OTL logfile created on: 2013-12-03 22:43:46 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\XxX\Downloads Starter Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,13 Gb Available Physical Memory | 56,61% Memory free 6,93 Gb Paging File | 5,80 Gb Available in Paging File | 83,73% Paging File free Paging file location(s): c:\pagefile.sys 0 0d:\pagefile.sys 3000 7000 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 48,73 Gb Total Space | 11,75 Gb Free Space | 24,11% Space Free | Partition Type: NTFS Drive D: | 416,93 Gb Total Space | 379,60 Gb Free Space | 91,05% Space Free | Partition Type: NTFS Drive J: | 7,04 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: ZOMBISKO | User Name: XxX | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-12-03 22:43:10 | 001,092,545 | ---- | M] (Farbar) -- C:\Users\XxX\Downloads\FRST.exe PRC - [2013-12-03 22:42:51 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\XxX\Downloads\OTL.exe PRC - [2013-12-03 15:18:36 | 001,862,536 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe PRC - [2013-12-02 19:57:30 | 001,142,864 | ---- | M] (BitTorrent Inc.) -- C:\Users\XxX\AppData\Roaming\uTorrent\uTorrent.exe PRC - [2013-11-22 12:36:18 | 000,105,448 | ---- | M] (Razer Inc.) -- C:\Program Files\Razer\Razer Game Booster\RzKLService.exe PRC - [2013-11-13 04:39:05 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2013-11-12 15:10:00 | 003,993,072 | ---- | M] () -- C:\Program Files\fst_pl_7\fst_pl_7.exe PRC - [2013-11-12 15:10:00 | 003,154,416 | ---- | M] () -- C:\Users\XxX\AppData\Local\fst_pl_7\upfst_pl_7.exe PRC - [2013-11-11 15:37:46 | 001,616,208 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe PRC - [2013-10-11 11:51:12 | 000,375,056 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe PRC - [2013-10-08 09:33:08 | 000,276,992 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe PRC - [2013-07-21 19:05:36 | 000,073,728 | ---- | M] (Sa14QgNs5j) -- C:\Users\XxX\AppData\Roaming\explore.exe PRC - [2013-04-30 04:53:00 | 000,453,632 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe PRC - [2013-04-30 04:52:26 | 000,217,088 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe PRC - [2012-11-16 14:59:54 | 000,393,216 | ---- | M] (AMD) -- C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe PRC - [2009-10-31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2009-07-14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-12-03 15:18:36 | 016,237,448 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_9_900_152.dll MOD - [2013-12-03 04:02:15 | 001,670,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\a97f4e39d47dc3d5098150a8b14a9662\Microsoft.VisualBasic.ni.dll MOD - [2013-12-03 03:53:16 | 012,433,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\05682429807d34d6ff05a77ea153935f\System.Windows.Forms.ni.dll MOD - [2013-12-03 03:53:04 | 001,592,832 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\e2ee5d77ebe0bd025e7a7a317a43d677\System.Drawing.ni.dll MOD - [2013-12-03 03:52:57 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\10aba2c167cc1119b80159fd9ac71ca8\System.Xml.ni.dll MOD - [2013-12-03 03:52:52 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\96a3b737db1e72adaf32d2b350e50c23\System.Configuration.ni.dll MOD - [2013-12-03 03:52:27 | 007,974,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c54750e64ba10d0fb7b6a636fb3695ca\System.ni.dll MOD - [2013-12-03 03:52:10 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b0b8554c05f194f546a8ed531320760b\mscorlib.ni.dll MOD - [2013-12-02 21:42:12 | 000,229,888 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\ResourceMan446ca0e5#\116019f3c5a38e98269c2fa56d04e08d\ResourceManagement.Foundation.Implementation.ni.dll MOD - [2013-12-02 21:42:11 | 000,313,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\MOM.Implementation\20e1ce3cdab5e28369dd9d8271a2f0de\MOM.Implementation.ni.dll MOD - [2013-12-02 21:42:11 | 000,015,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\MOM\e1dc887ed5806c9f511d5bf97dfda27f\MOM.ni.exe MOD - [2013-12-02 21:42:10 | 000,220,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\LOG.Foundat03490438#\ba24a93a60c8d8841656b47247e99f51\LOG.Foundation.Implementation.ni.dll MOD - [2013-12-02 21:42:04 | 000,049,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Foundat60cdf5df#\07fc0ecc20017bc105e17f8ce89389f1\CLI.Foundation.XManifest.ni.dll MOD - [2013-12-02 21:42:03 | 000,785,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Compone26c9c557#\64296bcc487f3dd52e63481c9e6459e2\CLI.Component.Systemtray.ni.dll MOD - [2013-12-02 21:31:49 | 000,186,368 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Compone6692ca50#\e9d5a3a5ea358c4c62215113c921070e\CLI.Component.Runtime.ni.dll MOD - [2013-12-02 21:31:49 | 000,095,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\ATICCCom\06d6302900e2cdba3377b14b73462605\ATICCCom.ni.dll MOD - [2013-12-02 21:31:49 | 000,016,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Componeb4d0485c#\e16ea8ad296f8ef33316c9379d7fe45f\CLI.Component.Runtime.Extension.EEU.ni.dll MOD - [2013-12-02 21:31:45 | 000,146,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Compone29e547cc#\7e31285ed7228939322cb9011a5ae4d2\CLI.Component.Dashboard.ProfileManager2.ni.dll MOD - [2013-12-02 21:31:44 | 000,758,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Compone6bf88b08#\1bbd1e61d9bda6b95f1a4fe792a5e912\CLI.Component.Dashboard.ni.dll MOD - [2013-12-02 21:31:42 | 000,143,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Combine930f827b#\e4345627f9c8354206d5f9ccc244a2a7\CLI.Combined.HydraVision.Aspects.Runtime.ni.dll MOD - [2013-12-02 21:31:42 | 000,038,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.382a3def#\8ab3852c79bc5532b3b1817d95ba2ca4\CLI.Aspect.AMDOverDrive.Platform.Shared.ni.dll MOD - [2013-12-02 21:31:37 | 000,279,552 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Combinee84f0351#\bfffda4c016c7ef8cc0fdb89247888c6\CLI.Combined.Fusion.Aspects.Runtime.ni.dll MOD - [2013-12-02 21:31:36 | 000,038,912 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Pdb36d56e#\eb51cf5c00e60fa31db70a16c580089a\CLI.Caste.Platform.Runtime.ni.dll MOD - [2013-12-02 21:31:35 | 000,039,936 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.H18c99613#\0aaafb43d05215214b80dfa7fd136291\CLI.Caste.HydraVision.Runtime.ni.dll MOD - [2013-12-02 21:31:35 | 000,026,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Pac40511b#\bf0d372077f71febfc3b93ea5ca8f0b5\CLI.Caste.Platform.Shared.ni.dll MOD - [2013-12-02 21:31:35 | 000,023,040 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Pfeefa2b6#\e93b7d896aefd5bc28776d6e756447f1\CLI.Caste.Platform.Dashboard.ni.dll MOD - [2013-12-02 21:31:34 | 000,026,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.H92ba4e46#\ba20d2860a356c3b382edf1b9175190e\CLI.Caste.HydraVision.Shared.ni.dll MOD - [2013-12-02 21:31:34 | 000,025,088 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Hbb906c0b#\9e45b7425b781bf9f7fc4c2f3b3be2b9\CLI.Caste.HydraVision.Dashboard.ni.dll MOD - [2013-12-02 21:31:33 | 002,147,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.G962aa464#\1b47786201400525ec94a351e5ed6c6c\CLI.Caste.Graphics.Runtime.ni.dll MOD - [2013-12-02 21:31:30 | 000,234,496 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.F36b07a2b#\1781e0e6de38b08510774afd3da21546\CLI.Caste.Fuel.Runtime.ni.dll MOD - [2013-12-02 21:31:30 | 000,033,280 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Fuel.Foundation\3eeaa301b63cb6eed7858e4930dcafc8\Fuel.Foundation.ni.dll MOD - [2013-12-02 21:31:29 | 000,047,104 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.A4.Runtime\9a0ca098aa59375da5344231a6d7b61b\CLI.Caste.A4.Runtime.ni.dll MOD - [2013-12-02 21:31:29 | 000,026,112 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Ff3085433#\83e27dc87c63221e21946506967b2b53\CLI.Caste.Fuel.Dashboard.ni.dll MOD - [2013-12-02 21:31:28 | 000,026,112 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Af820fedc#\5992de9c9d9216184da34476834772d6\CLI.Caste.A4.Dashboard.ni.dll MOD - [2013-12-02 21:31:26 | 000,063,488 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.648b65fc#\d75ce96cad2d8ba9405d179c5e8e4df5\CLI.Aspect.WiFi.Fuel.Dashboard.ni.dll MOD - [2013-12-02 21:31:26 | 000,021,504 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.c2a2b491#\8678e7eddac4c5fda9a3a4ab7d3ae8e6\CLI.Aspect.WiFi.Fuel.Shared.ni.dll MOD - [2013-12-02 21:31:25 | 001,306,112 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.d7e090dc#\3ebae682f66e9af00e832caebe73634a\CLI.Aspect.User.Fuel.Dashboard.ni.dll MOD - [2013-12-02 21:31:22 | 000,048,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.fdcb645d#\2042f1083bc1b4ccec372de1fd6cc84c\CLI.Aspect.Settings.HydraVision.Shared.ni.dll MOD - [2013-12-02 21:31:14 | 000,249,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.c7aaa0f8#\822e9e055873171cc5c9312dfed55cdd\CLI.Aspect.OverDrive5.Graphics.Shared.ni.dll MOD - [2013-12-02 21:31:10 | 000,043,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.dd2ab3e8#\074e08a72073394084d41edcefbf857b\CLI.Aspect.MultiDesk.HydraVision.Shared.ni.dll MOD - [2013-12-02 21:31:08 | 000,035,328 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.5432938c#\899f1afb5ecfa61f306d2354601e5a8c\CLI.Aspect.MDProp.HydraVision.Shared.ni.dll MOD - [2013-12-02 21:31:06 | 000,034,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.bdcffe00#\fdf60e66825f5454c273c16969d8b1f7\CLI.Aspect.Grid.HydraVision.Shared.ni.dll MOD - [2013-12-02 20:15:36 | 000,086,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.5a772e69#\833e501a27f959bc89399b8a7317912a\CLI.Aspect.Fets.Fuel.Dashboard.ni.dll MOD - [2013-12-02 20:15:36 | 000,064,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.caa5cc64#\171049abf991bdb556295fda902bf1c3\CLI.Aspect.Fets.Fuel.Shared.ni.dll MOD - [2013-12-02 20:15:35 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0709\253b35fe821a31984d3f64171549a3bc\DEM.Graphics.I0709.ni.dll MOD - [2013-12-02 20:15:33 | 000,132,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.4ede500c#\ebe415eb850f3b766ebc503756a63472\CLI.Aspect.DPPE.Fuel.Dashboard.ni.dll MOD - [2013-12-02 20:15:33 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.f45bd021#\742e72316c514c7abf28ba3c6a4fa056\CLI.Aspect.DPPE.Fuel.Shared.ni.dll MOD - [2013-12-02 20:15:27 | 000,041,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.20568423#\7cdc699a008c2758b41e31d342908434\CLI.Aspect.DeskMan.HydraVision.Shared.ni.dll MOD - [2013-12-02 20:15:24 | 000,127,488 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.2042675f#\d9b53c6a71bd07ca94711913b2f28d03\CLI.Aspect.CPUPStates.Fuel.Dashboard.ni.dll MOD - [2013-12-02 20:15:24 | 000,058,368 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Aspect.efd83192#\49537536934f5d199056db5ac52d4781\CLI.Aspect.CPUPStates.Fuel.Shared.ni.dll MOD - [2013-12-02 20:15:24 | 000,038,912 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.F24de14fe#\7accb382407533d805a67155f814fa61\CLI.Caste.Fuel.Shared.ni.dll MOD - [2013-12-02 20:15:23 | 000,384,512 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Gee7d2dbc#\b792af6093b1cb3d5d785172a02aaa1d\CLI.Caste.Graphics.Dashboard.ni.dll MOD - [2013-12-02 20:15:21 | 001,445,888 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.Gd9d9b43b#\687a528886031bf2c602e17fa54c15f9\CLI.Caste.Graphics.Dashboard.Shared.ni.dll MOD - [2013-12-02 20:15:19 | 000,125,952 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Compone59f353b4#\e4369396be5db1567b6d0272e618b884\CLI.Component.Runtime.Shared.Private.ni.dll MOD - [2013-12-02 20:15:19 | 000,038,912 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.A4.Shared\5ba416feced8a9a62a2b11c4583488a6\CLI.Caste.A4.Shared.ni.dll MOD - [2013-12-02 20:15:18 | 001,940,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Wfbf9373c#\04ef982d88688b38146df24dedec1388\Microsoft.WindowsAPICodePack.Shell.ni.dll MOD - [2013-12-02 20:15:16 | 000,269,824 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.W8090224c#\f1212a48b8d15a99d14723b0ad3e4118\Microsoft.WindowsAPICodePack.ni.dll MOD - [2013-12-02 20:15:15 | 000,747,008 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Foundatd3771151#\626218a163c606754b76621fa8d79121\CLI.Foundation.Client.ni.dll MOD - [2013-12-02 20:15:14 | 000,113,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Compone168638d1#\731d8e5f81c640f9c05531b0d5ec8eb5\CLI.Component.Client.Shared.Private.ni.dll MOD - [2013-12-02 20:15:14 | 000,071,680 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Componef4cf054f#\e39444b3039a5c8d64b4d55a64f60384\CLI.Component.Dashboard.Shared.ni.dll MOD - [2013-12-02 20:15:14 | 000,023,040 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\ResourceManf163905a#\0bbb84d560ea15c1f06291143f6bad99\ResourceManagement.Foundation.Private.ni.dll MOD - [2013-12-02 20:15:14 | 000,019,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Componef1fd67b2#\ff92e6ea36a4be9c13c7a5dca98a44dc\CLI.Component.Client.Shared.ni.dll MOD - [2013-12-02 20:15:13 | 001,565,696 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Componec89c3bec#\71e016928cd2a6c44851ae0cf078e2dc\CLI.Component.Dashboard.Shared.Private.ni.dll MOD - [2013-12-02 20:15:12 | 000,062,976 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\LOG.Foundatcaafa75b#\664b03d8615c6428074bff1818299377\LOG.Foundation.Implementation.Private.ni.dll MOD - [2013-12-02 20:15:12 | 000,012,288 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\MOM.Foundation\49b19afaf5763da83113e0bcdd2155c5\MOM.Foundation.ni.dll MOD - [2013-12-02 20:15:11 | 001,735,680 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Caste.G60a7b4d1#\867271068d59772512ad48ce4966a07c\CLI.Caste.Graphics.Shared.ni.dll MOD - [2013-12-02 20:15:11 | 000,151,552 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CCC.Implementation\57a2f95e3d2e4936f7689724a620ebab\CCC.Implementation.ni.dll MOD - [2013-12-02 20:15:11 | 000,018,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CCC\daf78b26a05d1ddbc2ae89e116c7b9b2\CCC.ni.exe MOD - [2013-12-02 20:15:08 | 000,868,864 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Localizatio01dbc1c0#\68789f5b5d4dbc6389ad5da8bac934f0\Localization.Foundation.Private.ni.dll MOD - [2013-12-02 20:15:08 | 000,205,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\APM.Server\83f0aefa3f8191a712a9ce31536f7da7\APM.Server.ni.dll MOD - [2013-12-02 20:15:08 | 000,075,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Foundat3d5d3945#\1e50b97b057abb9d06bbc99c0e924f9f\CLI.Foundation.Private.ni.dll MOD - [2013-12-02 20:15:07 | 000,046,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\APM.Foundation\77e802ca179f62d8b39447498b8188a6\APM.Foundation.ni.dll MOD - [2013-12-02 20:15:06 | 000,242,176 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Foundation\d2c895eb08ac512bd893b0b73634965c\CLI.Foundation.ni.dll MOD - [2013-12-02 20:15:06 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AEM.Server\30e5791b98ba44060d3344a0b71a60a9\AEM.Server.ni.dll MOD - [2013-12-02 20:15:05 | 000,222,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.5d945b6b#\96adc4b33bc108d6417ddc0f28323445\AEM.Plugin.Source.Kit.Server.ni.dll MOD - [2013-12-02 20:15:05 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Foundat619559bd#\6861976f56e05606a106dfa259ff4bbc\CLI.Foundation.CoreAudioAPI.ni.dll MOD - [2013-12-02 20:15:05 | 000,014,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.674d2b8a#\1da1eaeb84c54b36427de172ceabfb16\AEM.Plugin.WinMessages.Shared.ni.dll MOD - [2013-12-02 20:15:05 | 000,012,288 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\CLI.Compone1b4a8c97#\a7b0185978ce233d23f78b3796396884\CLI.Component.Runtime.Shared.ni.dll MOD - [2013-12-02 20:15:04 | 000,091,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DEM.Graphics.I0601\df3f336072ab4a99c2534624eebd612f\DEM.Graphics.I0601.ni.dll MOD - [2013-12-02 20:15:04 | 000,021,504 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DEM.Foundation\37d7d640940dafcfccbeb43660de2b70\DEM.Foundation.ni.dll MOD - [2013-12-02 20:15:04 | 000,015,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\DEM.Graphics\57e307b26ab52816327999b7f0a55e78\DEM.Graphics.ni.dll MOD - [2013-12-02 20:15:03 | 000,013,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AEM.Server.Shared\20913ec8642fbb67e4005dd81a4a7506\AEM.Server.Shared.ni.dll MOD - [2013-12-02 20:15:02 | 000,015,872 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.2b6a6775#\6deb48453fab218e33b50f78868be278\AEM.Plugin.Hotkeys.Shared.ni.dll MOD - [2013-12-02 20:15:02 | 000,012,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.0a1309f7#\e4ad38b84bfb26bf86240a2f8d56ab69\AEM.Plugin.EEU.Shared.ni.dll MOD - [2013-12-02 20:15:02 | 000,012,288 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.88aba5d2#\9133add956ddb0f697eb0df317d47962\AEM.Plugin.REG.Shared.ni.dll MOD - [2013-12-02 20:15:02 | 000,011,776 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.GD.Shared\1e97f288c01c0376b892d55a5ddcd374\AEM.Plugin.GD.Shared.ni.dll MOD - [2013-12-02 20:15:01 | 000,615,936 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\ADL.Foundation\47e42df917bbbef32f98a6e314834994\ADL.Foundation.ni.dll MOD - [2013-12-02 20:15:01 | 000,046,592 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\NEWAEM.Foundation\9a499acec8fd54e2410726b3900caec5\NEWAEM.Foundation.ni.dll MOD - [2013-12-02 20:15:01 | 000,019,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AEM.Actions5dc83b46#\a30f9f7537c0cee41a44183b3f09ebc8\AEM.Actions.CCAA.Shared.ni.dll MOD - [2013-12-02 20:15:01 | 000,015,360 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\AEM.Plugin.54d8abe3#\628a6a7f60705b6f4c0ced7dea006a5a\AEM.Plugin.DPPE.Shared.ni.dll MOD - [2013-12-02 20:15:00 | 000,114,688 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\LOG.Foundat5023f8e7#\da10179f78894135ce5022a2afb08958\LOG.Foundation.Private.ni.dll MOD - [2013-12-02 20:15:00 | 000,104,448 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\LOG.Foundation\0623fd68b1f200a418984fa7f75de3d8\LOG.Foundation.ni.dll MOD - [2013-12-02 20:15:00 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\A4.Foundation\123da4ca0d4fd897a6c1f0d231bf00ec\A4.Foundation.ni.dll MOD - [2013-12-02 19:45:47 | 013,319,168 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Web\273389de0b6e286cb2bdc83ecb428704\System.Web.ni.dll MOD - [2013-12-02 19:44:03 | 000,018,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\dcf2b1a7011858156e5b759de2e5e598\PresentationFramework-SystemXml.ni.dll MOD - [2013-12-02 19:35:46 | 007,559,680 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\9ba07396ae369d010c5c3927a82ef426\System.Xml.ni.dll MOD - [2013-12-02 19:35:40 | 001,870,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\cc4d9093563dadee370788bbc3ecf4fb\System.Xaml.ni.dll MOD - [2013-12-02 19:35:38 | 012,692,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\22ae167d586450ad3a9b9a9ee43ebc86\System.Windows.Forms.ni.dll MOD - [2013-12-02 19:35:26 | 000,786,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\4cfa42c8b69a64e192f3255ec900457d\System.Runtime.Remoting.ni.dll MOD - [2013-12-02 19:35:24 | 001,630,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\72269ea7cc6281139e4d155e7c57dc67\System.Drawing.ni.dll MOD - [2013-12-02 19:35:16 | 000,958,464 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\28586400bcaf94c13a9fd0dff4a1e090\System.Configuration.ni.dll MOD - [2013-12-02 19:35:15 | 000,462,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\e7d92730b571b31e62c2cf257f04a974\PresentationFramework.Aero.ni.dll MOD - [2013-12-02 19:35:14 | 018,524,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\97e6b67983d07a066b68b3ae8be2f53d\PresentationFramework.ni.dll MOD - [2013-12-02 19:34:58 | 010,914,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\b52bc540630c3aa5de542c382af35c20\PresentationCore.ni.dll MOD - [2013-12-02 19:34:48 | 003,905,024 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\cd235caf797fb017f140016be88f33b7\WindowsBase.ni.dll MOD - [2013-12-02 19:34:43 | 006,995,456 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\b9f7adbc90a2bcbe8eb9e6e8d2bb975b\System.Core.ni.dll MOD - [2013-12-02 19:34:36 | 009,925,120 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\e40da7a49f8c3f0108e7c835b342f382\System.ni.dll MOD - [2013-12-02 19:34:26 | 016,501,248 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\51e2934144ba15628ba5a31be2dae7dc\mscorlib.ni.dll MOD - [2013-11-13 04:39:45 | 003,363,952 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2013-11-12 15:10:00 | 003,993,072 | ---- | M] () -- C:\Program Files\fst_pl_7\fst_pl_7.exe MOD - [2013-11-12 15:10:00 | 003,154,416 | ---- | M] () -- C:\Users\XxX\AppData\Local\fst_pl_7\upfst_pl_7.exe MOD - [2013-10-08 09:33:28 | 000,095,744 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll MOD - [2012-11-16 14:59:26 | 000,090,112 | ---- | M] () -- C:\Program Files\ATI Technologies\HydraVision\hydraplk.dll MOD - [2009-07-14 09:07:18 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll MOD - [2009-07-14 09:07:18 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_pl_b77a5c561934e089\System.resources.dll MOD - [2009-07-14 09:07:17 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Microsoft.VisualBasic.resources\8.0.0.0_pl_b03f5f7f11d50a3a\Microsoft.VisualBasic.resources.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - [2013-12-03 15:18:37 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013-11-22 12:36:18 | 000,105,448 | ---- | M] (Razer Inc.) [Auto | Running] -- C:\Program Files\Razer\Razer Game Booster\RzKLService.exe -- (RzKLService) SRV - [2013-11-13 04:39:36 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013-11-11 15:37:46 | 001,616,208 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc) SRV - [2013-10-11 11:51:12 | 000,375,056 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe -- (LMIGuardianSvc) SRV - [2013-10-08 09:33:08 | 000,276,992 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service) SRV - [2013-04-30 04:52:26 | 000,217,088 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility) SRV - [2009-07-14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Unknown] -- C:\Users\XxX\AppData\Local\Temp\pwddypog.sys -- (pwddypog) DRV - [2013-12-03 11:56:23 | 000,243,128 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV - [2013-07-05 09:40:32 | 000,078,848 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService) DRV - [2013-04-30 05:14:44 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag) DRV - [2013-04-30 05:14:44 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag) DRV - [2013-04-30 03:47:52 | 000,290,304 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap) DRV - [2012-11-20 13:55:44 | 000,048,808 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\aoddriver2.sys -- (AODDriver4.2) DRV - [2009-07-13 23:02:53 | 000,044,032 | ---- | M] (VIA Technologies, Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\fetnd6.sys -- (FETNDIS) DRV - [2009-07-13 23:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD) DRV - [2009-03-18 17:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:25.0.1 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll () FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 25.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013-12-02 23:01:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\XxX\AppData\Roaming\mozilla\Extensions [2013-12-02 23:01:25 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013-12-02 23:01:25 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} O1 HOSTS File: ([2009-06-10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O4 - HKLM..\Run: [AMD AVT] C:\Windows\System32\cmd.exe (Microsoft Corporation) O4 - HKLM..\Run: [c533a444480a4d4bf0b1cca3e95dd36b] C:\Users\XxX\AppData\Roaming\explore.exe (Sa14QgNs5j) O4 - HKLM..\Run: [fst_pl_7] C:\Program Files\fst_pl_7\fst_pl_7.exe () O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) O4 - HKLM..\Run: [RazerGameBooster] C:\Program Files\Razer\Razer Game Booster\RazerGameBooster.exe (Razer Inc.) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\x86\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKCU..\Run: [c533a444480a4d4bf0b1cca3e95dd36b] C:\Users\XxX\AppData\Roaming\explore.exe (Sa14QgNs5j) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd) O4 - HKCU..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe (AMD) O4 - HKCU..\Run: [uTorrent] C:\Users\XxX\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.) O4 - HKLM..\RunOnce: [upfst_pl_7.exe] C:\Users\XxX\AppData\Local\fst_pl_7\upfst_pl_7.exe () O4 - Startup: C:\Users\XxX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\1.exe (Sa14QgNs5j) O4 - Startup: C:\Users\XxX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\c533a444480a4d4bf0b1cca3e95dd36b.exe (Sa14QgNs5j) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O13 - gopher Prefix: missing O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 8.8.8.8 8.8.4.4 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5EC19B0F-693C-42EE-9BB8-F10C1D86711A}: DhcpNameServer = 8.8.8.8 8.8.4.4 O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-06-10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-12-03 22:43:37 | 000,000,000 | ---D | C] -- C:\FRST [2013-12-03 18:57:34 | 000,000,000 | ---D | C] -- C:\dumps [2013-12-03 18:24:03 | 000,000,000 | ---D | C] -- C:\Users\XxX\Desktop\patcher [2013-12-03 17:28:48 | 002,489,024 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\XxX\Desktop\Procmon.exe [2013-12-03 17:18:29 | 000,000,000 | ---D | C] -- C:\Users\XxX\Documents\wer2 [2013-12-03 17:18:13 | 000,000,000 | ---D | C] -- C:\Users\XxX\Documents\wer [2013-12-03 16:35:24 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Razer_Inc [2013-12-03 15:34:17 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Macromedia [2013-12-03 15:12:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin [2013-12-03 15:11:26 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\fst_pl_7 [2013-12-03 15:11:26 | 000,000,000 | ---D | C] -- C:\Program Files\fst_pl_7 [2013-12-03 15:11:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FREESOFTTODAY [2013-12-03 15:11:23 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Programs [2013-12-03 14:39:53 | 000,000,000 | ---D | C] -- C:\Users\XxX\Desktop\Nfs run Crack only [2013-12-03 14:27:18 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Roaming\Easeware [2013-12-03 14:27:16 | 000,000,000 | ---D | C] -- C:\Program Files\Easeware [2013-12-03 14:27:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy [2013-12-03 14:24:41 | 000,073,728 | ---- | C] (Sa14QgNs5j) -- C:\Users\XxX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\c533a444480a4d4bf0b1cca3e95dd36b.exe [2013-12-03 14:24:40 | 000,073,728 | ---- | C] (Sa14QgNs5j) -- C:\Users\XxX\AppData\Roaming\explore.exe [2013-12-03 14:24:38 | 000,073,728 | ---- | C] (Sa14QgNs5j) -- C:\Users\XxX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\1.exe [2013-12-03 14:12:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius [2013-12-03 14:12:40 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft [2013-12-03 13:14:12 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Diagnostics [2013-12-03 13:02:15 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\AMD [2013-12-03 13:02:10 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Roaming\ATI [2013-12-03 13:02:10 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\ATI [2013-12-03 13:02:10 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI [2013-12-03 13:02:06 | 000,000,000 | ---D | C] -- C:\Program Files\AMD AVT [2013-12-03 13:02:03 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP [2013-12-03 13:01:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies [2013-12-03 12:27:01 | 000,000,000 | ---D | C] -- C:\Users\XxX\Documents\NFSTR [2013-12-03 12:26:11 | 000,000,000 | -H-D | C] -- C:\Program Files\Common Files\EAInstaller [2013-12-03 12:25:48 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll [2013-12-03 12:25:48 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll [2013-12-03 12:25:48 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll [2013-12-03 11:57:19 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Lollipop [2013-12-03 11:56:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite [2013-12-03 11:56:23 | 000,243,128 | ---- | C] (Disc Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys [2013-12-03 11:56:20 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Roaming\DAEMON Tools Lite [2013-12-03 11:56:18 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2013-12-03 11:56:02 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite [2013-12-03 03:31:50 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2013-12-03 03:31:50 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2013-12-03 03:05:42 | 003,695,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2013-12-03 03:05:42 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2013-12-03 03:05:42 | 001,806,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2013-12-03 03:05:42 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2013-12-03 03:05:42 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2013-12-03 03:05:42 | 000,434,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2013-12-03 03:05:42 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2013-12-03 03:05:42 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2013-12-03 03:05:42 | 000,353,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2013-12-03 03:05:42 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2013-12-03 03:05:42 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2013-12-03 03:05:42 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2013-12-03 03:05:42 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2013-12-03 03:05:42 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll [2013-12-03 03:05:42 | 000,162,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll [2013-12-03 03:05:42 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll [2013-12-03 03:05:42 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe [2013-12-03 03:05:42 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe [2013-12-03 03:05:42 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2013-12-03 03:05:42 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll [2013-12-03 03:05:42 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2013-12-03 03:05:42 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll [2013-12-03 03:05:42 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll [2013-12-03 03:05:42 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2013-12-03 03:05:42 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll [2013-12-03 03:05:42 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe [2013-12-03 03:05:42 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe [2013-12-03 03:05:42 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2013-12-03 03:05:42 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2013-12-03 03:05:42 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2013-12-03 03:05:42 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll [2013-12-03 03:05:42 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll [2013-12-03 03:05:42 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2013-12-03 03:05:42 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll [2013-12-03 03:05:42 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2013-12-03 03:05:42 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2013-12-03 03:05:42 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2013-12-03 03:04:55 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll [2013-12-03 03:04:55 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL [2013-12-03 03:04:55 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll [2013-12-03 03:04:55 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll [2013-12-03 03:04:55 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll [2013-12-03 03:04:55 | 000,219,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys [2013-12-03 03:04:55 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll [2013-12-03 03:04:55 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll [2013-12-03 03:04:55 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll [2013-12-03 03:03:43 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe [2013-12-02 23:01:35 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Roaming\Mozilla [2013-12-02 23:01:35 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Mozilla [2013-12-02 23:01:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla [2013-12-02 23:01:25 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2013-12-02 23:01:24 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013-12-02 20:53:49 | 000,000,000 | ---D | C] -- C:\Users\XxX\Desktop\7 Days to Die [2013-12-02 20:53:46 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Roaming\WinRAR [2013-12-02 20:53:35 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2013-12-02 20:53:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2013-12-02 20:53:23 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013-12-02 20:45:27 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys [2013-12-02 20:45:25 | 002,345,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2013-12-02 20:45:17 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll [2013-12-02 20:44:55 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe [2013-12-02 20:44:52 | 003,958,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2013-12-02 20:44:52 | 003,902,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2013-12-02 20:44:52 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll [2013-12-02 20:44:41 | 002,614,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2013-12-02 20:44:41 | 000,197,632 | ---- | C] (Intel(R) Corporation) -- C:\Windows\System32\ir32_32.dll [2013-12-02 20:44:41 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll [2013-12-02 20:44:40 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll [2013-12-02 20:44:33 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll [2013-12-02 20:44:33 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax [2013-12-02 20:44:33 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax [2013-12-02 20:44:33 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax [2013-12-02 20:44:33 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax [2013-12-02 20:44:25 | 000,496,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll [2013-12-02 20:44:25 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmicmiplugin.dll [2013-12-02 20:44:25 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskcomp.dll [2013-12-02 20:44:25 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe [2013-12-02 20:44:04 | 000,131,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll [2013-12-02 20:44:04 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll [2013-12-02 20:43:48 | 001,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll [2013-12-02 20:43:48 | 000,507,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe [2013-12-02 20:43:48 | 000,442,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe [2013-12-02 20:43:02 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll [2013-12-02 20:43:01 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40.dll [2013-12-02 20:43:01 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc40u.dll [2013-12-02 20:41:59 | 000,187,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS [2013-12-02 20:41:52 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL [2013-12-02 20:41:52 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll [2013-12-02 20:41:16 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe [2013-12-02 20:41:15 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll [2013-12-02 20:41:15 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll [2013-12-02 20:41:07 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browcli.dll [2013-12-02 20:41:05 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll [2013-12-02 20:39:57 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll [2013-12-02 20:39:57 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll [2013-12-02 20:39:57 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax [2013-12-02 20:39:46 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2013-12-02 20:39:45 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll [2013-12-02 20:39:26 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll [2013-12-02 20:39:25 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll [2013-12-02 20:39:25 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll [2013-12-02 20:39:24 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll [2013-12-02 20:39:24 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll [2013-12-02 20:39:24 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll [2013-12-02 20:39:24 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll [2013-12-02 20:39:24 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll [2013-12-02 20:39:23 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorekmts.dll [2013-12-02 20:39:23 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll [2013-12-02 20:39:23 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdrmemptylst.exe [2013-12-02 20:39:19 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll [2013-12-02 20:38:48 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll [2013-12-02 20:38:47 | 000,101,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe [2013-12-02 20:38:46 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll [2013-12-02 20:38:46 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll [2013-12-02 20:38:46 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll [2013-12-02 20:38:45 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll [2013-12-02 20:38:45 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll [2013-12-02 20:38:41 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll [2013-12-02 20:38:40 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll [2013-12-02 20:38:32 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe [2013-12-02 20:38:20 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2013-12-02 20:37:36 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe [2013-12-02 20:37:36 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll [2013-12-02 20:37:36 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll [2013-12-02 20:37:36 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll [2013-12-02 20:37:36 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll [2013-12-02 20:37:36 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll [2013-12-02 20:37:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll [2013-12-02 20:37:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll [2013-12-02 20:37:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll [2013-12-02 20:37:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll [2013-12-02 20:37:36 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll [2013-12-02 20:37:36 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll [2013-12-02 20:17:57 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Microsoft Games [2013-12-02 19:58:07 | 000,826,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll [2013-12-02 19:57:47 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\LogMeIn Hamachi [2013-12-02 19:57:47 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\LogMeIn [2013-12-02 19:57:47 | 000,000,000 | ---D | C] -- C:\ProgramData\LogMeIn [2013-12-02 19:56:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi [2013-12-02 19:56:51 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi [2013-12-02 19:56:50 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Roaming\uTorrent [2013-12-02 19:53:00 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll [2013-12-02 19:53:00 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll [2013-12-02 19:52:51 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll [2013-12-02 19:52:51 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe [2013-12-02 19:50:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center [2013-12-02 19:49:52 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD [2013-12-02 19:49:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2013-12-02 19:36:24 | 000,000,000 | ---D | C] -- C:\Users\XxX\Documents\Razer [2013-12-02 19:33:30 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Razer [2013-12-02 19:33:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer [2013-12-02 19:33:03 | 000,000,000 | ---D | C] -- C:\Program Files\Razer [2013-12-02 19:33:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Razer [2013-12-02 19:24:09 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2013-12-02 19:23:18 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Roaming\Macromedia [2013-12-02 19:23:12 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Roaming\Adobe [2013-12-02 19:22:57 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe [2013-12-02 19:22:57 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2013-12-02 19:20:25 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Adobe [2013-12-02 19:20:01 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2013-12-02 19:20:01 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2013-12-02 19:20:01 | 000,049,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2013-12-02 19:13:40 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2013-12-02 19:13:28 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies [2013-12-02 19:13:27 | 000,000,000 | ---D | C] -- C:\Program Files\ATI [2013-12-02 19:07:22 | 000,000,000 | ---D | C] -- C:\AMD [2013-12-02 18:50:14 | 000,230,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [2013-12-02 18:46:23 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll [2013-12-02 18:46:23 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll [2013-12-02 18:46:23 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll [2013-12-02 18:46:23 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll [2013-12-02 18:46:23 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll [2013-12-02 18:46:23 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll [2013-12-02 18:46:23 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll [2013-12-02 18:46:23 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll [2013-12-02 18:46:23 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll [2013-12-02 18:46:23 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll [2013-12-02 18:46:23 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll [2013-12-02 18:46:22 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll [2013-12-02 18:46:22 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll [2013-12-02 18:46:22 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll [2013-12-02 18:46:22 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll [2013-12-02 18:46:22 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll [2013-12-02 18:46:22 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll [2013-12-02 18:46:22 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll [2013-12-02 18:46:22 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll [2013-12-02 18:46:22 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll [2013-12-02 18:46:22 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll [2013-12-02 18:46:22 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll [2013-12-02 18:46:22 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll [2013-12-02 18:46:22 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll [2013-12-02 18:46:22 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll [2013-12-02 18:46:21 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll [2013-12-02 18:46:21 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll [2013-12-02 18:46:21 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll [2013-12-02 18:46:21 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll [2013-12-02 18:46:21 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll [2013-12-02 18:46:21 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll [2013-12-02 18:46:21 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll [2013-12-02 18:46:21 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll [2013-12-02 18:46:21 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll [2013-12-02 18:46:21 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll [2013-12-02 18:46:21 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll [2013-12-02 18:46:21 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll [2013-12-02 18:46:21 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll [2013-12-02 18:46:21 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll [2013-12-02 18:46:21 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll [2013-12-02 18:46:21 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll [2013-12-02 18:46:21 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll [2013-12-02 18:46:20 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll [2013-12-02 18:46:20 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll [2013-12-02 18:46:20 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll [2013-12-02 18:46:20 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll [2013-12-02 18:46:20 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll [2013-12-02 18:46:20 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll [2013-12-02 18:46:20 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll [2013-12-02 18:46:20 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll [2013-12-02 18:46:20 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll [2013-12-02 18:46:20 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll [2013-12-02 18:46:20 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll [2013-12-02 18:46:20 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll [2013-12-02 18:46:19 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll [2013-12-02 18:46:19 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll [2013-12-02 18:46:19 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll [2013-12-02 18:46:19 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll [2013-12-02 18:46:19 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll [2013-12-02 18:46:19 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll [2013-12-02 18:46:19 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll [2013-12-02 18:46:19 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll [2013-12-02 18:46:19 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll [2013-12-02 18:46:19 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll [2013-12-02 18:46:19 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll [2013-12-02 18:46:19 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll [2013-12-02 18:46:19 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll [2013-12-02 18:46:19 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll [2013-12-02 18:46:19 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll [2013-12-02 18:46:18 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll [2013-12-02 18:46:18 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll [2013-12-02 18:46:18 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll [2013-12-02 18:46:18 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll [2013-12-02 18:46:18 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll [2013-12-02 18:46:18 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll [2013-12-02 18:46:18 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll [2013-12-02 18:46:18 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll [2013-12-02 18:46:18 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll [2013-12-02 18:46:18 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll [2013-12-02 18:46:17 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll [2013-12-02 18:46:17 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll [2013-12-02 18:46:17 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll [2013-12-02 18:46:17 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll [2013-12-02 18:46:17 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll [2013-12-02 18:46:17 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll [2013-12-02 18:46:17 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll [2013-12-02 18:46:17 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll [2013-12-02 18:46:17 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll [2013-12-02 18:42:02 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx [2013-12-02 18:41:58 | 000,299,864 | ---- | C] (Microsoft Corporation) -- C:\Users\XxX\Desktop\dxwebsetup-feb2010.exe [2013-12-02 18:40:58 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed [2013-12-02 18:34:04 | 000,000,000 | ---D | C] -- C:\Users\XxX\Desktop\Need for Speed The Run Limited Edition [2013-12-02 18:32:11 | 000,000,000 | R--D | C] -- C:\Users\XxX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2013-12-02 18:32:11 | 000,000,000 | R--D | C] -- C:\Users\XxX\Searches [2013-12-02 18:32:11 | 000,000,000 | R--D | C] -- C:\Users\XxX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2013-12-02 18:32:03 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Roaming\Identities [2013-12-02 18:32:02 | 000,000,000 | R--D | C] -- C:\Users\XxX\Contacts [2013-12-02 18:31:53 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\VirtualStore [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\Ustawienia lokalne [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\AppData\Local\Temporary Internet Files [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\Szablony [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\SendTo [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\Recent [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\PrintHood [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\NetHood [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\Documents\Moje wideo [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\Documents\Moje obrazy [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\Moje dokumenty [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\Documents\Moja muzyka [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\Menu Start [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\AppData\Local\Historia [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\Dane aplikacji [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\AppData\Local\Dane aplikacji [2013-12-02 18:31:52 | 000,000,000 | -HSD | C] -- C:\Users\XxX\Cookies [2013-12-02 18:31:52 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Microsoft [2013-12-02 18:31:51 | 000,000,000 | --SD | C] -- C:\Users\XxX\AppData\Roaming\Microsoft [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\Videos [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\Saved Games [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\Pictures [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\Music [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\Links [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\Favorites [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\Downloads [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\Documents [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\Desktop [2013-12-02 18:31:51 | 000,000,000 | R--D | C] -- C:\Users\XxX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2013-12-02 18:31:51 | 000,000,000 | -H-D | C] -- C:\Users\XxX\AppData [2013-12-02 18:31:51 | 000,000,000 | ---D | C] -- C:\Users\XxX\AppData\Local\Temp [2013-12-02 18:31:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ulubione [2013-12-02 18:31:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony [2013-12-02 18:31:43 | 000,000,000 | -HSD | C] -- C:\Recovery [2013-12-02 18:31:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit [2013-12-02 18:31:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo [2013-12-02 18:31:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy [2013-12-02 18:31:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka [2013-12-02 18:31:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start [2013-12-02 18:31:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty [2013-12-02 18:31:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji [2013-12-02 18:29:10 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2013-12-02 18:26:45 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2013-12-02 18:26:25 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2013-12-02 18:25:35 | 000,000,000 | ---D | C] -- C:\Windows\Panther [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Users\XxX\AppData\Roaming\*.tmp files -> C:\Users\XxX\AppData\Roaming\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-12-03 22:46:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013-12-03 22:10:58 | 000,739,694 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2013-12-03 22:10:58 | 000,653,526 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2013-12-03 22:10:58 | 000,155,268 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2013-12-03 22:10:58 | 000,121,398 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2013-12-03 22:04:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013-12-03 22:04:56 | 1610,260,480 | -HS- | M] () -- C:\hiberfil.sys [2013-12-03 22:04:13 | 000,005,856 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013-12-03 22:04:13 | 000,005,856 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013-12-03 17:34:13 | 004,009,973 | ---- | M] () -- C:\Users\XxX\Desktop\Logfile.rar [2013-12-03 17:32:36 | 046,730,111 | ---- | M] () -- C:\Users\XxX\Desktop\Logfile.PML [2013-12-03 17:27:03 | 000,097,592 | ---- | M] () -- C:\Users\XxX\Documents\Documents.rar [2013-12-03 16:34:58 | 000,007,606 | ---- | M] () -- C:\Users\XxX\AppData\Local\Resmon.ResmonCfg [2013-12-03 16:34:06 | 000,000,402 | ---- | M] () -- C:\Windows\tasks\DriverEasy Scheduled Scan.job [2013-12-03 15:18:37 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe [2013-12-03 15:18:37 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2013-12-03 14:27:17 | 000,001,124 | ---- | M] () -- C:\Users\Public\Desktop\DriverEasy.lnk [2013-12-03 11:56:53 | 000,001,900 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2013-12-03 11:56:23 | 000,243,128 | ---- | M] (Disc Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys [2013-12-03 03:51:09 | 000,266,376 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2013-12-03 03:05:42 | 003,695,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2013-12-03 03:05:42 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2013-12-03 03:05:42 | 001,806,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2013-12-03 03:05:42 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2013-12-03 03:05:42 | 000,607,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2013-12-03 03:05:42 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2013-12-03 03:05:42 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2013-12-03 03:05:42 | 000,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2013-12-03 03:05:42 | 000,353,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2013-12-03 03:05:42 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2013-12-03 03:05:42 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2013-12-03 03:05:42 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2013-12-03 03:05:42 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2013-12-03 03:05:42 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll [2013-12-03 03:05:42 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll [2013-12-03 03:05:42 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll [2013-12-03 03:05:42 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe [2013-12-03 03:05:42 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe [2013-12-03 03:05:42 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2013-12-03 03:05:42 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakeng.dll [2013-12-03 03:05:42 | 000,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll [2013-12-03 03:05:42 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll [2013-12-03 03:05:42 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll [2013-12-03 03:05:42 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll [2013-12-03 03:05:42 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll [2013-12-03 03:05:42 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe [2013-12-03 03:05:42 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe [2013-12-03 03:05:42 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2013-12-03 03:05:42 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2013-12-03 03:05:42 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf [2013-12-03 03:05:42 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2013-12-03 03:05:42 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll [2013-12-03 03:05:42 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll [2013-12-03 03:05:42 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll [2013-12-03 03:05:42 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll [2013-12-03 03:05:42 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2013-12-03 03:05:42 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll [2013-12-03 03:05:42 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe [2013-12-03 03:04:55 | 003,181,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll [2013-12-03 03:04:55 | 001,619,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL [2013-12-03 03:04:55 | 001,495,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll [2013-12-03 03:04:55 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll [2013-12-03 03:04:55 | 000,283,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll [2013-12-03 03:04:55 | 000,219,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys [2013-12-03 03:04:55 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll [2013-12-03 03:04:55 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll [2013-12-03 03:04:55 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll [2013-12-02 23:01:28 | 000,001,109 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013-12-02 19:57:30 | 000,000,811 | ---- | M] () -- C:\Users\XxX\Desktop\µTorrent.lnk [2013-12-02 19:33:07 | 000,002,075 | ---- | M] () -- C:\Users\Public\Desktop\Razer Game Booster.lnk [2013-12-02 18:42:00 | 000,299,864 | ---- | M] (Microsoft Corporation) -- C:\Users\XxX\Desktop\dxwebsetup-feb2010.exe [2013-12-02 18:29:30 | 000,059,310 | ---- | M] () -- C:\Windows\System32\license.rtf [2013-12-02 18:28:34 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin [2013-12-02 18:28:07 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf [2013-11-19 03:33:38 | 000,230,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [1 C:\Users\XxX\AppData\Roaming\*.tmp files -> C:\Users\XxX\AppData\Roaming\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-12-03 22:43:27 | 000,377,856 | ---- | C] () -- C:\Users\XxX\Desktop\gmer.exe [2013-12-03 17:34:10 | 004,009,973 | ---- | C] () -- C:\Users\XxX\Desktop\Logfile.rar [2013-12-03 17:32:36 | 046,730,111 | ---- | C] () -- C:\Users\XxX\Desktop\Logfile.PML [2013-12-03 17:28:48 | 000,063,582 | ---- | C] () -- C:\Users\XxX\Desktop\procmon.chm [2013-12-03 17:27:03 | 000,097,592 | ---- | C] () -- C:\Users\XxX\Documents\Documents.rar [2013-12-03 16:34:58 | 000,007,606 | ---- | C] () -- C:\Users\XxX\AppData\Local\Resmon.ResmonCfg [2013-12-03 15:18:45 | 000,000,930 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013-12-03 14:27:17 | 000,001,124 | ---- | C] () -- C:\Users\Public\Desktop\DriverEasy.lnk [2013-12-03 14:27:17 | 000,000,402 | ---- | C] () -- C:\Windows\tasks\DriverEasy Scheduled Scan.job [2013-12-03 13:07:29 | 000,177,579 | ---- | C] () -- C:\Users\XxX\Desktop\en.sb [2013-12-03 13:07:29 | 000,002,051 | ---- | C] () -- C:\Users\XxX\Desktop\shader.hlsl [2013-12-03 11:56:53 | 000,001,900 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2013-12-03 03:05:42 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf [2013-12-02 23:01:28 | 000,001,121 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2013-12-02 23:01:28 | 000,001,109 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013-12-02 19:57:30 | 000,000,811 | ---- | C] () -- C:\Users\XxX\Desktop\µTorrent.lnk [2013-12-02 19:33:07 | 000,002,075 | ---- | C] () -- C:\Users\Public\Desktop\Razer Game Booster.lnk [2013-12-02 18:32:12 | 000,001,425 | ---- | C] () -- C:\Users\XxX\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2013-12-02 18:28:34 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2013-12-02 18:28:07 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf [2013-12-02 18:26:25 | 1610,260,480 | -HS- | C] () -- C:\hiberfil.sys [2013-04-30 03:30:54 | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat [2013-04-30 03:30:54 | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsva.dat [2013-04-29 23:36:28 | 000,159,232 | ---- | C] () -- C:\Windows\System32\clinfo.exe [2012-04-18 19:39:06 | 000,028,672 | ---- | C] () -- C:\Windows\System32\kdbsdk32.dll [2012-03-06 18:59:32 | 000,618,823 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2009-07-14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009-07-14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both < End of report >