OTL logfile created on: 2013-10-18 07:43:31 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\rew\Downloads
 Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,05 Gb Available Physical Memory | 52,33% Memory free
4,00 Gb Paging File | 2,90 Gb Available in Paging File | 72,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 49,46 Gb Total Space | 11,57 Gb Free Space | 23,39% Space Free | Partition Type: NTFS
Drive D: | 99,59 Gb Total Space | 34,72 Gb Free Space | 34,86% Space Free | Partition Type: NTFS
 
Computer Name: PAVILION | User Name: rew | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 360 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013-10-18 07:42:29 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\rew\Downloads\OTL.exe
PRC - [2013-10-09 08:07:52 | 000,829,832 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\Macromed\Flash\FlashUtil32_11_9_900_117_ActiveX.exe
PRC - [2013-10-07 19:54:20 | 004,908,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgui.exe
PRC - [2013-10-03 22:00:24 | 003,538,480 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgidsagent.exe
PRC - [2013-09-25 21:47:22 | 000,301,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe
PRC - [2013-09-23 13:57:24 | 002,845,664 | ---- | M] () -- C:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
PRC - [2013-09-15 23:08:30 | 000,895,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgnsx.exe
PRC - [2013-09-03 22:22:16 | 000,588,336 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgcsrvx.exe
PRC - [2013-09-02 11:19:00 | 000,669,232 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgemcx.exe
PRC - [2013-08-20 23:03:42 | 000,728,624 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgrsx.exe
PRC - [2013-08-02 02:52:57 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2013-06-21 11:52:52 | 000,875,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2013-06-21 11:52:51 | 001,821,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2012-11-23 04:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011-02-25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010-11-20 14:17:36 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schtasks.exe
PRC - [2009-12-01 13:37:48 | 000,322,624 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2013-09-23 13:57:24 | 002,845,664 | ---- | M] () -- C:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
MOD - [2013-09-23 13:55:54 | 002,704,352 | ---- | M] () -- c:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll
MOD - [2011-03-17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - [2013-10-18 07:13:55 | 000,148,976 | ---- | M] (BonanzaDeals) [On_Demand | Stopped] -- C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe -- (bonanzadealslivem)
SRV - [2013-10-18 07:13:55 | 000,148,976 | ---- | M] (BonanzaDeals) [Auto | Stopped] -- C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe -- (bonanzadealslive)
SRV - [2013-10-09 08:07:54 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013-10-03 22:00:24 | 003,538,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013-09-25 21:47:22 | 000,301,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe -- (avgwd)
SRV - [2013-09-23 13:57:24 | 002,845,664 | ---- | M] () [Auto | Running] -- C:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe -- (BitGuard)
SRV - [2013-08-08 22:20:59 | 001,616,048 | ---- | M] (AVG Secure Search) [Disabled | Stopped] -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.4.0\ToolbarUpdater.exe -- (vToolbarUpdater15.4.0)
SRV - [2013-08-06 22:57:24 | 001,343,400 | ---- | M] () [Disabled | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2013-08-06 20:51:05 | 000,148,000 | ---- | M] (DealPly Technologies Ltd) [Disabled | Stopped] -- C:\Program Files\DealPlyLive\Update\DealPlyLive.exe -- (dealplylivem)
SRV - [2013-08-06 20:51:05 | 000,148,000 | ---- | M] (DealPly Technologies Ltd) [Disabled | Stopped] -- C:\Program Files\DealPlyLive\Update\DealPlyLive.exe -- (dealplylive)
SRV - [2013-05-27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013-05-16 16:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012-09-23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012-09-20 13:28:48 | 030,785,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2012-06-11 11:33:26 | 000,724,376 | ---- | M] (Nokia) [Disabled | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012-01-05 17:42:34 | 000,075,624 | ---- | M] (Alcohol Soft Development Team) [Disabled | Stopped] -- C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -- (AxAutoMntSrv)
SRV - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Disabled | Stopped] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009-12-01 13:37:48 | 000,322,624 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe -- (DpHost)
SRV - [2009-07-14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2007-05-31 16:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007-05-31 16:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2013-09-25 20:57:14 | 000,120,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgdiskx.sys -- (Avgdiskx)
DRV - [2013-09-10 22:11:44 | 000,022,840 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2013-09-08 22:12:16 | 000,027,448 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2013-09-02 10:39:32 | 000,176,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2013-09-02 10:28:06 | 000,145,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2013-09-02 10:28:04 | 000,209,208 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2013-09-02 10:28:00 | 000,223,032 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avglogx.sys -- (Avglogx)
DRV - [2013-08-20 22:54:04 | 000,102,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2013-08-08 22:20:59 | 000,037,664 | ---- | M] (AVG Technologies) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtpx86.sys -- (avgtp)
DRV - [2013-08-01 16:08:52 | 000,193,848 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2013-06-21 14:02:43 | 009,069,344 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2013-02-22 07:32:08 | 000,134,144 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ser2pl.sys -- (Ser2plx86)
DRV - [2013-02-22 07:32:08 | 000,134,144 | ---- | M] (Prolific Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ser2pl.sys -- (Ser2pl)
DRV - [2013-01-13 21:23:32 | 000,466,008 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2012-06-11 11:33:46 | 000,019,072 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2012-01-09 17:28:20 | 000,137,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2012-01-09 17:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2012-01-09 17:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2012-01-09 17:28:20 | 000,008,576 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc)
DRV - [2012-01-09 17:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2012-01-09 17:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011-03-18 13:46:26 | 000,061,704 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2011-03-18 13:46:10 | 000,073,096 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftser2k.sys -- (FTSER2K)
DRV - [2010-11-20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010-11-20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010-10-07 13:11:38 | 006,639,616 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETwLv32.sys -- (NETwLv32)
DRV - [2010-06-14 10:32:54 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2010-02-25 00:02:30 | 000,015,544 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPQBTTN.sys -- (HBtnKey)
DRV - [2010-01-05 03:20:10 | 001,500,160 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\athur.sys -- (athur)
DRV - [2009-07-14 01:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009-07-14 00:13:45 | 001,068,032 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)
DRV - [2009-07-14 00:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32)
DRV - [2009-04-29 08:46:54 | 000,015,872 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2007-08-28 15:47:36 | 000,146,560 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atswpdrv.sys -- (ATSWPDRV)
DRV - [2007-08-08 20:42:08 | 000,045,568 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2007-07-30 11:54:02 | 000,038,400 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2007-07-30 10:42:58 | 000,043,008 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rimsptsk.sys -- (rimsptsk)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\..\SearchScopes,Backup.Old.DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{3385456E-B1B5-8AF3-07D5-3524F714EB85}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}: "URL" = http://dts.search-results.com/sr?src=ieb&gct=ds&appid=711&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=2215219256114015&q={searchTerms}
 
 
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
 
IE - HKU\S-1-5-21-2456749809-3011637411-1796022418-1008\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.doko-search.com/?babsrc=HP_ss&mntrId=1234001CBF532EE3&affID=125839&tsp=5039
IE - HKU\S-1-5-21-2456749809-3011637411-1796022418-1008\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.doko-search.com/?babsrc=HP_ss&mntrId=1234001CBF532EE3&affID=125839&tsp=5039
IE - HKU\S-1-5-21-2456749809-3011637411-1796022418-1008\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKU\S-1-5-21-2456749809-3011637411-1796022418-1008\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-2456749809-3011637411-1796022418-1008\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www.doko-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=1234001CBF532EE3&affID=125839&tsp=5039
IE - HKU\S-1-5-21-2456749809-3011637411-1796022418-1008\..\SearchScopes\{3385456E-B1B5-8AF3-07D5-3524F714EB85}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-2456749809-3011637411-1796022418-1008\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.4.0\\npsitesafety.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.4.1: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.4.1: C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=3: C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
FF - HKLM\Software\MozillaPlugins\@tools.bdupdater.com/BonanzaDealsLive Update;version=9: C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
FF - HKLM\Software\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=3: C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd)
FF - HKLM\Software\MozillaPlugins\@tools.dpliveupdate.com/DealPlyLive Update;version=9: C:\Program Files\DealPlyLive\Update\1.3.23.0\npGoogleUpdate3.dll (DealPly Technologies Ltd)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\otis@digitalpersona.com: C:\Program Files\DigitalPersona\Bin\FirefoxExt\ [2012-06-08 17:43:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{336D0C35-8A85-403a-B9D2-65C292C39087}: C:\Program Files\IB Updater\Firefox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\FireFoxExt\15.4.0.5 [2013-08-08 22:21:26 | 000,000,000 | ---D | M]
 
[2013-08-06 20:51:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
 
O1 HOSTS File: ([2009-06-10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (DigitalPersona Personal Extension) - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
O2 - BHO: (dokotoolbar Helper Object) - {3B9F6E59-04CA-43FF-92DF-F6E66D3A8D82} - C:\Program Files\Doko-Toolbar\dokotoolbar\1.8.26.9\bh\dokotoolbar.dll (Doko-Toolbar)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.4.0.5\AVG Secure Search_toolbar.dll (AVG Secure Search)
O2 - BHO: (DealPly Shopping) - {9cf699ca-2174-4ed8-bec1-ba82095edce0} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
O2 - BHO: (BonanzaDeals) - {fe063412-bea4-4d76-8ed3-183be6220d17} - C:\Program Files\BonanzaDeals\BonanzaDealsIE.dll (BonanzaDeals)
O3 - HKLM\..\Toolbar: (dokotoolbar Toolbar) - {339E1B37-76D3-4A64-A988-E81425DF831C} - C:\Program Files\Doko-Toolbar\dokotoolbar\1.8.26.9\dokotoolbarTlbr.dll (Doko-Toolbar)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.4.0.5\AVG Secure Search_toolbar.dll (AVG Secure Search)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [explorer] c:\Windows\explorer.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NPSStartup]  File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Wyślij &do programu OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {108D3206-846A-4A93-BACB-F0572D043ED7} http://192.168.0.108/webrec.cab (SurveillanceCtrl Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{46F5F8D2-0E34-42A9-A811-2038F277C9D8}: DhcpNameServer = 62.113.218.132 8.8.8.8
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E4876279-24A0-4BC7-9D7F-0CCE8D7D1321}: DhcpNameServer = 192.168.1.1 192.168.1.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll File not found
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\15.4.0\ViProtocol.dll (AVG Secure Search)
O20 - AppInit_DLLs: (c:\progra~2\bitguard\261694~1.246\{c16c1~1\bitguard.dll) - c:\ProgramData\BitGuard\2.6.1694.246\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 360 Days ==========[/color]
 
[2013-10-18 07:43:00 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Roaming\BabSolution
[2013-10-18 07:38:03 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Roaming\Macromedia
[2013-10-18 07:37:25 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Roaming\AVG2014
[2013-10-18 07:37:23 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Local\Avg2014
[2013-10-18 07:37:16 | 000,000,000 | R--D | C] -- C:\Users\rew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2013-10-18 07:37:16 | 000,000,000 | R--D | C] -- C:\Users\rew\Searches
[2013-10-18 07:37:16 | 000,000,000 | R--D | C] -- C:\Users\rew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013-10-18 07:37:12 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Roaming\Identities
[2013-10-18 07:37:11 | 000,000,000 | R--D | C] -- C:\Users\rew\Contacts
[2013-10-18 07:37:05 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Roaming\Adobe
[2013-10-18 07:36:55 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Local\VirtualStore
[2013-10-18 07:36:53 | 000,000,000 | --SD | C] -- C:\Users\rew\AppData\Roaming\Microsoft
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\Videos
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\Saved Games
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\Pictures
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\Music
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\Links
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\Favorites
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\Downloads
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\Documents
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\Desktop
[2013-10-18 07:36:53 | 000,000,000 | R--D | C] -- C:\Users\rew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\Ustawienia lokalne
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\AppData\Local\Temporary Internet Files
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\Szablony
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\SendTo
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\Recent
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\PrintHood
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\NetHood
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\Documents\Moje wideo
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\Documents\Moje obrazy
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\Moje dokumenty
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\Documents\Moja muzyka
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\Menu Start
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\AppData\Local\Historia
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\Dane aplikacji
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\AppData\Local\Dane aplikacji
[2013-10-18 07:36:53 | 000,000,000 | -HSD | C] -- C:\Users\rew\Cookies
[2013-10-18 07:36:53 | 000,000,000 | -H-D | C] -- C:\Users\rew\AppData
[2013-10-18 07:36:53 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Roaming\TuneUp Software
[2013-10-18 07:36:53 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Local\Temp
[2013-10-18 07:36:53 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Local\Microsoft Help
[2013-10-18 07:36:53 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Local\Microsoft
[2013-10-18 07:36:53 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Roaming\Media Center Programs
[2013-10-18 07:36:53 | 000,000,000 | ---D | C] -- C:\Users\rew\AppData\Roaming\hpqLog
[2013-10-18 07:14:05 | 000,000,000 | ---D | C] -- C:\Program Files\Doko-Toolbar
[2013-10-18 07:14:04 | 000,000,000 | ---D | C] -- C:\ProgramData\BitGuard
[2013-10-18 07:13:56 | 000,000,000 | ---D | C] -- C:\ProgramData\BonanzaDealsLive
[2013-10-18 07:13:56 | 000,000,000 | ---D | C] -- C:\Program Files\BonanzaDealsLive
[2013-10-18 07:13:41 | 000,000,000 | ---D | C] -- C:\Program Files\BonanzaDeals
[2013-10-17 23:35:56 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013-10-17 22:50:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
[2013-10-17 22:50:18 | 000,000,000 | ---D | C] -- C:\Program Files\CPUID
[2013-10-14 11:47:56 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2013-10-14 11:47:56 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2013-10-12 07:30:44 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013-10-12 07:30:41 | 002,876,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013-10-12 07:30:40 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013-10-12 07:30:39 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013-10-12 07:30:38 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013-10-12 07:30:36 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013-10-12 07:30:36 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013-10-12 07:30:36 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013-10-12 07:30:36 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013-10-12 07:30:35 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013-10-11 12:48:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcGasSynchro
[2013-10-11 12:39:18 | 000,000,000 | ---D | C] -- C:\AcGasSynchro
[2013-10-11 08:32:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2013-10-11 06:42:59 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2013-10-11 06:42:59 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2013-10-11 06:42:53 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013-10-11 06:42:52 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013-10-11 06:42:52 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2013-10-11 06:42:47 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2013-10-11 06:42:45 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013-10-11 06:42:45 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2013-10-11 06:42:45 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013-10-11 06:42:45 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2013-10-11 06:42:43 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2013-10-11 06:42:33 | 002,348,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013-10-09 06:55:30 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2014
[2013-09-25 20:57:14 | 000,120,632 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgdiskx.sys
[2013-09-20 19:28:18 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013-09-20 19:28:18 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013-09-14 10:59:08 | 000,000,000 | ---D | C] -- C:\Program Files\Winnydows
[2013-09-11 06:52:32 | 000,133,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2013-09-11 06:52:25 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2013-09-11 06:52:25 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2013-09-11 06:52:25 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2013-09-11 06:52:25 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2013-09-11 06:52:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2013-09-11 06:52:25 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2013-09-11 06:52:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2013-09-11 06:52:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2013-09-11 06:52:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2013-09-11 06:52:25 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2013-09-11 06:52:25 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2013-09-11 06:52:24 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2013-09-11 06:52:24 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2013-09-10 22:11:44 | 000,022,840 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgidsshimx.sys
[2013-09-08 22:12:16 | 000,027,448 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgrkx86.sys
[2013-09-02 10:39:32 | 000,176,952 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2013-09-02 10:28:06 | 000,145,720 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgidshx.sys
[2013-09-02 10:28:04 | 000,209,208 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgidsdriverx.sys
[2013-09-02 10:28:00 | 000,223,032 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avglogx.sys
[2013-08-26 18:17:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2013-08-20 22:54:04 | 000,102,200 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2013-08-17 07:41:24 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\ProgramData\rundll32.exe
[2013-08-16 06:51:07 | 001,620,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2013-08-16 06:50:58 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2013-08-10 19:33:32 | 000,000,000 | ---D | C] -- C:\Program Files\Movdap
[2013-08-10 18:58:46 | 000,000,000 | ---D | C] -- C:\Program Files\NapiProjekt
[2013-08-10 18:58:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer
[2013-08-10 18:57:31 | 000,276,992 | ---- | C] (IntelleSoft) -- C:\Windows\System32\BugTrap.dll
[2013-08-10 18:57:27 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer
[2013-08-08 23:04:13 | 000,047,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2013-08-08 23:04:13 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wdfres.dll
[2013-08-08 23:03:34 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFPlatform.dll
[2013-08-08 23:03:33 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFx.dll
[2013-08-08 23:03:33 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUDFCoinstaller.dll
[2013-08-08 06:27:42 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2013-08-08 06:27:41 | 001,505,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2013-08-08 06:27:38 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OxpsConverter.exe
[2013-08-08 06:27:36 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wwanprotdim.dll
[2013-08-08 06:27:32 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptdlg.dll
[2013-08-08 06:27:26 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2013-08-08 06:27:25 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcorehc.dll
[2013-08-08 06:27:23 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2013-08-08 06:27:04 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\System32\fpb.rs
[2013-08-08 06:27:04 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\System32\oflc-nz.rs
[2013-08-08 06:27:04 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\System32\pegibbfc.rs
[2013-08-08 06:27:04 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\System32\csrr.rs
[2013-08-08 06:27:04 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\System32\cob-au.rs
[2013-08-08 06:27:04 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\System32\usk.rs
[2013-08-08 06:27:04 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\System32\grb.rs
[2013-08-08 06:27:04 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi-pt.rs
[2013-08-08 06:27:04 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi.rs
[2013-08-08 06:27:04 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\System32\djctq.rs
[2013-08-08 06:27:03 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2013-08-08 06:27:03 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
[2013-08-08 06:27:03 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\System32\esrb.rs
[2013-08-08 06:27:03 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\System32\pegi-fi.rs
[2013-08-08 06:27:02 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\System32\cero.rs
[2013-08-08 06:27:02 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\System32\oflc.rs
[2013-08-08 06:26:27 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore6.dll
[2013-08-08 06:26:27 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2013-08-07 22:43:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2013-08-06 22:57:26 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat
[2013-08-06 20:51:06 | 000,000,000 | ---D | C] -- C:\ProgramData\DealPlyLive
[2013-08-06 20:51:06 | 000,000,000 | ---D | C] -- C:\Program Files\DealPlyLive
[2013-08-06 20:50:35 | 000,000,000 | ---D | C] -- C:\Program Files\DealPly
[2013-08-06 20:50:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer
[2013-08-06 20:50:30 | 000,000,000 | ---D | C] -- C:\Program Files\FLVPlayer
[2013-08-05 21:25:05 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Updates Downloader
[2013-08-05 13:18:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2013-08-05 13:16:50 | 000,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2013-08-05 12:57:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2013-08-05 12:57:22 | 001,247,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2013-08-05 12:57:18 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2013-08-05 12:53:32 | 006,324,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvopencl.dll
[2013-08-05 12:53:31 | 021,102,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2013-08-05 12:53:30 | 009,069,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2013-08-05 12:53:30 | 000,467,232 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\NvIFR.dll
[2013-08-05 12:53:30 | 000,465,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\NvFBC.dll
[2013-08-05 12:53:29 | 000,893,728 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispgenco3232049.dll
[2013-08-05 12:53:27 | 001,024,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco3232049.dll
[2013-08-05 12:53:22 | 002,777,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2013-08-05 12:53:22 | 002,002,720 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2013-08-05 12:53:21 | 007,687,592 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2013-08-05 12:53:15 | 017,560,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2013-08-01 16:08:52 | 000,193,848 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys
[2013-06-14 11:44:39 | 000,000,000 | ---D | C] -- C:\temp
[2013-06-14 10:56:29 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG Secure Search
[2013-06-12 07:49:15 | 000,903,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2013-06-12 07:49:14 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certenc.dll
[2013-05-15 11:56:46 | 000,218,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2013-05-15 11:56:41 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2013-05-15 11:56:41 | 000,101,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2013-05-04 07:26:12 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2013-04-15 13:52:05 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2013-04-15 12:49:12 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys
[2013-04-15 11:58:02 | 000,745,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2013-04-15 11:58:02 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\elshyph.dll
[2013-04-15 11:58:01 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2013-04-15 11:58:01 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2013-04-15 11:58:01 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2013-04-15 11:58:01 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2013-04-15 11:58:01 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2013-04-15 11:58:00 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2013-04-15 11:57:59 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2013-04-15 11:57:59 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2013-04-15 11:57:59 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2013-04-15 11:57:59 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2013-04-15 11:57:59 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2013-04-15 11:57:59 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2013-04-15 11:57:59 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2013-04-15 11:57:59 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2013-04-15 11:57:57 | 001,400,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2013-04-15 11:57:57 | 000,629,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2013-04-15 11:57:57 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2013-04-15 11:57:57 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2013-04-15 11:57:57 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2013-04-15 11:57:57 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2013-04-15 11:57:56 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2013-04-15 11:57:56 | 000,719,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2013-04-15 11:57:56 | 000,242,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2013-04-15 11:57:56 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2013-04-15 11:56:47 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2013-04-15 11:56:46 | 000,010,752 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013-04-15 11:56:46 | 000,009,728 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013-04-15 11:56:46 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013-04-15 11:56:46 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013-04-15 11:56:46 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013-04-15 11:56:46 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2013-04-15 11:56:46 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013-04-15 11:56:46 | 000,002,560 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013-04-15 11:56:45 | 002,284,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2013-04-15 11:56:45 | 001,158,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2013-04-15 11:56:45 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2013-04-15 11:56:45 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2013-04-15 11:56:45 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2013-04-15 11:56:44 | 003,419,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2013-04-15 11:56:44 | 001,988,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2013-04-15 11:56:44 | 001,080,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2013-04-15 11:56:44 | 000,604,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2013-04-15 11:56:44 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2013-04-15 11:56:44 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2013-04-15 11:56:44 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2013-04-15 11:56:44 | 000,187,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2013-04-15 11:56:44 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2013-04-15 06:33:47 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2013-04-15 06:33:05 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2013-04-15 06:33:04 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2013-04-06 22:40:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BatteryMon
[2013-03-31 13:33:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\searchplugins
[2013-03-31 13:33:01 | 000,000,000 | ---D | C] -- C:\Windows\System32\Extensions
[2013-03-31 13:32:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2013-03-27 13:33:57 | 000,000,000 | ---D | C] -- C:\PSS
[2013-03-27 12:55:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\player
[2013-03-27 12:55:12 | 000,000,000 | ---D | C] -- C:\Windows\player
[2013-03-27 10:43:56 | 000,000,000 | ---D | C] -- C:\RecordDownload
[2013-03-27 10:37:49 | 000,000,000 | ---D | C] -- C:\Program Files\webrec
[2013-03-19 22:27:20 | 000,000,000 | ---D | C] -- C:\ProgramData\LightScribe
[2013-03-19 22:11:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2013-03-19 22:09:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LightScribe
[2013-03-19 22:08:21 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll
[2013-03-19 22:07:45 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll
[2013-03-19 22:06:48 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll
[2013-03-19 22:05:22 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll
[2013-03-19 22:04:38 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll
[2013-03-19 21:41:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alcohol 120%
[2013-03-15 16:45:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013-03-12 19:01:27 | 000,187,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2013-02-27 13:52:30 | 013,411,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2013-02-27 13:52:16 | 001,017,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll
[2013-02-27 13:52:12 | 000,892,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispgenco32.dll
[2013-02-27 13:52:10 | 012,427,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2013-02-26 20:47:15 | 000,238,952 | ---- | C] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe
[2013-02-26 20:45:09 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2013-02-26 19:50:18 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\NativeFus_Log
[2013-02-26 19:44:49 | 000,000,000 | ---D | C] -- C:\Program Files\MyFree Codec
[2013-02-26 19:40:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2013-02-26 19:40:27 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\Windows\System32\Redemption.dll
[2013-02-26 19:38:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2013-02-26 19:31:21 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013-02-22 07:32:08 | 000,134,144 | ---- | C] (Prolific Technology Inc.) -- C:\Windows\System32\drivers\ser2pl.sys
[2013-02-20 18:22:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2013-02-14 07:48:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAG-COM
[2013-02-14 07:48:51 | 000,000,000 | ---D | C] -- C:\Program Files\VAG-COM
[2013-02-05 18:52:50 | 000,569,344 | ---- | C] ((c) MusicCity) -- C:\Windows\System32\muzdecode.ax
[2013-02-05 18:52:50 | 000,491,520 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\System32\muzapp.dll
[2013-02-05 18:52:50 | 000,352,256 | ---- | C] (Sample Corporation) -- C:\Windows\System32\MSLUR71.dll
[2013-02-05 18:52:50 | 000,258,048 | ---- | C] ((c) PeeringPortal) -- C:\Windows\System32\muzoggsp.ax
[2013-02-05 18:52:50 | 000,245,760 | ---- | C] (Teruten Inc.) -- C:\Windows\System32\MSCLib.dll
[2013-02-05 18:52:50 | 000,200,704 | ---- | C] ( (c) MusicCity) -- C:\Windows\System32\muzwmts.dll
[2013-02-05 18:52:50 | 000,172,032 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\System32\muzapp.exe
[2013-02-05 18:52:50 | 000,155,648 | ---- | C] (Teruten Inc.) -- C:\Windows\System32\MSFLib.dll
[2013-02-05 18:52:50 | 000,135,168 | ---- | C] (Musiccity Co.Ltd.) -- C:\Windows\System32\muzaf1.dll
[2013-02-05 18:52:50 | 000,131,072 | ---- | C] ((c) MusicCity) -- C:\Windows\System32\muzmpgsp.ax
[2013-02-05 18:52:50 | 000,122,880 | ---- | C] ((c) MUSICCITY) -- C:\Windows\System32\muzeffect.ax
[2013-02-05 18:52:50 | 000,118,784 | ---- | C] ((주)마크애니) -- C:\Windows\System32\MaDRM.dll
[2013-02-05 18:52:50 | 000,110,592 | ---- | C] ((c) MusicCity) -- C:\Windows\System32\muzmp4sp.ax
[2013-02-05 18:52:50 | 000,057,344 | ---- | C] (Marktek) -- C:\Windows\System32\MK_Lyric.dll
[2013-02-05 18:52:50 | 000,057,344 | ---- | C] (Marktek Inc.) -- C:\Windows\System32\MTXSYNCICON.dll
[2013-02-05 18:52:50 | 000,049,152 | ---- | C] ((주) 마크애니) -- C:\Windows\System32\MaJGUILib.dll
[2013-02-05 18:52:50 | 000,045,320 | ---- | C] (MARKANY) -- C:\Windows\System32\MAMACExtract.dll
[2013-02-05 18:52:50 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\Windows\System32\MaXMLProto.dll
[2013-02-05 18:52:50 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\Windows\System32\MACXMLProto.dll
[2013-02-05 18:52:50 | 000,040,960 | ---- | C] (Telechips Inc.,) -- C:\Windows\System32\MTTELECHIP.dll
[2013-02-05 18:52:50 | 000,024,576 | ---- | C] ((주)마크애니) -- C:\Windows\System32\MASetupCleaner.exe
[2013-02-01 15:27:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Polski VAG 4.9
[2013-02-01 15:27:04 | 000,000,000 | ---D | C] -- C:\Program Files\Polski VAG 4.9
[2013-02-01 15:01:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VCDS-PL
[2013-01-25 20:34:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Astroburn Lite
[2013-01-25 20:23:38 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013-01-25 20:23:32 | 000,632,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr80.dll
[2013-01-25 20:23:32 | 000,554,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp80.dll
[2013-01-25 20:23:32 | 000,479,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcm80.dll
[2013-01-25 20:20:08 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2013-01-25 11:17:45 | 000,049,152 | ---- | C] (Blue Sky Software Corporation.) -- C:\Windows\System32\INETWH32.dll
[2013-01-24 22:34:17 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2013-01-24 22:30:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2013-01-24 13:40:58 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2013-01-24 13:40:21 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
[2013-01-19 00:44:37 | 000,376,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
[2013-01-19 00:44:07 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2013-01-16 19:47:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\YDP
[2013-01-16 19:45:27 | 000,327,168 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUn0415.exe
[2013-01-13 22:21:41 | 000,000,000 | ---D | C] -- C:\Program Files\SlySoft
[2013-01-13 22:00:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Canneverbe Limited
[2013-01-13 21:26:27 | 000,000,000 | ---D | C] -- C:\Program Files\Alcohol Soft
[2013-01-13 21:23:32 | 000,466,008 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2013-01-13 21:20:49 | 000,037,664 | ---- | C] (AVG Technologies) -- C:\Windows\System32\drivers\avgtpx86.sys
[2013-01-13 21:20:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AVG Secure Search
[2013-01-13 21:20:44 | 000,000,000 | ---D | C] -- C:\Program Files\AVG Secure Search
[2013-01-06 18:04:43 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2012-12-24 17:21:28 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2012-11-18 20:06:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Athenasoft
[2012-11-18 20:06:46 | 000,000,000 | ---D | C] -- C:\Program Files\Athenasoft
[2012-11-18 20:06:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Athenasoft
[2012-11-07 19:23:49 | 000,240,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2012-11-07 08:29:14 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG
[2012-11-07 08:29:01 | 000,000,000 | -HSD | C] -- C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F}
[2012-11-06 01:20:52 | 004,456,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc110u.dll
[2012-11-06 01:20:52 | 004,421,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc110.dll
[2012-11-06 01:20:52 | 000,875,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr110.dll
[2012-11-06 01:20:52 | 000,535,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp110.dll
[2012-11-06 01:20:52 | 000,252,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vccorlib110.dll
[2012-11-06 01:20:52 | 000,125,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vcomp110.dll
[2012-11-06 01:20:52 | 000,092,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfcm110u.dll
[2012-11-06 01:20:52 | 000,092,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfcm110.dll
[2012-11-06 01:20:50 | 000,168,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\atl110.dll
[2012-11-03 22:11:50 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2013
[2012-06-06 14:30:03 | 003,063,561 | ---- | C] (Macromedia, Inc.) -- C:\ProgramData\MobileTV.exe
[2012-06-06 14:30:02 | 002,989,660 | ---- | C] (Macromedia, Inc.) -- C:\ProgramData\DVD.exe
[2012-06-06 14:30:02 | 002,864,396 | ---- | C] (Macromedia, Inc.) -- C:\ProgramData\MPV.exe
[2012-06-06 14:30:01 | 002,331,174 | ---- | C] (Macromedia, Inc.) -- C:\ProgramData\Karaoke.exe
[2012-06-06 14:30:00 | 002,231,606 | ---- | C] (Macromedia, Inc.) -- C:\ProgramData\Games.exe
 
[color=#E56717]========== Files - Modified Within 360 Days ==========[/color]
 
[2013-10-18 07:36:58 | 000,000,888 | ---- | M] () -- C:\Windows\tasks\DealPlyLiveUpdateTaskMachineCore.job
[2013-10-18 07:36:57 | 000,001,030 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-10-18 07:36:56 | 000,000,906 | ---- | M] () -- C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineCore.job
[2013-10-18 07:36:55 | 000,000,350 | ---- | M] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013-10-18 07:33:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013-10-18 07:33:29 | 1609,375,744 | -HS- | M] () -- C:\hiberfil.sys
[2013-10-18 07:21:16 | 000,001,034 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-10-18 07:19:06 | 000,000,910 | ---- | M] () -- C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineUA.job
[2013-10-18 06:56:14 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\DealPlyLiveUpdateTaskMachineUA.job
[2013-10-18 06:05:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013-10-17 22:50:18 | 000,001,026 | ---- | M] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2013-10-17 19:55:29 | 000,015,104 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013-10-17 19:55:29 | 000,015,104 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013-10-17 16:40:50 | 000,787,542 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2013-10-17 16:40:50 | 000,682,674 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013-10-17 16:40:50 | 000,175,140 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2013-10-17 16:40:50 | 000,138,236 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013-10-12 13:24:08 | 000,415,384 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013-10-11 09:40:34 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\Setup1.exe
[2013-10-11 09:40:34 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\ST6UNST.EXE
[2013-10-11 09:25:44 | 000,001,633 | ---- | M] () -- C:\Windows\ST6UNST.000
[2013-10-11 08:32:52 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2014.lnk
[2013-10-09 08:07:52 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013-10-09 08:07:52 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013-09-25 20:57:14 | 000,120,632 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgdiskx.sys
[2013-09-23 01:28:12 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013-09-23 01:27:53 | 000,493,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013-09-23 01:27:49 | 002,876,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013-09-23 01:27:49 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2013-09-23 01:27:48 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2013-09-23 01:27:48 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013-09-23 01:27:48 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2013-09-23 01:27:48 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2013-09-21 05:30:24 | 002,706,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013-09-21 04:39:47 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RegisterIEPKEYs.exe
[2013-09-20 18:50:00 | 000,000,290 | ---- | M] () -- C:\Windows\tasks\Dealply.job
[2013-09-10 22:11:44 | 000,022,840 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgidsshimx.sys
[2013-09-08 22:12:16 | 000,027,448 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgrkx86.sys
[2013-09-04 03:14:52 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2013-09-04 03:14:40 | 000,006,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2013-09-02 18:09:15 | 000,174,592 | ---- | M] () -- C:\ProgramData\xwbrqcmauyryiyy
[2013-09-02 18:09:15 | 000,000,141 | ---- | M] () -- C:\ProgramData\ddecaaaec.cfg
[2013-09-02 10:39:32 | 000,176,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgldx86.sys
[2013-09-02 10:28:06 | 000,145,720 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgidshx.sys
[2013-09-02 10:28:04 | 000,209,208 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgidsdriverx.sys
[2013-09-02 10:28:00 | 000,223,032 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avglogx.sys
[2013-08-29 03:51:45 | 003,969,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2013-08-29 03:51:45 | 003,914,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013-08-29 03:50:16 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tdh.dll
[2013-08-28 03:04:30 | 002,348,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013-08-28 02:57:20 | 000,434,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scavengeui.dll
[2013-08-26 18:17:38 | 000,001,090 | ---- | M] () -- C:\Users\Public\Desktop\WinRAR.lnk
[2013-08-20 22:54:04 | 000,102,200 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2013-08-17 07:41:24 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\ProgramData\rundll32.exe
[2013-08-14 06:51:06 | 001,028,021 | ---- | M] () -- C:\ProgramData\2433f433
[2013-08-08 22:20:59 | 000,037,664 | ---- | M] (AVG Technologies) -- C:\Windows\System32\drivers\avgtpx86.sys
[2013-08-07 07:17:45 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll
[2013-08-07 07:17:45 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll
[2013-08-05 21:25:57 | 000,001,956 | ---- | M] () -- C:\Users\Public\Desktop\Windows Updates Downloader.lnk
[2013-08-05 03:56:47 | 000,133,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2013-08-02 03:50:36 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2013-08-02 03:48:15 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2013-08-02 03:48:15 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2013-08-02 03:48:15 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2013-08-02 03:48:15 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2013-08-02 03:48:15 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2013-08-02 03:48:15 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2013-08-02 03:48:15 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2013-08-02 03:48:15 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2013-08-02 03:48:14 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2013-08-02 03:48:14 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2013-08-02 03:48:14 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2013-08-02 03:48:14 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2013-08-02 02:52:57 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2013-08-02 02:43:05 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2013-08-02 02:43:05 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2013-08-02 02:43:05 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2013-08-02 02:43:05 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2013-08-01 16:08:52 | 000,193,848 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgtdix.sys
[2013-07-25 10:57:27 | 001,620,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2013-07-20 12:33:12 | 000,102,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2013-07-19 03:41:01 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2013-07-03 05:36:24 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2013-07-03 05:36:22 | 000,025,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2013-06-21 14:02:43 | 021,102,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2013-06-21 14:02:43 | 017,560,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2013-06-21 14:02:43 | 013,411,896 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2013-06-21 14:02:43 | 012,427,240 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2013-06-21 14:02:43 | 009,069,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2013-06-21 14:02:43 | 007,687,592 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2013-06-21 14:02:43 | 006,324,360 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvopencl.dll
[2013-06-21 14:02:43 | 002,777,888 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2013-06-21 14:02:43 | 002,597,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2013-06-21 14:02:43 | 002,002,720 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2013-06-21 14:02:43 | 001,024,288 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco3232049.dll
[2013-06-21 14:02:43 | 000,893,728 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispgenco3232049.dll
[2013-06-21 14:02:43 | 000,467,232 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\NvIFR.dll
[2013-06-21 14:02:43 | 000,465,184 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\NvFBC.dll
[2013-06-21 14:02:43 | 000,016,437 | ---- | M] () -- C:\Windows\System32\nvinfo.pb
[2013-06-21 11:52:51 | 004,192,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2013-06-21 11:52:51 | 003,045,664 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2013-06-21 11:52:48 | 002,555,168 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll
[2013-06-21 11:52:48 | 000,062,752 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
[2013-06-21 11:52:47 | 000,223,008 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2013-06-16 21:26:34 | 000,000,243 | ---- | M] () -- C:\ProgramData\hpqp.ini
[2013-06-12 08:08:26 | 187,829,973 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013-06-06 06:51:29 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2013-06-06 06:50:56 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2013-06-06 05:01:38 | 000,295,424 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2013-06-06 05:01:26 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2013-05-13 05:08:10 | 000,903,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2013-05-13 05:08:06 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certenc.dll
[2013-05-10 05:20:54 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptdlg.dll
[2013-05-04 07:26:21 | 000,001,989 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2013-04-26 01:30:32 | 001,505,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2013-04-15 11:58:02 | 000,745,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2013-04-15 11:58:02 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\elshyph.dll
[2013-04-15 11:58:01 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2013-04-15 11:58:01 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
[2013-04-15 11:58:01 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iexpress.exe
[2013-04-15 11:58:01 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wextract.exe
[2013-04-15 11:58:01 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inseng.dll
[2013-04-15 11:58:00 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2013-04-15 11:57:59 | 000,117,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2013-04-15 11:57:59 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IEAdvpack.dll
[2013-04-15 11:57:59 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SetIEInstalledDate.exe
[2013-04-15 11:57:59 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2013-04-15 11:57:59 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2013-04-15 11:57:59 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2013-04-15 11:57:59 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll
[2013-04-15 11:57:59 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2013-04-15 11:57:57 | 001,400,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2013-04-15 11:57:57 | 000,629,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2013-04-15 11:57:57 | 000,361,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2013-04-15 11:57:57 | 000,357,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2013-04-15 11:57:57 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2013-04-15 11:57:57 | 000,226,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2013-04-15 11:57:57 | 000,025,185 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2013-04-15 11:57:56 | 001,441,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2013-04-15 11:57:56 | 000,719,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2013-04-15 11:57:56 | 000,242,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2013-04-15 11:57:56 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2013-04-15 11:56:47 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
[2013-04-15 11:56:46 | 000,010,752 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
[2013-04-15 11:56:46 | 000,009,728 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
[2013-04-15 11:56:46 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
[2013-04-15 11:56:46 | 000,005,632 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
[2013-04-15 11:56:46 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
[2013-04-15 11:56:46 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
[2013-04-15 11:56:46 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
[2013-04-15 11:56:46 | 000,002,560 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
[2013-04-15 11:56:45 | 002,284,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2013-04-15 11:56:45 | 001,158,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2013-04-15 11:56:45 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2013-04-15 11:56:45 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2013-04-15 11:56:45 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2013-04-15 11:56:44 | 003,419,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2013-04-15 11:56:44 | 001,988,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2013-04-15 11:56:44 | 001,080,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2013-04-15 11:56:44 | 000,604,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2013-04-15 11:56:44 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2013-04-15 11:56:44 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2013-04-15 11:56:44 | 000,207,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2013-04-15 11:56:44 | 000,187,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2013-04-15 11:56:44 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2013-04-10 07:18:40 | 000,218,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2013-04-10 01:34:01 | 001,247,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2013-04-05 21:26:28 | 000,276,992 | ---- | M] (IntelleSoft) -- C:\Windows\System32\BugTrap.dll
[2013-03-19 06:48:45 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2013-03-19 05:33:33 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwanprotdim.dll
[2013-02-27 13:52:16 | 001,017,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll
[2013-02-27 13:52:12 | 000,892,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispgenco32.dll
[2013-02-27 07:05:53 | 000,101,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
[2013-02-27 06:49:24 | 001,796,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2013-02-22 07:32:08 | 000,134,144 | ---- | M] (Prolific Technology Inc.) -- C:\Windows\System32\drivers\ser2pl.sys
[2013-02-15 06:34:10 | 000,131,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2013-02-15 05:25:51 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2013-02-12 05:32:45 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usb8023.sys
[2013-02-05 18:53:34 | 004,659,712 | ---- | M] (Dmitry Streblechenko) -- C:\Windows\System32\Redemption.dll
[2013-02-05 18:52:50 | 000,974,848 | ---- | M] () -- C:\Windows\System32\cis-2.4.dll
[2013-02-05 18:52:50 | 000,569,344 | ---- | M] ((c) MusicCity) -- C:\Windows\System32\muzdecode.ax
[2013-02-05 18:52:50 | 000,491,520 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\System32\muzapp.dll
[2013-02-05 18:52:50 | 000,352,256 | ---- | M] (Sample Corporation) -- C:\Windows\System32\MSLUR71.dll
[2013-02-05 18:52:50 | 000,258,048 | ---- | M] ((c) PeeringPortal) -- C:\Windows\System32\muzoggsp.ax
[2013-02-05 18:52:50 | 000,245,760 | ---- | M] (Teruten Inc.) -- C:\Windows\System32\MSCLib.dll
[2013-02-05 18:52:50 | 000,200,704 | ---- | M] ( (c) MusicCity) -- C:\Windows\System32\muzwmts.dll
[2013-02-05 18:52:50 | 000,172,032 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\System32\muzapp.exe
[2013-02-05 18:52:50 | 000,155,648 | ---- | M] (Teruten Inc.) -- C:\Windows\System32\MSFLib.dll
[2013-02-05 18:52:50 | 000,143,360 | ---- | M] () -- C:\Windows\System32\3DAudio.ax
[2013-02-05 18:52:50 | 000,135,168 | ---- | M] (Musiccity Co.Ltd.) -- C:\Windows\System32\muzaf1.dll
[2013-02-05 18:52:50 | 000,131,072 | ---- | M] ((c) MusicCity) -- C:\Windows\System32\muzmpgsp.ax
[2013-02-05 18:52:50 | 000,122,880 | ---- | M] ((c) MUSICCITY) -- C:\Windows\System32\muzeffect.ax
[2013-02-05 18:52:50 | 000,118,784 | ---- | M] ((주)마크애니) -- C:\Windows\System32\MaDRM.dll
[2013-02-05 18:52:50 | 000,110,592 | ---- | M] ((c) MusicCity) -- C:\Windows\System32\muzmp4sp.ax
[2013-02-05 18:52:50 | 000,081,920 | ---- | M] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2013-02-05 18:52:50 | 000,065,536 | ---- | M] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2013-02-05 18:52:50 | 000,057,344 | ---- | M] (Marktek) -- C:\Windows\System32\MK_Lyric.dll
[2013-02-05 18:52:50 | 000,057,344 | ---- | M] (Marktek Inc.) -- C:\Windows\System32\MTXSYNCICON.dll
[2013-02-05 18:52:50 | 000,057,344 | ---- | M] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2013-02-05 18:52:50 | 000,049,152 | ---- | M] ((주) 마크애니) -- C:\Windows\System32\MaJGUILib.dll
[2013-02-05 18:52:50 | 000,045,320 | ---- | M] (MARKANY) -- C:\Windows\System32\MAMACExtract.dll
[2013-02-05 18:52:50 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\Windows\System32\MaXMLProto.dll
[2013-02-05 18:52:50 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\Windows\System32\MACXMLProto.dll
[2013-02-05 18:52:50 | 000,040,960 | ---- | M] (Telechips Inc.,) -- C:\Windows\System32\MTTELECHIP.dll
[2013-02-05 18:52:50 | 000,024,576 | ---- | M] ((주)마크애니) -- C:\Windows\System32\MASetupCleaner.exe
[2013-01-25 20:23:42 | 000,000,448 | ---- | M] () -- C:\user.js
[2013-01-13 22:24:40 | 000,000,041 | -HS- | M] () -- C:\ProgramData\.zreglib
[2013-01-06 18:04:45 | 000,000,009 | ---- | M] () -- C:\END
[2013-01-03 07:04:43 | 000,187,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2012-12-28 07:58:02 | 000,000,000 | ---- | M] () -- C:\ProgramData\otogde.dat
[2012-12-07 14:26:17 | 000,308,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
[2012-12-07 14:20:43 | 002,576,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2012-12-07 12:46:42 | 000,043,520 | ---- | M] (Microsoft) -- C:\Windows\System32\csrr.rs
[2012-12-07 12:46:42 | 000,030,720 | ---- | M] (Microsoft) -- C:\Windows\System32\usk.rs
[2012-12-07 12:46:41 | 000,045,568 | ---- | M] (Microsoft) -- C:\Windows\System32\oflc-nz.rs
[2012-12-07 12:46:41 | 000,044,544 | ---- | M] (Microsoft) -- C:\Windows\System32\pegibbfc.rs
[2012-12-07 12:46:41 | 000,023,552 | ---- | M] (Microsoft) -- C:\Windows\System32\oflc.rs
[2012-12-07 12:46:41 | 000,020,480 | ---- | M] (Microsoft) -- C:\Windows\System32\pegi-pt.rs
[2012-12-07 12:46:40 | 000,020,480 | ---- | M] (Microsoft) -- C:\Windows\System32\pegi-fi.rs
[2012-12-07 12:46:39 | 000,046,592 | ---- | M] (Microsoft) -- C:\Windows\System32\fpb.rs
[2012-12-07 12:46:39 | 000,020,480 | ---- | M] (Microsoft) -- C:\Windows\System32\pegi.rs
[2012-12-07 12:46:38 | 000,021,504 | ---- | M] (Microsoft) -- C:\Windows\System32\grb.rs
[2012-12-07 12:46:37 | 000,040,960 | ---- | M] (Microsoft) -- C:\Windows\System32\cob-au.rs
[2012-12-07 12:46:37 | 000,015,360 | ---- | M] (Microsoft) -- C:\Windows\System32\djctq.rs
[2012-12-07 12:46:36 | 000,055,296 | ---- | M] (Microsoft) -- C:\Windows\System32\cero.rs
[2012-12-07 12:46:36 | 000,051,712 | ---- | M] (Microsoft) -- C:\Windows\System32\esrb.rs
[2012-11-23 04:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
[2012-11-20 06:51:09 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012-11-18 20:06:48 | 000,002,254 | ---- | M] () -- C:\Users\Public\Desktop\Norma Pro - przeglądarka kosztorysów.lnk
[2012-11-06 01:20:52 | 004,456,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc110u.dll
[2012-11-06 01:20:52 | 004,421,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc110.dll
[2012-11-06 01:20:52 | 000,875,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr110.dll
[2012-11-06 01:20:52 | 000,535,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcp110.dll
[2012-11-06 01:20:52 | 000,252,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vccorlib110.dll
[2012-11-06 01:20:52 | 000,125,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vcomp110.dll
[2012-11-06 01:20:52 | 000,092,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfcm110u.dll
[2012-11-06 01:20:52 | 000,092,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfcm110.dll
[2012-11-06 01:20:50 | 000,168,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl110.dll
[2012-11-02 07:11:31 | 000,376,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpnet.dll
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013-10-18 07:37:05 | 000,001,425 | ---- | C] () -- C:\Users\rew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013-10-18 07:14:17 | 000,000,910 | ---- | C] () -- C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineUA.job
[2013-10-18 07:14:15 | 000,000,906 | ---- | C] () -- C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineCore.job
[2013-10-17 22:50:18 | 000,001,026 | ---- | C] () -- C:\Users\Public\Desktop\CPUID CPU-Z.lnk
[2013-10-11 09:25:44 | 000,001,633 | ---- | C] () -- C:\Windows\ST6UNST.000
[2013-10-09 08:07:56 | 000,000,930 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013-10-09 06:57:25 | 000,000,965 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2014.lnk
[2013-09-02 18:09:15 | 000,174,592 | ---- | C] () -- C:\ProgramData\xwbrqcmauyryiyy
[2013-09-02 18:09:15 | 000,000,141 | ---- | C] () -- C:\ProgramData\ddecaaaec.cfg
[2013-08-14 06:51:06 | 001,028,021 | ---- | C] () -- C:\ProgramData\2433f433
[2013-08-10 18:57:32 | 000,644,608 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2013-08-10 18:57:26 | 000,258,048 | ---- | C] () -- C:\Windows\System32\libFLAC.dll
[2013-08-08 23:04:16 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2013-08-08 23:03:33 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2013-08-06 20:51:26 | 000,000,892 | ---- | C] () -- C:\Windows\tasks\DealPlyLiveUpdateTaskMachineUA.job
[2013-08-06 20:51:26 | 000,000,888 | ---- | C] () -- C:\Windows\tasks\DealPlyLiveUpdateTaskMachineCore.job
[2013-08-06 20:51:01 | 000,000,290 | ---- | C] () -- C:\Windows\tasks\Dealply.job
[2013-08-05 21:25:57 | 000,001,956 | ---- | C] () -- C:\Users\Public\Desktop\Windows Updates Downloader.lnk
[2013-08-05 12:53:30 | 000,016,437 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2013-06-12 09:46:03 | 000,000,350 | ---- | C] () -- C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
[2013-06-12 08:08:26 | 187,829,973 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2013-05-04 07:26:21 | 000,001,989 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk
[2013-05-04 07:26:20 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2013-04-15 13:52:19 | 000,001,034 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-04-15 13:52:18 | 000,001,030 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-04-15 11:57:57 | 000,025,185 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2013-02-26 20:47:15 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2013-02-26 20:47:15 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2013-02-05 18:52:50 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2013-02-05 18:52:50 | 000,143,360 | ---- | C] () -- C:\Windows\System32\3DAudio.ax
[2013-02-05 18:52:50 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2013-02-05 18:52:50 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2013-02-05 18:52:50 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2013-01-25 20:23:40 | 000,000,448 | ---- | C] () -- C:\user.js
[2013-01-25 11:17:45 | 000,135,168 | ---- | C] () -- C:\Windows\System32\expat.dll
[2013-01-13 22:24:40 | 000,000,041 | -HS- | C] () -- C:\ProgramData\.zreglib
[2013-01-06 18:04:45 | 000,000,009 | ---- | C] () -- C:\END
[2012-12-28 07:58:02 | 000,000,000 | ---- | C] () -- C:\ProgramData\otogde.dat
[2012-11-18 20:06:48 | 000,002,254 | ---- | C] () -- C:\Users\Public\Desktop\Norma Pro - przeglądarka kosztorysów.lnk
[2012-10-27 21:12:21 | 000,000,548 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
[2012-10-22 23:27:51 | 000,709,641 | ---- | C] () -- C:\Windows\unins000.exe
[2012-10-22 23:27:51 | 000,043,716 | ---- | C] () -- C:\Windows\unins000.dat
[2012-06-06 14:29:49 | 000,000,243 | ---- | C] () -- C:\ProgramData\hpqp.ini
[2012-06-03 19:38:55 | 000,138,752 | ---- | C] () -- C:\Windows\System32\ZipDLL.dll
[2012-06-03 19:38:55 | 000,122,368 | ---- | C] () -- C:\Windows\System32\UNZDLL.dll
[2012-06-03 19:38:55 | 000,040,448 | ---- | C] () -- C:\Windows\System32\ZipSFX.bin.old
[2012-06-03 19:38:55 | 000,036,864 | ---- | C] () -- C:\Windows\System32\dzsfxnl.bin
[2012-06-03 19:38:55 | 000,036,352 | ---- | C] () -- C:\Windows\System32\dzsfxus.bin
[2012-06-03 19:38:55 | 000,036,352 | ---- | C] () -- C:\Windows\System32\dzsfxit.bin
[2012-06-03 19:38:55 | 000,036,352 | ---- | C] () -- C:\Windows\System32\dzsfxes.bin
[2012-06-03 19:38:55 | 000,036,352 | ---- | C] () -- C:\Windows\System32\dzsfxde.bin
[2012-06-03 19:38:55 | 000,036,352 | ---- | C] () -- C:\Windows\System32\dzsfxcat.bin
[2012-06-03 13:41:00 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2009-07-14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013-07-26 03:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2013-05-10 17:15:40 | 000,000,000 | ---D | M] -- C:\Users\ANIA\AppData\Roaming\.minecraft
[2012-11-04 15:29:35 | 000,000,000 | ---D | M] -- C:\Users\ANIA\AppData\Roaming\AVG2013
[2013-06-14 11:04:24 | 000,000,000 | ---D | M] -- C:\Users\ANIA\AppData\Roaming\DigitalPersona
[2012-12-02 19:52:48 | 000,000,000 | ---D | M] -- C:\Users\ANIA\AppData\Roaming\PC Suite
[2012-11-08 20:07:10 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2012-11-08 20:07:10 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
[2013-10-18 07:37:25 | 000,000,000 | ---D | M] -- C:\Users\rew\AppData\Roaming\AVG2014
[2013-10-18 07:43:00 | 000,000,000 | ---D | M] -- C:\Users\rew\AppData\Roaming\BabSolution
[2012-11-08 20:07:10 | 000,000,000 | ---D | M] -- C:\Users\rew\AppData\Roaming\TuneUp Software
[2012-11-08 20:07:10 | 000,000,000 | ---D | M] -- C:\Users\TEMP.Pavilion\AppData\Roaming\TuneUp Software
[2013-09-08 19:14:35 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\AcGasSynchro II
[2012-12-16 14:28:19 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\AnvSoft
[2012-10-27 21:56:14 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Audacity
[2012-11-07 08:30:49 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\AVG
[2012-11-03 22:15:37 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\AVG2013
[2013-10-09 07:00:51 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\AVG2014
[2013-03-31 13:32:28 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Babylon
[2013-01-13 22:00:28 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Canneverbe Limited
[2013-01-25 20:24:57 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\DAEMON Tools Lite
[2013-08-06 20:50:59 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Dealply
[2012-06-04 12:18:20 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\DigitalPersona
[2013-02-26 20:59:03 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\ML
[2013-08-12 06:39:50 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Movdap
[2012-10-10 22:38:22 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Nokia
[2012-10-10 22:11:05 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\PC Suite
[2013-03-31 12:54:19 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Samsung
[2013-03-27 13:21:38 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\TeamViewer
[2012-11-03 22:13:16 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\TuneUp Software
[2012-06-04 12:53:24 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\YourFileDownloader
[2012-11-08 20:07:10 | 000,000,000 | ---D | M] -- C:\Users\UpdatusUser\AppData\Roaming\TuneUp Software
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 24 bytes -> C:\Windows:FB81E71D99A6B17C
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:9638A27E
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:DBC416F8
@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:0E08FC17

< End of report >