ---------------------------------------------------------------
(1) WDC WD10EALS-00Z8A0 : 1000,2 GB [0/0/0, pd1] - wd

----------------------------------------------------------------------------
(1) WDC WD10EALS-00Z8A0
----------------------------------------------------------------------------
Model : WDC WD10EALS-00Z8A0
Firmware : 05.01D05
Serial Number : WD-WCATR5378425
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : 32767 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : ---- | SATA/300
Power On Hours : 8858 hod.
Power On Count : 2635 krát
Temperature : 32 C (89 F)
Health Status : Dobrý
Features : S.M.A.R.T., AAM, 48bit LBA, NCQ
APM Level : ----
AAM Level : 80FEh [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 176 172 _21 000000001068 Čas na roztočení ploten
04 _98 _98 __0 000000000A5A Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _88 _88 __0 00000000229A Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C _98 _98 __0 000000000A4B Počet cyklů zapnutí zařízení
C0 200 200 __0 00000000007C Počet vypnutí disku
C1 200 200 __0 0000000009DD Počet cyklů načítání/vymazání
C2 115 107 __0 000000000020 Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 00000000000A Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 4154 5235 3337 3834 3235
020: 0000 FFFF 0032 3035 2E30 3144 3035 5744 4320 5744
030: 3130 4541 4C53 2D30 305A 3841 3020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 0044 0040
080: 01FE 0000 746B 7F61 4123 7469 BC41 4123 207F 005B
090: 005B 0000 FFFE 0000 80FE 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 0000 0000 5001 4EE2
110: B011 8D84 0000 0000 0000 0000 0000 0000 0000 4018
120: 4018 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 16E2 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3037 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 101E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 3BA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 B0 AC 68 10 00 00 00 00 00 04 32 00 62 62 5A
020: 0A 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 58 58 9A 22 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 62 62 4B 0A 00 00 00 00 00 C0 32
070: 00 C8 C8 7C 00 00 00 00 00 00 C1 32 00 C8 C8 DD
080: 09 00 00 00 00 00 C2 22 00 73 6B 20 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 0A 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 84 00 D8 45 01 7B
170: 03 00 01 00 02 CF 05 00 00 00 00 00 00 00 00 00
180: 00 00 01 04 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 75

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 00 00 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 C8 C8 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 C8 C8 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 5D

[frajer252]

zjistil ste něco ?

[Rudy]

Disk je OK. Máte legální operační systém?

[frajer252]

Ano mam..

[Rudy]

Tak se podíváme, co vám v systému běží.

Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*loader* /s

a klikněte na >Prohledat<. Dejte oba logy.

[frajer252]

OTL logfile created on: 8.5.2014 19:14:49 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pete\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

6,00 Gb Total Physical Memory | 4,14 Gb Available Physical Memory | 69,06% Memory free
12,00 Gb Paging File | 9,85 Gb Available in Paging File | 82,08% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 830,53 Gb Free Space | 89,17% Space Free | Partition Type: NTFS

Computer Name: PC | User Name: Pete | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.05.08 19:13:12 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Pete\Desktop\OTL.exe
PRC - [2014.05.04 17:23:01 | 003,873,704 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.05.04 17:23:01 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.04.24 02:33:15 | 000,841,032 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2010.11.17 03:53:16 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2010.04.22 15:05:26 | 001,011,712 | ---- | M] (Gigabyte Technology CO., LTD.) -- C:\Program Files (x86)\GIGABYTE\smart6\timelock\AlarmClock.exe
PRC - [2010.03.10 10:47:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2009.10.15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
PRC - [2009.10.15 14:06:42 | 000,375,000 | ---- | M] (DeviceVM, Inc.) -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
PRC - [2009.10.13 16:39:46 | 000,114,688 | ---- | M] (Gigabyte Technology CO., LTD.) -- C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe
PRC - [2009.06.17 16:13:06 | 000,068,136 | ---- | M] () -- C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe


========== Modules (No Company Name) ==========

MOD - [2014.05.04 17:23:02 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.04.24 02:33:13 | 000,390,472 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\ppgooglenaclpluginchrome.dll
MOD - [2014.04.24 02:33:12 | 013,692,232 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\PepperFlash\pepflashplayer.dll
MOD - [2014.04.24 02:33:10 | 004,081,480 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\pdf.dll
MOD - [2014.04.24 02:33:05 | 000,674,632 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\libglesv2.dll
MOD - [2014.04.24 02:33:04 | 000,093,000 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\libegl.dll
MOD - [2014.04.24 02:33:03 | 001,647,432 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\ffmpegsumo.dll
MOD - [2014.04.24 02:33:01 | 000,065,352 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\34.0.1847.131\chrome_elf.dll
MOD - [2009.06.27 10:11:12 | 000,503,202 | ---- | M] () -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\sqlite3.dll


========== Services (SafeList) ==========

SRV:64bit: - [2014.05.04 17:23:01 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2010.04.06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:64bit: - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013.10.23 08:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2010.03.10 10:47:00 | 000,240,232 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009.10.15 14:06:46 | 000,223,464 | ---- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe -- (BCUService)
SRV - [2009.10.13 16:39:46 | 000,114,688 | ---- | M] (Gigabyte Technology CO., LTD.) [Auto | Running] -- C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe -- (Smart TimeLock)
SRV - [2009.06.17 16:13:06 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe -- (DES2 Service)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2014.05.04 17:23:02 | 001,039,096 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014.05.04 17:23:02 | 000,423,240 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2014.05.04 17:23:02 | 000,208,416 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014.05.04 17:23:02 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2014.05.04 17:23:02 | 000,085,328 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2014.05.04 17:23:02 | 000,079,184 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014.05.04 17:23:02 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014.05.04 17:23:02 | 000,029,208 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:64bit: - [2011.09.29 11:30:34 | 000,646,248 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.09.16 09:12:58 | 000,032,360 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtVlan620.sys -- (RTVLANPT)
DRV:64bit: - [2011.06.15 15:11:20 | 000,058,472 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam60.sys -- (TEAM)
DRV:64bit: - [2011.06.15 15:11:20 | 000,058,472 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtTeam60.sys -- (RTTEAMPT)
DRV:64bit: - [2011.06.15 15:11:20 | 000,027,136 | ---- | M] (Realtek ) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\RtNdPt60.sys -- (RtNdPt60)
DRV:64bit: - [2010.11.19 04:34:26 | 000,181,248 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2010.11.19 04:34:26 | 000,080,384 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2010.04.22 15:08:14 | 000,021,544 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2010.01.28 16:25:02 | 000,086,120 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2014.05.08 17:41:32 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2014.05.06 12:36:00 | 000,030,528 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\GVTDrv64.sys -- (GVTDrv64)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-181039827-570088892-3739549760-1000\..\URLSearchHook: {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
IE - HKU\S-1-5-21-181039827-570088892-3739549760-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-181039827-570088892-3739549760-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-181039827-570088892-3739549760-1000\..\SearchScopes\{9DA5B9B0-75F3-4112-8BAA-12AC22CAD3E0}: "URL" = http://uk.search.yahoo.com/search?p={se ... &type=IEBD
IE - HKU\S-1-5-21-181039827-570088892-3739549760-1000\..\SearchScopes\{F37EC077-8695-49c4-8E9A-0A0B96AD4234}: "URL" = http://www.google.com/custom?client=pub ... earchTerms}
IE - HKU\S-1-5-21-181039827-570088892-3739549760-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)



========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Error reading preferences file
CHR - Extension: Dokumenty Google = C:\Users\Pete\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\Pete\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Pete\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhledávání Google = C:\Users\Pete\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Peněženka Google = C:\Users\Pete\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\Pete\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BCU] C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe (DeviceVM, Inc.)
O4 - HKLM..\Run: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETcall.exe ()
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BC83BDEE-3166-474B-B32B-0665C8C365BF}: DhcpNameServer = 192.168.2.1
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014.05.08 19:13:09 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Pete\Desktop\OTL.exe
[2014.05.08 09:23:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\CrystalDiskInfo
[2014.05.08 09:22:41 | 002,773,064 | ---- | C] (Crystal Dew World ) -- C:\Users\Pete\Desktop\CrystalDiskInfo6_1_10-en.exe
[2014.05.06 21:30:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FinalWire
[2014.05.06 21:29:55 | 015,871,712 | ---- | C] (FinalWire Ltd. ) -- C:\Users\Pete\Desktop\aida64extreme430.exe
[2014.05.06 19:11:30 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2014.05.06 19:11:06 | 002,605,400 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2014.05.06 19:11:05 | 001,361,336 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll
[2014.05.06 19:11:05 | 000,836,544 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll
[2014.05.06 19:11:05 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2014.05.06 19:11:05 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2014.05.06 19:11:05 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2014.05.06 19:11:05 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2014.05.06 19:11:05 | 000,148,416 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll
[2014.05.06 19:11:05 | 000,065,944 | ---- | C] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll
[2014.05.06 19:11:03 | 002,674,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2014.05.06 19:11:03 | 001,560,168 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2014.05.06 19:11:03 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2014.05.06 19:11:03 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll
[2014.05.06 19:11:03 | 000,220,776 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\SFSS_APO.dll
[2014.05.06 19:11:03 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2014.05.06 19:11:03 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll
[2014.05.06 19:11:03 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll
[2014.05.06 19:11:03 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll
[2014.05.06 19:11:03 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll
[2014.05.06 19:11:02 | 003,615,888 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2014.05.06 19:11:01 | 007,163,744 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll
[2014.05.06 19:11:01 | 005,096,448 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
[2014.05.06 19:11:01 | 001,345,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek264.dll
[2014.05.06 19:11:01 | 001,262,696 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2014.05.06 19:11:01 | 000,869,520 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2014.05.06 19:11:01 | 000,433,504 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll
[2014.05.06 19:11:01 | 000,396,632 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2014.05.06 19:11:01 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2014.05.06 19:11:01 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2014.05.06 19:11:01 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2014.05.06 19:11:01 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2014.05.06 19:11:01 | 000,141,152 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll
[2014.05.06 19:11:01 | 000,123,744 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll
[2014.05.06 19:11:01 | 000,105,616 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2014.05.06 19:11:01 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2014.05.06 19:11:01 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2014.05.06 19:11:01 | 000,074,592 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll
[2014.05.06 19:11:00 | 008,363,864 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek.dll
[2014.05.06 19:11:00 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2014.05.06 19:11:00 | 001,015,640 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2014.05.06 19:11:00 | 000,341,336 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2014.05.06 19:10:59 | 000,603,984 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll
[2014.05.06 19:10:59 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2014.05.06 19:10:58 | 002,533,952 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2014.05.06 19:10:58 | 001,756,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2014.05.06 19:10:58 | 001,568,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2014.05.06 19:10:58 | 001,486,952 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2014.05.06 19:10:58 | 000,728,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2014.05.06 19:10:58 | 000,712,296 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2014.05.06 19:10:58 | 000,693,352 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2014.05.06 19:10:58 | 000,537,456 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll
[2014.05.06 19:10:58 | 000,524,656 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll
[2014.05.06 19:10:58 | 000,491,112 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2014.05.06 19:10:58 | 000,449,392 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll
[2014.05.06 19:10:58 | 000,432,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2014.05.06 19:10:58 | 000,428,648 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2014.05.06 19:10:58 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2014.05.06 19:10:58 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2014.05.06 19:10:58 | 000,241,768 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2014.05.06 19:10:57 | 000,202,336 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2014.05.06 19:10:57 | 000,108,640 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2014.05.06 19:08:01 | 000,646,248 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2014.05.06 19:04:49 | 000,058,472 | ---- | C] (Realtek Corporation) -- C:\Windows\SysNative\drivers\RtTeam60.sys
[2014.05.06 19:04:49 | 000,032,360 | ---- | C] (Realtek Corporation) -- C:\Windows\SysNative\drivers\RtVlan620.sys
[2014.05.06 19:04:49 | 000,027,136 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\RtNdPt60.sys
[2014.05.06 19:04:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
[2014.05.06 19:03:12 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\InstallShield
[2014.05.06 19:01:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Renesas Electronics
[2014.05.06 19:01:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Renesas Electronics
[2014.05.06 19:00:44 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\usb3
[2014.05.06 19:00:39 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\IRST
[2014.05.06 19:00:20 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\W7
[2014.05.06 19:00:08 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\RTLTOOL
[2014.05.06 19:00:02 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\INFUpdate
[2014.05.06 18:57:38 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\HD_Audio
[2014.05.06 18:56:15 | 005,883,645 | ---- | C] (Igor Pavlov) -- C:\Users\Pete\Desktop\motherboard_driver_usb3.exe
[2014.05.06 18:56:07 | 011,049,074 | ---- | C] (Igor Pavlov) -- C:\Users\Pete\Desktop\motherboard_driver_intel_sataraid_irst.exe
[2014.05.06 18:56:00 | 003,647,566 | ---- | C] (Igor Pavlov) -- C:\Users\Pete\Desktop\motherboard_driver_lan_realtek_8111_w7.exe
[2014.05.06 18:55:48 | 004,295,393 | ---- | C] (Igor Pavlov) -- C:\Users\Pete\Desktop\mb_driver_lan_realtek_rtltool.exe
[2014.05.06 18:55:46 | 001,246,890 | ---- | C] (Igor Pavlov) -- C:\Users\Pete\Desktop\mb_driver_chipset_intel.exe
[2014.05.06 18:47:28 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2014.05.06 17:43:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RADS
[2014.05.06 17:42:25 | 035,411,496 | ---- | C] (Riot Games) -- C:\Users\Pete\Desktop\LeagueofLegends_EUNE_Installer_04_21_14.exe
[2014.05.06 14:16:42 | 232,480,872 | ---- | C] (NVIDIA Corporation) -- C:\Users\Pete\Desktop\335.23-desktop-win8-win7-winvista-64bit-english-whql.exe
[2014.05.06 13:19:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Geeks3D
[2014.05.06 13:19:16 | 003,931,189 | ---- | C] (Geeks3D.com ) -- C:\Users\Pete\Desktop\FurMark_1.9.2.exe
[2014.05.06 13:05:30 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\NVIDIA
[2014.05.06 13:04:06 | 001,643,096 | ---- | C] (techPowerUp (www.techpowerup.com)) -- C:\Users\Pete\Desktop\GPU-Z.0.7.8.exe
[2014.05.06 12:32:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2014.05.06 12:31:07 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2014.05.05 22:33:28 | 000,011,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvBridge.kmd
[2014.05.05 22:33:27 | 006,292,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2014.05.05 22:33:27 | 004,513,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2014.05.05 22:33:27 | 000,064,616 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2014.05.05 22:33:27 | 000,056,424 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2014.05.05 22:33:26 | 021,005,928 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2014.05.05 22:33:26 | 015,235,688 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2014.05.05 22:33:26 | 003,217,000 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvencodemft.dll
[2014.05.05 22:33:26 | 002,908,264 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvencodemft.dll
[2014.05.05 22:33:26 | 000,384,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdecodemft.dll
[2014.05.05 22:33:26 | 000,316,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvdecodemft.dll
[2014.05.05 22:33:25 | 011,913,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2014.05.05 22:33:25 | 009,393,256 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2014.05.05 22:33:25 | 002,893,928 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll
[2014.05.05 22:33:25 | 002,647,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll
[2014.05.05 22:33:25 | 002,106,472 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2014.05.05 22:33:25 | 002,009,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2014.05.05 22:33:24 | 016,061,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll
[2014.05.05 22:33:24 | 011,647,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll
[2014.05.05 22:33:24 | 005,444,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2014.05.05 22:33:24 | 004,029,544 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2014.05.05 22:33:24 | 000,238,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcod199.dll
[2014.05.05 22:33:24 | 000,238,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcod.dll
[2014.05.05 22:33:22 | 001,595,496 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2014.05.05 22:33:22 | 001,299,048 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2014.05.05 22:32:41 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2014.05.05 10:32:40 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2014.05.05 10:32:40 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2014.05.05 10:32:40 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2014.05.05 10:32:40 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2014.05.05 10:32:39 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2014.05.05 10:32:39 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2014.05.05 10:32:38 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2014.05.05 10:32:38 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2014.05.05 10:32:38 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2014.05.05 10:32:38 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2014.05.05 10:32:37 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2014.05.05 10:32:37 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2014.05.05 10:32:36 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2014.05.05 10:32:36 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2014.05.05 10:32:35 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2014.05.05 10:32:35 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2014.05.05 10:32:35 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2014.05.05 10:32:35 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2014.05.05 10:32:35 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2014.05.05 10:32:35 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2014.05.05 10:32:34 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2014.05.05 10:32:34 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2014.05.05 10:32:33 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2014.05.05 10:32:33 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2014.05.05 10:32:33 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2014.05.05 10:32:33 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2014.05.05 10:32:32 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2014.05.05 10:32:32 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2014.05.05 10:32:31 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2014.05.05 10:32:31 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2014.05.05 10:32:31 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2014.05.05 10:32:31 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2014.05.05 10:32:30 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2014.05.05 10:32:30 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2014.05.05 10:32:30 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2014.05.05 10:32:30 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2014.05.05 10:32:29 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2014.05.05 10:32:29 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2014.05.05 10:32:28 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2014.05.05 10:32:28 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2014.05.05 10:32:28 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2014.05.05 10:32:28 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2014.05.05 10:32:28 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2014.05.05 10:32:28 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2014.05.05 10:32:26 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2014.05.05 10:32:26 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2014.05.05 10:32:26 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2014.05.05 10:32:26 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2014.05.05 10:32:26 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2014.05.05 10:32:26 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2014.05.05 10:32:25 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2014.05.05 10:32:25 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2014.05.05 10:32:25 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2014.05.05 10:32:25 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2014.05.05 10:32:25 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2014.05.05 10:32:25 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2014.05.05 10:32:24 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2014.05.05 10:32:24 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2014.05.05 10:32:23 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2014.05.05 10:32:23 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2014.05.05 10:32:23 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2014.05.05 10:32:23 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2014.05.05 10:32:23 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2014.05.05 10:32:23 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2014.05.05 10:32:22 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2014.05.05 10:32:22 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2014.05.05 10:32:22 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2014.05.05 10:32:22 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2014.05.05 10:32:21 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2014.05.05 10:32:21 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2014.05.05 10:32:21 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2014.05.05 10:32:21 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2014.05.05 10:32:20 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2014.05.05 10:32:20 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2014.05.05 10:32:20 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2014.05.05 10:32:20 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2014.05.05 10:32:20 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2014.05.05 10:32:19 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2014.05.05 10:32:19 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2014.05.05 10:32:19 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2014.05.05 10:32:19 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2014.05.05 10:32:18 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2014.05.05 10:32:18 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2014.05.05 10:32:18 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2014.05.05 10:32:18 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2014.05.05 10:32:17 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2014.05.05 10:32:17 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2014.05.05 10:32:16 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2014.05.05 10:32:16 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2014.05.05 10:32:15 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2014.05.05 10:32:15 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2014.05.05 10:32:15 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2014.05.05 10:32:15 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2014.05.05 10:32:14 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2014.05.05 10:32:14 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2014.05.05 10:32:14 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2014.05.05 10:32:14 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2014.05.05 10:32:13 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2014.05.05 10:32:13 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2014.05.05 10:32:12 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2014.05.05 10:32:12 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2014.05.05 10:32:11 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2014.05.05 10:32:11 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2014.05.05 10:32:11 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2014.05.05 10:32:11 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2014.05.05 10:32:10 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2014.05.05 10:32:10 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2014.05.05 10:32:09 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2014.05.05 10:32:09 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2014.05.05 10:32:09 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll

[frajer252]

[2014.05.05 10:32:09 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2014.05.05 10:32:09 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2014.05.05 10:32:09 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2014.05.05 10:32:09 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2014.05.05 10:32:09 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2014.05.05 10:32:08 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2014.05.05 10:32:08 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2014.05.05 10:32:08 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2014.05.05 10:32:08 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2014.05.05 10:32:08 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2014.05.05 10:32:08 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2014.05.05 10:32:08 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2014.05.05 10:32:08 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2014.05.05 10:32:08 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2014.05.05 10:32:08 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2014.05.05 10:32:07 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2014.05.05 10:32:07 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2014.05.05 10:32:07 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2014.05.05 10:32:07 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2014.05.05 10:32:07 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2014.05.05 10:32:07 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2014.05.05 10:32:07 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2014.05.05 10:32:07 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2014.05.05 10:32:07 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2014.05.05 10:32:07 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_3.dll
[2014.05.05 10:32:06 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2014.05.05 10:32:06 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2014.05.05 10:32:06 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2014.05.05 10:32:06 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2014.05.05 10:32:06 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2014.05.05 10:32:06 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2014.05.05 10:32:06 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2014.05.05 10:32:06 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2014.05.05 10:32:05 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2014.05.05 10:32:05 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2014.05.05 10:32:05 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2014.05.05 10:32:05 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2014.05.05 10:32:05 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2014.05.05 10:32:05 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2014.05.05 10:32:04 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2014.05.05 10:32:04 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2014.05.05 10:32:04 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2014.05.05 10:32:04 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2014.05.05 10:32:03 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2014.05.05 10:32:03 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2014.05.05 10:32:03 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2014.05.05 10:32:03 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2014.05.05 10:32:02 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2014.05.05 10:32:02 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2014.05.05 10:32:00 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2014.05.05 10:32:00 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2014.05.05 10:32:00 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2014.05.05 10:32:00 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2014.05.05 10:32:00 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2014.05.05 10:32:00 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2014.05.05 10:31:59 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2014.05.05 10:31:59 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2014.05.05 10:31:59 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2014.05.05 10:31:59 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2014.05.05 10:31:58 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2014.05.05 10:31:58 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2014.05.05 10:31:57 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2014.05.05 10:31:57 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2014.05.05 10:31:56 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2014.05.05 10:31:56 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2014.05.05 10:31:56 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2014.05.05 10:31:56 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2014.05.05 10:29:30 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
[2014.05.05 09:38:11 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\WarThunder
[2014.05.05 09:38:11 | 000,000,000 | ---D | C] -- C:\ProgramData\WarThunder
[2014.05.05 09:37:26 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder
[2014.05.05 09:37:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WarThunder
[2014.05.05 09:37:25 | 000,000,000 | ---D | C] -- C:\Users\Pete\Documents\My Games
[2014.05.05 09:37:07 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\Programs
[2014.05.04 20:34:59 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\WinRAR
[2014.05.04 20:34:52 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014.05.04 20:34:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014.05.04 20:34:40 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2014.05.04 20:29:44 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\Skype
[2014.05.04 20:29:38 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\Skype
[2014.05.04 20:29:34 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2014.05.04 20:29:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014.05.04 20:29:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2014.05.04 20:29:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2014.05.04 20:25:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Config
[2014.05.04 20:24:05 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\LolClient
[2014.05.04 20:24:04 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\Macromedia
[2014.05.04 20:24:03 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\Adobe
[2014.05.04 18:24:35 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\Ipad fotky
[2014.05.04 18:21:08 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\Galaxy S2
[2014.05.04 18:20:34 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\Fotky
[2014.05.04 18:10:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Logs
[2014.05.04 18:08:59 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2014.05.04 18:08:59 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2014.05.04 18:08:59 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2014.05.04 18:08:59 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2014.05.04 18:08:59 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2014.05.04 18:08:21 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
[2014.05.04 18:07:05 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\Filmy
[2014.05.04 18:06:36 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\X 10
[2014.05.04 18:05:22 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\Škola
[2014.05.04 18:05:10 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\Music1
[2014.05.04 18:03:47 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\PMB Files
[2014.05.04 18:03:39 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2014.05.04 18:03:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks
[2014.05.04 17:59:05 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\Riot Games
[2014.05.04 17:57:32 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\Music
[2014.05.04 17:51:49 | 000,000,000 | ---D | C] -- C:\Users\Pete\Desktop\Ipad hry
[2014.05.04 17:28:26 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2014.05.04 17:23:54 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\AVAST Software
[2014.05.04 17:23:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
[2014.05.04 17:23:07 | 000,085,328 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2014.05.04 17:23:06 | 001,039,096 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2014.05.04 17:23:06 | 000,423,240 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2014.05.04 17:23:06 | 000,079,184 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2014.05.04 17:23:05 | 000,093,568 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2014.05.04 17:23:03 | 000,334,648 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2014.05.04 17:23:02 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.05.04 17:22:29 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2014.05.04 17:20:37 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2014.05.04 17:15:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2014.05.04 17:14:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2014.05.04 17:14:49 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\Google
[2014.05.04 17:14:35 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\Apps
[2014.05.04 17:14:34 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\Deployment
[2014.05.04 17:11:07 | 000,025,640 | ---- | C] (Windows (R) Server 2003 DDK provider) -- C:\Windows\gdrv.sys
[2014.05.04 17:09:41 | 000,238,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcohda6.dll
[2014.05.04 17:09:41 | 000,086,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2014.05.04 17:09:41 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2014.05.04 17:09:37 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2014.05.04 17:09:16 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2014.05.04 17:08:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2014.05.04 17:01:49 | 000,214,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vhdmount.dll
[2014.05.04 17:01:49 | 000,069,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vhdmount.dll
[2014.05.04 16:59:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE
[2014.05.04 16:59:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD
[2014.05.04 16:58:25 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallShield
[2014.05.04 16:58:24 | 000,073,728 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\SysWow64\ISUSPM.cpl
[2014.05.04 16:58:24 | 000,000,000 | ---D | C] -- C:\Program Files\GIGABYTE
[2014.05.04 16:58:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GIGABYTE
[2014.05.04 16:57:00 | 000,107,552 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll
[2014.05.04 16:56:47 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2014.05.04 16:56:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2014.05.04 16:56:04 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2014.05.04 16:56:04 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2014.05.04 16:56:03 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2014.05.04 16:55:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2014.05.04 16:55:39 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2014.05.04 16:55:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2014.05.04 16:55:34 | 000,000,000 | ---D | C] -- C:\Intel
[2014.05.04 16:55:26 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\DeviceVM
[2014.05.04 16:48:50 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2014.05.04 16:44:15 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\Diagnostics
[2014.05.04 16:42:11 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\ElevatedDiagnostics
[2014.05.04 16:41:10 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2014.05.04 16:39:24 | 000,000,000 | R--D | C] -- C:\Users\Pete\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014.05.04 16:39:24 | 000,000,000 | R--D | C] -- C:\Users\Pete\Searches
[2014.05.04 16:39:24 | 000,000,000 | R--D | C] -- C:\Users\Pete\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014.05.04 16:39:16 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\Identities
[2014.05.04 16:39:15 | 000,000,000 | R--D | C] -- C:\Users\Pete\Contacts
[2014.05.04 16:39:13 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\VirtualStore
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\AppData\Local\Temporary Internet Files
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Šablony
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Soubory cookie
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\SendTo
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Poslední
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Okolní tiskárny
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Okolní síť
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Documents\Obrázky
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Nabídka Start
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Local Settings
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Documents\Hudba
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\AppData\Local\History
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Documents\Filmy
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Dokumenty
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\Data aplikací
[2014.05.04 16:39:05 | 000,000,000 | -HSD | C] -- C:\Users\Pete\AppData\Local\Data aplikací
[2014.05.04 16:39:04 | 000,000,000 | --SD | C] -- C:\Users\Pete\AppData\Roaming\Microsoft
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\Videos
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\Saved Games
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\Pictures
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\Music
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\Links
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\Favorites
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\Downloads
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\Documents
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\Desktop
[2014.05.04 16:39:04 | 000,000,000 | R--D | C] -- C:\Users\Pete\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014.05.04 16:39:04 | 000,000,000 | -H-D | C] -- C:\Users\Pete\AppData
[2014.05.04 16:39:04 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\Temp
[2014.05.04 16:39:04 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Local\Microsoft
[2014.05.04 16:39:04 | 000,000,000 | ---D | C] -- C:\Users\Pete\AppData\Roaming\Media Center Programs
[2014.05.04 16:38:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2014.05.04 16:38:01 | 000,000,000 | -HSD | C] -- C:\Recovery
[2014.05.04 16:38:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2014.05.04 16:38:01 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2014.05.04 16:38:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Oblíbené položky
[2014.05.04 16:38:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2014.05.04 16:38:01 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2014.05.04 16:38:01 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2014.05.04 16:38:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2014.05.04 16:38:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2014.05.04 16:29:40 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2014.05.04 16:29:09 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014.05.08 19:15:54 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.05.08 19:13:12 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Pete\Desktop\OTL.exe
[2014.05.08 18:28:06 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.05.08 17:48:37 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.05.08 17:48:37 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.05.08 17:47:27 | 001,445,734 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2014.05.08 17:47:27 | 000,622,422 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2014.05.08 17:47:27 | 000,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2014.05.08 17:47:27 | 000,118,604 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2014.05.08 17:47:27 | 000,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2014.05.08 17:41:53 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.05.08 17:41:32 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\Windows\gdrv.sys
[2014.05.08 17:41:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.05.08 17:41:19 | 535,633,919 | -HS- | M] () -- C:\hiberfil.sys
[2014.05.08 09:23:28 | 000,001,186 | ---- | M] () -- C:\Users\Pete\Desktop\CrystalDiskInfo.lnk
[2014.05.08 09:22:45 | 002,773,064 | ---- | M] (Crystal Dew World ) -- C:\Users\Pete\Desktop\CrystalDiskInfo6_1_10-en.exe
[2014.05.06 21:35:28 | 000,232,884 | ---- | M] () -- C:\Users\Pete\Desktop\teplota.jpg
[2014.05.06 21:30:36 | 000,001,175 | ---- | M] () -- C:\Users\Pete\Desktop\AIDA64 Extreme.lnk
[2014.05.06 21:30:03 | 015,871,712 | ---- | M] (FinalWire Ltd. ) -- C:\Users\Pete\Desktop\aida64extreme430.exe
[2014.05.06 19:32:06 | 382,467,067 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2014.05.06 19:18:54 | 000,007,597 | ---- | M] () -- C:\Users\Pete\AppData\Local\Resmon.ResmonCfg
[2014.05.06 18:56:39 | 124,038,686 | ---- | M] () -- C:\Users\Pete\Desktop\mb_driver_audio_realtek_azalia.exe
[2014.05.06 18:56:26 | 005,883,645 | ---- | M] (Igor Pavlov) -- C:\Users\Pete\Desktop\motherboard_driver_usb3.exe
[2014.05.06 18:56:22 | 011,049,074 | ---- | M] (Igor Pavlov) -- C:\Users\Pete\Desktop\motherboard_driver_intel_sataraid_irst.exe
[2014.05.06 18:56:15 | 003,647,566 | ---- | M] (Igor Pavlov) -- C:\Users\Pete\Desktop\motherboard_driver_lan_realtek_8111_w7.exe
[2014.05.06 18:56:07 | 004,295,393 | ---- | M] (Igor Pavlov) -- C:\Users\Pete\Desktop\mb_driver_lan_realtek_rtltool.exe
[2014.05.06 18:56:00 | 001,246,890 | ---- | M] (Igor Pavlov) -- C:\Users\Pete\Desktop\mb_driver_chipset_intel.exe
[2014.05.06 17:43:43 | 000,001,572 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2014.05.06 17:42:32 | 035,411,496 | ---- | M] (Riot Games) -- C:\Users\Pete\Desktop\LeagueofLegends_EUNE_Installer_04_21_14.exe
[2014.05.06 14:17:20 | 232,480,872 | ---- | M] (NVIDIA Corporation) -- C:\Users\Pete\Desktop\335.23-desktop-win8-win7-winvista-64bit-english-whql.exe
[2014.05.06 13:19:56 | 000,001,304 | ---- | M] () -- C:\Users\Pete\Desktop\FurMark.lnk
[2014.05.06 13:19:29 | 003,931,189 | ---- | M] (Geeks3D.com ) -- C:\Users\Pete\Desktop\FurMark_1.9.2.exe
[2014.05.06 13:04:09 | 001,643,096 | ---- | M] (techPowerUp (www.techpowerup.com)) -- C:\Users\Pete\Desktop\GPU-Z.0.7.8.exe
[2014.05.06 12:36:00 | 000,030,528 | ---- | M] () -- C:\Windows\GVTDrv64.sys
[2014.05.06 12:36:00 | 000,000,004 | ---- | M] () -- C:\Windows\SysWow64\GVTunner.ref
[2014.05.05 09:37:26 | 000,001,101 | ---- | M] () -- C:\Users\Public\Desktop\WarThunder.lnk
[2014.05.04 20:29:34 | 000,002,731 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014.05.04 17:23:02 | 001,039,096 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2014.05.04 17:23:02 | 000,423,240 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2014.05.04 17:23:02 | 000,334,648 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2014.05.04 17:23:02 | 000,208,416 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2014.05.04 17:23:02 | 000,093,568 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2014.05.04 17:23:02 | 000,085,328 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2014.05.04 17:23:02 | 000,079,184 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2014.05.04 17:23:02 | 000,065,776 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2014.05.04 17:23:02 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.05.04 17:23:02 | 000,029,208 | ---- | M] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2014.05.04 17:18:14 | 000,000,359 | ---- | M] () -- C:\Users\Pete\Desktop\Počítač.lnk
[2014.05.04 16:53:25 | 000,000,010 | ---- | M] () -- C:\Windows\GSetup.ini
[2014.05.04 16:47:49 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014.05.04 16:31:52 | 000,061,655 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2014.05.04 16:31:52 | 000,061,655 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2014.05.04 16:29:28 | 000,274,736 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2014.04.17 13:44:44 | 000,097,496 | ---- | M] () -- C:\Program Files (x86)\lol.launcher.exe
[2014.04.17 13:44:42 | 000,097,496 | ---- | M] () -- C:\Program Files (x86)\lol.launcher.admin.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014.05.08 19:15:54 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.05.08 09:23:28 | 000,001,186 | ---- | C] () -- C:\Users\Pete\Desktop\CrystalDiskInfo.lnk
[2014.05.06 21:35:28 | 000,232,884 | ---- | C] () -- C:\Users\Pete\Desktop\teplota.jpg
[2014.05.06 21:30:36 | 000,001,175 | ---- | C] () -- C:\Users\Pete\Desktop\AIDA64 Extreme.lnk
[2014.05.06 19:18:54 | 000,007,597 | ---- | C] () -- C:\Users\Pete\AppData\Local\Resmon.ResmonCfg
[2014.05.06 19:11:01 | 000,293,889 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2014.05.06 19:08:01 | 000,074,272 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll
[2014.05.06 18:55:42 | 124,038,686 | ---- | C] () -- C:\Users\Pete\Desktop\mb_driver_audio_realtek_azalia.exe
[2014.05.06 18:47:26 | 382,467,067 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2014.05.06 17:43:43 | 000,001,572 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk
[2014.05.06 13:19:56 | 000,001,304 | ---- | C] () -- C:\Users\Pete\Desktop\FurMark.lnk
[2014.05.05 22:33:28 | 000,009,832 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb
[2014.05.05 09:37:26 | 000,001,101 | ---- | C] () -- C:\Users\Public\Desktop\WarThunder.lnk
[2014.05.04 23:08:35 | 000,000,004 | ---- | C] () -- C:\Windows\SysWow64\GVTunner.ref
[2014.05.04 20:29:34 | 000,002,731 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014.05.04 20:20:19 | 000,030,528 | ---- | C] () -- C:\Windows\GVTDrv64.sys
[2014.05.04 18:05:10 | 013,272,157 | ---- | C] () -- C:\Users\Pete\Desktop\Wiz Khalifa Medicated ft Chevy Woods Juicy J (VIDEO) 2013.mp3
[2014.05.04 18:05:09 | 011,094,877 | ---- | C] () -- C:\Users\Pete\Desktop\Wiz Khalifa 'Paperbond'.mp3
[2014.05.04 18:05:09 | 010,039,837 | ---- | C] () -- C:\Users\Pete\Desktop\william Feelin' Myself f Miley Cyrus, French Montana Wiz Khalifa.mp3
[2014.05.04 18:05:09 | 006,849,757 | ---- | C] () -- C:\Users\Pete\Desktop\Wilkinson Afterglow.mp3
[2014.05.04 18:05:08 | 013,146,397 | ---- | C] () -- C:\Users\Pete\Desktop\The Game Ali Bomaye (Explicit) ft 2 Chainz, Rick Ross.mp3
[2014.05.04 18:05:08 | 008,863,837 | ---- | C] () -- C:\Users\Pete\Desktop\Soulja Boy Hashtag.mp3
[2014.05.04 18:05:08 | 008,259,037 | ---- | C] () -- C:\Users\Pete\Desktop\Soulja Boy Dirty Diana (Official Music Video).mp3
[2014.05.04 18:05:08 | 006,916,957 | ---- | C] () -- C:\Users\Pete\Desktop\Speaker Knockerz Flexin Finessin Shot By @LoudVisuals.mp3
[2014.05.04 18:05:07 | 008,571,037 | ---- | C] () -- C:\Users\Pete\Desktop\Lil Debbie BITCHES Official Video.mp3
[2014.05.04 18:05:07 | 007,836,637 | ---- | C] () -- C:\Users\Pete\Desktop\RiFF RAFF LiL DEBBiE BRAiN FREEZE (Official Music Video).mp3
[2014.05.04 18:05:07 | 007,089,757 | ---- | C] () -- C:\Users\Pete\Desktop\Soulja Boy A Million.mp3
[2014.05.04 18:05:07 | 006,835,357 | ---- | C] () -- C:\Users\Pete\Desktop\Soulja Boy Backseat (Official Music Video).mp3
[2014.05.04 18:05:06 | 017,748,637 | ---- | C] () -- C:\Users\Pete\Desktop\Juicy M 4 CDJs NEW 2014.mp3
[2014.05.04 18:05:06 | 009,282,397 | ---- | C] () -- C:\Users\Pete\Desktop\Kontrafakt Podzemie feat Laris Diam prod Maiky Beatz.mp3
[2014.05.04 18:05:06 | 008,620,957 | ---- | C] () -- C:\Users\Pete\Desktop\Katy Perry Dark Horse (Audio) ft Juicy J.mp3
[2014.05.04 18:05:05 | 011,449,117 | ---- | C] () -- C:\Users\Pete\Desktop\ASAP Ferg Work Remix ft ASAP Rocky, French Montana, Trinidad James SchoolBoy Q (Official Video).mp3
[2014.05.04 18:05:05 | 007,203,997 | ---- | C] () -- C:\Users\Pete\Desktop\'MICHELLE OBAMA' Official Video LiL DEBBiE RiFF RAFF + ATL Twins.mp3
[2014.05.04 17:23:06 | 000,208,416 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2014.05.04 17:23:06 | 000,065,776 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2014.05.04 17:23:06 | 000,029,208 | ---- | C] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2014.05.04 17:18:14 | 000,000,359 | ---- | C] () -- C:\Users\Pete\Desktop\Počítač.lnk
[2014.05.04 17:14:54 | 000,000,948 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014.05.04 17:14:53 | 000,000,944 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014.05.04 17:01:49 | 000,267,264 | ---- | C] () -- C:\Windows\SysNative\CommCmd.dll
[2014.05.04 17:01:49 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\CommCmd.dll
[2014.05.04 16:58:24 | 000,031,272 | ---- | C] () -- C:\Windows\SysNative\AppleChargerSrv.exe
[2014.05.04 16:58:24 | 000,021,544 | ---- | C] () -- C:\Windows\SysNative\drivers\AppleCharger.sys
[2014.05.04 16:55:30 | 000,001,216 | ---- | C] () -- C:\Users\Pete\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Social Games.lnk
[2014.05.04 16:53:25 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2014.05.04 16:47:49 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2014.05.04 16:39:30 | 000,001,409 | ---- | C] () -- C:\Users\Pete\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2014.05.04 16:39:26 | 000,001,443 | ---- | C] () -- C:\Users\Pete\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014.05.04 16:31:39 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2014.05.04 16:31:34 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2014.05.04 16:29:09 | 535,633,919 | -HS- | C] () -- C:\hiberfil.sys
[2014.04.17 13:44:44 | 000,097,496 | ---- | C] () -- C:\Program Files (x86)\lol.launcher.exe
[2014.04.17 13:44:42 | 000,097,496 | ---- | C] () -- C:\Program Files (x86)\lol.launcher.admin.exe

========== ZeroAccess Check ==========

[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2009.07.14 03:41:54 | 014,161,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2009.07.14 03:16:14 | 012,866,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014.05.04 17:23:54 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\AVAST Software
[2014.05.04 20:24:05 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\LolClient
[2014.05.04 18:02:58 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\Riot Games

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,007,674 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2014.05.04 17:14:53 | 000,000,944 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2014.05.04 17:14:54 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< >

< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\SysWOW64\autochk.exe
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\SysNative\autochk.exe
[2009.07.14 03:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\drivers\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[2009.07.14 01:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\SysWOW64\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\5d9cd041-81b9-4d36-b00a-32f703a22af0\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\explorer.exe
[2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe

< MD5 for: HAL.DLL >
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\SysNative\hal.dll
[2009.07.14 03:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll

< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\SysNative\scecli.dll
[2009.07.14 03:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll

< MD5 for: SERVICES.EXE >
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\e8a3d3e0-cccf-4646-9c13-e50a136077c6\services.exe

< MD5 for: SVCHOST.EXE >
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\55b32443-62e4-48aa-80d7-f3efae2eec1d\svchost.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\66b249ba-e92a-4939-84ba-c35899252489\svchost.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\69a1352b-13ab-4633-ab99-25f2968714d8\svchost.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\997a61a5-fc28-43dd-8476-b47b99d05717\svchost.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\9d776a38-c50e-4016-a9ae-a31cd5719234\svchost.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\ad67cb34-b01b-438e-93be-79afd14c9b0a\svchost.exe
[2014.05.06 12:18:08 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\bd5a7b53-8d7b-4112-8a99-4f32329f4d55\svchost.exe
[2014.05.06 12:18:08 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\c40dddfb-507d-4a41-b6d2-e20a329121de\svchost.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\cce743dd-1284-44df-9be6-8e1021352692\svchost.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\d7633577-a444-4e00-ba96-bdc9d098ffc0\svchost.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\e4d2cbf2-4f78-42ee-80fb-5833316ed5b7\svchost.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\f287c773-2a56-46b0-8dc2-7f9789fcfcd2\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\SysNative\drivers\tcpip.sys
[2009.07.14 03:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys

< MD5 for: USERINIT.EXE >
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
[2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\SysNative\winlogon.exe
[2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2014.05.06 12:18:07 | 000,068,384 | ---- | M] () MD5=27A9730A7AE1E6283CCFCE09E6F34F09 -- C:\Windows\Temp\44264c5f-8dab-44f2-812c-29b016383d90\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[11 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014.05.04 20:24:03 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\Adobe
[2014.05.04 17:23:54 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\AVAST Software
[2014.05.04 16:39:16 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\Identities
[2014.05.06 19:03:12 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\InstallShield
[2014.05.04 20:24:05 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\LolClient
[2014.05.04 20:24:04 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\Macromedia
[2009.07.14 17:36:38 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\Media Center Programs
[2014.05.08 09:19:14 | 000,000,000 | --SD | M] -- C:\Users\Pete\AppData\Roaming\Microsoft
[2014.05.06 13:05:30 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\NVIDIA
[2014.05.04 18:02:58 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\Riot Games
[2014.05.08 19:15:59 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\Skype
[2014.05.04 20:34:59 | 000,000,000 | ---D | M] -- C:\Users\Pete\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2014.05.06 17:44:32 | 000,528,392 | ---- | M] (Microsoft Corporation) -- C:\Users\Pete\AppData\Roaming\Riot Games\League of Legends\prerequisites\DXSETUP.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2014.05.08 17:41:53 | 000,000,944 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2014.05.08 18:28:06 | 000,000,948 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2014.05.06 12:36:00 | 000,000,004 | ---- | M] () -- C:\Windows\system32\GVTunner.ref

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ISUSPM Startup" = C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup -- [2005.02.17 07:15:22 | 000,221,184 | ---- | M] (InstallShield Software Corporation)
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009.07.14 03:39:41 | 001,475,072 | ---- | M] (Microsoft Corporation)
"Skype" = "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun -- [2014.02.10 17:46:14 | 020,922,016 | R--- | M] (Skype Technologies S.A.)

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2009.07.14 03:17:29 | 000,673,048 | ---- | M] (Microsoft Corporation) MD5=2C32E3E596CFE660353753EABEFB0540 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2014.04.24 02:33:15 | 000,841,032 | ---- | M] (Google Inc.) MD5=542459D16B416D054161007FC9B1246E -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.05.08 19:15:54 | 000,000,512 | ---- | M] () MD5=016AB3DED51EB11A795619DCA19D5F75 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2013.06.21 21:47:42 | 045,675,523 | ---- | M] () -- \Users\Pete\Desktop\Galaxy S2\hry\Bejeweled 2 v2.0.20 [Cracked by Normad21].apk
[2011.11.10 21:43:20 | 005,135,447 | ---- | M] () -- \Users\Pete\Desktop\Galaxy S2\Karta\Music\Freestylers Cracks (Flux Pavilion Remix).mp3
[2013.02.09 17:54:40 | 619,238,109 | ---- | M] () -- \Users\Pete\Desktop\Ipad hry\Need for Speed Most Wanted (v1.0.0)-[CrackLords]-B_H.ipa
[2011.09.29 07:22:05 | 005,135,447 | ---- | M] () -- \Users\Pete\Desktop\Music\Freestylers Cracks (Flux Pavilion Remix).mp3
[2013.09.06 13:22:16 | 004,367,296 | ---- | M] () -- \Users\Pete\Desktop\Music\Igor-Mazafaka\26 IGOR - Crack [Mazafaka mixtape].mp3
[2005.05.31 00:00:00 | 005,151,999 | ---- | M] () -- \Users\Pete\Desktop\Music\johny dub\Freestylers - Cracks (Flux Pavilion Remix).mp3
[2011.01.29 16:12:06 | 007,081,933 | ---- | M] () -- \Users\Pete\Desktop\Music\MUSIC\dj zinc 'nexx' crack house vol 2 2010.mp3
[2009.04.19 17:08:46 | 006,372,990 | ---- | M] () -- \Users\Pete\Desktop\Music\MUSIC\eminem-crack_a_bottle-(feat-dr_dre_and_50_cent)-(dubcnn).mp3
[2012.05.03 20:10:55 | 005,151,999 | ---- | M] () -- \Users\Pete\Desktop\Music\UKF Dubstep 2009-2011\Freestylers - Cracks (Flux Pavilion Remix).mp3

< *keygen* /s >

< *loader* /s >
[2010.01.29 06:43:52 | 000,071,008 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2010.01.29 06:54:10 | 000,073,568 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2014.05.06 17:48:07 | 000,000,404 | ---- | M] () -- \Program Files (x86)\RADS\projects\lol_air_client\releases\0.0.1.83\deploy\assets\storeImages\layout\small_loader.gif
[2014.05.04 17:23:01 | 000,072,480 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2014.05.04 17:23:01 | 000,085,888 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader64.exe
[2013.12.01 14:09:05 | 000,061,528 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2014.05.06 17:33:13 | 000,001,870 | ---- | M] () -- \Users\Pete\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0AOME8C7\AdLoader[1].htm
[2014.05.08 17:44:14 | 000,001,870 | ---- | M] () -- \Users\Pete\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\665N73XE\AdLoader[1].htm
[2014.05.07 14:45:13 | 000,112,122 | ---- | M] () -- \Users\Pete\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GECZVV82\AdLoader-7b473315d0084c71df83cdee72aab144.min[1].js
[2014.05.08 08:57:13 | 000,001,870 | ---- | M] () -- \Users\Pete\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YZ88ZFYC\AdLoader[1].htm
[2014.01.28 19:35:56 | 000,072,638 | ---- | M] () -- \Users\Pete\AppData\Local\Skype\Apps\login\images\loader.gif
[2014.01.28 19:35:56 | 000,003,032 | ---- | M] () -- \Users\Pete\AppData\Local\Skype\Apps\login\images\loader.png
[2014.01.28 19:35:56 | 000,006,012 | ---- | M] () -- \Users\Pete\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.01.28 19:35:56 | 000,021,956 | ---- | M] () -- \Users\Pete\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.01.28 19:35:56 | 000,009,772 | ---- | M] () -- \Users\Pete\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2009.07.14 14:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 17:17:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 17:17:49 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.14 17:17:49 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.14 17:17:49 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.14 17:17:49 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 04:58:45 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:58:45 | 000,641,088 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.efi_75834aa0
[2009.07.14 04:58:45 | 000,604,192 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winload.exe_75835076
[2009.07.14 04:58:45 | 000,557,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.efi_85cd069f
[2009.07.14 04:58:45 | 000,518,352 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.14 17:15:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 04:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll

< End of report >

[frajer252]

Tady je druhý:


OTL Extras logfile created on: 8.5.2014 19:14:49 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pete\Desktop
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

6,00 Gb Total Physical Memory | 4,14 Gb Available Physical Memory | 69,06% Memory free
12,00 Gb Paging File | 9,85 Gb Available in Paging File | 82,08% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 830,53 Gb Free Space | 89,17% Space Free | Partition Type: NTFS

Computer Name: PC | User Name: Pete | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-181039827-570088892-3739549760-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{12EBA55D-B407-4E98-AF00-0AC9F953C6D7}" = lport=57384 | protocol=17 | dir=in | name=pando media booster |
"{16481360-9DCF-4CAE-A429-56CC255C405C}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{1AC63653-24B5-4742-98C2-0F503B5FA296}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1B407D45-0CD0-4901-BB4C-6840EFA8377C}" = lport=57384 | protocol=6 | dir=in | name=pando media booster |
"{20BC6581-A041-4162-B901-18E3AC33C62F}" = rport=138 | protocol=17 | dir=out | app=system |
"{279EB6B9-636A-480E-8977-2A7602D63E4B}" = lport=57384 | protocol=6 | dir=in | name=pando media booster |
"{33C1A01E-D8CC-41AE-9519-13EE318AF012}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{34670977-B2AD-419B-BF10-21EE9E92A48C}" = lport=445 | protocol=6 | dir=in | app=system |
"{3D591636-959A-4029-A01B-A9B607E97EFB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{3F8E42F1-7B08-4F37-A2E1-A2DAD21E9FDA}" = lport=138 | protocol=17 | dir=in | app=system |
"{466E6620-E538-43FC-8C61-193EF6CB4C0B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{4C841A62-89CB-4D02-B498-8DFA84007458}" = rport=10243 | protocol=6 | dir=out | app=system |
"{4ED2B638-2C7E-481B-ABCE-AD3E58D1C069}" = lport=7852 | protocol=6 | dir=in | name=war thunder |
"{517CF066-95CC-4DF1-B937-6A625B362861}" = lport=10243 | protocol=6 | dir=in | app=system |
"{520E875B-2CA0-431F-BB4A-76184BF0F922}" = rport=137 | protocol=17 | dir=out | app=system |
"{53DA3F25-7610-4FCD-BFF8-1D8F96B39D95}" = lport=7853 | protocol=6 | dir=in | name=war thunder |
"{5477A6B8-4998-48CD-87C0-BF751406A3A2}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5A01ACE7-94FD-40E3-895A-F44C3ADFBE13}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{617458BB-FEEF-4E7B-B4AE-EA37CA8A8F0A}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{686BF337-D74E-4273-9172-5E4997C13FD4}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{728BD6F4-696D-414A-98B7-A816C8D34729}" = rport=139 | protocol=6 | dir=out | app=system |
"{741B7DEE-27CA-4414-8396-E78EDAFE5CD1}" = lport=139 | protocol=6 | dir=in | app=system |
"{747881EE-F667-4F71-B507-12BF12E56442}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{77439324-5D25-4C96-9B3D-8131242F60E7}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{7881644D-FC83-437E-9B3F-A062DB4AD939}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8191ED2C-98E2-43C5-9AAB-A8741DAF3343}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8DFFA553-F44A-4DEA-B79B-5BFB1789D036}" = rport=445 | protocol=6 | dir=out | app=system |
"{93545622-48E5-4E70-B64B-606F6E86F6F7}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9A616251-BACE-4451-B147-C2BCB45AC6C7}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{B17D07E8-7856-4378-998E-2324680F83B0}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B1F3C7AB-B53A-41DC-A37A-4685F91F22EE}" = lport=57384 | protocol=17 | dir=in | name=pando media booster |
"{BB23B8F0-2FEA-4AA7-A3EE-22346D9E3CD6}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C50515F6-B871-4784-98D9-257E42659BC7}" = lport=137 | protocol=17 | dir=in | app=system |
"{C7AEB6DB-F190-4552-B6B1-6193CD003E9F}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{D7B6A5E8-3F90-49AC-89B8-2BC89D4E82D3}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{DACD40E4-CDD9-4925-A1D1-6A9CBD807685}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DFE8972D-CAE0-4A74-84E7-D4DB632CA1FE}" = lport=27022 | protocol=6 | dir=in | name=war thunder |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{04BEFCCF-A8F0-4DA7-B8B2-CFC24A384EE3}" = protocol=17 | dir=in | app=c:\program files (x86)\warthunder\launcher.exe |
"{059B8828-5F87-4668-B326-3C4C0642FA53}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{098F6BA1-28A8-4CE4-8460-7FB26D5AB2E5}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{0A7F80E0-7AB2-4816-BD10-8F3E2D60A4C1}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{10A09994-4460-4007-92D5-CFA577242A92}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{30F8BB6E-4050-4ABC-A13B-3EA901C159D4}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{345636CA-6807-4552-A110-B14C2B32B741}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{36F19FB4-FC72-4EC8-84E9-FEA584F15D84}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{44390490-1827-4966-A014-3A678FEC36DA}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{5000C44C-A178-427A-8ABD-9174010ED5D4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{52FB0055-3D1D-4E39-A941-AB8996DE5D4A}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{5DAD2103-7033-4C68-8490-FC33CA8C0059}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{6C6879E9-009F-4960-8F37-B933FCDB53DA}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8AE15197-9AC7-4943-973B-4B11D82E805F}" = protocol=6 | dir=out | app=system |
"{9BA03E07-26DB-4A3D-B810-EE333D3CF24A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A78B6081-D824-4593-B92E-148ADB3A8DB2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{AD6C4D87-BBF6-4176-AB54-047602163DA0}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{ADDD4967-1941-45CD-BB94-983037E85EDA}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{B66593BD-DE82-4FC8-A9F1-AE9140EDD50F}" = protocol=6 | dir=in | app=c:\program files (x86)\warthunder\launcher.exe |
"{C0AAE98A-30A8-4403-B835-C39FEF9B4262}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{C6C87A78-E1A7-4FCD-8B7E-8767DCB4028F}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{D09124E9-3977-400D-8566-6EE5767512B4}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D298E37A-2372-4738-87E7-60D518B813C0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{D559640A-EB01-4D07-80E2-D1A3B0603A4F}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D5CCEFAD-F563-4166-A728-2F5B981BB70E}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E5BC27C1-7BC2-4EA8-8DB1-6B75C9EF84FA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{EA6B4977-927C-441F-800A-ECEB58062283}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"TCP Query User{06FC1535-56CC-4841-8FBA-68CE22743470}C:\program files (x86)\warthunder\aces.exe" = protocol=6 | dir=in | app=c:\program files (x86)\warthunder\aces.exe |
"UDP Query User{5B3F4DC8-BA2B-49B1-A44B-3461680CB363}C:\program files (x86)\warthunder\aces.exe" = protocol=17 | dir=in | app=c:\program files (x86)\warthunder\aces.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable (x64)
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"WinRAR archiver" = WinRAR 5.01 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D.com FurMark 1.9.2
"{3B35725F-C623-4A1E-B5CC-99C0868679E3}" = Smart 6 B10.0422.1
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0422.2
"{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.0420.1
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{675F86A8-E093-4002-87D5-915CC2C45571}" = DES 2.0
"{6B84E528-9705-4D36-9C97-97B8E23DAB75}" = League of Legends
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.14
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}" = Browser Configuration Utility
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}" = @BIOS Ver.2.06
"{C75FAD21-EC08-42F3-92D6-C9C0AB355345}" = AutoGreen B09.1014.2
"{DADC7AB0-E554-4705-9F6A-83EA82ED708E}" = Realtek Ethernet Diagnostic Utility
"{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
"{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1" = War Thunder Launcher 1.0.1.355
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"AIDA64 Extreme_is1" = AIDA64 Extreme v4.30
"Avast" = avast! Free Antivirus
"CrystalDiskInfo_is1" = CrystalDiskInfo 6.1.10
"Google Chrome" = Google Chrome
"InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}" = Easy Tune 6 B10.0420.1
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}" = AutoGreen B09.1014.2
"League of Legends 3.0.1" = League of Legends
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5.5.2014 8:32:54 | Computer Name = PC | Source = VSS | ID = 8194
Description =

Error - 5.5.2014 17:07:11 | Computer Name = PC | Source = VSS | ID = 8194
Description =

Error - 5.5.2014 18:03:17 | Computer Name = PC | Source = VSS | ID = 8194
Description =

Error - 6.5.2014 7:03:47 | Computer Name = PC | Source = VSS | ID = 8194
Description =

Error - 6.5.2014 7:46:03 | Computer Name = PC | Source = VSS | ID = 8194
Description =

Error - 6.5.2014 14:02:17 | Computer Name = PC | Source = VSS | ID = 8194
Description =

Error - 6.5.2014 14:57:29 | Computer Name = PC | Source = VSS | ID = 8194
Description =

Error - 7.5.2014 9:10:53 | Computer Name = PC | Source = VSS | ID = 8194
Description =

Error - 8.5.2014 2:50:49 | Computer Name = PC | Source = VSS | ID = 8194
Description =

Error - 8.5.2014 12:11:35 | Computer Name = PC | Source = VSS | ID = 8194
Description =

[ System Events ]
Error - 6.5.2014 13:09:24 | Computer Name = PC | Source = Service Control Manager | ID = 7016
Description = Služba NVIDIA Stereoscopic 3D Driver Service ohlásila neplatný současný
stav 0.

Error - 6.5.2014 13:11:52 | Computer Name = PC | Source = Service Control Manager | ID = 7016
Description = Služba NVIDIA Stereoscopic 3D Driver Service ohlásila neplatný současný
stav 0.

Error - 6.5.2014 13:32:09 | Computer Name = PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (19:30:30, ?6.?5.?2014) bylo neočekávané.

Error - 6.5.2014 13:32:12 | Computer Name = PC | Source = BugCheck | ID = 1005
Description =

Error - 6.5.2014 13:32:12 | Computer Name = PC | Source = BugCheck | ID = 1001
Description =

Error - 6.5.2014 14:27:20 | Computer Name = PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (20:26:03, ?6.?5.?2014) bylo neočekávané.

Error - 6.5.2014 16:10:47 | Computer Name = PC | Source = Microsoft-Windows-Kernel-General | ID = 5
Description =

Error - 6.5.2014 17:12:50 | Computer Name = PC | Source = Service Control Manager | ID = 7016
Description = Služba NVIDIA Stereoscopic 3D Driver Service ohlásila neplatný současný
stav 0.

Error - 8.5.2014 2:20:39 | Computer Name = PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (8:00:38, ?8.?5.?2014) bylo neočekávané.

Error - 8.5.2014 8:18:49 | Computer Name = PC | Source = Service Control Manager | ID = 7016
Description = Služba NVIDIA Stereoscopic 3D Driver Service ohlásila neplatný současný
stav 0.


< End of report >

[Rudy]

To, že je váš oper. systém legální, vykládejte někomu jinému.