API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Sep 11th, 2014
3,982
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 69.81 KB | None | 0 0
raw download clone embed print report
  1. OTL logfile created on: 12.9.2014 г. 00:13:14 - Run 1
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\MinasTirith\Downloads
  3. 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.11.9600.17280)
  5. Locale: 00000402 | Country: България | Language: BGR | Date Format: d.M.yyyy 'г.'
  6.  
  7. 3,96 Gb Total Physical Memory | 2,13 Gb Available Physical Memory | 53,78% Memory free
  8. 7,92 Gb Paging File | 5,20 Gb Available in Paging File | 65,64% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 488,18 Gb Total Space | 103,60 Gb Free Space | 21,22% Space Free | Partition Type: NTFS
  13. Drive D: | 1374,73 Gb Total Space | 367,59 Gb Free Space | 26,74% Space Free | Partition Type: NTFS
  14. Drive E: | 7,27 Gb Total Space | 3,51 Gb Free Space | 48,25% Space Free | Partition Type: NTFS
  15.  
  16. Computer Name: MINASTIRITH-PC | User Name: MinasTirith | Logged in as Administrator.
  17. Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
  18. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
  19.  
  20. [color=#E56717]========== Processes (SafeList) ==========[/color]
  21.  
  22. PRC - [2014.09.12 00:12:43 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\MinasTirith\Downloads\OTL.exe
  23. PRC - [2014.09.04 16:32:19 | 004,085,896 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
  24. PRC - [2014.09.04 16:31:22 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  25. PRC - [2014.09.04 06:01:19 | 000,852,808 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
  26. PRC - [2014.08.20 05:31:28 | 036,415,760 | ---- | M] (Dropbox, Inc.) -- C:\Users\MinasTirith\AppData\Roaming\Dropbox\bin\Dropbox.exe
  27. PRC - [2014.07.25 16:41:43 | 000,908,800 | ---- | M] () -- D:\Android project\adt-bundle-windows-x86\sdk\platform-tools\adb.exe
  28. PRC - [2013.09.17 06:49:50 | 000,292,088 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
  29. PRC - [2013.09.16 12:18:28 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
  30. PRC - [2013.09.16 12:17:42 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
  31. PRC - [2009.07.29 14:28:40 | 000,252,424 | ---- | M] (Avid Technology, Inc.) -- C:\Windows\SysWOW64\MAFWTray.exe
  32.  
  33.  
  34. [color=#E56717]========== Modules (No Company Name) ==========[/color]
  35.  
  36. MOD - [2014.09.11 11:27:30 | 000,043,008 | ---- | M] () -- c:\Users\MinasTirith\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpuodhd_.dll
  37. MOD - [2014.09.04 16:31:22 | 019,329,904 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
  38. MOD - [2014.09.04 16:31:22 | 000,301,152 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\aswProperty.dll
  39. MOD - [2014.09.04 06:01:18 | 000,331,592 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ppgooglenaclpluginchrome.dll
  40. MOD - [2014.09.04 06:01:16 | 008,577,864 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\pdf.dll
  41. MOD - [2014.09.04 06:01:12 | 001,098,056 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libglesv2.dll
  42. MOD - [2014.09.04 06:01:10 | 000,174,408 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\libegl.dll
  43. MOD - [2014.09.04 06:01:09 | 001,660,232 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.120\ffmpegsumo.dll
  44. MOD - [2014.08.20 05:28:44 | 003,610,624 | ---- | M] () -- C:\Users\MinasTirith\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll
  45. MOD - [2014.07.25 16:41:43 | 000,908,800 | ---- | M] () -- D:\Android project\adt-bundle-windows-x86\sdk\platform-tools\adb.exe
  46. MOD - [2014.05.01 17:15:20 | 000,463,360 | ---- | M] () -- C:\ProgramData\MEGAsync\ShellExtX32.dll
  47. MOD - [2014.01.21 20:07:52 | 008,878,248 | ---- | M] () -- C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
  48. MOD - [2013.10.19 02:55:03 | 025,100,288 | ---- | M] () -- C:\Users\MinasTirith\AppData\Roaming\Dropbox\bin\libcef.dll
  49.  
  50.  
  51. [color=#E56717]========== Services (SafeList) ==========[/color]
  52.  
  53. SRV:[b]64bit:[/b] - [2014.09.04 16:31:22 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
  54. SRV:[b]64bit:[/b] - [2014.08.19 01:03:37 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
  55. SRV:[b]64bit:[/b] - [2013.08.27 14:32:30 | 000,828,376 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
  56. SRV:[b]64bit:[/b] - [2013.08.27 14:32:14 | 000,747,520 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
  57. SRV:[b]64bit:[/b] - [2013.05.27 08:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
  58. SRV:[b]64bit:[/b] - [2012.09.28 04:38:16 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
  59. SRV:[b]64bit:[/b] - [2009.07.14 04:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
  60. SRV - [2014.08.28 14:48:02 | 000,833,728 | ---- | M] (Valve Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
  61. SRV - [2014.04.03 20:21:48 | 000,315,008 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
  62. SRV - [2014.03.21 01:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
  63. SRV - [2013.09.16 12:18:28 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
  64. SRV - [2013.09.16 12:17:42 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
  65. SRV - [2013.09.11 21:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
  66.  
  67.  
  68. [color=#E56717]========== Driver Services (SafeList) ==========[/color]
  69.  
  70. DRV:[b]64bit:[/b] - [2014.09.04 17:07:18 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
  71. DRV:[b]64bit:[/b] - [2014.09.04 16:32:18 | 000,427,360 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswsp.sys -- (aswSP)
  72. DRV:[b]64bit:[/b] - [2014.09.04 16:31:23 | 001,041,168 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
  73. DRV:[b]64bit:[/b] - [2014.09.04 16:31:23 | 000,224,896 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
  74. DRV:[b]64bit:[/b] - [2014.09.04 16:31:23 | 000,092,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
  75. DRV:[b]64bit:[/b] - [2014.09.04 16:31:23 | 000,079,184 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
  76. DRV:[b]64bit:[/b] - [2014.09.04 16:31:23 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
  77. DRV:[b]64bit:[/b] - [2014.09.04 16:31:22 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
  78. DRV:[b]64bit:[/b] - [2014.09.04 16:31:22 | 000,029,208 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
  79. DRV:[b]64bit:[/b] - [2013.09.17 06:48:32 | 000,795,632 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
  80. DRV:[b]64bit:[/b] - [2013.09.17 06:48:32 | 000,358,896 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
  81. DRV:[b]64bit:[/b] - [2013.09.17 06:48:32 | 000,020,464 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
  82. DRV:[b]64bit:[/b] - [2013.09.16 12:17:42 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
  83. DRV:[b]64bit:[/b] - [2013.05.05 09:56:39 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
  84. DRV:[b]64bit:[/b] - [2013.05.05 09:56:39 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
  85. DRV:[b]64bit:[/b] - [2013.05.05 09:44:25 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
  86. DRV:[b]64bit:[/b] - [2012.09.28 05:21:20 | 010,697,216 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
  87. DRV:[b]64bit:[/b] - [2012.09.28 04:12:52 | 000,460,288 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
  88. DRV:[b]64bit:[/b] - [2012.06.22 03:01:00 | 000,056,336 | ---- | M] (Corel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
  89. DRV:[b]64bit:[/b] - [2012.06.12 17:00:48 | 000,726,160 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
  90. DRV:[b]64bit:[/b] - [2012.05.14 09:12:30 | 000,096,896 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
  91. DRV:[b]64bit:[/b] - [2012.01.18 06:44:28 | 000,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
  92. DRV:[b]64bit:[/b] - [2010.11.21 06:24:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
  93. DRV:[b]64bit:[/b] - [2010.11.21 06:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
  94. DRV:[b]64bit:[/b] - [2010.11.21 06:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
  95. DRV:[b]64bit:[/b] - [2010.11.21 06:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
  96. DRV:[b]64bit:[/b] - [2010.11.21 06:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
  97. DRV:[b]64bit:[/b] - [2010.11.21 06:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
  98. DRV:[b]64bit:[/b] - [2010.11.21 06:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
  99. DRV:[b]64bit:[/b] - [2010.11.21 06:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
  100. DRV:[b]64bit:[/b] - [2009.07.29 14:28:24 | 000,231,944 | ---- | M] (Avid Technology, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mafw.sys -- (MAFW)
  101. DRV:[b]64bit:[/b] - [2009.07.14 04:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
  102. DRV:[b]64bit:[/b] - [2009.07.14 04:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
  103. DRV:[b]64bit:[/b] - [2009.07.14 04:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
  104. DRV:[b]64bit:[/b] - [2009.06.10 23:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
  105. DRV:[b]64bit:[/b] - [2009.06.10 23:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
  106. DRV:[b]64bit:[/b] - [2009.06.10 23:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
  107. DRV:[b]64bit:[/b] - [2009.06.10 23:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
  108. DRV - [2009.07.14 04:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
  109.  
  110.  
  111. [color=#E56717]========== Standard Registry (SafeList) ==========[/color]
  112.  
  113.  
  114. [color=#E56717]========== Internet Explorer ==========[/color]
  115.  
  116. IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  117. IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  118. IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  119. IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  120. IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
  121.  
  122. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
  123. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = bg-BG
  124. IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = AD CF B6 A7 43 C8 CF 01 [binary data]
  125. IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
  126. IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
  127. IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
  128.  
  129.  
  130. [color=#E56717]========== FireFox ==========[/color]
  131.  
  132. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll File not found
  133. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  134. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL (Microsoft Corporation)
  135. FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
  136. FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
  137. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
  138. FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
  139. FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.67.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
  140. FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.67.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
  141. FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
  142. FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
  143. FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
  144. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
  145. FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
  146. FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
  147.  
  148. FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014.09.04 16:31:23 | 000,000,000 | ---D | M]
  149.  
  150. [2014.01.21 20:07:48 | 000,034,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll
  151.  
  152. [color=#E56717]========== Chrome ==========[/color]
  153.  
  154. CHR - plugin: Error reading preferences file
  155. CHR - Extension: Google Voice Search Hotword (Beta) = C:\Users\MinasTirith\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
  156. CHR - Extension: Adblock Plus = C:\Users\MinasTirith\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.5_0\
  157. CHR - Extension: avast! Online Security = C:\Users\MinasTirith\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2022.121_0\
  158. CHR - Extension: Google Wallet = C:\Users\MinasTirith\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
  159.  
  160. O1 HOSTS File: ([2009.06.11 00:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
  161. O2:[b]64bit:[/b] - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
  162. O2:[b]64bit:[/b] - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
  163. O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
  164. O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
  165. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
  166. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
  167. O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
  168. O4 - HKLM..\Run: [M-Audio Taskbar Icon] C:\Windows\SysWOW64\MAFWTray.exe (Avid Technology, Inc.)
  169. O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
  170. O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
  171. O4 - Startup: C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\MinasTirith\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
  172. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
  173. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
  174. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
  175. O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
  176. O13[b]64bit:[/b] - gopher Prefix: missing
  177. O13 - gopher Prefix: missing
  178. O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
  179. O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9CCEA6E2-7FD2-48AE-BC0E-58C05A813D43}: DhcpNameServer = 192.168.1.1
  180. O18 - Protocol\Handler\ms-help - No CLSID value found
  181. O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
  182. O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
  183. O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
  184. O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
  185. O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  186. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
  187. O32 - HKLM CDRom: AutoRun - 1
  188. O32 - AutoRun File - [2014.09.04 15:28:08 | 000,000,122 | ---- | M] () - E:\autorun.inf -- [ NTFS ]
  189. O33 - MountPoints2\{6413647e-343c-11e4-a422-902b34dcfeb8}\Shell - "" = AutoRun
  190. O33 - MountPoints2\{6413647e-343c-11e4-a422-902b34dcfeb8}\Shell\AutoRun\command - "" = F:\setup.exe
  191. O33 - MountPoints2\{641364af-343c-11e4-a422-902b34dcfeb8}\Shell - "" = AutoRun
  192. O33 - MountPoints2\{641364af-343c-11e4-a422-902b34dcfeb8}\Shell\AutoRun\command - "" = G:\SETUP.EXE
  193. O33 - MountPoints2\{641364af-343c-11e4-a422-902b34dcfeb8}\Shell\configure\command - "" = G:\SETUP.EXE
  194. O33 - MountPoints2\{641364af-343c-11e4-a422-902b34dcfeb8}\Shell\install\command - "" = G:\SETUP.EXE
  195. O34 - HKLM BootExecute: (autocheck autochk /r \??\C:)
  196. O34 - HKLM BootExecute: (autocheck autochk *)
  197. O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
  198. O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
  199. O35 - HKLM\..comfile [open] -- "%1" %*
  200. O35 - HKLM\..exefile [open] -- "%1" %*
  201. O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
  202. O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
  203. O37 - HKLM\...com [@ = comfile] -- "%1" %*
  204. O37 - HKLM\...exe [@ = exefile] -- "%1" %*
  205. O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
  206. O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
  207. O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
  208.  
  209. [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
  210.  
  211. [2014.09.08 16:34:25 | 000,000,000 | -HSD | C] -- C:\found.000
  212. [2014.09.08 14:49:37 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\.android
  213. [2014.09.08 14:42:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
  214. [2014.09.08 14:41:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
  215. [2014.09.08 14:40:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
  216. [2014.09.08 14:40:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
  217. [2014.09.08 14:38:18 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\Intel
  218. [2014.09.08 14:36:37 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
  219. [2014.09.08 14:35:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
  220. [2014.09.08 14:35:40 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
  221. [2014.09.08 14:35:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent
  222. [2014.09.07 22:41:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
  223. [2014.09.07 22:41:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
  224. [2014.09.07 22:16:50 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
  225. [2014.09.07 22:16:49 | 000,000,000 | ---D | C] -- C:\Program Files\WMV9_VCM
  226. [2014.09.07 22:16:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Island
  227. [2014.09.07 22:01:24 | 000,000,000 | ---D | C] -- C:\Games
  228. [2014.09.07 17:20:11 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\Saved Games
  229. [2014.09.07 16:28:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crysis 2 Game of the Year
  230. [2014.09.07 16:18:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Games
  231. [2014.09.07 15:27:05 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Impact Steel
  232. [2014.09.07 15:22:10 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Epic Drums
  233. [2014.09.07 15:20:29 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Drums Of War
  234. [2014.09.07 15:15:16 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Curio Cinematic Toy Piano
  235. [2014.09.07 13:51:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam
  236. [2014.09.07 13:04:11 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Koto
  237. [2014.09.07 12:02:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Serious Sam HD - The Second Encounter
  238. [2014.09.07 12:01:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Serious Sam HD - The Second Encounter
  239. [2014.09.07 12:00:41 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Serious Sam HD - The Second Encounter
  240. [2014.09.06 19:59:06 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Steam
  241. [2014.09.06 19:59:06 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\Documents\My Games
  242. [2014.09.06 19:55:52 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\directx
  243. [2014.09.06 19:46:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Rising 3
  244. [2014.09.06 19:22:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Dead Rising 3
  245. [2014.09.06 15:55:56 | 000,000,000 | ---D | C] -- C:\Windows\pss
  246. [2014.09.06 15:31:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
  247. [2014.09.06 15:26:44 | 000,000,000 | ---D | C] -- C:\Program Files\Java
  248. [2014.09.06 15:17:21 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Mega Limited
  249. [2014.09.06 15:17:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MEGAsync
  250. [2014.09.06 15:17:09 | 000,000,000 | ---D | C] -- C:\ProgramData\MEGAsync
  251. [2014.09.06 15:13:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft OneDrive
  252. [2014.09.06 15:13:50 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\OneDrive
  253. [2014.09.06 15:13:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft OneDrive
  254. [2014.09.06 15:03:54 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
  255. [2014.09.06 14:31:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\logishrd
  256. [2014.09.06 14:28:11 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Skype
  257. [2014.09.06 14:28:05 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Skype
  258. [2014.09.06 14:27:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
  259. [2014.09.06 14:27:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
  260. [2014.09.06 14:27:55 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
  261. [2014.09.06 14:27:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
  262. [2014.09.06 13:35:35 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\Documents\Cakewalk
  263. [2014.09.06 13:35:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cakewalk
  264. [2014.09.06 13:32:36 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\Documents\Nomad Factory
  265. [2014.09.06 13:32:05 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Propellerhead Software
  266. [2014.09.06 12:36:06 | 000,000,000 | -H-D | C] -- C:\ProgramData\{1031BEE2-FFB6-4712-A121-A76C0E587B14}
  267. [2014.09.06 04:35:33 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
  268. [2014.09.06 04:35:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
  269. [2014.09.06 04:35:14 | 000,000,000 | --SD | C] -- C:\Windows\SysNative\CompatTel
  270. [2014.09.06 04:04:29 | 000,000,000 | ---D | C] -- C:\Windows\Migration
  271. [2014.09.06 01:48:31 | 000,000,000 | -H-D | C] -- C:\ProgramData\{53CCD988-BD51-4E0A-BDFB-F2F3B1E1B649}
  272. [2014.09.06 01:44:11 | 000,000,000 | -H-D | C] -- C:\ProgramData\{F9426D43-E8B8-409B-A4C5-3AFD53B7412E}
  273. [2014.09.06 01:35:24 | 000,000,000 | -H-D | C] -- C:\ProgramData\{27AE6DBC-0CA4-4761-8752-2B1ADDB90175}
  274. [2014.09.06 01:35:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Avid
  275. [2014.09.06 01:10:40 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\Desktop\New folder
  276. [2014.09.06 01:06:49 | 000,000,000 | -H-D | C] -- C:\ProgramData\{6032CB49-DE54-4192-9F71-65859D0B544F}
  277. [2014.09.06 01:06:45 | 000,000,000 | -H-D | C] -- C:\ProgramData\{78915E0A-25F8-47A2-9793-CEBC2D28F274}
  278. [2014.09.06 01:06:42 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\The Mouth
  279. [2014.09.06 01:06:38 | 000,000,000 | -H-D | C] -- C:\ProgramData\{98F83ED2-DF89-465B-8EB3-F87E179CFA56}
  280. [2014.09.06 01:06:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\The Finger R2
  281. [2014.09.06 01:06:30 | 000,000,000 | -H-D | C] -- C:\ProgramData\{7C702C5F-ADE3-4D28-9619-90BA76D4E1ED}
  282. [2014.09.06 01:06:24 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Skanner XT
  283. [2014.09.06 01:06:08 | 000,000,000 | -H-D | C] -- C:\ProgramData\{A9FC06D6-E75C-4DA2-B8D2-8D91C1A269C3}
  284. [2014.09.06 01:06:05 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Reaktor Spark R2
  285. [2014.09.06 01:06:01 | 000,000,000 | -H-D | C] -- C:\ProgramData\{C693A367-F08F-4F42-A5DE-8996D6AC24F0}
  286. [2014.09.06 01:05:57 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Reaktor Prism
  287. [2014.09.06 01:05:53 | 000,000,000 | -H-D | C] -- C:\ProgramData\{DEBC0451-D249-4B4C-B907-F6510028BC75}
  288. [2014.09.06 01:05:49 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Razor
  289. [2014.09.06 01:05:44 | 000,000,000 | -H-D | C] -- C:\ProgramData\{849C3EA7-6C44-4D64-BFD2-FC5AF841BE83}
  290. [2014.09.06 01:05:40 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Monark
  291. [2014.09.06 01:05:33 | 000,000,000 | -H-D | C] -- C:\ProgramData\{DB1D6CD1-3172-48C0-B63A-490B0D2C6D72}
  292. [2014.09.06 01:05:30 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Traktors 12 for Maschine
  293. [2014.09.06 01:05:25 | 000,000,000 | -H-D | C] -- C:\ProgramData\{3DFBC806-D62A-4312-81FF-5F343DDCB5DC}
  294. [2014.09.06 01:05:19 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Traktors 12
  295. [2014.09.06 01:05:15 | 000,000,000 | -H-D | C] -- C:\ProgramData\{03697879-2B80-4810-9B4D-D8EF1EE777F0}
  296. [2014.09.06 01:05:11 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Reflektor for Maschine
  297. [2014.09.06 01:05:08 | 000,000,000 | -H-D | C] -- C:\ProgramData\{0A583E76-A7A0-45F8-9386-AEE1E529A4DE}
  298. [2014.09.06 01:04:54 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Reflektor Library
  299. [2014.09.06 01:04:52 | 000,000,000 | -H-D | C] -- C:\ProgramData\{63F2E427-F976-4EE0-BB21-8FA7DAC2E7F2}
  300. [2014.09.06 01:04:48 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Rammfire for Maschine
  301. [2014.09.06 01:04:43 | 000,000,000 | -H-D | C] -- C:\ProgramData\{B0DF9098-245E-479F-A4ED-B5F91EA4948B}
  302. [2014.09.06 01:04:39 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Rammfire
  303. [2014.09.06 01:04:35 | 000,000,000 | -H-D | C] -- C:\ProgramData\{0209395A-8E4A-48E1-A5E3-C830292F263C}
  304. [2014.09.06 01:04:27 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Guitar Rig Pro Library for Maschine
  305. [2014.09.06 01:04:19 | 000,000,000 | -H-D | C] -- C:\ProgramData\{F409EA92-6713-4D2D-AF88-0C51B1CF1D2A}
  306. [2014.09.06 01:03:47 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\West Africa Library
  307. [2014.09.06 01:03:43 | 000,000,000 | -H-D | C] -- C:\ProgramData\{80A0A482-175E-4DE8-9D32-C8C8463D1362}
  308. [2014.09.06 01:03:09 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Vintage Organs Library
  309. [2014.09.06 01:03:04 | 000,000,000 | -H-D | C] -- C:\ProgramData\{2FF04994-9599-464E-AD99-B09CBE2122AE}
  310. [2014.09.06 01:01:57 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Vienna Concert Grand Library
  311. [2014.09.06 01:01:53 | 000,000,000 | -H-D | C] -- C:\ProgramData\{786FEDEA-8E71-4900-8D2F-40933D86B376}
  312. [2014.09.06 01:01:01 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Upright Piano Library
  313. [2014.09.06 01:00:57 | 000,000,000 | -H-D | C] -- C:\ProgramData\{1C7A6EB7-BED0-4444-B0DA-4BFDCF83C380}
  314. [2014.09.06 00:59:39 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\The Giant Library
  315. [2014.09.06 00:59:35 | 000,000,000 | -H-D | C] -- C:\ProgramData\{926BF989-2A51-492D-8A6A-E9D533417C34}
  316. [2014.09.06 00:57:03 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Studio Drummer Library
  317. [2014.09.06 00:56:58 | 000,000,000 | -H-D | C] -- C:\ProgramData\{93015F0A-7AF2-4308-A5B3-13D4FCE429C6}
  318. [2014.09.06 00:45:38 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Session Strings Pro Library
  319. [2014.09.06 00:45:34 | 000,000,000 | -H-D | C] -- C:\ProgramData\{B96A0118-1095-4E34-9C27-D87092B77F67}
  320. [2014.09.06 00:44:00 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Session Horns Library
  321. [2014.09.06 00:43:56 | 000,000,000 | -H-D | C] -- C:\ProgramData\{727F248C-CA81-4A68-8E01-27236ED99D98}
  322. [2014.09.06 00:41:46 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Scarbee Vintage Keys Library
  323. [2014.09.06 00:41:42 | 000,000,000 | -H-D | C] -- C:\ProgramData\{DFAB8828-7DA2-4573-A254-15D802A10A7E}
  324. [2014.09.06 00:39:22 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Scarbee Rickenbacker Bass Library
  325. [2014.09.06 00:39:17 | 000,000,000 | -H-D | C] -- C:\ProgramData\{B8AB470F-A90B-4652-A8F5-160A08FD7411}
  326. [2014.09.06 00:34:43 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Scarbee Pre-Bass Amped Library
  327. [2014.09.06 00:34:39 | 000,000,000 | -H-D | C] -- C:\ProgramData\{7FC6C6B3-C2D5-4F17-BBEF-A11135E1A668}
  328. [2014.09.06 00:33:28 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Scarbee Pre-Bass Library
  329. [2014.09.06 00:33:25 | 000,000,000 | -H-D | C] -- C:\ProgramData\{8A9976F0-1DB6-4A1D-823B-E9E459F6EE39}
  330. [2014.09.06 00:29:03 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Scarbee MM-Bass Amped Library
  331. [2014.09.06 00:28:57 | 000,000,000 | -H-D | C] -- C:\ProgramData\{F2026C51-8509-47B4-816D-CCD2DB993FC1}
  332. [2014.09.06 00:27:34 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Scarbee MM-Bass Library
  333. [2014.09.06 00:27:30 | 000,000,000 | -H-D | C] -- C:\ProgramData\{624486AF-AD5B-4BB3-BEEE-A0D2D4D112DF}
  334. [2014.09.06 00:26:34 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Scarbee Jay-Bass Library
  335. [2014.09.06 00:26:31 | 000,000,000 | -H-D | C] -- C:\ProgramData\{BA0B7444-2ABA-463C-862A-7EC7F0AD0FA2}
  336. [2014.09.06 00:23:36 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Scarbee Funk Guitarist Library
  337. [2014.09.06 00:23:32 | 000,000,000 | -H-D | C] -- C:\ProgramData\{4AD6F65B-2A15-4CFF-9AF7-830F277D0157}
  338. [2014.09.06 00:22:02 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Retro Machines Mk2 Library
  339. [2014.09.06 00:21:58 | 000,000,000 | -H-D | C] -- C:\ProgramData\{5309003E-4102-4141-A0C9-7507F0E10F52}
  340. [2014.09.06 00:20:49 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\New York Concert Grand Library
  341. [2014.09.06 00:20:46 | 000,000,000 | -H-D | C] -- C:\ProgramData\{B7CF1107-3BD9-48BA-BC77-54B909022641}
  342. [2014.09.06 00:20:41 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Maschine Drum Selection Library
  343. [2014.09.06 00:20:30 | 000,000,000 | -H-D | C] -- C:\ProgramData\{1CCB05D7-901D-4CCB-816F-73AC0098D30A}
  344. [2014.09.06 00:19:22 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\George Duke Soul Treasures Library
  345. [2014.09.06 00:19:17 | 000,000,000 | -H-D | C] -- C:\ProgramData\{A793ECF9-34FC-47F0-8CBE-0B3DEA468C01}
  346. [2014.09.06 00:17:53 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Evolve R2 Library
  347. [2014.09.06 00:17:49 | 000,000,000 | -H-D | C] -- C:\ProgramData\{6B3E9A08-404E-4FBF-A80D-1E9DA9E75171}
  348. [2014.09.06 00:16:58 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Evolve Mutations 2 Library
  349. [2014.09.06 00:16:52 | 000,000,000 | -H-D | C] -- C:\ProgramData\{4C01754A-32F9-4A34-8B9F-E06DD553B755}
  350. [2014.09.06 00:16:00 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Evolve Mutations Library
  351. [2014.09.06 00:15:53 | 000,000,000 | -H-D | C] -- C:\ProgramData\{0221FDDB-41E3-4971-AC93-5048F8D7CAAC}
  352. [2014.09.06 00:11:28 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Damage Library
  353. [2014.09.06 00:11:22 | 000,000,000 | -H-D | C] -- C:\ProgramData\{499D67BC-046E-4931-8BFB-D5ABB500E67C}
  354. [2014.09.06 00:10:22 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Berlin Concert Grand Library
  355. [2014.09.06 00:10:18 | 000,000,000 | -H-D | C] -- C:\ProgramData\{7B7672F5-5EA2-4D83-BC77-1AFCA8846266}
  356. [2014.09.06 00:09:39 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Balinese Gamelan Library
  357. [2014.09.06 00:09:35 | 000,000,000 | -H-D | C] -- C:\ProgramData\{229D9A22-9BEA-4D2B-813E-85E0FACBA99C}
  358. [2014.09.06 00:07:35 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Alicias Keys Library
  359. [2014.09.06 00:07:31 | 000,000,000 | -H-D | C] -- C:\ProgramData\{F036CC43-6BE8-4CBD-91C3-76F4BC8FFD6F}
  360. [2014.09.06 00:04:38 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Action Strings Library
  361. [2014.09.06 00:04:34 | 000,000,000 | -H-D | C] -- C:\ProgramData\{A6377726-7317-464A-87EB-693294E9F383}
  362. [2014.09.06 00:02:28 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Abbey Road Vintage Drummer Library
  363. [2014.09.06 00:02:24 | 000,000,000 | -H-D | C] -- C:\ProgramData\{6B991D2A-5E91-44B4-BE28-CFDCED1835AB}
  364. [2014.09.06 00:00:06 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Abbey Road Modern Drummer Library
  365. [2014.09.06 00:00:01 | 000,000,000 | -H-D | C] -- C:\ProgramData\{18869C94-495B-4D97-8C75-E405CF6509CB}
  366. [2014.09.05 23:57:37 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Abbey Road 80s Drummer Library
  367. [2014.09.05 23:57:32 | 000,000,000 | -H-D | C] -- C:\ProgramData\{D53B5F71-B715-494C-AFD4-BB0C94C787E5}
  368. [2014.09.05 23:55:26 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Abbey Road 70s Drummer Library
  369. [2014.09.05 23:55:21 | 000,000,000 | -H-D | C] -- C:\ProgramData\{B54CEF12-4612-4E77-B06C-403C662468E7}
  370. [2014.09.05 23:49:56 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Abbey Road 60s Drummer Library
  371. [2014.09.05 23:49:49 | 000,000,000 | -H-D | C] -- C:\ProgramData\{35B46D49-85E2-40EA-8EC6-43B281EDD8E7}
  372. [2014.09.05 23:29:20 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Kontakt Factory Library
  373. [2014.09.05 23:22:45 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Battery 4 Factory Library
  374. [2014.09.05 23:22:41 | 000,000,000 | -H-D | C] -- C:\ProgramData\{EFEC7DCC-2F91-4828-B49D-8506F9F0D9FF}
  375. [2014.09.05 23:22:12 | 000,000,000 | -H-D | C] -- C:\ProgramData\{7AFFCFD3-F022-420B-8E87-BBAED1C983C8}
  376. [2014.09.05 23:21:36 | 000,000,000 | -H-D | C] -- C:\ProgramData\{F4C30B44-15B7-482B-8B80-38AA0AB0956A}
  377. [2014.09.05 23:21:09 | 000,000,000 | -H-D | C] -- C:\ProgramData\{03149E88-061F-4C01-98FF-736811F5AEF5}
  378. [2014.09.05 23:20:48 | 000,000,000 | -H-D | C] -- C:\ProgramData\{AD7B6000-2063-4CF8-A07D-49A34A4164E7}
  379. [2014.09.05 23:20:31 | 000,000,000 | -H-D | C] -- C:\ProgramData\{F565CCC6-40E0-4D3B-A268-394489E1A288}
  380. [2014.09.05 23:20:11 | 000,000,000 | -H-D | C] -- C:\ProgramData\{BC4F73B4-86E2-45AA-A4F8-3D7C23012DDF}
  381. [2014.09.05 23:19:48 | 000,000,000 | -H-D | C] -- C:\ProgramData\{831278B3-E363-4BCB-B754-70A9488477C9}
  382. [2014.09.05 23:19:27 | 000,000,000 | -H-D | C] -- C:\ProgramData\{E753D955-673D-4851-B06F-9A9D0C44C02C}
  383. [2014.09.05 23:19:04 | 000,000,000 | -H-D | C] -- C:\ProgramData\{87A1E31E-1C63-4A99-AEEA-EA57A3043C1D}
  384. [2014.09.05 23:18:44 | 000,000,000 | -H-D | C] -- C:\ProgramData\{34163C5E-1AE4-49D8-B5F9-A3C2422AAB96}
  385. [2014.09.05 23:16:25 | 000,000,000 | -H-D | C] -- C:\ProgramData\{450C7B07-81AD-445F-87F1-27917FA78AB4}
  386. [2014.09.05 23:09:36 | 000,000,000 | -H-D | C] -- C:\ProgramData\{B9F39E05-2A83-4A5C-873C-9004232BF507}
  387. [2014.09.05 23:05:00 | 000,000,000 | -H-D | C] -- C:\ProgramData\{B7072B15-6E80-42FF-A9AE-4E62AF2B2418}
  388. [2014.09.05 23:01:04 | 000,000,000 | -H-D | C] -- C:\ProgramData\{EC39AE66-34A3-419D-BCB8-29619DA92C37}
  389. [2014.09.05 22:56:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cakewalk
  390. [2014.09.05 22:56:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Avid
  391. [2014.09.05 22:52:15 | 000,000,000 | -H-D | C] -- C:\ProgramData\{E2A3D3D3-946E-4752-90FB-AF37CC248734}
  392. [2014.09.05 22:52:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Native Instruments
  393. [2014.09.05 22:52:13 | 000,000,000 | ---D | C] -- C:\Program Files\Native Instruments
  394. [2014.09.05 22:52:13 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Native Instruments
  395. [2014.09.05 02:54:54 | 000,000,000 | ---D | C] -- C:\Windows\Panther
  396. [2014.09.04 20:25:34 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
  397. [2014.09.04 19:41:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
  398. [2014.09.04 19:41:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
  399. [2014.09.04 19:37:13 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Apple Computer
  400. [2014.09.04 19:37:13 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Apple Computer
  401. [2014.09.04 19:34:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Safari
  402. [2014.09.04 19:34:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
  403. [2014.09.04 19:33:52 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Apple
  404. [2014.09.04 19:33:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
  405. [2014.09.04 19:33:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
  406. [2014.09.04 19:26:11 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\WinRAR
  407. [2014.09.04 19:26:05 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
  408. [2014.09.04 19:26:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
  409. [2014.09.04 19:26:03 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
  410. [2014.09.04 19:15:50 | 000,056,336 | ---- | C] (Corel Corporation) -- C:\Windows\SysNative\drivers\PxHlpa64.sys
  411. [2014.09.04 19:15:50 | 000,011,376 | ---- | C] (Corel Corporation) -- C:\Windows\SysNative\drivers\cdralw2k.sys
  412. [2014.09.04 19:15:50 | 000,010,864 | ---- | C] (Corel Corporation) -- C:\Windows\SysNative\drivers\cdr4_xp.sys
  413. [2014.09.04 19:15:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Sonic Shared
  414. [2014.09.04 19:15:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PX Storage Engine
  415. [2014.09.04 19:03:02 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
  416. [2014.09.04 19:02:30 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
  417. [2014.09.04 19:02:00 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Native Instruments
  418. [2014.09.04 19:00:24 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\Documents\Native Instruments
  419. [2014.09.04 19:00:24 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Native Instruments
  420. [2014.09.04 19:00:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
  421. [2014.09.04 19:00:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
  422. [2014.09.04 19:00:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Native Instruments
  423. [2014.09.04 19:00:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Digidesign
  424. [2014.09.04 18:59:39 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\TruePianos Settings
  425. [2014.09.04 18:59:10 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Applied Acoustics Systems
  426. [2014.09.04 18:58:49 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Overloud
  427. [2014.09.04 18:57:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
  428. [2014.09.04 18:55:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\M-Audio
  429. [2014.09.04 18:55:20 | 000,000,000 | ---D | C] -- C:\Program Files\M-Audio
  430. [2014.09.04 18:53:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
  431. [2014.09.04 18:53:12 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Macromedia
  432. [2014.09.04 18:53:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
  433. [2014.09.04 18:52:45 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Adobe
  434. [2014.09.04 18:50:14 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Cakewalk
  435. [2014.09.04 18:48:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Identities
  436. [2014.09.04 18:47:49 | 000,000,000 | ---D | C] -- C:\Cakewalk Projects
  437. [2014.09.04 18:43:54 | 000,000,000 | ---D | C] -- C:\Windows\AutoKMS
  438. [2014.09.04 18:41:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Toolkit
  439. [2014.09.04 17:31:45 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
  440. [2014.09.04 17:30:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
  441. [2014.09.04 17:29:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
  442. [2014.09.04 17:29:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server
  443. [2014.09.04 17:29:21 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1991-06.com.microsoft
  444. [2014.09.04 17:28:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
  445. [2014.09.04 17:27:15 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
  446. [2014.09.04 17:27:15 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
  447. [2014.09.04 17:22:08 | 000,000,000 | ---D | C] -- C:\Cakewalk Content
  448. [2014.09.04 17:21:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services
  449. [2014.09.04 17:21:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services
  450. [2014.09.04 17:20:47 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Microsoft Help
  451. [2014.09.04 17:20:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
  452. [2014.09.04 17:20:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
  453. [2014.09.04 17:20:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
  454. [2014.09.04 17:19:14 | 000,000,000 | RH-D | C] -- C:\MSOCache
  455. [2014.09.04 17:16:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Overloud
  456. [2014.09.04 17:16:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Cakewalk
  457. [2014.09.04 17:16:57 | 000,000,000 | ---D | C] -- C:\Program Files\Cakewalk
  458. [2014.09.04 17:09:35 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
  459. [2014.09.04 17:09:08 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
  460. [2014.09.04 17:09:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
  461. [2014.09.04 17:09:06 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Notepad++
  462. [2014.09.04 17:09:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Notepad++
  463. [2014.09.04 17:07:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOM Player
  464. [2014.09.04 17:07:56 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\GRETECH
  465. [2014.09.04 17:07:53 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Dropbox
  466. [2014.09.04 17:07:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
  467. [2014.09.04 17:07:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GRETECH
  468. [2014.09.04 17:07:18 | 000,283,064 | ---- | C] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
  469. [2014.09.04 17:07:15 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\DAEMON Tools Lite
  470. [2014.09.04 17:07:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
  471. [2014.09.04 17:06:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
  472. [2014.09.04 17:06:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack
  473. [2014.09.04 17:06:40 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
  474. [2014.09.04 17:06:03 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Programs
  475. [2014.09.04 16:55:14 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\uTorrent
  476. [2014.09.04 16:54:57 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\Desktop\Chrome
  477. [2014.09.04 16:48:00 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
  478. [2014.09.04 16:46:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
  479. [2014.09.04 16:46:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
  480. [2014.09.04 16:46:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
  481. [2014.09.04 16:46:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
  482. [2014.09.04 16:45:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
  483. [2014.09.04 16:45:04 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
  484. [2014.09.04 16:42:11 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\ATI
  485. [2014.09.04 16:42:11 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\ATI
  486. [2014.09.04 16:38:41 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\library_dir
  487. [2014.09.04 16:38:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Raptr
  488. [2014.09.04 16:38:16 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
  489. [2014.09.04 16:37:13 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
  490. [2014.09.04 16:36:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
  491. [2014.09.04 16:36:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
  492. [2014.09.04 16:36:01 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
  493. [2014.09.04 16:35:21 | 000,000,000 | ---D | C] -- C:\AMD
  494. [2014.09.04 16:32:27 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\AVAST Software
  495. [2014.09.04 16:32:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
  496. [2014.09.04 16:32:13 | 000,000,000 | ---D | C] -- C:\Program Files\Google
  497. [2014.09.04 16:32:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
  498. [2014.09.04 16:31:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
  499. [2014.09.04 16:31:30 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Google
  500. [2014.09.04 16:31:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
  501. [2014.09.04 16:31:26 | 001,041,168 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
  502. [2014.09.04 16:31:26 | 000,092,008 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
  503. [2014.09.04 16:31:25 | 000,427,360 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswsp.sys
  504. [2014.09.04 16:31:25 | 000,079,184 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
  505. [2014.09.04 16:31:24 | 000,093,568 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
  506. [2014.09.04 16:31:23 | 000,307,344 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
  507. [2014.09.04 16:31:22 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
  508. [2014.09.04 16:30:01 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
  509. [2014.09.04 16:29:48 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
  510. [2014.09.04 16:27:06 | 000,000,000 | ---D | C] -- C:\Intel
  511. [2014.09.04 16:27:03 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
  512. [2014.09.04 16:27:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
  513. [2014.09.04 16:27:02 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\InstallShield
  514. [2014.09.04 16:18:50 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Adobe
  515. [2014.09.04 16:18:49 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
  516. [2014.09.04 16:18:49 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\Searches
  517. [2014.09.04 16:18:49 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
  518. [2014.09.04 16:18:49 | 000,000,000 | -H-D | C] -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
  519. [2014.09.04 16:18:42 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Identities
  520. [2014.09.04 16:18:40 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\Contacts
  521. [2014.09.04 16:18:39 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\VirtualStore
  522. [2014.09.04 16:18:36 | 000,000,000 | --SD | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft
  523. [2014.09.04 16:18:36 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\Videos
  524. [2014.09.04 16:18:36 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\Pictures
  525. [2014.09.04 16:18:36 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\Music
  526. [2014.09.04 16:18:36 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
  527. [2014.09.04 16:18:36 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\Links
  528. [2014.09.04 16:18:36 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\Favorites
  529. [2014.09.04 16:18:36 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\Downloads
  530. [2014.09.04 16:18:36 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\Documents
  531. [2014.09.04 16:18:36 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\Desktop
  532. [2014.09.04 16:18:36 | 000,000,000 | R--D | C] -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
  533. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\AppData\Local\Temporary Internet Files
  534. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\Templates
  535. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\Start Menu
  536. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\SendTo
  537. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\Recent
  538. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\PrintHood
  539. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\NetHood
  540. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\Documents\My Videos
  541. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\Documents\My Pictures
  542. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\Documents\My Music
  543. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\My Documents
  544. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\Local Settings
  545. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\AppData\Local\History
  546. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\Cookies
  547. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\Application Data
  548. [2014.09.04 16:18:36 | 000,000,000 | -HSD | C] -- C:\Users\MinasTirith\AppData\Local\Application Data
  549. [2014.09.04 16:18:36 | 000,000,000 | -H-D | C] -- C:\Users\MinasTirith\AppData
  550. [2014.09.04 16:18:36 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Temp
  551. [2014.09.04 16:18:36 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Local\Microsoft
  552. [2014.09.04 16:18:36 | 000,000,000 | ---D | C] -- C:\Users\MinasTirith\AppData\Roaming\Media Center Programs
  553. [2014.09.04 16:08:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
  554. [2014.09.04 16:07:58 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
  555. [2014.09.04 16:07:00 | 000,000,000 | -HSD | C] -- C:\Recovery
  556. [2014.09.04 16:06:57 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
  557. [2014.09.04 15:55:58 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
  558. [2014.09.04 15:55:33 | 000,000,000 | -HSD | C] -- C:\System Volume Information
  559.  
  560. [color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
  561.  
  562. [2014.09.11 23:42:06 | 000,001,008 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  563. [2014.09.11 17:56:17 | 000,026,576 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
  564. [2014.09.11 17:56:17 | 000,026,576 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
  565. [2014.09.11 16:42:00 | 000,001,004 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  566. [2014.09.11 11:32:54 | 000,781,790 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
  567. [2014.09.11 11:32:54 | 000,653,930 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
  568. [2014.09.11 11:32:54 | 000,121,802 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
  569. [2014.09.11 11:26:40 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
  570. [2014.09.11 11:26:35 | 3189,149,696 | -HS- | M] () -- C:\hiberfil.sys
  571. [2014.09.11 02:09:25 | 000,765,656 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  572. [2014.09.08 16:06:24 | 019,565,218 | ---- | M] () -- C:\Users\MinasTirith\Desktop\Untitled-1.psd
  573. [2014.09.08 14:35:11 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
  574. [2014.09.07 22:41:20 | 000,000,967 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
  575. [2014.09.07 22:16:44 | 000,000,763 | ---- | M] () -- C:\Users\MinasTirith\Desktop\Dead Island.lnk
  576. [2014.09.07 16:28:34 | 000,001,335 | ---- | M] () -- C:\Users\MinasTirith\Desktop\Crysis 2 Maximum Edition.lnk
  577. [2014.09.07 15:29:17 | 000,002,202 | ---- | M] () -- C:\Users\MinasTirith\Desktop\Microsoft OneDrive.lnk
  578. [2014.09.07 12:03:44 | 000,001,309 | ---- | M] () -- C:\Users\MinasTirith\Desktop\Serious Sam HD - The Second Encounter.lnk
  579. [2014.09.07 01:39:21 | 000,057,147 | ---- | M] () -- C:\Users\MinasTirith\Desktop\601417_10151321724756840_972331103_n.jpg
  580. [2014.09.06 19:46:51 | 000,001,061 | ---- | M] () -- C:\Users\MinasTirith\Desktop\Dead Rising 3.lnk
  581. [2014.09.06 15:17:15 | 000,000,758 | ---- | M] () -- C:\Users\Public\Desktop\MEGAsync.lnk
  582. [2014.09.06 14:27:56 | 000,002,515 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
  583. [2014.09.06 13:35:36 | 000,001,908 | ---- | M] () -- C:\Users\Public\Desktop\SONAR X3 Producer (x64).lnk
  584. [2014.09.06 04:38:20 | 005,102,408 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
  585. [2014.09.06 03:55:59 | 000,016,284 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
  586. [2014.09.06 03:55:57 | 000,016,284 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
  587. [2014.09.05 22:52:15 | 000,001,059 | ---- | M] () -- C:\Users\Public\Desktop\Service Center.lnk
  588. [2014.09.05 22:13:58 | 000,001,908 | ---- | M] () -- C:\Windows\diagwrn.xml
  589. [2014.09.05 22:13:58 | 000,001,908 | ---- | M] () -- C:\Windows\diagerr.xml
  590. [2014.09.05 00:25:58 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_WinUsb_01009.Wdf
  591. [2014.09.05 00:24:45 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
  592. [2014.09.04 20:25:09 | 721,950,785 | ---- | M] () -- C:\Windows\MEMORY.DMP
  593. [2014.09.04 17:15:02 | 000,001,061 | ---- | M] () -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
  594. [2014.09.04 17:07:58 | 000,001,213 | ---- | M] () -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk
  595. [2014.09.04 17:07:18 | 000,283,064 | ---- | M] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
  596. [2014.09.04 16:55:37 | 000,000,843 | ---- | M] () -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
  597. [2014.09.04 16:50:44 | 000,002,283 | ---- | M] () -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
  598. [2014.09.04 16:47:17 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
  599. [2014.09.04 16:32:18 | 000,427,360 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswsp.sys
  600. [2014.09.04 16:31:23 | 001,041,168 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
  601. [2014.09.04 16:31:23 | 000,224,896 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
  602. [2014.09.04 16:31:23 | 000,092,008 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
  603. [2014.09.04 16:31:23 | 000,079,184 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
  604. [2014.09.04 16:31:23 | 000,065,776 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
  605. [2014.09.04 16:31:22 | 000,307,344 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
  606. [2014.09.04 16:31:22 | 000,093,568 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
  607. [2014.09.04 16:31:22 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
  608. [2014.09.04 16:31:22 | 000,029,208 | ---- | M] () -- C:\Windows\SysNative\drivers\aswHwid.sys
  609. [2014.09.04 16:28:45 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf
  610. [2014.09.04 16:25:02 | 000,001,411 | ---- | M] () -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
  611. [2014.09.04 15:59:25 | 000,116,385 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
  612. [2014.09.04 15:59:25 | 000,116,385 | ---- | M] () -- C:\Windows\SysNative\license.rtf
  613. [2014.09.04 15:57:29 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
  614.  
  615. [color=#E56717]========== Files Created - No Company Name ==========[/color]
  616.  
  617. [2014.09.08 15:13:51 | 019,565,218 | ---- | C] () -- C:\Users\MinasTirith\Desktop\Untitled-1.psd
  618. [2014.09.08 14:35:11 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
  619. [2014.09.07 22:41:20 | 000,000,967 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
  620. [2014.09.07 22:16:44 | 000,000,763 | ---- | C] () -- C:\Users\MinasTirith\Desktop\Dead Island.lnk
  621. [2014.09.07 16:28:34 | 000,001,335 | ---- | C] () -- C:\Users\MinasTirith\Desktop\Crysis 2 Maximum Edition.lnk
  622. [2014.09.07 12:00:41 | 000,001,309 | ---- | C] () -- C:\Users\MinasTirith\Desktop\Serious Sam HD - The Second Encounter.lnk
  623. [2014.09.07 01:39:21 | 000,057,147 | ---- | C] () -- C:\Users\MinasTirith\Desktop\601417_10151321724756840_972331103_n.jpg
  624. [2014.09.06 19:46:51 | 000,001,061 | ---- | C] () -- C:\Users\MinasTirith\Desktop\Dead Rising 3.lnk
  625. [2014.09.06 15:17:15 | 000,000,758 | ---- | C] () -- C:\Users\Public\Desktop\MEGAsync.lnk
  626. [2014.09.06 15:13:50 | 000,002,202 | ---- | C] () -- C:\Users\MinasTirith\Desktop\Microsoft OneDrive.lnk
  627. [2014.09.06 14:27:56 | 000,002,515 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
  628. [2014.09.06 13:35:36 | 000,001,908 | ---- | C] () -- C:\Users\Public\Desktop\SONAR X3 Producer (x64).lnk
  629. [2014.09.06 03:55:59 | 000,016,284 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
  630. [2014.09.06 03:55:57 | 000,016,284 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
  631. [2014.09.05 22:52:14 | 000,001,059 | ---- | C] () -- C:\Users\Public\Desktop\Service Center.lnk
  632. [2014.09.05 22:13:29 | 000,001,908 | ---- | C] () -- C:\Windows\diagwrn.xml
  633. [2014.09.05 22:13:29 | 000,001,908 | ---- | C] () -- C:\Windows\diagerr.xml
  634. [2014.09.05 00:25:58 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_WinUsb_01009.Wdf
  635. [2014.09.05 00:24:45 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
  636. [2014.09.04 20:25:09 | 721,950,785 | ---- | C] () -- C:\Windows\MEMORY.DMP
  637. [2014.09.04 19:35:06 | 000,002,503 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
  638. [2014.09.04 19:33:50 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
  639. [2014.09.04 19:16:56 | 000,001,038 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC.lnk
  640. [2014.09.04 19:07:12 | 000,002,104 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Update Management Tool.lnk
  641. [2014.09.04 19:02:51 | 000,001,068 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC (64 Bit).lnk
  642. [2014.09.04 19:01:10 | 000,001,204 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC.lnk
  643. [2014.09.04 18:54:55 | 000,001,534 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
  644. [2014.09.04 17:15:02 | 000,001,061 | ---- | C] () -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
  645. [2014.09.04 17:07:58 | 000,001,213 | ---- | C] () -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\GOM Player.lnk
  646. [2014.09.04 17:06:52 | 000,178,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
  647. [2014.09.04 16:55:37 | 000,000,843 | ---- | C] () -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
  648. [2014.09.04 16:47:17 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
  649. [2014.09.04 16:31:53 | 000,002,283 | ---- | C] () -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
  650. [2014.09.04 16:31:33 | 000,001,008 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
  651. [2014.09.04 16:31:32 | 000,001,004 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
  652. [2014.09.04 16:31:26 | 000,224,896 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
  653. [2014.09.04 16:31:25 | 000,065,776 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
  654. [2014.09.04 16:31:25 | 000,029,208 | ---- | C] () -- C:\Windows\SysNative\drivers\aswHwid.sys
  655. [2014.09.04 16:28:45 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf
  656. [2014.09.04 16:25:02 | 000,001,411 | ---- | C] () -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
  657. [2014.09.04 16:18:50 | 000,001,417 | ---- | C] () -- C:\Users\MinasTirith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
  658. [2014.09.04 16:18:36 | 000,000,290 | ---- | C] () -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
  659. [2014.09.04 16:18:36 | 000,000,272 | ---- | C] () -- C:\Users\MinasTirith\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
  660. [2014.09.04 16:08:59 | 000,765,656 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
  661. [2014.09.04 15:59:00 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
  662. [2014.09.04 15:58:49 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
  663. [2014.09.04 15:57:29 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
  664. [2014.09.04 15:55:33 | 3189,149,696 | -HS- | C] () -- C:\hiberfil.sys
  665. [2014.04.18 05:22:56 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
  666. [2014.04.18 05:22:56 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
  667. [2014.04.18 04:25:52 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
  668. [2014.04.18 04:25:50 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
  669. [2013.08.27 14:00:08 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll
  670.  
  671. [color=#E56717]========== ZeroAccess Check ==========[/color]
  672.  
  673. [2009.07.14 07:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
  674.  
  675. [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  676.  
  677. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  678.  
  679. [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
  680.  
  681. [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
  682.  
  683. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
  684. "" = C:\Windows\SysNative\shell32.dll -- [2014.06.25 05:05:42 | 014,175,744 | ---- | M] (Microsoft Corporation)
  685. "ThreadingModel" = Apartment
  686.  
  687. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
  688. "" = %SystemRoot%\system32\shell32.dll -- [2014.06.25 04:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
  689. "ThreadingModel" = Apartment
  690.  
  691. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
  692. "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 04:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
  693. "ThreadingModel" = Free
  694.  
  695. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
  696. "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 06:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
  697. "ThreadingModel" = Free
  698.  
  699. [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
  700. "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 04:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
  701. "ThreadingModel" = Both
  702.  
  703. [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
  704.  
  705. [color=#E56717]========== LOP Check ==========[/color]
  706.  
  707. [2014.09.04 18:59:31 | 000,000,000 | ---D | M] -- C:\Users\MinasTirith\AppData\Roaming\Applied Acoustics Systems
  708. [2014.09.04 16:32:27 | 000,000,000 | ---D | M] -- C:\Users\MinasTirith\AppData\Roaming\AVAST Software
  709. [2014.09.04 18:58:47 | 000,000,000 | ---D | M] -- C:\Users\MinasTirith\AppData\Roaming\Cakewalk
  710. [2014.09.04 17:18:03 | 000,000,000 | ---D | M] -- C:\Users\MinasTirith\AppData\Roaming\DAEMON Tools Lite
  711. [2014.09.11 11:27:52 | 000,000,000 | ---D | M] -- C:\Users\MinasTirith\AppData\Roaming\Dropbox
  712. [2014.09.04 16:38:41 | 000,000,000 | ---D | M] -- C:\Users\MinasTirith\AppData\Roaming\library_dir
  713. [2014.09.04 19:12:30 | 000,000,000 | ---D | M] -- C:\Users\MinasTirith\AppData\Roaming\Notepad++
  714. [2014.09.04 18:58:52 | 000,000,000 | ---D | M] -- C:\Users\MinasTirith\AppData\Roaming\Overloud
  715. [2014.09.06 19:59:06 | 000,000,000 | ---D | M] -- C:\Users\MinasTirith\AppData\Roaming\Steam
  716. [2014.09.12 00:07:34 | 000,000,000 | ---D | M] -- C:\Users\MinasTirith\AppData\Roaming\uTorrent
  717.  
  718. [color=#E56717]========== Purity Check ==========[/color]
  719.  
  720.  
  721.  
  722. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!