API tools faq
paste
Advertisement
Guest User

Info

a guest
Aug 5th, 2013
1,049
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 147.02 KB | None | 0 0
raw download clone embed print report
  1. OTL
  2.  
  3. OTL logfile created on: 5.8.2013. 15:15:42 - Run 1
  4. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\HuXoPheria\Downloads
  5. 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
  6. Internet Explorer (Version = 8.0.7600.16385)
  7. Locale: 0000041a | Country: Hrvatska | Language: HRV | Date Format: d.M.yyyy.
  8.  
  9. 3,47 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 39,94% Memory free
  10. 6,94 Gb Paging File | 4,19 Gb Available in Paging File | 60,31% Paging File free
  11. Paging file location(s): ?:\pagefile.sys [binary data]
  12.  
  13. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  14. Drive C: | 214,84 Gb Total Space | 95,54 Gb Free Space | 44,47% Space Free | Partition Type: NTFS
  15. Drive D: | 250,82 Gb Total Space | 218,47 Gb Free Space | 87,10% Space Free | Partition Type: NTFS
  16. Drive E: | 2,19 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
  17.  
  18. Computer Name: HUXERIA-PC | User Name: HuXoPheria | Logged in as Administrator.
  19. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
  20. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  21.  
  22. [color=#E56717]========== Processes (SafeList) ==========[/color]
  23.  
  24. PRC - [2013.08.05 15:14:44 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\HuXoPheria\Downloads\OTL.exe
  25. PRC - [2013.07.27 00:46:22 | 001,807,272 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
  26. PRC - [2013.07.25 02:49:49 | 000,846,288 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  27. PRC - [2013.06.21 05:15:56 | 000,413,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
  28. PRC - [2013.06.21 03:04:14 | 000,831,272 | ---- | M] (AnchorFree Inc.) -- C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
  29. PRC - [2013.06.21 02:51:32 | 000,548,136 | ---- | M] () -- C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
  30. PRC - [2013.05.31 13:30:40 | 000,368,600 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  31. PRC - [2013.05.31 13:30:06 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
  32. PRC - [2013.05.16 16:44:05 | 001,012,000 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
  33. PRC - [2013.05.16 16:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
  34. PRC - [2013.04.30 07:04:17 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
  35. PRC - [2013.04.23 09:48:17 | 003,574,624 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
  36. PRC - [2013.04.19 05:38:38 | 000,491,840 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe
  37. PRC - [2013.04.19 01:58:08 | 000,574,272 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
  38. PRC - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
  39. PRC - [2013.04.04 14:50:32 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
  40. PRC - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
  41. PRC - [2012.07.09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
  42. PRC - [2012.01.04 21:59:50 | 000,291,608 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
  43.  
  44.  
  45. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  46.  
  47. MOD - [2013.07.27 00:46:24 | 001,122,216 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
  48. MOD - [2013.07.25 02:49:46 | 000,396,240 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\ppgooglenaclpluginchrome.dll
  49. MOD - [2013.07.25 02:49:45 | 013,599,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll
  50. MOD - [2013.07.25 02:49:44 | 004,052,944 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\pdf.dll
  51. MOD - [2013.07.25 02:48:54 | 000,601,552 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\libglesv2.dll
  52. MOD - [2013.07.25 02:48:53 | 000,123,344 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\libegl.dll
  53. MOD - [2013.07.25 02:48:51 | 001,597,392 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\ffmpegsumo.dll
  54. MOD - [2013.07.16 00:32:40 | 020,625,832 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll
  55. MOD - [2013.07.01 18:20:48 | 000,652,800 | ---- | M] () -- C:\Program Files (x86)\Steam\SDL2.dll
  56. MOD - [2013.06.27 22:12:40 | 000,093,696 | ---- | M] () -- C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
  57. MOD - [2013.06.15 01:49:12 | 001,100,800 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avcodec-53.dll
  58. MOD - [2013.06.15 01:49:12 | 000,192,000 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avformat-53.dll
  59. MOD - [2013.06.15 01:49:12 | 000,124,416 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avutil-51.dll
  60. MOD - [2013.03.08 07:17:18 | 001,425,920 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\avformat-54.dll
  61. MOD - [2013.03.08 07:17:18 | 000,188,416 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\avutil-52.dll
  62. MOD - [2013.03.08 07:17:18 | 000,096,256 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\swresample-0.dll
  63. MOD - [2013.03.08 07:17:05 | 000,336,896 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\swscale-2.dll
  64. MOD - [2013.03.08 07:17:04 | 007,816,192 | ---- | M] () -- C:\Program Files (x86)\SplitMediaLabs\XSplit\avcodec-54.dll
  65. MOD - [2013.01.16 03:48:26 | 000,348,992 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\madexcept_.bpl
  66. MOD - [2013.01.16 03:48:26 | 000,051,008 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\maddisAsm_.bpl
  67. MOD - [2013.01.16 03:48:24 | 000,183,616 | ---- | M] () -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\madbasic_.bpl
  68.  
  69.  
  70. [color=#E56717]========== Services (SafeList) ==========[/color]
  71.  
  72. SRV:[b]64bit:[/b] - [2013.07.18 20:33:12 | 000,366,600 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
  73. SRV:[b]64bit:[/b] - [2013.07.18 20:33:12 | 000,023,816 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
  74. SRV:[b]64bit:[/b] - [2013.05.11 17:45:54 | 000,822,232 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
  75. SRV:[b]64bit:[/b] - [2013.05.11 17:45:38 | 000,733,696 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
  76. SRV:[b]64bit:[/b] - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
  77. SRV - [2013.07.31 14:28:34 | 001,044,816 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
  78. SRV - [2013.07.30 01:13:22 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
  79. SRV - [2013.07.25 08:52:52 | 000,162,672 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
  80. SRV - [2013.06.21 05:15:56 | 000,413,472 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
  81. SRV - [2013.06.21 03:11:32 | 000,078,512 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Hotspot Shield\bin\HSSTrayService.exe -- (HssTrayService)
  82. SRV - [2013.06.21 03:04:14 | 000,831,272 | ---- | M] (AnchorFree Inc.) [Auto | Running] -- C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe -- (hshld)
  83. SRV - [2013.06.21 02:51:32 | 000,548,136 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe -- (HssWd)
  84. SRV - [2013.06.01 19:41:31 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
  85. SRV - [2013.05.31 13:30:40 | 000,368,600 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
  86. SRV - [2013.05.31 13:30:06 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
  87. SRV - [2013.05.16 16:38:39 | 001,826,592 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
  88. SRV - [2013.04.30 07:04:17 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
  89. SRV - [2013.04.23 09:48:17 | 003,574,624 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
  90. SRV - [2013.04.19 01:58:08 | 000,574,272 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe -- (AdvancedSystemCareService6)
  91. SRV - [2013.04.04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
  92. SRV - [2013.04.04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
  93. SRV - [2012.11.19 17:03:24 | 000,489,256 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
  94. SRV - [2012.07.25 18:58:26 | 000,126,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe -- (Te.Service)
  95. SRV - [2012.07.25 18:13:16 | 000,139,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe -- (fussvc)
  96. SRV - [2012.07.09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
  97. SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
  98.  
  99.  
  100. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  101.  
  102. DRV:[b]64bit:[/b] - [2013.06.21 03:07:16 | 000,046,792 | ---- | M] (AnchorFree Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\hssdrv6.sys -- (HssDRV6)
  103. DRV:[b]64bit:[/b] - [2013.06.18 21:50:08 | 000,139,616 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
  104. DRV:[b]64bit:[/b] - [2013.05.31 13:30:06 | 000,099,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
  105. DRV:[b]64bit:[/b] - [2013.04.24 21:28:08 | 000,042,184 | ---- | M] (Anchorfree Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\taphss6.sys -- (taphss6)
  106. DRV:[b]64bit:[/b] - [2013.04.04 14:50:32 | 000,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
  107. DRV:[b]64bit:[/b] - [2013.02.25 07:27:45 | 000,194,848 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
  108. DRV:[b]64bit:[/b] - [2013.02.22 14:40:13 | 000,792,560 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
  109. DRV:[b]64bit:[/b] - [2013.02.22 14:40:13 | 000,358,896 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
  110. DRV:[b]64bit:[/b] - [2013.02.22 14:40:13 | 000,020,464 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
  111. DRV:[b]64bit:[/b] - [2011.09.29 11:30:34 | 000,646,248 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
  112. DRV:[b]64bit:[/b] - [2011.07.01 04:46:40 | 000,031,232 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tap0901.sys -- (tap0901)
  113. DRV:[b]64bit:[/b] - [2010.11.27 03:02:18 | 000,017,720 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
  114. DRV:[b]64bit:[/b] - [2009.07.14 03:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
  115. DRV:[b]64bit:[/b] - [2009.07.14 03:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
  116. DRV:[b]64bit:[/b] - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
  117. DRV:[b]64bit:[/b] - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
  118. DRV:[b]64bit:[/b] - [2009.07.14 03:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
  119. DRV:[b]64bit:[/b] - [2009.07.14 03:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
  120. DRV:[b]64bit:[/b] - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
  121. DRV:[b]64bit:[/b] - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
  122. DRV:[b]64bit:[/b] - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
  123. DRV:[b]64bit:[/b] - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
  124. DRV:[b]64bit:[/b] - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
  125. DRV - [2013.04.04 01:22:42 | 000,039,504 | ---- | M] (IObit Information Technology) [File_System | Auto | Running] -- C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys -- (PfFilter)
  126. DRV - [2013.04.03 11:53:52 | 000,036,920 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys -- (IObitUnlocker)
  127. DRV - [2012.08.01 15:44:04 | 000,014,544 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys -- (WinRing0_1_2_0)
  128. DRV - [2012.07.13 16:13:14 | 000,070,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys -- (VSPerfDrv110)
  129. DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
  130.  
  131.  
  132. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  133.  
  134.  
  135. [color=#E56717]========== Internet Explorer ==========[/color]
  136.  
  137. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  138. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  139. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  140. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  141. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  142.  
  143.  
  144. IE - HKU\.DEFAULT\..\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649}: "URL" = http://www.basicscan.com/?prt=BASICSCAN115&keywords={searchTerms}
  145. IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  146.  
  147. IE - HKU\S-1-5-18\..\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649}: "URL" = http://www.basicscan.com/?prt=BASICSCAN115&keywords={searchTerms}
  148. IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  149.  
  150.  
  151.  
  152. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.hr/
  153. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
  154. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = hr
  155. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B1 FC C1 67 BA 47 CE 01 [binary data]
  156. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\..\SearchScopes,DefaultScope = {1378C580-84AA-4313-8900-3D7C67865435}
  157. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
  158. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\..\SearchScopes\{1378C580-84AA-4313-8900-3D7C67865435}: "URL" = http://mp3tubetoolbarsearch.com/?tmp=nemo_results_removelink2&keywords={searchTerms}
  159. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  160. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1;localhost;10.*;192.168.*;127.0.0.1:895;127.0.0.1:896;<local>
  161. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8555
  162.  
  163. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mp3tubetoolbar.com/?tmp=toolbar_Mp3Tube_homepage&prt=pinballtbfour04ie&clid=25cb7851c967482caadd976388da944b
  164. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
  165. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = hr
  166. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B1 FC C1 67 BA 47 CE 01 [binary data]
  167. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\..\SearchScopes,DefaultScope = {1378C580-84AA-4313-8900-3D7C67865435}
  168. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
  169. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\..\SearchScopes\{1378C580-84AA-4313-8900-3D7C67865435}: "URL" = http://mp3tubetoolbarsearch.com/?tmp=nemo_results_removelink2&keywords={searchTerms}
  170. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
  171. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>127.0.0.1;localhost;10.*;192.168.*;127.0.0.1:895;127.0.0.1:896
  172. IE - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8555
  173.  
  174. [color=#E56717]========== FireFox ==========[/color]
  175.  
  176. FF - prefs.js..browser.search..defaultengine: "Yahoo-Mp3Tube"
  177. FF - prefs.js..browser.search..defaultenginename: "Yahoo-Mp3Tube"
  178. FF - prefs.js..browser.search..order.1: "Yahoo-Mp3Tube"
  179. FF - prefs.js..browser.search..selectedEngine: "Yahoo-Mp3Tube"
  180. FF - prefs.js..browser.search..selectedEngineURL: "http://mp3tubetoolbar.com/?&prt=pinballtbfour01ff&clid=25cb7851c967482caadd976388da944b&subid=&keywords={searchTerms}"
  181. FF - prefs.js..browser.search.defaultengine: "Yahoo-Mp3Tube"
  182. FF - prefs.js..browser.search.defaultenginename: "Yahoo-Mp3Tube"
  183. FF - prefs.js..browser.search.order.1: "Yahoo-Mp3Tube"
  184. FF - prefs.js..browser.search.selectedEngine: "Yahoo-Mp3Tube"
  185. FF - prefs.js..browser.search.selectedEngineURL: "http://hostmysearch.com/?prt=pinballtbfour01ff&clid=25cb7851c967482caadd976388da944b&subid=&Keywords={searchTerms}"
  186. FF - prefs.js..browser.startup.homepage: "http://www.google.hr/"
  187. FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.15
  188. FF - prefs.js..extensions.enabledAddons: ascsurfingprotection%40iobit.com:1.0
  189. FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
  190. FF - prefs.js..keyword.URL: "http://mp3tubetoolbar.com/?tmp=nemo_results_removelink2&q="
  191. FF - prefs.js..network.proxy.type: 4
  192.  
  193. FF - user.js..keyword.URL: "http://mp3tubetoolbar.com/?tmp=nemo_results_removelink2&q="
  194. FF - user.js..keyword.enabled: 1
  195.  
  196. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
  197. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
  198. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
  199. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
  200. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
  201. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  202. FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
  203. FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
  204. FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
  205. FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  206. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
  207. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
  208. FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
  209. FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
  210.  
  211.  
  212. [2013.04.23 03:51:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\HuXoPheria\AppData\Roaming\Mozilla\Extensions
  213. [2013.07.26 16:23:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\HuXoPheria\AppData\Roaming\Mozilla\Firefox\Profiles\ja5mqd2z.default\extensions
  214. [2013.06.01 22:05:31 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\HuXoPheria\AppData\Roaming\Mozilla\Firefox\Profiles\ja5mqd2z.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
  215. [2013.05.06 01:28:03 | 000,000,000 | ---D | M] (Advanced SystemCare Surfing Protection) -- C:\Users\HuXoPheria\AppData\Roaming\Mozilla\Firefox\Profiles\ja5mqd2z.default\extensions\ascsurfingprotection@iobit.com
  216. [2013.07.26 16:23:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\HuXoPheria\AppData\Roaming\Mozilla\Firefox\Profiles\ja5mqd2z.default\extensions\staged
  217. [2013.07.26 16:23:41 | 000,824,431 | ---- | M] () (No name found) -- C:\Users\HuXoPheria\AppData\Roaming\Mozilla\Firefox\Profiles\ja5mqd2z.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
  218. [2013.08.03 22:07:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
  219. [2013.06.02 15:05:02 | 000,000,000 | ---D | M] (Hotspot Shield Helper (Please allow this installation)) -- C:\Program Files (x86)\Mozilla Firefox\extensions\afurladvisor@anchorfree.com
  220. [2013.08.03 22:07:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
  221. [2013.06.01 19:41:32 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  222. [2013.07.07 16:48:12 | 000,000,000 | ---D | M] (Hotspot Shield Helper (Please allow this installation)) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\afurladvisor@anchorfree.com
  223. [2013.07.26 17:04:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\updated\extensions
  224. [2013.07.26 17:04:53 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\updated\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
  225. [2013.07.26 17:04:53 | 000,000,000 | ---D | M] (Hotspot Shield Helper (Please allow this installation)) -- C:\Program Files (x86)\Mozilla Firefox\updated\extensions\afurladvisor@anchorfree.com
  226. [2013.07.26 17:04:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\updated\browser\extensions
  227. [2013.07.26 17:04:52 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\updated\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
  228. [2013.07.26 17:04:58 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
  229. [2013.07.26 17:04:52 | 000,000,000 | ---D | M] (Hotspot Shield Helper (Please allow this installation)) -- C:\Program Files (x86)\Mozilla Firefox\updated\browser\extensions\afurladvisor@anchorfree.com
  230.  
  231. [color=#E56717]========== Chrome ==========[/color]
  232.  
  233. CHR - default_search_provider: Google (Enabled)
  234. CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
  235. CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
  236. CHR - homepage:
  237. CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll
  238. CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
  239. CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll
  240. CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\pdf.dll
  241. CHR - plugin: ESN Launch Mozilla Plugin (Enabled) = C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll
  242. CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
  243. CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
  244. CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
  245. CHR - plugin: Java(TM) Platform SE 7 U25 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
  246. CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
  247. CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
  248. CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
  249. CHR - plugin: Java Deployment Toolkit 7.0.250.17 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
  250. CHR - Extension: Google Docs = C:\Users\HuXoPheria\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
  251. CHR - Extension: Google disk = C:\Users\HuXoPheria\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
  252. CHR - Extension: YouTube = C:\Users\HuXoPheria\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
  253. CHR - Extension: Google pretra\u017Eivanje = C:\Users\HuXoPheria\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
  254. CHR - Extension: AdBlock = C:\Users\HuXoPheria\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.4_0\
  255. CHR - Extension: avast! Online Security = C:\Users\HuXoPheria\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0\
  256. CHR - Extension: ProxMate - Improve your Internet! = C:\Users\HuXoPheria\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\2.3.8_0\
  257. CHR - Extension: Windows Media Player Extension for HTML5 = C:\Users\HuXoPheria\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0\
  258. CHR - Extension: Advanced SystemCare Surfing Protection = C:\Users\HuXoPheria\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfengeggddojhakldhlpjdlddgkkjkdd\1.0.0_0\
  259. CHR - Extension: Gmail = C:\Users\HuXoPheria\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
  260.  
  261. O1 HOSTS File: ([2013.08.04 16:37:07 | 000,000,021 | RHS- | M]) - C:\Windows\SysNative\drivers\etc\hosts
  262. O1 - Hosts: 127.0.0.1 localhost
  263. O2:[b]64bit:[/b] - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll (AnchorFree Inc.)
  264. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
  265. O2 - BHO: (Microsoft Web Test Recorder 10.0 Helper) - {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} - C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
  266. O2 - BHO: (Advanced SystemCare Browser Protection) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\Program Files (x86)\IObit\Advanced SystemCare 6\BrowerProtect\ASCPlugin_Protection.dll (IObit)
  267. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  268. O2 - BHO: (Hotspot Shield Class) - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE.dll (AnchorFree Inc.)
  269. O3 - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\..\Toolbar\WebBrowser: (no name) - {724D43A0-0D85-11D4-9908-00400523E39A} - No CLSID value found.
  270. O3 - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\..\Toolbar\WebBrowser: (no name) - {46897C77-E7A6-4C33-BFFB-E9C2E2718942} - No CLSID value found.
  271. O3 - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\..\Toolbar\WebBrowser: (no name) - {724D43A0-0D85-11D4-9908-00400523E39A} - No CLSID value found.
  272. O4:[b]64bit:[/b] - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
  273. O4:[b]64bit:[/b] - HKLM..\Run: [Nvtmru] C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe (NVIDIA Corporation)
  274. O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor)
  275. O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
  276. O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
  277. O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
  278. O4 - HKU\S-1-5-21-3122885149-943379202-3011934495-1003..\Run: [AdobeBridge] File not found
  279. O4 - HKU\S-1-5-21-3122885149-943379202-3011934495-1003..\Run: [Advanced SystemCare 6] C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe (IObit)
  280. O4 - HKU\S-1-5-21-3122885149-943379202-3011934495-1003..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
  281. O4 - HKU\S-1-5-21-3122885149-943379202-3011934495-1004..\Run: [Advanced SystemCare 6] C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe (IObit)
  282. O4 - HKU\S-1-5-21-3122885149-943379202-3011934495-1004..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
  283. O4 - HKU\S-1-5-21-3122885149-943379202-3011934495-1004..\Run: [uTorrent] C:\Users\HuXoPheria\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
  284. O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
  285. O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
  286. O4 - HKU\S-1-5-21-3122885149-943379202-3011934495-1004..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
  287. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  288. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  289. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
  290. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  291. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
  292. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
  293. O7 - HKU\S-1-5-21-3122885149-943379202-3011934495-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
  294. O7 - HKU\S-1-5-21-3122885149-943379202-3011934495-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
  295. O13[b]64bit:[/b] - gopher Prefix: missing
  296. O13 - gopher Prefix: missing
  297. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
  298. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E93B669B-77D4-45BB-8964-EC46E4BDE829}: DhcpNameServer = 192.168.1.1
  299. O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
  300. O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
  301. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  302. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  303. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  304. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
  305. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  306. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  307. O32 - HKLM CDRom: AutoRun - 1
  308. O32 - AutoRun File - [2012.07.26 08:52:25 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
  309. O32 - AutoRun File - [2013.02.22 13:27:07 | 000,000,000 | R--D | M] - E:\autounban -- [ UDF ]
  310. O34 - HKLM BootExecute: (autocheck autochk *)
  311. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  312. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  313. O35 - HKLM\..comfile [open] -- "%1" %*
  314. O35 - HKLM\..exefile [open] -- "%1" %*
  315. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  316. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  317. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  318. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  319. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  320. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  321. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  322.  
  323.  
  324. CREATERESTOREPOINT
  325. Restore point Set: OTL Restore Point
  326.  
  327. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  328.  
  329. [2013.08.05 01:58:56 | 001,462,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
  330. [2013.08.05 01:58:56 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
  331. [2013.08.05 01:57:55 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
  332. [2013.08.05 01:57:55 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
  333. [2013.08.04 20:47:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
  334. [2013.08.04 20:47:11 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
  335. [2013.08.04 20:46:59 | 000,374,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
  336. [2013.08.04 19:35:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
  337. [2013.08.04 19:35:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
  338. [2013.08.04 17:58:14 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\expsystem
  339. [2013.08.04 17:31:57 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\userpanel
  340. [2013.08.04 14:44:10 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\Users\HuXoPheria\Desktop\regedit.exe
  341. [2013.08.04 14:37:37 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Users\HuXoPheria\Desktop\cmd.exe
  342. [2013.08.03 19:12:15 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\vehicleblips
  343. [2013.08.03 19:09:38 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\vehtab
  344. [2013.08.03 19:05:17 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\moneytab
  345. [2013.08.03 18:59:28 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\entermoney
  346. [2013.08.03 18:40:12 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\wepmods
  347. [2013.08.03 18:26:54 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\clans
  348. [2013.08.03 17:07:59 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\tardis
  349. [2013.08.03 17:07:15 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\voicecommands
  350. [2013.08.03 15:25:00 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\newjoincountry
  351. [2013.08.03 13:43:52 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\steal from race
  352. [2013.08.02 23:51:41 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\Naturalsoft
  353. [2013.08.02 23:50:06 | 000,000,000 | ---D | C] -- C:\ProgramData\NaturalSoft
  354. [2013.08.02 18:52:13 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\ranks
  355. [2013.08.02 17:47:30 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
  356. [2013.08.02 17:47:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
  357. [2013.08.02 17:47:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SpeedFan
  358. [2013.08.02 12:48:44 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Desktop\anti malware bytes keys and serial and id
  359. [2013.08.02 12:42:48 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Roaming\Malwarebytes
  360. [2013.08.02 12:42:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
  361. [2013.08.02 12:42:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
  362. [2013.08.02 12:42:31 | 000,025,928 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
  363. [2013.08.02 12:42:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
  364. [2013.08.02 00:49:39 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\STEAL DIS
  365. [2013.08.01 23:03:48 | 000,804,384 | ---- | C] (Firelight Technologies) -- C:\Windows\SysWow64\fmodex.dll
  366. [2013.08.01 23:03:48 | 000,312,864 | ---- | C] (Firelight Technologies) -- C:\Windows\SysWow64\fmod_event.dll
  367. [2013.08.01 22:25:19 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\whitelist
  368. [2013.08.01 22:25:11 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\chatbox
  369. [2013.08.01 21:40:34 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Documents\Ubisoft
  370. [2013.08.01 12:40:43 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\Audio Visualizer Creator
  371. [2013.08.01 12:33:35 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
  372. [2013.08.01 12:30:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
  373. [2013.08.01 12:30:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
  374. [2013.08.01 12:29:37 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
  375. [2013.08.01 12:28:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
  376. [2013.08.01 12:18:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
  377. [2013.08.01 12:18:12 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Local\Adobe
  378. [2013.08.01 12:16:37 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\Adobe CS6
  379. [2013.07.31 22:50:29 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\amt - Copy
  380. [2013.07.31 17:03:31 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\xdlogin
  381. [2013.07.31 15:41:17 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\bgun
  382. [2013.07.31 14:28:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Macrovision Shared
  383. [2013.07.31 14:27:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Macrovision
  384. [2013.07.31 14:27:47 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
  385. [2013.07.31 14:27:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\InstallShield
  386. [2013.07.31 00:37:59 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Roaming\Microsoft FxCop
  387. [2013.07.31 00:22:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Visual Studio
  388. [2013.07.31 00:22:04 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\Norfa Internet Browser
  389. [2013.07.31 00:21:47 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\Norfa's Browser
  390. [2013.07.31 00:10:58 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\Visual Studio 2012
  391. [2013.07.31 00:09:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
  392. [2013.07.31 00:09:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
  393. [2013.07.31 00:09:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 5 SDK
  394. [2013.07.31 00:09:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 4 SDK
  395. [2013.07.31 00:08:20 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
  396. [2013.07.31 00:08:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
  397. [2013.07.31 00:07:50 | 000,000,000 | ---D | C] -- C:\Program Files\Application Verifier
  398. [2013.07.31 00:07:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Application Verifier
  399. [2013.07.31 00:07:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Windows App Certification Kit
  400. [2013.07.31 00:07:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
  401. [2013.07.31 00:07:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Microsoft
  402. [2013.07.31 00:07:04 | 000,000,000 | ---D | C] -- C:\ProgramData\PreEmptive Solutions
  403. [2013.07.31 00:06:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft ASP.NET
  404. [2013.07.31 00:05:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Web Tools
  405. [2013.07.31 00:05:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft
  406. [2013.07.31 00:05:16 | 000,000,000 | ---D | C] -- C:\Program Files\IIS Express
  407. [2013.07.31 00:05:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IIS Express
  408. [2013.07.31 00:02:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NuGet
  409. [2013.07.31 00:02:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft WCF Data Services
  410. [2013.07.31 00:00:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Kits
  411. [2013.07.30 23:56:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HTML Help Workshop
  412. [2013.07.30 23:56:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Designer
  413. [2013.07.30 23:56:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Help Viewer
  414. [2013.07.30 23:55:48 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\1033
  415. [2013.07.30 23:55:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
  416. [2013.07.30 23:55:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server
  417. [2013.07.30 23:53:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Merge Modules
  418. [2013.07.30 23:52:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2012
  419. [2013.07.30 23:52:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 11.0
  420. [2013.07.30 23:52:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\1033
  421. [2013.07.30 23:52:29 | 000,000,000 | ---D | C] -- C:\Windows\symbols
  422. [2013.07.30 23:52:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 11.0
  423. [2013.07.30 23:52:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SDKs
  424. [2013.07.30 23:46:49 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1991-06.com.microsoft
  425. [2013.07.30 23:46:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
  426. [2013.07.30 23:26:12 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\gmon
  427. [2013.07.30 23:23:19 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\ghostmodecommand
  428. [2013.07.30 23:18:40 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\ghostmode
  429. [2013.07.30 17:20:17 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\onlineadmins
  430. [2013.07.30 17:08:07 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\noswear
  431. [2013.07.30 16:43:56 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\greenzone
  432. [2013.07.30 16:15:38 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\3dradio
  433. [2013.07.30 16:11:29 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\streamradio
  434. [2013.07.30 16:04:12 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\realtime
  435. [2013.07.30 14:59:49 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Local\Ubisoft Game Launcher
  436. [2013.07.30 14:40:21 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
  437. [2013.07.30 14:36:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
  438. [2013.07.30 01:38:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit
  439. [2013.07.30 01:38:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SplitMediaLabs
  440. [2013.07.30 01:33:36 | 000,000,000 | -HSD | C] -- C:\AI_RecycleBin
  441. [2013.07.30 01:32:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Innovative Solutions
  442. [2013.07.30 01:32:52 | 000,000,000 | ---D | C] -- C:\Windows\Fonts\AdvUninstal
  443. [2013.07.30 01:32:51 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Local\Innovative Solutions
  444. [2013.07.30 01:32:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Innovative Solutions
  445. [2013.07.30 01:32:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller PRO
  446. [2013.07.30 01:32:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Innovative Solutions
  447. [2013.07.30 01:15:01 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Local\SplitMediaLabs
  448. [2013.07.30 01:14:41 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin
  449. [2013.07.30 01:14:27 | 000,000,000 | ---D | C] -- C:\ProgramData\SplitMediaLabs
  450. [2013.07.30 01:12:44 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Roaming\SplitMediaLabs
  451. [2013.07.29 23:56:12 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\Cross Fire
  452. [2013.07.29 23:56:11 | 000,000,000 | ---D | C] -- C:\CFLog
  453. [2013.07.29 23:45:09 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
  454. [2013.07.29 23:45:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossfire Europe
  455. [2013.07.29 23:40:31 | 000,000,000 | ---D | C] -- C:\SG Interactive
  456. [2013.07.29 23:27:46 | 000,000,000 | ---D | C] -- C:\Crossfire
  457. [2013.07.29 23:27:03 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Local\PMB Files
  458. [2013.07.29 23:27:01 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
  459. [2013.07.29 23:26:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks
  460. [2013.07.29 23:26:15 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\.swt
  461. [2013.07.29 16:06:22 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\f2airbrake
  462. [2013.07.29 16:02:36 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\airbreak
  463. [2013.07.28 14:41:30 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\andromada sumo and stunt info
  464. [2013.07.28 13:50:15 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
  465. [2013.07.28 13:11:38 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
  466. [2013.07.27 23:16:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
  467. [2013.07.27 14:58:55 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Desktop\gtasa effects etc backup
  468. [2013.07.27 00:48:55 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\Nuclear intro DIGITALRHINO
  469. [2013.07.27 00:46:22 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Desktop\intro
  470. [2013.07.26 16:25:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
  471. [2013.07.26 16:19:49 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\dwhelper
  472. [2013.07.26 15:14:06 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\imgtool
  473. [2013.07.26 13:59:15 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\abase
  474. [2013.07.25 23:02:04 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\autoteambackup
  475. [2013.07.25 22:57:46 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\autoteam
  476. [2013.07.25 19:30:37 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\topdrift
  477. [2013.07.25 19:30:28 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\drift
  478. [2013.07.25 18:12:04 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Desktop\BDACL
  479. [2013.07.25 17:29:44 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\vehiclejump
  480. [2013.07.24 17:44:43 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\carworkrar
  481. [2013.07.24 17:42:52 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\carwork
  482. [2013.07.24 16:13:19 | 000,263,592 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
  483. [2013.07.24 16:13:14 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
  484. [2013.07.24 16:13:14 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
  485. [2013.07.24 16:13:14 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
  486. [2013.07.24 00:14:13 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\serverthings
  487. [2013.07.23 12:56:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MTA San Andreas 1.3
  488. [2013.07.23 12:55:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MTA San Andreas 1.3
  489. [2013.07.23 12:14:05 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\servername
  490. [2013.07.23 12:10:42 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\xdacl
  491. [2013.07.23 12:03:26 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\vehjump
  492. [2013.07.23 11:49:00 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\accprotection
  493. [2013.07.23 11:37:24 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\backup
  494. [2013.07.23 11:06:58 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Desktop\
  495. [2013.07.23 00:28:10 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\bdautoteam
  496. [2013.07.22 13:45:17 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\bdoldhud
  497. [2013.07.21 23:37:14 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\bdlogo
  498. [2013.07.21 18:16:18 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\logdate
  499. [2013.07.21 10:01:45 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\logggggggggg
  500. [2013.07.21 00:47:38 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\bdnewdriftblack
  501. [2013.07.21 00:33:20 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Desktop\BDNEWDRIFTBACKUP
  502. [2013.07.20 19:18:21 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\bddrift
  503. [2013.07.20 18:45:05 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Desktop\dodatiscriptove
  504. [2013.07.20 16:45:53 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\admindmgproof
  505. [2013.07.20 15:47:30 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\novimodovop
  506. [2013.07.20 15:13:53 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\cveh
  507. [2013.07.20 14:39:48 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Desktop\MOZDA LEITO
  508. [2013.07.20 00:53:26 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\New folder
  509. [2013.07.20 00:51:33 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\animpanel
  510. [2013.07.19 22:48:10 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\destroyexplodedvehicle
  511. [2013.07.19 22:11:27 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\newlog
  512. [2013.07.19 20:30:26 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\nitrocommand
  513. [2013.07.19 18:39:38 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Desktop\CLAUDE IP AND SERIAL
  514. [2013.07.19 18:29:44 | 000,000,000 | R--D | C] -- C:\Users\HuXoPheria\Desktop\logy
  515. [2013.07.19 18:22:43 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\adminzone4
  516. [2013.07.19 18:20:20 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\adminzone3
  517. [2013.07.19 17:57:20 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\adminzone2
  518. [2013.07.19 16:51:59 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\area500
  519. [2013.07.19 16:07:06 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\bdrulespanel
  520. [2013.07.19 15:57:21 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\rulespanel
  521. [2013.07.18 18:44:58 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\godmode
  522. [2013.07.18 17:56:17 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\backfuportection
  523. [2013.07.18 17:49:15 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\autologin
  524. [2013.07.18 16:26:47 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\loginp
  525. [2013.07.18 16:21:00 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\hud2
  526. [2013.07.18 14:07:27 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\logss
  527. [2013.07.18 00:50:57 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\scriptedit
  528. [2013.07.18 00:09:41 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\newfreeroam
  529. [2013.07.18 00:04:21 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\freeroambackup
  530. [2013.07.18 00:03:43 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\[XDM]freeroam
  531. [2013.07.17 22:22:23 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\skinmods
  532. [2013.07.17 19:35:07 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
  533. [2013.07.17 19:35:07 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
  534. [2013.07.17 19:34:44 | 002,103,040 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib64.dll
  535. [2013.07.17 19:34:44 | 001,361,336 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll
  536. [2013.07.17 19:34:44 | 000,858,032 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tossaeapo64.dll
  537. [2013.07.17 19:34:44 | 000,836,544 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll
  538. [2013.07.17 19:34:44 | 000,569,256 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosasfapo64.dll
  539. [2013.07.17 19:34:44 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
  540. [2013.07.17 19:34:44 | 000,148,912 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\toseaeapo64.dll
  541. [2013.07.17 19:34:44 | 000,148,416 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll
  542. [2013.07.17 19:34:44 | 000,065,944 | ---- | C] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll
  543. [2013.07.17 19:34:43 | 000,633,088 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\sltech64.dll
  544. [2013.07.17 19:34:43 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
  545. [2013.07.17 19:34:43 | 000,213,760 | ---- | C] (TODO: <Company name>) -- C:\Windows\SysNative\slprp64.dll
  546. [2013.07.17 19:34:43 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
  547. [2013.07.17 19:34:43 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
  548. [2013.07.17 19:34:42 | 002,795,224 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
  549. [2013.07.17 19:34:42 | 001,662,024 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
  550. [2013.07.17 19:34:42 | 000,947,760 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\SFSS_APO.dll
  551. [2013.07.17 19:34:42 | 000,791,808 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\slcnt64.dll
  552. [2013.07.17 19:34:42 | 000,521,472 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\sl3apo64.dll
  553. [2013.07.17 19:34:42 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
  554. [2013.07.17 19:34:42 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll
  555. [2013.07.17 19:34:42 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll
  556. [2013.07.17 19:34:42 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll
  557. [2013.07.17 19:34:42 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll
  558. [2013.07.17 19:34:41 | 000,758,104 | ---- | C] (A-Volute) -- C:\Windows\SysNative\RTKSMSettingsIPC.dll
  559. [2013.07.17 19:34:40 | 004,810,008 | ---- | C] (ASUSTeKcomputer.Inc) -- C:\Windows\SysNative\RTKSMlfx.dll
  560. [2013.07.17 19:34:40 | 003,760,856 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
  561. [2013.07.17 19:34:40 | 001,004,248 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
  562. [2013.07.17 19:34:40 | 000,613,448 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll
  563. [2013.07.17 19:34:40 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
  564. [2013.07.17 19:34:40 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
  565. [2013.07.17 19:34:40 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
  566. [2013.07.17 19:34:40 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
  567. [2013.07.17 19:34:40 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
  568. [2013.07.17 19:34:40 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll
  569. [2013.07.17 19:34:39 | 001,284,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
  570. [2013.07.17 19:34:39 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
  571. [2013.07.17 19:34:38 | 028,280,832 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
  572. [2013.07.17 19:34:38 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
  573. [2013.07.17 19:34:38 | 000,147,160 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
  574. [2013.07.17 19:34:32 | 007,164,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll
  575. [2013.07.17 19:34:31 | 000,141,584 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll
  576. [2013.07.17 19:34:31 | 000,075,024 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll
  577. [2013.07.17 19:34:30 | 000,906,800 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\MISS_APO.dll
  578. [2013.07.17 19:34:30 | 000,434,960 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll
  579. [2013.07.17 19:34:30 | 000,124,176 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll
  580. [2013.07.17 19:34:28 | 000,547,784 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO2064.dll
  581. [2013.07.17 19:34:28 | 000,394,616 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
  582. [2013.07.17 19:34:27 | 003,138,304 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioVnN64.dll
  583. [2013.07.17 19:34:25 | 009,123,608 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioVnA64.dll
  584. [2013.07.17 19:34:21 | 014,035,712 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll
  585. [2013.07.17 19:34:20 | 001,903,872 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek264.dll
  586. [2013.07.17 19:34:18 | 002,032,896 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ64.dll
  587. [2013.07.17 19:34:18 | 000,920,320 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
  588. [2013.07.17 19:34:18 | 000,722,688 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO5064.dll
  589. [2013.07.17 19:34:18 | 000,612,728 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO4064.dll
  590. [2013.07.17 19:34:18 | 000,603,984 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll
  591. [2013.07.17 19:34:18 | 000,395,208 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
  592. [2013.07.17 19:34:18 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
  593. [2013.07.17 19:34:09 | 002,736,160 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
  594. [2013.07.17 19:34:08 | 001,756,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
  595. [2013.07.17 19:34:08 | 001,568,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
  596. [2013.07.17 19:34:08 | 000,712,296 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
  597. [2013.07.17 19:34:08 | 000,693,352 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
  598. [2013.07.17 19:34:08 | 000,501,192 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll
  599. [2013.07.17 19:34:08 | 000,491,112 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
  600. [2013.07.17 19:34:08 | 000,487,368 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll
  601. [2013.07.17 19:34:08 | 000,432,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
  602. [2013.07.17 19:34:08 | 000,428,648 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
  603. [2013.07.17 19:34:08 | 000,415,688 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll
  604. [2013.07.17 19:34:08 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
  605. [2013.07.17 19:34:08 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
  606. [2013.07.17 19:34:08 | 000,241,768 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
  607. [2013.07.17 19:34:07 | 001,486,952 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
  608. [2013.07.17 19:34:07 | 000,728,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
  609. [2013.07.17 19:34:06 | 000,110,592 | ---- | C] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll
  610. [2013.07.17 19:34:03 | 000,108,640 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
  611. [2013.07.17 19:34:02 | 000,208,072 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
  612. [2013.07.17 19:26:57 | 002,080,472 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Users\HuXoPheria\Desktop\RtlExUpd.dll
  613. [2013.07.17 19:26:50 | 000,121,064 | ---- | C] (Macrovision Corporation) -- C:\Users\HuXoPheria\Desktop\Setup.exe
  614. [2013.07.17 19:26:49 | 000,076,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Users\HuXoPheria\Desktop\ChCfg.exe
  615. [2013.07.17 19:26:45 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\Vista64
  616. [2013.07.17 19:26:45 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\Vista
  617. [2013.07.16 23:38:32 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\bike-island
  618. [2013.07.16 22:08:30 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\god
  619. [2013.07.14 22:36:05 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Desktop\chatboxcheat
  620. [2013.07.14 20:07:44 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\sveee
  621. [2013.07.14 01:03:49 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\Aenema
  622. [2013.07.12 00:00:55 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Roaming\FileZilla
  623. [2013.07.12 00:00:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
  624. [2013.07.12 00:00:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FileZilla FTP Client
  625. [2013.07.11 13:27:30 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\WIN7
  626. [2013.07.11 13:27:30 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\TOOL
  627. [2013.07.11 13:27:29 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\UTILIZE_DUAL_MAC_GUIDE
  628. [2013.07.11 13:27:29 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\README
  629. [2013.07.11 13:27:29 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\QUICK_INSTALL_GUIDE
  630. [2013.07.11 13:27:29 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\ICON
  631. [2013.07.11 13:27:29 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\FAQ
  632. [2013.07.11 13:25:57 | 000,016,344 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\IntelMEFWVer.dll
  633. [2013.07.11 13:25:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
  634. [2013.07.11 13:25:40 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
  635. [2013.07.11 13:25:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent
  636. [2013.07.11 13:24:49 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
  637. [2013.07.11 13:24:49 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
  638. [2013.07.11 13:24:28 | 001,795,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WdfCoInstaller01011.dll
  639. [2013.07.11 13:24:28 | 000,099,800 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\TeeDriverx64.sys
  640. [2013.07.11 13:24:23 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Roaming\InstallShield
  641. [2013.07.11 13:19:19 | 000,792,560 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iusb3xhc.sys
  642. [2013.07.11 13:19:18 | 000,358,896 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iusb3hub.sys
  643. [2013.07.11 13:19:18 | 000,020,464 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iusb3hcs.sys
  644. [2013.07.10 18:18:36 | 000,000,000 | ---D | C] -- C:\ProgramData\BlueStacksSetup
  645. [2013.07.09 22:28:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
  646. [2013.07.09 22:28:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSECache
  647. [2013.07.09 17:09:29 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Roaming\TuneUp Software
  648. [2013.07.09 17:08:58 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
  649. [2013.07.09 17:08:48 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
  650. [2013.07.09 17:08:48 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
  651. [2013.07.09 15:42:48 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\4A Games
  652. [2013.07.09 15:37:48 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Local\4A Games
  653. [2013.07.09 15:30:56 | 000,000,000 | ---D | C] -- C:\ProgramData\RELOADED
  654. [2013.07.09 14:42:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Metro Last Light
  655. [2013.07.08 13:41:30 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\Documents\Razer
  656. [2013.07.08 13:41:13 | 000,000,000 | ---D | C] -- C:\Users\HuXoPheria\AppData\Local\Razer
  657. [2013.07.08 13:40:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
  658. [2013.07.08 13:40:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Razer
  659. [2013.07.08 13:40:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Razer
  660.  
  661. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  662.  
  663. [2013.08.05 14:03:49 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  664. [2013.08.05 14:03:49 | 000,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  665. [2013.08.05 13:55:00 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  666. [2013.08.05 13:54:44 | 2794,975,232 | -HS- | M] () -- C:\hiberfil.sys
  667. [2013.08.04 20:47:39 | 000,002,154 | ---- | M] () -- C:\Windows\epplauncher.mif
  668. [2013.08.04 19:45:00 | 000,779,724 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
  669. [2013.08.04 19:45:00 | 000,652,488 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
  670. [2013.08.04 19:45:00 | 000,120,890 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
  671. [2013.08.04 19:35:03 | 000,000,927 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
  672. [2013.08.04 16:41:35 | 004,904,616 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
  673. [2013.08.04 13:00:37 | 000,029,076 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Sansation_Bold.ttf
  674. [2013.08.04 13:00:37 | 000,029,012 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Sansation_Light.ttf
  675. [2013.08.04 13:00:37 | 000,028,912 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Sansation_Regular.ttf
  676. [2013.08.03 18:55:53 | 001,329,152 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\database.db
  677. [2013.08.02 18:52:01 | 000,000,564 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\rank.zip
  678. [2013.08.02 17:47:30 | 000,001,017 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\SpeedFan.lnk
  679. [2013.08.02 17:47:29 | 000,000,045 | ---- | M] () -- C:\Windows\SysWow64\initdebug.nfo
  680. [2013.08.02 12:42:32 | 000,001,137 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
  681. [2013.08.01 11:18:55 | 000,002,195 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
  682. [2013.08.01 01:07:26 | 000,000,147 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\message.vbs
  683. [2013.08.01 01:00:11 | 000,000,137 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\computer_voice.vbs
  684. [2013.07.31 01:18:03 | 000,000,867 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Norfa Internet Browser.exe
  685. [2013.07.31 01:02:39 | 000,002,700 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\browser.png
  686. [2013.07.31 00:57:29 | 000,006,049 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\search.png
  687. [2013.07.31 00:55:50 | 000,008,696 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\refresh.png
  688. [2013.07.31 00:54:25 | 000,003,402 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\home-home-icone-7722-64.png
  689. [2013.07.31 00:53:22 | 000,004,702 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Fast-forward.png
  690. [2013.07.31 00:50:09 | 000,002,412 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\back.png
  691. [2013.07.30 23:50:34 | 000,763,706 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  692. [2013.07.30 14:40:21 | 000,001,223 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Uplay.lnk
  693. [2013.07.30 01:38:59 | 000,001,151 | ---- | M] () -- C:\Users\HuXoPheria\Application Data\Microsoft\Internet Explorer\Quick Launch\XSplit Broadcaster.lnk
  694. [2013.07.30 01:38:59 | 000,001,127 | ---- | M] () -- C:\Users\Public\Desktop\XSplit Broadcaster.lnk
  695. [2013.07.30 01:32:51 | 000,002,475 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Advanced Uninstaller PRO 11.lnk
  696. [2013.07.30 01:13:22 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
  697. [2013.07.30 01:13:22 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
  698. [2013.07.30 01:13:21 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
  699. [2013.07.29 23:49:46 | 000,000,842 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Crossfire Europe.lnk
  700. [2013.07.28 13:49:50 | 000,675,848 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\s0beit_03x.rar
  701. [2013.07.27 22:58:12 | 000,122,288 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Untitled.MP4.sfk
  702. [2013.07.27 22:56:26 | 000,017,288 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\HUXSPIN.veg
  703. [2013.07.27 22:32:02 | 000,011,584 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\HUXSPIN.veg.bak
  704. [2013.07.27 17:46:09 | 053,964,649 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\norfaintroo.MP4
  705. [2013.07.27 17:39:30 | 000,035,368 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\norfaint.veg
  706. [2013.07.27 14:26:51 | 000,002,291 | ---- | M] () -- C:\Users\HuXoPheria\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
  707. [2013.07.26 16:06:32 | 005,154,429 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Fox Stevenson - Sandblast.mp3
  708. [2013.07.25 19:55:34 | 000,006,156 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\drft.lua
  709. [2013.07.24 18:08:36 | 000,009,595 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\vehicles.xml
  710. [2013.07.24 16:13:12 | 000,096,168 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
  711. [2013.07.24 16:13:10 | 000,263,592 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
  712. [2013.07.24 16:13:10 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
  713. [2013.07.24 16:13:10 | 000,175,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
  714. [2013.07.24 16:13:09 | 000,867,240 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
  715. [2013.07.24 16:13:09 | 000,789,416 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
  716. [2013.07.24 15:18:57 | 000,032,580 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\wtfalert.PNG
  717. [2013.07.24 08:02:21 | 001,515,428 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\alertscreen2.PNG
  718. [2013.07.24 08:00:12 | 001,357,853 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\virusalert..PNG
  719. [2013.07.23 12:56:24 | 000,002,146 | ---- | M] () -- C:\Users\Public\Desktop\MTA San Andreas 1.3.lnk
  720. [2013.07.21 23:13:15 | 002,954,359 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Document.rtf
  721. [2013.07.21 09:59:28 | 003,624,797 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\8qpanel.zip
  722. [2013.07.21 01:10:41 | 000,783,627 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\map.png
  723. [2013.07.20 19:25:54 | 000,004,640 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\takashis_house.zip
  724. [2013.07.20 15:28:29 | 000,023,815 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\coollogo_com-25781316.png
  725. [2013.07.20 00:10:00 | 000,028,857 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\driftmap.zip
  726. [2013.07.19 22:27:09 | 000,009,658 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\LoginForm_Client.lua
  727. [2013.07.19 22:27:07 | 000,002,541 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\LoginForm.lua
  728. [2013.07.19 20:39:28 | 000,000,626 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\server3.lua
  729. [2013.07.19 20:39:06 | 000,000,627 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\server2.lua
  730. [2013.07.19 20:38:48 | 000,000,626 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\server1.lua
  731. [2013.07.19 00:29:13 | 000,003,968 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Capture.PNG
  732. [2013.07.18 01:03:51 | 004,023,014 | ---- | M] () -- C:\Users\HuXoPheria\Documents\Avicii - Avicii - Wake Me Up (Lyric Video).mp3
  733. [2013.07.18 00:50:39 | 000,004,560 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Martin's Scripteditor.rar
  734. [2013.07.18 00:31:28 | 001,128,527 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\BDFreeroam.rar
  735. [2013.07.17 00:34:43 | 000,000,021 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\banlist.xml
  736. [2013.07.16 20:35:57 | 288,972,481 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\Untitled.MP4
  737. [2013.07.16 20:30:27 | 000,118,264 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\gta_sa 2013-07-16 20-14-01-07.avi.sfk
  738. [2013.07.16 20:30:22 | 000,004,072 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\bdintro.MP4.sfk
  739. [2013.07.16 20:15:19 | 2642,405,560 | ---- | M] () -- C:\Users\HuXoPheria\Desktop\gta_sa 2013-07-16 20-14-01-07.avi
  740. [2013.07.12 23:09:52 | 000,000,944 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1ce7f4426a9fed8.job
  741. [2013.07.11 13:25:07 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
  742. [2013.07.11 13:25:04 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
  743. [2013.07.10 13:10:09 | 000,000,240 | ---- | M] () -- C:\Windows\tasks\TuneUpUtilities_Task_BkGndMaintenance2013.job
  744. [2013.07.09 17:22:17 | 000,001,184 | ---- | M] () -- C:\Users\HuXoPheria\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
  745. [2013.07.06 21:36:55 | 003,357,623 | ---- | M] () -- C:\Users\HuXoPheria\Documents\Hardwell feat. Amba Shepherd - Apollo (Official Music Video).mp3
  746.  
  747. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  748.  
  749. [2013.08.04 20:47:39 | 000,002,154 | ---- | C] () -- C:\Windows\epplauncher.mif
  750. [2013.08.04 20:47:28 | 000,002,137 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
  751. [2013.08.04 19:35:03 | 000,000,927 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
  752. [2013.08.04 13:00:37 | 000,029,076 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Sansation_Bold.ttf
  753. [2013.08.04 13:00:37 | 000,029,012 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Sansation_Light.ttf
  754. [2013.08.04 13:00:37 | 000,028,912 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Sansation_Regular.ttf
  755. [2013.08.03 18:55:51 | 001,329,152 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\database.db
  756. [2013.08.02 18:52:01 | 000,000,564 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\rank.zip
  757. [2013.08.02 17:47:30 | 000,001,017 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\SpeedFan.lnk
  758. [2013.08.02 17:47:29 | 000,000,045 | ---- | C] () -- C:\Windows\SysWow64\initdebug.nfo
  759. [2013.08.02 12:42:32 | 000,001,137 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
  760. [2013.08.02 00:37:30 | 000,024,216 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\frquad.ttf
  761. [2013.08.01 12:33:25 | 000,001,250 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CS6.lnk
  762. [2013.08.01 12:32:25 | 000,000,951 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk
  763. [2013.08.01 12:31:58 | 000,001,422 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
  764. [2013.08.01 12:31:53 | 000,001,001 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CS6.lnk
  765. [2013.08.01 12:30:33 | 000,001,011 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
  766. [2013.08.01 01:03:56 | 000,000,147 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\message.vbs
  767. [2013.07.31 22:12:18 | 000,000,137 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\computer_voice.vbs
  768. [2013.07.31 01:18:03 | 000,000,867 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Norfa Internet Browser.exe
  769. [2013.07.31 01:02:38 | 000,002,700 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\browser.png
  770. [2013.07.31 00:57:28 | 000,006,049 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\search.png
  771. [2013.07.31 00:55:50 | 000,008,696 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\refresh.png
  772. [2013.07.31 00:54:25 | 000,003,402 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\home-home-icone-7722-64.png
  773. [2013.07.31 00:53:20 | 000,004,702 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Fast-forward.png
  774. [2013.07.31 00:50:04 | 000,002,412 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\back.png
  775. [2013.07.31 00:05:37 | 000,002,089 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Web Platform Installer.lnk
  776. [2013.07.30 14:40:21 | 000,001,223 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Uplay.lnk
  777. [2013.07.30 01:38:59 | 000,001,151 | ---- | C] () -- C:\Users\HuXoPheria\Application Data\Microsoft\Internet Explorer\Quick Launch\XSplit Broadcaster.lnk
  778. [2013.07.30 01:38:59 | 000,001,127 | ---- | C] () -- C:\Users\Public\Desktop\XSplit Broadcaster.lnk
  779. [2013.07.30 01:32:51 | 000,002,475 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Advanced Uninstaller PRO 11.lnk
  780. [2013.07.30 01:32:51 | 000,002,359 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced Uninstaller PRO 11.lnk
  781. [2013.07.30 01:32:50 | 000,042,496 | ---- | C] () -- C:\Windows\SysWow64\AdvUninstCPL.cpl
  782. [2013.07.29 23:45:10 | 000,000,842 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Crossfire Europe.lnk
  783. [2013.07.29 14:31:42 | 000,274,750 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\login_bg.jpeg
  784. [2013.07.28 13:49:46 | 000,675,848 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\s0beit_03x.rar
  785. [2013.07.27 22:57:53 | 000,122,288 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Untitled.MP4.sfk
  786. [2013.07.27 22:32:02 | 000,017,288 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\HUXSPIN.veg
  787. [2013.07.27 22:32:02 | 000,011,584 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\HUXSPIN.veg.bak
  788. [2013.07.27 17:43:18 | 053,964,649 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\norfaintroo.MP4
  789. [2013.07.27 17:39:30 | 000,035,368 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\norfaint.veg
  790. [2013.07.26 16:25:41 | 000,002,291 | ---- | C] () -- C:\Users\HuXoPheria\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
  791. [2013.07.26 16:25:41 | 000,002,195 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
  792. [2013.07.26 16:06:25 | 005,154,429 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Fox Stevenson - Sandblast.mp3
  793. [2013.07.26 15:15:58 | 000,944,128 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\infernus.dff
  794. [2013.07.26 15:15:58 | 000,174,120 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\infernus.txd
  795. [2013.07.25 19:47:00 | 000,006,156 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\drft.lua
  796. [2013.07.24 17:43:37 | 000,009,595 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\vehicles.xml
  797. [2013.07.24 15:18:57 | 000,032,580 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\wtfalert.PNG
  798. [2013.07.24 08:01:42 | 001,515,428 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\alertscreen2.PNG
  799. [2013.07.24 08:00:12 | 001,357,853 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\virusalert..PNG
  800. [2013.07.23 12:56:24 | 000,002,146 | ---- | C] () -- C:\Users\Public\Desktop\MTA San Andreas 1.3.lnk
  801. [2013.07.21 23:11:11 | 002,954,359 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Document.rtf
  802. [2013.07.21 09:59:27 | 003,624,797 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\8qpanel.zip
  803. [2013.07.21 01:09:13 | 000,783,627 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\map.png
  804. [2013.07.20 19:24:37 | 000,004,640 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\takashis_house.zip
  805. [2013.07.20 15:28:29 | 000,023,815 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\coollogo_com-25781316.png
  806. [2013.07.20 00:09:58 | 000,028,857 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\driftmap.zip
  807. [2013.07.19 22:27:05 | 000,009,658 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\LoginForm_Client.lua
  808. [2013.07.19 22:27:05 | 000,002,541 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\LoginForm.lua
  809. [2013.07.19 20:38:36 | 000,000,626 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\server3.lua
  810. [2013.07.19 20:38:34 | 000,000,627 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\server2.lua
  811. [2013.07.19 20:38:04 | 000,000,626 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\server1.lua
  812. [2013.07.19 00:29:12 | 000,003,968 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Capture.PNG
  813. [2013.07.18 01:03:28 | 004,023,014 | ---- | C] () -- C:\Users\HuXoPheria\Documents\Avicii - Avicii - Wake Me Up (Lyric Video).mp3
  814. [2013.07.18 00:50:37 | 000,004,560 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Martin's Scripteditor.rar
  815. [2013.07.18 00:10:19 | 001,128,527 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\BDFreeroam.rar
  816. [2013.07.17 21:05:51 | 000,000,021 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\banlist.xml
  817. [2013.07.17 19:34:42 | 005,448,460 | ---- | C] () -- C:\Windows\SysNative\drivers\rtvienna.dat
  818. [2013.07.17 19:34:39 | 000,615,249 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
  819. [2013.07.17 19:34:02 | 000,109,848 | ---- | C] () -- C:\Windows\SysNative\AcpiServiceVnA64.dll
  820. [2013.07.17 19:26:49 | 000,431,044 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\setup.inx
  821. [2013.07.17 19:26:49 | 000,250,296 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\setup.isn
  822. [2013.07.17 19:26:49 | 000,000,553 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\USetup.iss
  823. [2013.07.17 19:26:49 | 000,000,551 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\setup.iss
  824. [2013.07.17 19:26:49 | 000,000,230 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Station Drivers ici tous les drivers nouveaux & anciens.url
  825. [2013.07.17 19:26:46 | 000,456,860 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\setup.ibt
  826. [2013.07.17 19:26:46 | 000,034,152 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\data1.hdr
  827. [2013.07.17 19:26:45 | 003,103,838 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\data1.cab
  828. [2013.07.17 19:26:45 | 000,553,805 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\engine32.cab
  829. [2013.07.17 19:26:45 | 000,001,747 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\setup.ini
  830. [2013.07.17 19:26:45 | 000,000,512 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\data2.cab
  831. [2013.07.17 19:26:45 | 000,000,473 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\layout.bin
  832. [2013.07.16 20:32:25 | 288,972,481 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\Untitled.MP4
  833. [2013.07.16 20:30:24 | 000,118,264 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\gta_sa 2013-07-16 20-14-01-07.avi.sfk
  834. [2013.07.16 20:30:17 | 000,004,072 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\bdintro.MP4.sfk
  835. [2013.07.16 20:14:00 | 2642,405,560 | ---- | C] () -- C:\Users\HuXoPheria\Desktop\gta_sa 2013-07-16 20-14-01-07.avi
  836. [2013.07.12 23:09:52 | 000,000,944 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1ce7f4426a9fed8.job
  837. [2013.07.11 13:25:07 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
  838. [2013.07.11 13:25:04 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
  839. [2013.07.11 13:24:52 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
  840. [2013.07.10 13:10:09 | 000,000,240 | ---- | C] () -- C:\Windows\tasks\TuneUpUtilities_Task_BkGndMaintenance2013.job
  841. [2013.07.09 22:29:41 | 000,002,701 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk
  842. [2013.07.09 22:28:43 | 000,002,573 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint Viewer .lnk
  843. [2013.07.09 14:56:06 | 000,000,852 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Metro Last Light.lnk
  844. [2013.07.06 21:36:49 | 003,357,623 | ---- | C] () -- C:\Users\HuXoPheria\Documents\Hardwell feat. Amba Shepherd - Apollo (Official Music Video).mp3
  845. [2013.05.27 18:26:53 | 000,763,706 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  846. [2013.05.18 11:38:42 | 000,000,230 | ---- | C] () -- C:\Users\HuXoPheria\SecurityKISSTunnel.config
  847. [2013.05.11 17:17:52 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
  848. [2013.05.06 01:21:57 | 000,000,761 | ---- | C] () -- C:\Users\HuXoPheria\AppData\Roaming\SQLite3.dll
  849. [2013.05.05 05:40:46 | 000,000,000 | ---- | C] () -- C:\ProgramData\65b93cd9fa54b7da2ecef346028d5764_c
  850. [2013.04.30 03:55:20 | 000,291,088 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
  851. [2013.04.30 03:55:19 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
  852. [2013.04.20 04:46:46 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
  853. [2013.04.20 04:46:42 | 000,034,683 | ---- | C] () -- C:\Windows\Ascd_tmp.ini
  854. [2013.02.06 02:52:50 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
  855. [2013.02.06 02:52:50 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
  856. [2013.02.06 02:52:50 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
  857. [2013.02.06 02:52:50 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
  858.  
  859. [color=#E56717]========== ZeroAccess Check ==========[/color]
  860.  
  861. [2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  862.  
  863. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  864.  
  865. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  866.  
  867. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
  868.  
  869. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  870.  
  871. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  872. "" = C:\Windows\SysNative\shell32.dll -- [2010.09.07 20:36:58 | 014,162,944 | ---- | M] (Microsoft Corporation)
  873. "ThreadingModel" = Apartment
  874.  
  875. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  876. "" = %SystemRoot%\system32\shell32.dll -- [2010.09.07 20:36:58 | 012,867,584 | ---- | M] (Microsoft Corporation)
  877. "ThreadingModel" = Apartment
  878.  
  879. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
  880. "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
  881. "ThreadingModel" = Free
  882.  
  883. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  884. "" = %systemroot%\system32\wbem\fastprox.dll -- [2009.07.14 03:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
  885. "ThreadingModel" = Free
  886.  
  887. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
  888. "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
  889. "ThreadingModel" = Both
  890.  
  891. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  892.  
  893. [color=#E56717]========== LOP Check ==========[/color]
  894.  
  895. [2013.06.01 16:52:29 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\IObit
  896. [2013.06.01 16:52:29 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\IObit
  897. [2013.06.01 16:52:29 | 000,000,000 | ---D | M] -- C:\Users\fbwuser\AppData\Roaming\IObit
  898. [2013.07.24 17:42:03 | 000,000,000 | ---D | M] -- C:\Users\HuX\AppData\Roaming\.minecraft
  899. [2013.07.24 10:29:44 | 000,000,000 | ---D | M] -- C:\Users\HuX\AppData\Roaming\FileZilla
  900. [2013.06.02 14:41:03 | 000,000,000 | ---D | M] -- C:\Users\HuX\AppData\Roaming\IObit
  901. [2013.06.02 14:44:59 | 000,000,000 | ---D | M] -- C:\Users\HuX\AppData\Roaming\Notepad++
  902. [2013.07.27 16:01:05 | 000,000,000 | ---D | M] -- C:\Users\HuX\AppData\Roaming\Publish Providers
  903. [2013.07.27 17:16:45 | 000,000,000 | ---D | M] -- C:\Users\HuX\AppData\Roaming\Sony
  904. [2013.06.12 21:39:46 | 000,000,000 | ---D | M] -- C:\Users\HuX\AppData\Roaming\TeamViewer
  905. [2013.06.01 16:52:00 | 000,000,000 | ---D | M] -- C:\Users\Huxeria\AppData\Roaming\IObit
  906. [2013.07.06 11:22:45 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\.minecraft
  907. [2013.08.04 19:24:58 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\FileZilla
  908. [2013.05.05 05:49:08 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\FLV Blaster
  909. [2013.04.27 07:44:00 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\FunnyGames
  910. [2013.06.02 15:04:59 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\Hotspot Shield
  911. [2013.05.07 02:33:49 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\IObit
  912. [2013.05.02 06:41:45 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\Notepad++
  913. [2013.04.28 19:12:44 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\Origin
  914. [2013.04.20 10:37:32 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\Publish Providers
  915. [2013.05.19 12:05:18 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\RoboForm
  916. [2013.04.20 10:39:49 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\Sony
  917. [2013.07.30 01:12:44 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\SplitMediaLabs
  918. [2013.05.05 06:01:02 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\Systweak
  919. [2013.05.30 12:10:23 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\TeamViewer
  920. [2013.07.09 17:14:06 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\TuneUp Software
  921. [2013.08.05 14:01:56 | 000,000,000 | ---D | M] -- C:\Users\HuXoPheria\AppData\Roaming\uTorrent
  922.  
  923. [color=#E56717]========== Purity Check ==========[/color]
  924.  
  925.  
  926.  
  927. [color=#E56717]========== Custom Scans ==========[/color]
  928.  
  929. [color=#E56717]========== Base Services ==========[/color]
  930. SRV:[b]64bit:[/b] - [2009.07.14 03:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
  931. SRV:[b]64bit:[/b] - [2009.07.14 03:40:01 | 000,070,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
  932. SRV:[b]64bit:[/b] - [2009.07.14 03:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
  933. SRV:[b]64bit:[/b] - [2009.07.14 03:41:53 | 000,848,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
  934. SRV:[b]64bit:[/b] - [2009.07.14 03:40:10 | 000,703,488 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
  935. SRV:[b]64bit:[/b] - [2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
  936. SRV:[b]64bit:[/b] - [2009.07.14 03:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
  937. SRV - [2009.07.14 03:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
  938. SRV:[b]64bit:[/b] - [2009.07.14 03:40:13 | 000,136,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
  939. SRV:[b]64bit:[/b] - [2012.06.02 07:25:12 | 000,182,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
  940. SRV - [2012.06.02 06:45:21 | 000,139,264 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
  941. SRV:[b]64bit:[/b] - [2009.07.14 03:41:53 | 000,509,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
  942. SRV:[b]64bit:[/b] - [2009.07.14 03:40:28 | 000,314,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
  943. SRV - [2009.07.14 03:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
  944. SRV:[b]64bit:[/b] - [2009.07.14 03:40:32 | 000,182,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
  945. SRV:[b]64bit:[/b] - [2009.07.14 03:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
  946. SRV:[b]64bit:[/b] - [2009.07.14 03:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
  947. SRV - [2009.07.14 03:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
  948. SRV:[b]64bit:[/b] - [2009.07.14 03:41:10 | 000,359,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
  949. SRV:[b]64bit:[/b] - [2009.07.14 03:41:10 | 000,500,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
  950. SRV:[b]64bit:[/b] - [2013.07.18 20:33:12 | 000,023,816 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
  951. SRV:[b]64bit:[/b] - [2013.07.18 20:33:12 | 000,366,600 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
  952. SRV:[b]64bit:[/b] - [2009.07.14 03:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\swprv.dll -- (swprv)
  953. SRV:[b]64bit:[/b] - [2009.07.14 03:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
  954. SRV:[b]64bit:[/b] - [2009.07.14 03:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
  955. SRV:[b]64bit:[/b] - [2009.07.14 03:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
  956. SRV - [2009.07.14 03:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
  957. SRV:[b]64bit:[/b] - [2009.07.14 03:41:52 | 000,302,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
  958. SRV:[b]64bit:[/b] - [2009.07.14 03:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
  959. SRV:[b]64bit:[/b] - [2009.07.14 03:41:55 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
  960. SRV:[b]64bit:[/b] - [2009.07.14 03:39:44 | 000,558,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
  961. SRV:[b]64bit:[/b] - [2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
  962. No service found with a name of EMDMgmt
  963. SRV:[b]64bit:[/b] - [2009.07.14 03:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
  964. SRV:[b]64bit:[/b] - [2009.07.14 03:41:53 | 000,343,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
  965. SRV:[b]64bit:[/b] - [2009.07.14 03:41:53 | 000,509,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
  966. SRV:[b]64bit:[/b] - [2009.07.14 03:41:53 | 000,030,720 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
  967. SRV:[b]64bit:[/b] - [2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
  968. SRV:[b]64bit:[/b] - [2009.07.14 03:41:58 | 000,097,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
  969. SRV:[b]64bit:[/b] - [2009.07.14 03:41:54 | 000,235,520 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
  970. SRV:[b]64bit:[/b] - [2009.07.14 03:41:54 | 000,369,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
  971. SRV - [2009.07.14 03:16:14 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
  972. No service found with a name of slsvc
  973. SRV:[b]64bit:[/b] - [2009.07.14 03:41:53 | 001,104,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
  974. SRV:[b]64bit:[/b] - [2009.07.14 03:41:55 | 000,316,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
  975. SRV - [2009.07.14 03:16:15 | 000,241,664 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
  976. SRV:[b]64bit:[/b] - [2013.07.03 15:06:51 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
  977. SRV:[b]64bit:[/b] - [2009.07.14 03:41:53 | 000,208,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
  978. SRV:[b]64bit:[/b] - [2009.07.14 03:39:50 | 001,598,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
  979. SRV:[b]64bit:[/b] - [2009.07.14 03:40:04 | 000,676,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
  980. SRV:[b]64bit:[/b] - [2009.07.14 03:40:04 | 000,676,864 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
  981. SRV:[b]64bit:[/b] - [2009.07.14 03:41:53 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
  982. SRV:[b]64bit:[/b] - [2009.07.14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
  983. SRV:[b]64bit:[/b] - [2009.07.14 03:41:56 | 001,646,080 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
  984. SRV:[b]64bit:[/b] - [2009.07.14 03:41:27 | 000,824,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
  985. SRV:[b]64bit:[/b] - [2009.07.14 03:41:56 | 000,578,560 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
  986. SRV:[b]64bit:[/b] - [2009.07.14 03:39:21 | 000,127,488 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
  987. SRV - [2009.07.14 03:14:25 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
  988. SRV:[b]64bit:[/b] - [2009.07.14 03:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
  989. SRV:[b]64bit:[/b] - [2012.06.03 00:19:43 | 002,428,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
  990. SRV:[b]64bit:[/b] - [2009.07.14 03:40:32 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
  991. SRV:[b]64bit:[/b] - [2009.07.14 03:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
  992. SRV:[b]64bit:[/b] - [2009.07.14 03:41:56 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)
  993.  
  994. [color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
  995.  
  996. [color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
  997. [2009.11.13 17:04:59 | 002,951,168 | ---- | M] (Microsoft Corporation) MD5=0371A06EF950BCDFC8A78E7B571869B3 -- C:\Users\HuXoPheria\Documents\sveee\shit\Dynamic Black\System Files\RTM\x86 (32-bit)\Big Taskbar\explorer.exe
  998. [2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
  999. [2010.09.07 20:20:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\SysWOW64\explorer.exe
  1000. [2010.09.07 20:20:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
  1001. [2009.11.10 16:15:21 | 003,206,144 | ---- | M] (Microsoft Corporation) MD5=2BB457EDBA37215C7EBC0057674A5E48 -- C:\Users\HuXoPheria\Documents\sveee\shit\Dynamic Black\System Files\RTM\x64 (64-bit)\explorer.exe
  1002. [2009.11.10 16:21:11 | 003,206,144 | ---- | M] (Microsoft Corporation) MD5=66C7686E9779056F3A0B83996B4A3A11 -- C:\Users\HuXoPheria\Documents\sveee\shit\Dynamic Black\System Files\RTM\x64 (64-bit)\big taskbar\explorer.exe
  1003. [2010.09.07 20:17:02 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
  1004. [2010.09.07 20:20:51 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\explorer.exe
  1005. [2010.09.07 20:20:51 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
  1006. [2010.09.07 20:17:02 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
  1007. [2010.09.07 20:20:51 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
  1008. [2010.09.07 20:17:02 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
  1009. [2009.07.14 03:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
  1010. [2010.09.07 20:20:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
  1011. [2010.09.07 20:17:02 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
  1012.  
  1013. [color=#A23BEC]< MD5 for: SERVICES >[/color]
  1014. [2009.06.10 23:00:26 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_6079f415110c0210\services
  1015.  
  1016. [color=#A23BEC]< MD5 for: SERVICES.EXE >[/color]
  1017. [2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\SysNative\services.exe
  1018. [2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
  1019.  
  1020. [color=#A23BEC]< MD5 for: SERVICES.EXE.MUI >[/color]
  1021. [2009.07.14 04:25:40 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\SysNative\en-US\services.exe.mui
  1022. [2009.07.14 04:25:40 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=6507BF0DC2D1F5F32493C288EAA59277 -- C:\Windows\winsxs\amd64_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_c5f238be3fa63468\services.exe.mui
  1023.  
  1024. [color=#A23BEC]< MD5 for: SERVICES.ICO >[/color]
  1025. [2013.02.28 23:39:55 | 000,370,070 | ---- | M] () MD5=221E128D1564FDA638584EA799170937 -- C:\Users\HuXoPheria\Documents\sveee\windows 8 icons\System Icons\ICO\Services.ico
  1026.  
  1027. [color=#A23BEC]< MD5 for: SERVICES.LNK >[/color]
  1028. [2009.07.14 06:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
  1029. [2009.07.14 06:54:05 | 000,001,288 | ---- | M] () MD5=CA0D9F4743DFF86EBAF09D763139E958 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
  1030.  
  1031. [color=#A23BEC]< MD5 for: SERVICES.MOF >[/color]
  1032. [2009.06.10 22:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\SysNative\wbem\services.mof
  1033. [2009.06.10 22:44:06 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.mof
  1034.  
  1035. [color=#A23BEC]< MD5 for: SERVICES.MSC >[/color]
  1036. [2009.07.14 04:23:30 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\en-US\services.msc
  1037. [2009.06.10 22:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysNative\services.msc
  1038. [2009.07.14 04:08:50 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\en-US\services.msc
  1039. [2009.06.10 23:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\SysWOW64\services.msc
  1040. [2009.07.14 04:23:30 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_003408aa160fce5b\services.msc
  1041. [2009.06.10 22:38:36 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\amd64_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_2b58d44b5f6beb8a\services.msc
  1042. [2009.07.14 04:08:50 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
  1043. [2009.06.10 23:21:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc
  1044.  
  1045. [color=#A23BEC]< MD5 for: SERVICES.PNG >[/color]
  1046. [2012.11.07 04:55:35 | 000,021,595 | ---- | M] () MD5=3F7FCACB0DA600EE0D30A6903ED46E12 -- C:\Users\HuXoPheria\Documents\sveee\windows 8 icons\System Icons\Services.png
  1047.  
  1048. [color=#A23BEC]< MD5 for: SERVICES.PTXML >[/color]
  1049. [2009.07.13 22:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\SysNative\wdi\perftrack\Services.ptxml
  1050. [2009.07.13 22:16:17 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\Services.ptxml
  1051.  
  1052. [color=#A23BEC]< MD5 for: SVCHOST.EXE >[/color]
  1053. [2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
  1054. [2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
  1055. [2013.04.04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
  1056. [2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
  1057. [2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
  1058.  
  1059. [color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
  1060. [2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\SysWOW64\userinit.exe
  1061. [2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
  1062. [2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\SysNative\userinit.exe
  1063. [2009.07.14 03:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
  1064.  
  1065. [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
  1066. [2009.07.14 03:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
  1067. [2010.09.07 20:20:51 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
  1068. [2013.04.04 14:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
  1069. [2010.09.07 20:20:51 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\SysNative\winlogon.exe
  1070. [2010.09.07 20:20:51 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
  1071.  
  1072. [color=#A23BEC]< c:\program files (x86)\Google\Desktop /s >[/color]
  1073. [2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
  1074. [2009.07.14 07:08:49 | 000,024,590 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
  1075. [2013.04.20 06:18:03 | 000,000,950 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
  1076. [2013.04.25 22:20:50 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
  1077. [2013.07.10 13:10:09 | 000,000,240 | ---- | C] () -- C:\Windows\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013.job
  1078. [2013.07.12 23:09:52 | 000,000,944 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce7f4426a9fed8.job
  1079.  
  1080. [color=#A23BEC]< c:\program files\Google\Desktop /sdir "%systemdrive%\*" /S /A:L /C >[/color]
  1081.  
  1082. < End of report >
  1083.  
  1084. ______________
  1085. Extras.txt
  1086.  
  1087. OTL Extras logfile created on: 5.8.2013. 15:15:42 - Run 1
  1088. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\HuXoPheria\Downloads
  1089. 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
  1090. Internet Explorer (Version = 8.0.7600.16385)
  1091. Locale: 0000041a | Country: Hrvatska | Language: HRV | Date Format: d.M.yyyy.
  1092.  
  1093. 3,47 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 39,94% Memory free
  1094. 6,94 Gb Paging File | 4,19 Gb Available in Paging File | 60,31% Paging File free
  1095. Paging file location(s): ?:\pagefile.sys [binary data]
  1096.  
  1097. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  1098. Drive C: | 214,84 Gb Total Space | 95,54 Gb Free Space | 44,47% Space Free | Partition Type: NTFS
  1099. Drive D: | 250,82 Gb Total Space | 218,47 Gb Free Space | 87,10% Space Free | Partition Type: NTFS
  1100. Drive E: | 2,19 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
  1101.  
  1102. Computer Name: HUXERIA-PC | User Name: HuXoPheria | Logged in as Administrator.
  1103. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
  1104. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  1105.  
  1106. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  1107.  
  1108.  
  1109. [color=#E56717]========== File Associations ==========[/color]
  1110.  
  1111. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  1112. .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
  1113.  
  1114. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  1115. .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
  1116.  
  1117. [HKEY_USERS\S-1-5-21-3122885149-943379202-3011934495-1003\SOFTWARE\Classes\<extension>]
  1118. .html [@ = ChromeHTML] -- Reg Error: Key error. File not found
  1119.  
  1120. [color=#E56717]========== Shell Spawning ==========[/color]
  1121.  
  1122. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  1123. batfile [open] -- "%1" %*
  1124. cmdfile [open] -- "%1" %*
  1125. comfile [open] -- "%1" %*
  1126. exefile [open] -- "%1" %*
  1127. helpfile [open] -- Reg Error: Key error.
  1128. http [open] -- Reg Error: Key error.
  1129. https [open] -- Reg Error: Key error.
  1130. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  1131. InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
  1132. InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
  1133. piffile [open] -- "%1" %*
  1134. regfile [merge] -- Reg Error: Key error.
  1135. scrfile [config] -- "%1"
  1136. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
  1137. scrfile [open] -- "%1" /S
  1138. txtfile [edit] -- Reg Error: Key error.
  1139. Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
  1140. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  1141. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  1142. Directory [Menu_CMD] -- cmd.exe /k "cd %L" (Microsoft Corporation)
  1143. Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  1144. Folder [explore] -- Reg Error: Value error.
  1145. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  1146.  
  1147. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  1148. batfile [open] -- "%1" %*
  1149. cmdfile [open] -- "%1" %*
  1150. comfile [open] -- "%1" %*
  1151. cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
  1152. exefile [open] -- "%1" %*
  1153. helpfile [open] -- Reg Error: Key error.
  1154. http [open] -- Reg Error: Key error.
  1155. https [open] -- Reg Error: Key error.
  1156. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  1157. piffile [open] -- "%1" %*
  1158. regfile [merge] -- Reg Error: Key error.
  1159. scrfile [config] -- "%1"
  1160. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
  1161. scrfile [open] -- "%1" /S
  1162. txtfile [edit] -- Reg Error: Key error.
  1163. Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS6 (64 Bit)\Bridge.exe "%L" (Adobe Systems, Inc.)
  1164. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  1165. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  1166. Directory [Menu_CMD] -- cmd.exe /k "cd %L" (Microsoft Corporation)
  1167. Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  1168. Folder [explore] -- Reg Error: Value error.
  1169. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  1170.  
  1171. [color=#E56717]========== Security Center Settings ==========[/color]
  1172.  
  1173. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  1174. "cval" = 1
  1175.  
  1176. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  1177.  
  1178. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  1179. "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
  1180. "AntiVirusOverride" = 0
  1181. "AntiSpywareOverride" = 0
  1182. "FirewallOverride" = 0
  1183.  
  1184. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
  1185.  
  1186. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  1187.  
  1188. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  1189.  
  1190. [color=#E56717]========== Firewall Settings ==========[/color]
  1191.  
  1192. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  1193. "DisableNotifications" = 0
  1194. "EnableFirewall" = 1
  1195.  
  1196. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  1197. "DisableNotifications" = 0
  1198. "EnableFirewall" = 1
  1199.  
  1200. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
  1201. "DisableNotifications" = 0
  1202. "EnableFirewall" = 1
  1203.  
  1204. [color=#E56717]========== Authorized Applications List ==========[/color]
  1205.  
  1206.  
  1207. [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
  1208.  
  1209. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  1210. "{02AAA65F-D2A0-4798-8724-382750804EE8}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
  1211. "{06BFD88C-E5D2-4921-9983-79E82DD5AB56}" = lport=445 | protocol=6 | dir=in | app=system |
  1212. "{1A402520-E218-49D4-A1F6-B0523364DD40}" = lport=6918 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
  1213. "{1AC91E78-891C-4E42-B8B0-4003AAE4092F}" = lport=6919 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
  1214. "{2026AD16-F8D2-49EB-93D1-201E67B2343D}" = lport=6916 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
  1215. "{295C78EB-C3EA-4DD3-96D7-DE2D09FADFF1}" = lport=10243 | protocol=6 | dir=in | app=system |
  1216. "{3EB06D48-E39B-4C6E-AC24-52EA0462F9E7}" = lport=6917 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
  1217. "{3F0AD7C8-46F9-479E-B831-2DABE48A1744}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
  1218. "{3FA23DF5-8C4B-4C6F-8466-37C2F8D13B8D}" = lport=6915 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
  1219. "{473352DC-A8BE-4F10-9997-64C9A0CDFFBC}" = rport=445 | protocol=6 | dir=out | app=system |
  1220. "{4F6A9A27-DD32-402F-972C-22127958BD22}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
  1221. "{5D8E571B-A8E4-47E3-99F8-85F7E28BBAEE}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
  1222. "{722C5751-5374-48F1-A5F0-F35F006BB6EF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
  1223. "{86320777-401E-494C-82B1-D03C39AD2909}" = lport=3702 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
  1224. "{879C25B7-CBB5-4A30-AC28-9B91DE07EC48}" = rport=137 | protocol=17 | dir=out | app=system |
  1225. "{99023CD3-FD2D-41C7-BEFD-83A8AE668316}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
  1226. "{9B10A756-98F5-4C77-8B8B-32DE1817C5CC}" = lport=2869 | protocol=6 | dir=in | app=system |
  1227. "{A0E7E1B9-5BDB-4BAC-B2CC-B4E81F2B51F4}" = rport=139 | protocol=6 | dir=out | app=system |
  1228. "{A7F67EDD-238C-415E-84D0-502A14C4C48F}" = lport=138 | protocol=17 | dir=in | app=system |
  1229. "{ACEB6431-6D58-4231-B8A3-40EA5260A5DA}" = rport=10243 | protocol=6 | dir=out | app=system |
  1230. "{B3FDF56B-38A9-42F7-A2A5-A8B7E464144A}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
  1231. "{BED4A1AB-1A30-40FA-82FA-7D7C9327545C}" = lport=139 | protocol=6 | dir=in | app=system |
  1232. "{D2A92996-C68A-4218-AE04-5A2748AB2D61}" = lport=6920 | protocol=6 | dir=in | app=c:\program files (x86)\microsoft visual studio 11.0\common7\ide\devenv.exe |
  1233. "{D5A54AD7-A3FB-4883-AD8F-3E496C06A65F}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
  1234. "{DE142743-667F-4CE7-AC73-45F64B89BEEC}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
  1235. "{F2D31091-C5B2-4382-9E03-E0A7493211A4}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
  1236. "{F3FBC96F-DDE7-4426-83FF-DC534D30C86B}" = rport=138 | protocol=17 | dir=out | app=system |
  1237. "{F46FF2B7-EC2E-475C-B419-DB2FDA575003}" = lport=137 | protocol=17 | dir=in | app=system |
  1238.  
  1239. [color=#E56717]========== Vista Active Application Exception List ==========[/color]
  1240.  
  1241. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  1242. "{021572CD-7062-425C-AB95-6CF4B60650EA}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
  1243. "{0ABC2851-7535-42D6-A315-352CAEC4BB32}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
  1244. "{13ACE5F2-E23F-447F-AD72-B70566AADE6A}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
  1245. "{25716680-95FA-4CC8-8182-275000135DBB}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
  1246. "{26E0DF20-2942-42AD-BAE6-33AD72C3AF27}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
  1247. "{29676A59-2809-4205-8695-4ABF91BC51DA}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
  1248. "{2ADE528B-8385-4DEA-AB76-A5BAC2A0DE19}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  1249. "{30FE32B8-51D4-4208-BF8C-E935AF8A3870}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
  1250. "{334F7646-4726-411C-A0EE-12A26BC642DE}" = protocol=17 | dir=in | app=c:\users\huxopheria\appdata\roaming\utorrent\utorrent.exe |
  1251. "{48267467-29CC-4C52-8D84-3CB453FCD3BC}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
  1252. "{48CD18FD-52D7-4D80-889F-C15B3914939C}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\trials evolution gold edition\datapack\trialsfmx.exe |
  1253. "{4B0B83F3-FFFB-42E1-9C29-5B580EA08E97}" = protocol=17 | dir=in | app=c:\windows\syswow64\muzapp.exe |
  1254. "{4FF3CE7C-0E48-4158-BA65-CD4939C12B6D}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  1255. "{54FBFC7E-8CCA-45F5-BA18-010110239962}" = protocol=6 | dir=out | app=system |
  1256. "{627A6AB5-E723-4522-852D-4A1C282C39D5}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  1257. "{62E2D251-2123-41DE-9932-6EFBDC2BF52C}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
  1258. "{63518163-D4B7-45D1-984D-76A70E446279}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
  1259. "{64500CB1-8AF9-4C50-ADF4-9F7B51E4E859}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
  1260. "{64F9F084-B010-4535-B676-DD669DA2B281}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\trials evolution gold edition\trials_launcher.exe |
  1261. "{6774C5B2-7AE0-49B3-B476-B765AD86671D}" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
  1262. "{7175AA58-038F-47A1-9EF6-F8E4FCE4F72C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
  1263. "{7EF10C79-CA68-4CDB-9081-EF8F491D739A}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
  1264. "{87103DD3-9C15-4440-AF35-153BF875F217}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
  1265. "{8EED19C2-DDA8-4479-B3AB-242F7E517084}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  1266. "{8F52F33A-2A3E-4CFE-9277-1AEDFC053E4A}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
  1267. "{96499666-FF4D-48E4-81E7-E53E36C280B6}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\trials evolution gold edition\datapack\trialsfmx.exe |
  1268. "{AD048C91-9CA3-4FA1-93F9-6A23F929649C}" = protocol=17 | dir=in | app=d:\program files (x86)\steam\steam.exe |
  1269. "{AF0EFB72-BEF7-409B-B7F6-D6339979B9AC}" = protocol=6 | dir=in | app=c:\windows\syswow64\muzapp.exe |
  1270. "{AF628EDE-C249-4B01-BB30-3B5FB6FD730B}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
  1271. "{B0A2CC3D-F07B-4BB3-A6FF-724317E5BE8F}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
  1272. "{B3D4D6F6-0A33-41B4-AD25-0670ED0AACBE}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
  1273. "{B9A1F7E9-866F-425F-A4B2-81298BD52525}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
  1274. "{BD7518A6-AA5F-47F3-81D9-E9B94D5B52AE}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\trials evolution gold edition\trials_launcher.exe |
  1275. "{C08E26FC-0CC9-46BE-865B-69D61AE11837}" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
  1276. "{C694C379-4AE6-4273-8A8A-451DD8AB37EC}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  1277. "{C804ED68-9A34-46B6-B851-70E493B9BB94}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer.exe |
  1278. "{CBEDB243-7B11-4FEF-AB4D-F334A8C01EA8}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
  1279. "{D233BB48-9114-438B-8AF4-C7885F1B1D24}" = protocol=6 | dir=in | app=d:\program files (x86)\steam\steam.exe |
  1280. "{DABD3965-4E84-44B6-A605-FF62E8557362}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version8\teamviewer_service.exe |
  1281. "{E2EA1574-7ED9-4279-BE18-6B6EDF8CD9EA}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
  1282. "{E33FFB62-14D2-441D-AB2B-A2A52E45E3E4}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
  1283. "{E63F9439-B5C9-4B44-9C31-D07944D753CF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
  1284. "{EA4D947B-F977-4C20-BC68-3362AAF04E11}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
  1285. "{EB9096B0-EF14-4DE2-B373-2102C5224DA3}" = protocol=6 | dir=in | app=c:\users\huxopheria\appdata\roaming\utorrent\utorrent.exe |
  1286. "{F18FD328-7CC8-419B-B666-4D7640081027}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
  1287. "{F5F356CC-850F-4FE1-A484-A9BEEC300D8A}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
  1288. "{F8E36628-5242-49C0-B70E-743F46C254CE}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
  1289. "{F8E4D635-866C-48FD-A7B1-2A5168120CB9}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
  1290. "{F9657BEC-E514-4E5B-8735-B79F730A95FB}" = protocol=58 | dir=in | app=system |
  1291. "TCP Query User{34B58779-0A6D-4734-BA67-DA5528F5C4C2}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
  1292. "TCP Query User{3AFA96E5-F477-45B1-9D92-7E0C0F5C7096}C:\program files (x86)\mta san andreas 1.3\server\mta server.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mta san andreas 1.3\server\mta server.exe |
  1293. "TCP Query User{92737013-1B7A-4941-B406-1DC64AFEA268}C:\program files (x6)\mta san andreas 1.4\server\mta server.exe" = protocol=6 | dir=in | app=c:\program files (x6)\mta san andreas 1.4\server\mta server.exe |
  1294. "TCP Query User{945F228C-69A5-4877-85E4-83389F019073}D:\program files\rockstar games\gta san andreas\gta_sa.exe" = protocol=6 | dir=in | app=d:\program files\rockstar games\gta san andreas\gta_sa.exe |
  1295. "UDP Query User{8B9A7B28-C117-4F24-87B0-B15DD3A6CE8B}C:\program files (x6)\mta san andreas 1.4\server\mta server.exe" = protocol=17 | dir=in | app=c:\program files (x6)\mta san andreas 1.4\server\mta server.exe |
  1296. "UDP Query User{9FBD4C04-60A6-446F-A1F5-CE858D24504F}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |
  1297. "UDP Query User{BD2BB3E8-E056-4A57-AB1A-2A7A8563840E}D:\program files\rockstar games\gta san andreas\gta_sa.exe" = protocol=17 | dir=in | app=d:\program files\rockstar games\gta san andreas\gta_sa.exe |
  1298. "UDP Query User{EA401583-FABC-42D8-BB7F-DDCDB8531B77}C:\program files (x86)\mta san andreas 1.3\server\mta server.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mta san andreas 1.3\server\mta server.exe |
  1299.  
  1300. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  1301.  
  1302. 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  1303. "{0E8670B8-3965-4930-ADA6-570348B67153}" = Microsoft SQL Server 2012 Transact-SQL ScriptDom
  1304. "{13417784-A359-3CDD-8DE1-B7108707D647}" = Visual Studio 2012 Prerequisites - ENU Language Pack
  1305. "{13D558FE-A863-402C-B115-160007277033}" = Microsoft SQL Server 2012 Express LocalDB
  1306. "{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
  1307. "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
  1308. "{24C3AEE0-4BCE-3190-8EE0-BBA0BF72CAC1}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
  1309. "{27EF252D-800C-ED42-9904-459FE0046225}" = Windows Software Development Kit for Windows Store Apps DirectX x64 Remote
  1310. "{28D85F24-B685-3364-BB7C-284C88C2FFE5}" = Microsoft Visual Studio Team Foundation Server 2012 Storyboarding
  1311. "{2B997E80-3BEC-3222-9114-98DBE1182B2E}" = Microsoft Visual C++ 2012 x64 Debug Runtime - 11.0.50727
  1312. "{36E619BC-A234-4EC3-849B-779A7C865A45}" = Microsoft SQL Server 2012 Data-Tier App Framework
  1313. "{3DB84568-DD0E-401F-BC21-CE24720A0C5B}" = Microsoft Security Client
  1314. "{3FA063D7-EDC1-AFA8-54AF-0563C7DEE070}" = Windows App Certification Kit Native Components
  1315. "{4701DEDE-1888-49E0-BAE5-857875924CA2}" = Microsoft SQL Server System CLR Types (x64)
  1316. "{49D665A2-4C2A-476E-9AB8-FCC425F526FC}" = Microsoft SQL Server 2012 Native Client
  1317. "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
  1318. "{55EFD1A6-ED8E-3A4C-9581-5E1A1FF244CD}" = Microsoft Visual Studio Team Foundation Server 2012 Storyboarding Language Pack - ENU
  1319. "{572E796D-C52B-3797-A685-2FB6F895D4BE}" = Microsoft Visual Studio 2010 Office Developer Tools (x64)
  1320. "{5FB4C443-6BD6-1514-2717-3827D65AE6FB}" = Windows Software Development Kit DirectX x64 Remote
  1321. "{61862D7C-CDBC-48D5-8AE1-3B8BD1E23BC5}" = Visual Studio 2012 Prerequisites
  1322. "{633AB014-DDE6-403E-A302-8920CC32C543}" = Microsoft Visual Studio 2012 Performance Collection Tools
  1323. "{68A48EF1-DF03-394F-AF40-1E4FE42BB8DD}" = Microsoft Visual Studio Team Foundation Server 2012 Object Model Language Pack - ENU
  1324. "{6AAF4427-3039-4C8A-BE53-D6F01C21AD46}" = Microsoft Visual Studio 2012 IntelliTrace Core amd64
  1325. "{6F07A6C2-9068-3673-A120-DC10012468C6}" = Microsoft Visual Studio Team Foundation Server 2012 Object Model
  1326. "{78909610-D229-459C-A936-25D92283D3FD}" = Microsoft SQL Server Compact 4.0 SP1 x64 ENU
  1327. "{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}" = IIS 8.0 Express
  1328. "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
  1329. "{89AFB053-A343-46EF-97E4-D593AD7184E6}" = Intel® Trusted Connect Service Client
  1330. "{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
  1331. "{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}" = Microsoft SQL Server 2012 Command Line Utilities
  1332. "{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb" = IIS Express Application Compatibility Database for x64
  1333. "{A1188CD2-9C9F-11E2-B88F-F04DA23A5C58}" = Vegas Pro 12.0 (64-bit)
  1334. "{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
  1335. "{A528BDDE-9C9F-11E2-9F0C-F04DA23A5C58}" = MSVCRT Redists
  1336. "{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
  1337. "{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
  1338. "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 320.49
  1339. "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 320.49
  1340. "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 320.49
  1341. "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.5
  1342. "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 320.49
  1343. "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.13.0604
  1344. "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 4.11.9
  1345. "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD Audio Driver 1.3.24.2
  1346. "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
  1347. "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
  1348. "{BEB0F91E-F2EA-48A1-B938-7857ABF2A93D}" = Microsoft SQL Server 2012 Transact-SQL Compiler Service
  1349. "{D9F3D00D-E946-3B3D-A4A6-93D5020DB9F7}" = Microsoft Visual C++ 2012 x64 Designtime - 11.0.50727
  1350. "{E2B8249D-895C-4685-8C83-00F3B1A13028}" = Microsoft Web Platform Installer 4.0
  1351. "{F1949145-EB64-4DE7-9D81-E6D27937146C}" = Microsoft System CLR Types for SQL Server 2012 (x64)
  1352. "{FA0A244E-F3C2-4589-B42A-3D522DE79A42}" = Microsoft SQL Server 2012 Management Objects (x64)
  1353. "{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb" = IIS Express Application Compatibility Database for x86
  1354. "{FE74AC04-F248-4641-B3A9-89C6AA4339CD}" = Microsoft Visual Studio 2012 Performance Collection Tools - ENU
  1355. "CCleaner" = CCleaner
  1356. "Microsoft Security Client" = Microsoft Security Essentials
  1357. "Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
  1358. "WinRAR archiver" = WinRAR 4.20 (64-bit)
  1359.  
  1360. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  1361. "{00EC8ABC-3C5A-40F8-A8CB-E7DCD5ABFA05}" = Microsoft NuGet - Visual Studio 2012
  1362. "{02213A81-CB13-7262-5ABE-1FFA2C75559F}" = Windows App Certification Kit x64
  1363. "{046806D1-0A38-3FCA-AF84-F71C50A0C363}" = Microsoft Visual Studio Premium 2012
  1364. "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
  1365. "{07D857B8-C956-401D-BC8F-EDA8459AF037}" = Trials Evolution Gold Edition
  1366. "{0A1A1D48-DB23-443A-BC7B-49255D138020}" = Entity Framework Designer for Visual Studio 2012 - enu
  1367. "{0BCC836F-0B28-4090-B58A-64883BAA3B2F}" = WCF Data Services 5.0 (for OData v3) Primary Components
  1368. "{1172AC15-080E-30E3-85B0-FF59AD2E6315}" = Microsoft Visual Studio Ultimate 2012 - ENU
  1369. "{148878BD-A2A5-4CF1-A103-2BA632F41953}" = WCF Data Services Tools for Microsoft Visual Studio 2012
  1370. "{1690CE56-2231-4E59-9006-A0876D949EA8}" = Tools for .Net 3.5
  1371. "{189AEA94-DAFB-487A-8CEE-F9D3DDE0A748}" = Microsoft Silverlight 4 SDK
  1372. "{1948E039-EC79-4591-951D-9867A8C14C90}" = Microsoft .NET Framework 4.5 SDK
  1373. "{1A1FA4C1-2701-401C-8CE1-FDDE45304FF5}" = ASUS nVidia Driver
  1374. "{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YTD Video Downloader 4.0
  1375. "{1B9BBB23-65CB-3AEE-BFC6-633E7CA299FD}" = Microsoft Visual Studio Team Foundation Server 2012 Team Explorer Language Pack - ENU
  1376. "{1C163D33-33B3-33EB-A617-0D4D852BE8E1}" = Microsoft Visual C++ 2012 x86 Debug Runtime - 11.0.50727
  1377. "{1DB43E5A-2F24-4F51-92B0-A2C0EBF5C742}" = Microsoft Report Viewer Add-On for Visual Studio 2012
  1378. "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
  1379. "{1F8E06E2-BA93-40DC-B183-E024CBD853A8}" = Microsoft Visual C++ 2012 Compilers
  1380. "{23176E97-26CB-C72A-19EB-BFB21AC1D15A}" = Windows Software Development Kit DirectX x86 Remote
  1381. "{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
  1382. "{246B0F46-F84E-4857-8C47-F2A86B598BC5}" = Microsoft Visual Studio 2012 Preparation
  1383. "{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
  1384. "{29F259D7-C517-3EED-84B4-237573CFD39C}" = Microsoft Visual C++ 2012 Microsoft Foundation Class Libraries
  1385. "{2C0CC01A-DDBC-3AED-AF18-E741242FD727}" = Microsoft Visual Studio Ultimate 2012 XAML UI Designer enu Resources
  1386. "{2C76E3DA-BA76-4FAD-B1B1-72B46D639028}" = PreEmptive Analytics Visual Studio Components
  1387. "{2F6CE32A-018D-4656-895B-9E5E20D7740A}" = Microsoft ASP.NET MVC 3 - Visual Studio 2012 Tools Update
  1388. "{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
  1389. "{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}" = NVIDIA PhysX
  1390. "{330E5D98-20D2-4CA4-AE51-FCB8AA80F634}" = Microsoft Visual Studio 2012 Devenv
  1391. "{372D17F6-A54E-4A01-B264-1314890FFE61}" = Dotfuscator and Analytics Community Edition
  1392. "{38FC6E9A-F719-431A-A83D-4C86D5FD6555}" = Microsoft Visual Studio 2012 Shell (Minimum) Resources
  1393. "{3A523AF9-D32F-4C85-8388-0335731F3405}" = WCF RIA Services V1.0 SP2
  1394. "{42F61556-29ED-8122-F39E-6F04EA5FF279}" = Windows Software Development Kit for Windows Store Apps DirectX x86 Remote
  1395. "{4817D846-700B-474E-A31B-80892B3E92E3}" = Adobe After Effects CS6
  1396. "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
  1397. "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.7
  1398. "{532DBCC8-9468-435C-AEF6-30B7F50735A2}" = Blend for Visual Studio 2012 ENU resources
  1399. "{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV
  1400. "{57D782D7-49FD-48DE-AB47-A690A1519A2D}" = Microsoft ASP.NET Web Pages 2 - Visual Studio 2012 Tools
  1401. "{57F20F04-014D-453F-B6A3-AE9485C4DFAB}" = Blend for Visual Studio 2012
  1402. "{59D87F40-6C4B-4F80-A42B-FAA0E6EAFAB6}" = Microsoft ASP.NET MVC 4 - Visual Studio 2012 Tools
  1403. "{5A83391A-84BE-4F54-9D7D-25C3E9867E0F}" = XSplit Broadcaster
  1404. "{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}" = Microsoft .NET Framework 4.5 Multi-Targeting Pack
  1405. "{60D5EF2A-4E0C-2C30-38F6-59C26E134F4A}" = Windows Software Development Kit
  1406. "{631471BE-DEAB-454B-A9AC-CE3EB42C28B3}" = Microsoft ASP.NET Web Pages
  1407. "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
  1408. "{6D6D43E5-218C-4B05-92D3-2240810F4760}" = Microsoft SQL Server 2012 T-SQL Language Service
  1409. "{6DAB46E3-D017-3E2B-85D8-F57A230384C0}" = Microsoft Visual Studio Team Foundation Server 2012 Team Explorer
  1410. "{6F066545-40A2-4C38-A8F7-78581CC5C442}" = Microsoft ASP.NET Web Pages - Visual Studio 2012 Tools
  1411. "{6FC3B79F-47C6-38AF-B9A9-67DE3C639598}" = Microsoft Visual Studio Premium 2012 - ENU
  1412. "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
  1413. "{731C183B-86A0-3442-BE55-68A7C92581E9}" = Microsoft Visual C++ 2012 Extended Libraries
  1414. "{7437A4B9-314F-3B8F-827B-22909146E471}" = Microsoft LightSwitch for Visual Studio 2012 Core
  1415. "{790E9425-8570-493F-9AE7-81AFC9E46930}" = Microsoft SQL Server Data Tools Build Utilities - enu (11.1.20627.00)
  1416. "{800F484E-9D69-492D-B656-7BAA32586142}" = Microsoft Visual Studio 2012 Shell (Minimum)
  1417. "{820C677A-41B2-48C3-8136-FEE35A052E73}" = Microsoft Visual Studio 2012 Shell (Minimum) Interop Assemblies
  1418. "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
  1419. "{89B4532E-19CE-4FA9-9692-10BFD5A38532}" = Visual Studio Extensions for Windows Library for JavaScript
  1420. "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
  1421. "{90850409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
  1422. "{9169C939-ED01-446A-BD0C-29873BAF4E48}" = Prerequisites for SSDT
  1423. "{93489CA8-6656-33A0-A5AC-E0EDEDB17C3E}" = Microsoft Visual Studio Professional 2012
  1424. "{942CC691-5B98-42A3-8BC5-A246BA69D983}" = Microsoft ASP.NET MVC 4 Runtime
  1425. "{95140000-00AF-0409-0000-0000000FF1CE}" = Microsoft PowerPoint Viewer
  1426. "{9600393b-6ede-469b-a522-689fce1461d1}" = Microsoft Visual Studio Ultimate 2012
  1427. "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
  1428. "{989FB5FD-9B00-4B32-8663-849CB1370DD1}" = Google Drive
  1429. "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
  1430. "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
  1431. "{A3A6D5EA-B6B5-3C05-BDA8-EAB99C09CDDC}" = Microsoft Visual Studio 2012 SharePoint Developer Tools
  1432. "{A4366F69-CE22-4DB7-9C8C-46A5845AF997}" = Microsoft Visual C++ 2012 Compilers - ENU Resources
  1433. "{A47FD1BF-A815-4A76-BE65-53A15BD5D25D}" = Microsoft SQL Server System CLR Types
  1434. "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
  1435. "{AD1AEE2A-D9C0-3FAC-8D6B-B5E07B47257B}" = Microsoft Visual C++ 2012 Core Libraries
  1436. "{AF37176A-78CA-545B-34EF-8B6A21514DD1}" = Adobe Help Manager
  1437. "{B1465D1D-6427-4CA1-AE29-8B699209E663}" = Microsoft Visual Studio 2012 Devenv Resources
  1438. "{B3533B84-A8DF-4A7A-8E95-B15F08B26E96}" = Microsoft Visual Studio 2012 IntelliTrace Core x86
  1439. "{B5DA9D49-9BD8-0F2F-52FC-C7E66BC8D944}" = LocalESPCui for en-us
  1440. "{B96FCD4F-6EDD-4258-8A6D-0FCEA8445E3E}" = Microsoft Web Developer Tools - Visual Studio 2012
  1441. "{B9F35D86-242E-3FA4-B9F8-A982E0DF918D}" = Microsoft Visual Studio 2012 SharePoint Developer Tools ENU Language Pack
  1442. "{BAD0254F-9BDB-3D14-A5AC-9C0EF51F3D09}" = Microsoft Portable Library Multi-Targeting Pack Language Pack - enu
  1443. "{BDBE5D2A-AAB7-77BD-7A0E-5006665CE7C6}" = LocalESPC
  1444. "{C1BE4600-7D15-3D1E-8AA2-B3241DB1D063}" = Microsoft Visual Studio Ultimate 2012 XAML UI Designer Core
  1445. "{C4CAD994-6EA2-3121-8352-DA593150B322}" = Microsoft Portable Library Multi-Targeting Pack
  1446. "{C81452EB-CBCF-B8EB-3124-48C5B3D506B0}" = Windows Runtime Intellisense Content - en-us
  1447. "{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
  1448. "{CFFDC0EC-6924-3347-B047-13339EDBEC28}" = Microsoft Visual Studio Professional 2012 - ENU
  1449. "{D11F66FF-82B3-DDB8-1146-525370552BE1}" = Windows Software Development Kit for Windows Store Apps
  1450. "{D971780F-A609-4F78-92AA-B56FBC3955B9}" = Microsoft Visual Studio 2012 IntelliTrace Front End x86
  1451. "{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}" = Microsoft SQL Server 2012 Management Objects
  1452. "{DCDEC776-BADD-48B9-8F9A-DFF513C3D7FA}" = Microsoft ASP.NET MVC 3
  1453. "{E1FBB3D4-ADB0-4949-B101-855DA061C735}" = Microsoft Silverlight 5 SDK
  1454. "{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}" = Microsoft System CLR Types for SQL Server 2012
  1455. "{E4ADE757-7FE9-322D-9CAE-C77D77A2D2BF}" = Microsoft LightSwitch for Visual Studio 2012 CoreRes - ENU
  1456. "{E4C33F5B-1B2F-466E-957E-B274F08151A0}" = Microsoft Web Deploy dbSqlPackage Provider - enu
  1457. "{E818AE7C-244B-4A50-9C86-C0E4A8B69159}" = Microsoft Visual Studio 2012 Tools for SQL Server Compact 4.0 SP1 ENU
  1458. "{EFA87714-E75A-3BFC-A698-A3AABA5A8A0C}" = Microsoft Visual Studio Ultimate 2012
  1459. "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
  1460. "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
  1461. "{FA804794-2CCB-4301-954F-2C2894698876}" = Microsoft SQL Server Data Tools - enu (11.1.20627.00)
  1462. "{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}" = Microsoft SQL Server 2012 Data-Tier App Framework
  1463. "{FBBC8076-BB21-4E06-9FA0-309AEF6E35EE}" = Microsoft ASP.NET Web Pages 2 Runtime
  1464. "{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
  1465. "{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
  1466. "{FEB375AB-6EEC-3929-8FAF-188ED81DD8B5}" = Microsoft Help Viewer 2.0
  1467. "Adobe AIR" = Adobe AIR
  1468. "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
  1469. "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
  1470. "Advanced SystemCare 6_is1" = Advanced SystemCare 6
  1471. "AU11_is1" = Advanced Uninstaller PRO - Version 11
  1472. "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Help Manager
  1473. "Crossfire Europe" = Crossfire Europe
  1474. "FileZilla Client" = FileZilla Client 3.7.1.1
  1475. "Fraps" = Fraps (remove only)
  1476. "GOM Player" = GOM Player
  1477. "Google Chrome" = Google Chrome
  1478. "HotspotShield" = Hotspot Shield 3.09
  1479. "InstallShield_{07D857B8-C956-401D-BC8F-EDA8459AF037}" = Trials Evolution Gold Edition
  1480. "IObit Unlocker_is1" = IObit Unlocker
  1481. "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.75.0.1300
  1482. "Microsoft Help Viewer 2.0" = Microsoft Help Viewer 2.0
  1483. "Minecraft1.5.1" = Minecraft1.5.1
  1484. "Mozilla Firefox 21.0 (x86 en-US)" = Mozilla Firefox 21.0 (x86 en-US)
  1485. "MozillaMaintenanceService" = Mozilla Maintenance Service
  1486. "MTA:SA 1.3" = MTA:SA v1.3.3
  1487. "Notepad++" = Notepad++
  1488. "NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
  1489. "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
  1490. "Protected Folder_is1" = Protected Folder
  1491. "PunkBusterSvc" = PunkBuster Services
  1492. "Razer Game Booster_is1" = Razer Game Booster
  1493. "SHOUTcast" = SHOUTcast DNAS Server v2
  1494. "Smart Defrag 2_is1" = Smart Defrag 2
  1495. "SpeedFan" = SpeedFan (remove only)
  1496. "TeamViewer 8" = TeamViewer 8
  1497. "TWV0cm9MYXN0TGlnaHQ=_is1" = Metro: Last Light (c) Deep Silver version 1
  1498. "Uplay" = Uplay
  1499. "uTorrent" = µTorrent
  1500.  
  1501. [color=#E56717]========== Last 20 Event Log Errors ==========[/color]
  1502.  
  1503. [ Application Events ]
  1504. OTL encountered an error while reading this event log. It may be corrupt.
  1505. OTL encountered an error while reading this event log. It may be corrupt.
  1506. OTL encountered an error while reading this event log. It may be corrupt.
  1507. OTL encountered an error while reading this event log. It may be corrupt.
  1508. OTL encountered an error while reading this event log. It may be corrupt.
  1509. OTL encountered an error while reading this event log. It may be corrupt.
  1510. OTL encountered an error while reading this event log. It may be corrupt.
  1511. OTL encountered an error while reading this event log. It may be corrupt.
  1512. OTL encountered an error while reading this event log. It may be corrupt.
  1513. OTL encountered an error while reading this event log. It may be corrupt.
  1514.  
  1515. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!