OTL logfile created on: 2012-07-06 18:00:44 - Run 1 OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Endriu\Downloads 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 2,90 Gb Available Physical Memory | 72,40% Memory free 8,00 Gb Paging File | 6,82 Gb Available in Paging File | 85,23% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 232,73 Gb Total Space | 111,29 Gb Free Space | 47,82% Space Free | Partition Type: NTFS Drive E: | 135,27 Gb Total Space | 104,19 Gb Free Space | 77,02% Space Free | Partition Type: NTFS Computer Name: ENDRIU-KOMPUTER | User Name: Endriu | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user | Quick Scan | Include 64bit Scans Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-07-06 18:00:41 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Endriu\Downloads\OTL (1).exe PRC - [2012-07-06 17:51:44 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Endriu\Downloads\OTL.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-06-28 11:28:56 | 000,438,296 | ---- | M] () -- C:\Users\Endriu\AppData\Local\Google\Chrome\Application\20.0.1132.47\ppGoogleNaClPluginChrome.dll MOD - [2012-06-28 11:28:54 | 003,972,120 | ---- | M] () -- C:\Users\Endriu\AppData\Local\Google\Chrome\Application\20.0.1132.47\pdf.dll MOD - [2012-06-28 11:27:29 | 000,140,328 | ---- | M] () -- C:\Users\Endriu\AppData\Local\Google\Chrome\Application\20.0.1132.47\avutil-51.dll MOD - [2012-06-28 11:27:28 | 000,262,184 | ---- | M] () -- C:\Users\Endriu\AppData\Local\Google\Chrome\Application\20.0.1132.47\avformat-54.dll MOD - [2012-06-28 11:27:26 | 002,386,984 | ---- | M] () -- C:\Users\Endriu\AppData\Local\Google\Chrome\Application\20.0.1132.47\avcodec-54.dll MOD - [2012-06-28 09:27:26 | 009,252,040 | ---- | M] () -- C:\Users\Endriu\AppData\Local\Google\Chrome\Application\20.0.1132.47\gcswf32.dll MOD - [2012-06-28 09:27:26 | 009,252,040 | ---- | M] () -- C:\Users\Endriu\AppData\Local\Google\Chrome\APPLIC~1\200113~1.47\gcswf32.dll MOD - [2010-01-30 02:41:12 | 004,254,560 | ---- | M] () -- C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2012-05-13 22:57:20 | 001,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64) SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2012-07-03 19:31:20 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-05-30 18:22:11 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012-05-13 22:55:22 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008-08-15 05:46:20 | 000,284,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe -- (Adobe Version Cue CS4) SRV - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2012-05-13 17:48:19 | 000,270,912 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:[b]64bit:[/b] - [2011-11-02 18:17:26 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2011-11-02 18:17:26 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2011-05-02 11:41:22 | 000,040,744 | ---- | M] (Dawicontrol GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\DC600e.sys -- (DC600e) DRV:[b]64bit:[/b] - [2011-05-02 11:41:14 | 000,049,752 | ---- | M] (Dawicontrol GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\DC324e.sys -- (DC324e) DRV:[b]64bit:[/b] - [2011-05-02 11:41:06 | 000,040,344 | ---- | M] (Dawicontrol GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\DC300e.sys -- (DC300e) DRV:[b]64bit:[/b] - [2011-05-02 11:40:56 | 000,048,328 | ---- | M] (Dawicontrol GmbH) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\DC3410.sys -- (DC3410) DRV:[b]64bit:[/b] - [2011-05-02 11:40:50 | 000,048,360 | ---- | M] (Dawicontrol GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\DC4300.sys -- (DC4300) DRV:[b]64bit:[/b] - [2011-05-02 11:40:42 | 000,048,136 | ---- | M] (Dawicontrol GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\DC154.sys -- (DC154) DRV:[b]64bit:[/b] - [2011-05-02 11:40:32 | 000,039,832 | ---- | M] (Dawicontrol GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\DC150.sys -- (DC150) DRV:[b]64bit:[/b] - [2011-05-02 11:40:20 | 000,039,320 | ---- | M] (Dawicontrol GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\DC133.sys -- (DC133) DRV:[b]64bit:[/b] - [2011-03-07 10:01:46 | 000,313,136 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mvs91xx.sys -- (mvs91xx) DRV:[b]64bit:[/b] - [2011-03-04 12:46:10 | 000,078,976 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata) DRV:[b]64bit:[/b] - [2011-03-04 12:46:10 | 000,032,896 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata) DRV:[b]64bit:[/b] - [2011-03-02 17:58:58 | 000,036,448 | ---- | M] (Asmedia Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\asahci64.sys -- (asahci64) DRV:[b]64bit:[/b] - [2011-02-14 07:08:24 | 000,024,880 | ---- | M] (Marvell Semiconductor Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mv91cons.sys -- (mv91cons) DRV:[b]64bit:[/b] - [2011-02-14 07:08:22 | 000,310,064 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mv91xx.sys -- (mv91xx) DRV:[b]64bit:[/b] - [2011-02-09 14:26:50 | 000,026,712 | ---- | M] (JMicron Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\johci.sys -- (johci) DRV:[b]64bit:[/b] - [2010-12-02 18:23:46 | 000,161,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\viamrx64.sys -- (viamrx64) DRV:[b]64bit:[/b] - [2010-11-25 12:27:40 | 000,120,408 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\jraid.sys -- (JRAID) DRV:[b]64bit:[/b] - [2010-11-21 04:24:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:[b]64bit:[/b] - [2010-11-21 04:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub) DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc) DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt) DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:[b]64bit:[/b] - [2010-11-06 08:45:46 | 000,438,808 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) DRV:[b]64bit:[/b] - [2010-10-26 17:42:24 | 000,181,040 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mv61xx.sys -- (mv61xx) DRV:[b]64bit:[/b] - [2010-09-23 16:48:52 | 000,264,272 | ---- | M] (Advanced Micro Devices, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ahcix64.sys -- (ahcix64) DRV:[b]64bit:[/b] - [2010-06-15 01:09:18 | 000,465,488 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MegaSR1.sys -- (MegaSR1) DRV:[b]64bit:[/b] - [2010-02-11 13:01:20 | 000,026,776 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\xfiltx64.sys -- (xfiltx64) DRV:[b]64bit:[/b] - [2010-02-11 13:00:22 | 000,015,000 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\videX64.sys -- (videX64) DRV:[b]64bit:[/b] - [2010-01-27 03:09:02 | 000,047,632 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\npf.sys -- (npf) DRV:[b]64bit:[/b] - [2009-12-31 18:37:56 | 000,168,032 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rr2522.sys -- (rr2522) DRV:[b]64bit:[/b] - [2009-12-31 18:23:58 | 000,162,400 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rr2340.sys -- (rr2340) DRV:[b]64bit:[/b] - [2009-12-21 14:56:12 | 000,155,232 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rr62x.sys -- (rr62x) DRV:[b]64bit:[/b] - [2009-11-09 03:24:12 | 000,052,768 | ---- | M] (ARECA Technology Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\arcm_a64.sys -- (arcm_a64) DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 02:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-07-07 23:56:56 | 000,226,616 | ---- | M] (Advanced Micro Devices, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ahcix64s.sys -- (ahcix64s) DRV:[b]64bit:[/b] - [2009-06-25 03:14:46 | 000,058,368 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\l160x64.sys -- (AtcL001) DRV:[b]64bit:[/b] - [2009-06-12 11:28:24 | 000,170,528 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\2310_00.sys -- (2310_00) DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2009-05-25 17:56:54 | 000,017,440 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hptiop.sys -- (hptiop) DRV:[b]64bit:[/b] - [2009-02-09 10:25:04 | 000,333,864 | ---- | M] (Silicon Image, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Si3531.sys -- (Si3531) DRV:[b]64bit:[/b] - [2008-06-27 07:51:10 | 000,088,632 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs) DRV:[b]64bit:[/b] - [2008-05-15 22:23:21 | 000,028,208 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmci.sys -- (vmci) DRV:[b]64bit:[/b] - [2008-05-05 17:49:08 | 000,152,096 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rr232x.sys -- (rr232x) DRV:[b]64bit:[/b] - [2008-03-10 12:17:38 | 000,386,560 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr6164.sys -- (rt61x64) DRV:[b]64bit:[/b] - [2008-02-06 03:00:00 | 000,054,480 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64) DRV:[b]64bit:[/b] - [2007-11-13 15:47:18 | 000,080,424 | ---- | M] (Silicon Image, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\PnP680.sys -- (Pnp680) DRV:[b]64bit:[/b] - [2007-11-01 14:21:14 | 000,152,096 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hptmv6.sys -- (hptmv6) DRV:[b]64bit:[/b] - [2007-11-01 14:20:10 | 000,153,632 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rr2210.sys -- (rr2210) DRV:[b]64bit:[/b] - [2007-11-01 14:19:44 | 000,159,264 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rr174x.sys -- (rr174x) DRV:[b]64bit:[/b] - [2007-11-01 14:19:04 | 000,124,448 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rr172x.sys -- (rr172x) DRV:[b]64bit:[/b] - [2007-10-03 15:51:00 | 000,022,056 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SiWinAcc.sys -- (SiFilter) DRV:[b]64bit:[/b] - [2007-10-03 15:50:52 | 000,017,448 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SiRemFil.sys -- (SiRemFil) DRV:[b]64bit:[/b] - [2007-10-03 15:50:26 | 000,090,664 | ---- | M] (Silicon Image, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SI3132.sys -- (SI3132) DRV:[b]64bit:[/b] - [2007-04-11 15:02:42 | 000,163,632 | ---- | M] (Silicon Image, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SI3114r.sys -- (SI3114r) DRV:[b]64bit:[/b] - [2007-02-01 16:53:08 | 000,164,656 | ---- | M] (Silicon Image, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SI3112r.sys -- (SI3112r) DRV:[b]64bit:[/b] - [2006-11-10 11:48:48 | 000,099,120 | ---- | M] (Silicon Image, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SI3114.sys -- (SI3114) DRV:[b]64bit:[/b] - [2006-11-02 16:25:04 | 000,113,456 | ---- | M] (Silicon Image, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SI3124.sys -- (SI3124) DRV:[b]64bit:[/b] - [2006-09-20 11:38:28 | 000,334,640 | ---- | M] (Silicon Image, Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Si3124r5.sys -- (Si3124r5) DRV:[b]64bit:[/b] - [2006-09-18 14:26:04 | 000,093,472 | ---- | M] (HighPoint Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hptmv.sys -- (hptmv) DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2008-08-14 07:57:42 | 000,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\SysWow64\drivers\adfs.sys -- (adfs) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{758B870D-DF78-4A6A-9955-DEDDCACF94DC}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} IE - HKCU\..\SearchScopes\{758B870D-DF78-4A6A-9955-DEDDCACF94DC}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - user.js - File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_262.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation) FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_262.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Endriu\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Endriu\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 13.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2012-06-18 11:16:41 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 13.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins [2012-03-07 10:12:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Endriu\AppData\Roaming\mozilla\Extensions [2012-05-03 12:54:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Endriu\AppData\Roaming\mozilla\Firefox\Profiles\yao9p75f.default\extensions [2012-03-07 10:12:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions [2012-06-18 11:09:41 | 000,564,662 | ---- | M] () (No name found) -- C:\USERS\ENDRIU\APPDATA\ROAMING\THUNDERBIRD\PROFILES\0TC17C21.DEFAULT\EXTENSIONS\TBTESTPILOT@LABS.MOZILLA.COM.XPI [2012-02-16 12:12:03 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml [2012-02-16 12:12:03 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml [2012-02-16 12:12:03 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml [2012-02-16 12:12:03 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml [2012-02-16 12:12:03 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-02-16 12:12:03 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms} CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Endriu\AppData\Local\Google\Chrome\Application\20.0.1132.47\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Endriu\AppData\Local\Google\Chrome\Application\20.0.1132.47\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Endriu\AppData\Local\Google\Chrome\Application\20.0.1132.47\gcswf32.dll CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Endriu\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll CHR - plugin: Java Deployment Toolkit 7.0.0.147 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 7 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\new_plugin\npjp2.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL CHR - plugin: Google Update (Enabled) = C:\Users\Endriu\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll CHR - Extension: File Manager = C:\Users\Endriu\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifpcdhlhbnnhoplmicninkgnaffaphag\3_0\ CHR - Extension: Gmail = C:\Users\Endriu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012-05-14 10:46:18 | 000,000,857 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 activate.adobe.com O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - E:\adobe\/Adobe Contribute CS4/contributeieplugin.dll () O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - E:\adobe\/Adobe Contribute CS4/contributeieplugin.dll () O4:[b]64bit:[/b] - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:[b]64bit:[/b] - HKLM..\Run: [kX Mixer] C:\Program Files\kX Audio Driver\3550\kxmixer.exe (Eugene Gavrilov) O4:[b]64bit:[/b] - HKLM..\Run: [vsjitdebugger] C:\Users\Endriu\AppData\Local\Microsoft\Windows\941\vsjitdebugger.exe () O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Acrobat Assistant 8.0] E:\adobe\Acrobat 9.0\Acrobat\Acrotray.exe (Adobe Systems Inc.) O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] E:\adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Adobe_ID0ENQBO] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~2\Server\bin\VERSIO~2.EXE (Adobe Systems Incorporated) O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [UVS11 Preload] C:\Program Files (x86)\Ulead Systems\Ulead VideoStudio 11\uvPL.exe (InterVideo Digital Technology Corporation) O4 - HKLM..\Run: [VDownloader] C:\Program Files (x86)\VDownloader\VDownloader.exe (Vitzo) O4 - HKCU..\Run: [AdobeBridge] File not found O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [IPLA!] C:\Program Files (x86)\ipla\ipla.exe (Redefine Sp z o.o.) O4 - HKCU..\Run: [screenSHU] C:\Program Files (x86)\screenSHU\screenSHU.exe () O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.) O4 - HKCU..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Privacy present O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Safety present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\BrowserEmulation present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\CaretBrowsing present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\CommandBar present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Main present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\PhishingFilter present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Privacy present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Safety present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMyMusic = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8:[b]64bit:[/b] - Extra context menu item: Append to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:[b]64bit:[/b] - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:[b]64bit:[/b] - Extra context menu item: Convert link target to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8:[b]64bit:[/b] - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Append to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O13[b]64bit:[/b] - gopher Prefix: missing O13 - gopher Prefix: missing O16:[b]64bit:[/b] - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 10.0.0) O16:[b]64bit:[/b] - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0) O16:[b]64bit:[/b] - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 10.0.0) O16 - DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab (Java Plug-in 1.7.0) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.62 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DEC160F2-8A90-4A2D-888F-A789EBD39837}: DhcpNameServer = 62.179.1.62 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F0A3F50E-07FE-410E-AF1E-AD1DBA0B6C3D}: DhcpNameServer = 62.179.1.62 192.168.0.1 O18 - Protocol\Handler\ms-help - No CLSID value found O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-07-06 17:16:26 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Roaming\hellomoto [2012-07-05 23:04:54 | 000,000,000 | ---D | C] -- C:\Users\Endriu\Desktop\Banery [2012-07-01 11:33:11 | 000,000,000 | ---D | C] -- C:\Users\Endriu\Desktop\tmp [2012-06-29 10:57:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner [2012-06-29 10:57:23 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2012-06-29 10:17:38 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Local\PMB Files [2012-06-29 10:17:37 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files [2012-06-29 10:17:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Pando Networks [2012-06-29 09:33:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewFeature1 [2012-06-28 17:06:41 | 000,000,000 | ---D | C] -- C:\Users\Endriu\Desktop\WWW [2012-06-27 13:03:12 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander [2012-06-27 13:03:12 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Roaming\GHISLER [2012-06-27 12:31:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\pazera-software [2012-06-27 12:31:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pazera Free MP4 to AVI Converter [2012-06-27 12:17:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid [2012-06-27 12:17:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Xvid [2012-06-27 12:14:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow [2012-06-27 12:14:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ffdshow [2012-06-27 12:12:43 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Local\Apple Computer [2012-06-27 12:07:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Open Video Converter [2012-06-27 12:07:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoConverter [2012-06-27 12:05:35 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Video-AVI to GIF-JPEG [2012-06-27 12:05:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video-AVI to GIF-JPEG [2012-06-27 12:05:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Video-AVI to GIF-JPEG [2012-06-27 11:59:13 | 000,000,000 | ---D | C] -- C:\Users\Endriu\Desktop\1789soft_giftoaviswf [2012-06-26 16:11:59 | 000,000,000 | ---D | C] -- C:\Users\Endriu\Desktop\789soft_giftoaviswf [2012-06-26 16:09:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIF TO AVI SWF Converter [2012-06-26 16:09:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GIF TO AVI SWF Converter [2012-06-26 16:08:38 | 000,000,000 | ---D | C] -- C:\Users\Endriu\Desktop\Downloads [2012-06-26 16:08:29 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Roaming\GetRightToGo [2012-06-23 11:49:47 | 000,000,000 | ---D | C] -- C:\Users\Endriu\Desktop\foto [2012-06-22 21:17:44 | 000,000,000 | R--D | C] -- C:\Users\Endriu\Desktop\Z [2012-06-20 10:02:57 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2012-06-20 09:48:22 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe [2012-06-18 11:09:40 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Roaming\Thunderbird [2012-06-18 11:09:40 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Local\Thunderbird [2012-06-18 11:09:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird [2012-06-09 15:21:02 | 000,000,000 | ---D | C] -- C:\PFiles [2012-06-09 13:30:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [2012-06-09 13:25:38 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Roaming\LolClient2 [2012-06-09 11:12:44 | 000,000,000 | ---D | C] -- C:\Users\Endriu\Desktop\grafy [2012-06-08 09:38:31 | 000,000,000 | ---D | C] -- C:\Users\Endriu\Desktop\NH [2012-06-07 11:30:28 | 000,000,000 | ---D | C] -- C:\Users\Endriu\AppData\Local\screenSHU [2012-06-07 11:29:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\screenSHU [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-07-06 17:53:45 | 001,671,400 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2012-07-06 17:53:45 | 000,741,116 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2012-07-06 17:53:45 | 000,654,880 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2012-07-06 17:53:45 | 000,155,712 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2012-07-06 17:53:45 | 000,121,752 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2012-07-06 17:49:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012-07-06 17:46:37 | 000,000,286 | ---- | M] () -- C:\Windows\tasks\Windows 7 Manager - IP Switcher.job [2012-07-06 17:02:00 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2406079657-804785698-2992765721-1000UA.job [2012-07-06 16:58:44 | 000,003,704 | ---- | M] () -- C:\Windows\SysNative\notepad.ini [2012-07-06 16:31:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012-07-06 15:18:23 | 001,179,303 | ---- | M] () -- C:\Users\Endriu\Desktop\Banery.rar [2012-07-06 11:45:16 | 001,306,555 | ---- | M] () -- C:\Users\Endriu\Desktop\1.ai [2012-07-06 11:25:09 | 004,861,893 | ---- | M] () -- C:\Users\Endriu\Desktop\janas.psd [2012-07-06 10:42:38 | 000,307,896 | ---- | M] () -- C:\Users\Endriu\Desktop\janas.jpg [2012-07-06 10:41:51 | 000,001,496 | ---- | M] () -- C:\Users\Endriu\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs [2012-07-05 18:02:00 | 000,001,010 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2406079657-804785698-2992765721-1000Core.job [2012-07-05 17:56:43 | 000,185,189 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez.gif [2012-07-05 14:20:03 | 000,007,436 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez nazwy-12.png [2012-07-05 14:20:03 | 000,000,132 | ---- | M] () -- C:\Users\Endriu\AppData\Roaming\Preferencje formatu PNG CS6 firmy Adobe [2012-07-05 14:10:12 | 000,026,544 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2012-07-05 14:10:12 | 000,026,544 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2012-07-05 12:47:09 | 000,323,956 | ---- | M] () -- C:\Users\Endriu\Desktop\bbb.jpg [2012-07-05 12:46:59 | 006,698,908 | ---- | M] () -- C:\Users\Endriu\Desktop\opening42.psd [2012-07-05 12:12:49 | 000,008,836 | ---- | M] () -- C:\Users\Endriu\Desktop\400_F_40452404_nDtieQdJMOFbjH6muNMsOyNRKkk4fLvJ.jpg [2012-07-05 12:03:06 | 000,351,421 | ---- | M] () -- C:\Users\Endriu\Desktop\aaa.jpg [2012-07-05 10:22:07 | 000,018,017 | ---- | M] () -- C:\Users\Endriu\Desktop\opening42.png [2012-07-05 10:12:21 | 000,179,508 | ---- | M] () -- C:\Users\Endriu\Desktop\baner.gif [2012-07-05 10:04:32 | 000,014,330 | ---- | M] () -- C:\Users\Endriu\Desktop\gemini.png [2012-07-05 09:34:19 | 000,105,459 | ---- | M] () -- C:\Users\Endriu\Desktop\networ1.jpg [2012-07-05 01:28:14 | 000,252,205 | ---- | M] () -- C:\Users\Endriu\Desktop\screenshot-2.jpg [2012-07-05 01:28:10 | 000,003,704 | ---- | M] () -- C:\Windows\notepad.ini [2012-07-04 13:48:45 | 000,005,670 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez nazwy-1.png [2012-07-03 11:33:00 | 000,017,835 | ---- | M] () -- C:\Users\Endriu\Desktop\b.png [2012-07-03 11:30:46 | 000,026,809 | ---- | M] () -- C:\Users\Endriu\Desktop\a.png [2012-07-03 11:03:45 | 000,332,495 | ---- | M] () -- C:\Users\Endriu\Desktop\ogrodzenie1.jpg [2012-07-03 11:03:30 | 000,265,405 | ---- | M] () -- C:\Users\Endriu\Desktop\ogrodzenie.jpg [2012-07-03 11:00:11 | 000,306,089 | ---- | M] () -- C:\Users\Endriu\Desktop\Ogrodzenie_poses_4e7ae92d58768.jpg [2012-07-02 19:42:07 | 000,000,171 | ---- | M] () -- C:\Windows\SysNative\IPSwithcher.xml [2012-07-02 14:07:18 | 000,681,067 | ---- | M] () -- C:\Users\Endriu\Desktop\DSC_0162.jpg [2012-07-02 13:50:19 | 077,679,005 | ---- | M] () -- C:\Users\Endriu\Desktop\DSC_0162.psd [2012-07-02 13:11:31 | 077,399,542 | ---- | M] () -- C:\Users\Endriu\Desktop\6.psd [2012-07-02 13:11:17 | 001,428,190 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez nazwy-1 — Odzyskano.psd [2012-07-02 13:04:44 | 000,003,408 | ---- | M] () -- C:\bootsqm.dat [2012-07-02 12:53:46 | 000,430,487 | ---- | M] () -- C:\Users\Endriu\Desktop\m.png [2012-07-02 12:26:05 | 000,138,639 | ---- | M] () -- C:\Users\Endriu\Desktop\1.png [2012-07-02 11:16:22 | 000,034,737 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez nazwy-12.jpg [2012-07-01 23:56:59 | 000,026,587 | ---- | M] () -- C:\Users\Endriu\Desktop\1.jpg [2012-07-01 23:18:13 | 002,280,962 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez nazw22y-1.psd [2012-07-01 23:16:19 | 001,322,576 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez-nazwy-2.gif [2012-07-01 17:19:24 | 000,072,645 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez nazw22y-1.jpg [2012-07-01 16:54:09 | 005,117,848 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2012-07-01 14:54:40 | 000,033,934 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez nazwy-1.jpg [2012-07-01 11:30:30 | 000,004,016 | ---- | M] () -- C:\Users\Endriu\Desktop\wp-config.php [2012-07-01 07:37:53 | 000,000,866 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk [2012-06-29 11:00:16 | 000,223,570 | ---- | M] () -- C:\Users\Endriu\Documents\cc_20120629_110010.reg [2012-06-29 09:33:33 | 000,001,722 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk [2012-06-29 08:33:36 | 005,093,715 | ---- | M] () -- C:\Users\Endriu\Desktop\dyplom.jpg [2012-06-28 22:52:23 | 000,165,964 | ---- | M] () -- C:\Users\Endriu\Desktop\promocja -super ściąga HA.pdf [2012-06-28 19:19:10 | 000,686,240 | ---- | M] () -- C:\Users\Endriu\Documents\logo.ai [2012-06-28 17:13:35 | 000,135,214 | ---- | M] () -- C:\Users\Endriu\Desktop\logo.jpg [2012-06-28 15:38:53 | 000,036,299 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez tytułu.jpg [2012-06-27 13:03:13 | 000,000,646 | ---- | M] () -- C:\Users\Endriu\Desktop\Total Commander 64 bit.lnk [2012-06-27 12:31:22 | 000,001,271 | ---- | M] () -- C:\Users\Public\Desktop\Pazera Free MP4 to AVI Converter.lnk [2012-06-27 12:07:35 | 000,001,003 | ---- | M] () -- C:\Users\Endriu\Desktop\Open Video Converter.lnk [2012-06-27 12:05:35 | 000,001,074 | ---- | M] () -- C:\Users\Endriu\Desktop\Video-AVI to GIF-JPEG.lnk [2012-06-27 11:59:31 | 019,623,556 | ---- | M] () -- C:\Users\Endriu\Desktop\11.avi [2012-06-26 20:28:14 | 007,217,375 | ---- | M] () -- C:\Users\Endriu\Desktop\sda.gif [2012-06-26 19:23:43 | 000,162,463 | ---- | M] () -- C:\Users\Endriu\Desktop\logo-gala.jpg [2012-06-26 17:45:51 | 000,241,232 | ---- | M] () -- C:\Users\Endriu\Desktop\sc.pdf [2012-06-26 16:13:43 | 000,632,580 | ---- | M] () -- C:\Users\Endriu\Desktop\Bez-nazwy-1.avi [2012-06-26 16:09:17 | 000,001,134 | ---- | M] () -- C:\Users\Public\Desktop\GIF TO AVI SWF Converter.lnk [2012-06-18 11:16:41 | 000,002,005 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk [2012-06-08 20:59:24 | 001,054,463 | ---- | M] () -- C:\Users\Endriu\Documents\Untitl32323ed-1.ai [2012-06-08 15:20:44 | 000,009,918 | ---- | M] () -- C:\Users\Endriu\AppData\Local\RT61_{F0A3F50E-07FE-410E-AF1E-AD1DBA0B6C3D}_prof [2012-06-08 15:20:44 | 000,000,754 | ---- | M] () -- C:\Users\Endriu\AppData\Local\RT61_{F0A3F50E-07FE-410E-AF1E-AD1DBA0B6C3D}_sta [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-07-06 15:18:22 | 001,179,303 | ---- | C] () -- C:\Users\Endriu\Desktop\Banery.rar [2012-07-06 10:39:33 | 000,307,896 | ---- | C] () -- C:\Users\Endriu\Desktop\janas.jpg [2012-07-06 08:35:34 | 004,861,893 | ---- | C] () -- C:\Users\Endriu\Desktop\janas.psd [2012-07-05 17:56:43 | 000,185,189 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez.gif [2012-07-05 14:20:02 | 000,007,436 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez nazwy-12.png [2012-07-05 12:27:08 | 000,323,956 | ---- | C] () -- C:\Users\Endriu\Desktop\bbb.jpg [2012-07-05 12:12:50 | 000,008,836 | ---- | C] () -- C:\Users\Endriu\Desktop\400_F_40452404_nDtieQdJMOFbjH6muNMsOyNRKkk4fLvJ.jpg [2012-07-05 12:00:06 | 000,351,421 | ---- | C] () -- C:\Users\Endriu\Desktop\aaa.jpg [2012-07-05 11:53:51 | 006,698,908 | ---- | C] () -- C:\Users\Endriu\Desktop\opening42.psd [2012-07-05 10:22:09 | 000,018,017 | ---- | C] () -- C:\Users\Endriu\Desktop\opening42.png [2012-07-05 10:04:35 | 000,014,330 | ---- | C] () -- C:\Users\Endriu\Desktop\gemini.png [2012-07-05 09:45:47 | 000,179,508 | ---- | C] () -- C:\Users\Endriu\Desktop\baner.gif [2012-07-05 09:34:17 | 000,105,459 | ---- | C] () -- C:\Users\Endriu\Desktop\networ1.jpg [2012-07-05 01:28:13 | 000,252,205 | ---- | C] () -- C:\Users\Endriu\Desktop\screenshot-2.jpg [2012-07-04 13:47:21 | 000,005,670 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez nazwy-1.png [2012-07-03 19:28:20 | 000,000,930 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012-07-03 11:32:58 | 000,017,835 | ---- | C] () -- C:\Users\Endriu\Desktop\b.png [2012-07-03 11:30:45 | 000,026,809 | ---- | C] () -- C:\Users\Endriu\Desktop\a.png [2012-07-03 11:03:43 | 000,332,495 | ---- | C] () -- C:\Users\Endriu\Desktop\ogrodzenie1.jpg [2012-07-03 11:03:28 | 000,265,405 | ---- | C] () -- C:\Users\Endriu\Desktop\ogrodzenie.jpg [2012-07-03 11:00:15 | 000,306,089 | ---- | C] () -- C:\Users\Endriu\Desktop\Ogrodzenie_poses_4e7ae92d58768.jpg [2012-07-02 13:55:37 | 000,681,067 | ---- | C] () -- C:\Users\Endriu\Desktop\DSC_0162.jpg [2012-07-02 13:11:29 | 077,399,542 | ---- | C] () -- C:\Users\Endriu\Desktop\6.psd [2012-07-02 13:11:15 | 001,428,190 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez nazwy-1 — Odzyskano.psd [2012-07-02 13:04:44 | 000,003,408 | ---- | C] () -- C:\bootsqm.dat [2012-07-02 12:53:43 | 000,430,487 | ---- | C] () -- C:\Users\Endriu\Desktop\m.png [2012-07-02 12:30:20 | 077,679,005 | ---- | C] () -- C:\Users\Endriu\Desktop\DSC_0162.psd [2012-07-02 12:26:03 | 000,138,639 | ---- | C] () -- C:\Users\Endriu\Desktop\1.png [2012-07-02 11:16:20 | 000,034,737 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez nazwy-12.jpg [2012-07-01 23:56:59 | 000,026,587 | ---- | C] () -- C:\Users\Endriu\Desktop\1.jpg [2012-07-01 23:29:23 | 000,000,132 | ---- | C] () -- C:\Users\Endriu\AppData\Roaming\Preferencje formatu PNG CS6 firmy Adobe [2012-07-01 17:35:43 | 002,280,962 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez nazw22y-1.psd [2012-07-01 15:02:06 | 000,072,645 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez nazw22y-1.jpg [2012-07-01 14:54:39 | 000,033,934 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez nazwy-1.jpg [2012-07-01 11:30:30 | 000,004,016 | ---- | C] () -- C:\Users\Endriu\Desktop\wp-config.php [2012-07-01 09:13:38 | 001,322,576 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez-nazwy-2.gif [2012-07-01 09:05:39 | 001,306,555 | ---- | C] () -- C:\Users\Endriu\Desktop\1.ai [2012-06-29 11:00:13 | 000,223,570 | ---- | C] () -- C:\Users\Endriu\Documents\cc_20120629_110010.reg [2012-06-29 10:57:24 | 000,000,866 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk [2012-06-29 09:33:33 | 000,001,722 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk [2012-06-29 08:33:32 | 005,093,715 | ---- | C] () -- C:\Users\Endriu\Desktop\dyplom.jpg [2012-06-28 22:52:22 | 000,165,964 | ---- | C] () -- C:\Users\Endriu\Desktop\promocja -super ściąga HA.pdf [2012-06-28 15:38:53 | 000,036,299 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez tytułu.jpg [2012-06-27 13:03:13 | 000,000,646 | ---- | C] () -- C:\Users\Endriu\Desktop\Total Commander 64 bit.lnk [2012-06-27 12:31:22 | 000,001,271 | ---- | C] () -- C:\Users\Public\Desktop\Pazera Free MP4 to AVI Converter.lnk [2012-06-27 12:17:14 | 000,696,832 | ---- | C] () -- C:\Windows\SysNative\xvidcore.dll [2012-06-27 12:17:14 | 000,645,632 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2012-06-27 12:17:14 | 000,255,488 | ---- | C] () -- C:\Windows\SysNative\xvidvfw.dll [2012-06-27 12:17:14 | 000,240,640 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2012-06-27 12:17:14 | 000,173,568 | ---- | C] () -- C:\Windows\SysNative\xvid.ax [2012-06-27 12:17:14 | 000,153,088 | ---- | C] () -- C:\Windows\SysWow64\xvid.ax [2012-06-27 12:14:39 | 000,079,872 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2012-06-27 12:07:35 | 000,001,003 | ---- | C] () -- C:\Users\Endriu\Desktop\Open Video Converter.lnk [2012-06-27 12:05:35 | 000,001,074 | ---- | C] () -- C:\Users\Endriu\Desktop\Video-AVI to GIF-JPEG.lnk [2012-06-27 11:59:31 | 019,623,556 | ---- | C] () -- C:\Users\Endriu\Desktop\11.avi [2012-06-26 20:28:08 | 007,217,375 | ---- | C] () -- C:\Users\Endriu\Desktop\sda.gif [2012-06-26 19:23:47 | 000,162,463 | ---- | C] () -- C:\Users\Endriu\Desktop\logo-gala.jpg [2012-06-26 17:45:50 | 000,241,232 | ---- | C] () -- C:\Users\Endriu\Desktop\sc.pdf [2012-06-26 16:12:06 | 000,632,580 | ---- | C] () -- C:\Users\Endriu\Desktop\Bez-nazwy-1.avi [2012-06-26 16:09:17 | 000,001,134 | ---- | C] () -- C:\Users\Public\Desktop\GIF TO AVI SWF Converter.lnk [2012-06-26 11:43:58 | 000,135,214 | ---- | C] () -- C:\Users\Endriu\Desktop\logo.jpg [2012-06-21 10:07:48 | 000,001,496 | ---- | C] () -- C:\Users\Endriu\AppData\Local\Adobe Zapisz dla Internetu 13.0 Prefs [2012-06-20 09:48:06 | 000,000,733 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk [2012-06-20 09:47:31 | 000,000,688 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk [2012-06-20 09:47:01 | 000,000,707 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk [2012-06-20 09:46:42 | 000,000,662 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk [2012-06-20 09:44:37 | 000,000,782 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk [2012-06-20 09:44:32 | 000,001,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk [2012-06-18 11:09:33 | 000,002,017 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk [2012-06-18 11:09:33 | 000,002,005 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk [2012-06-08 17:30:15 | 001,054,463 | ---- | C] () -- C:\Users\Endriu\Documents\Untitl32323ed-1.ai [2012-06-07 11:29:15 | 000,001,049 | ---- | C] () -- C:\Users\Endriu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\screenSHU.lnk [2012-05-25 07:45:35 | 006,908,648 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall.exe [2012-05-25 07:45:35 | 000,017,686 | ---- | C] () -- C:\Windows\SysWow64\SpoonUninstall-dBpoweramp Music Converter.dat [2012-05-21 14:09:07 | 000,210,456 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeW7.dll [2012-05-21 14:09:07 | 000,206,360 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeA6.dll [2012-05-21 14:09:07 | 000,198,168 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeP6.dll [2012-05-21 14:09:07 | 000,198,168 | ---- | C] () -- C:\Windows\SysWow64\IVIresizeM6.dll [2012-05-21 14:09:07 | 000,194,072 | ---- | C] () -- C:\Windows\SysWow64\IVIresizePX.dll [2012-05-21 14:09:07 | 000,026,136 | ---- | C] () -- C:\Windows\SysWow64\IVIresize.dll [2012-05-16 16:00:09 | 000,444,283 | ---- | C] () -- C:\Program Files (x86)\Common Files\WinPcapNmap.exe [2012-05-05 14:07:05 | 000,027,137 | ---- | C] () -- C:\Users\Endriu\AppData\Roaming\Commview [2012-02-26 19:55:07 | 000,000,508 | ---- | C] () -- C:\Users\Endriu\AppData\Local\RT61_{F0A3F50E-07FE-410E-AF1E-AD1DBA0B6C3D}_ap [2011-10-08 09:49:46 | 000,003,704 | ---- | C] () -- C:\Windows\notepad.ini [2011-10-07 20:22:42 | 000,393,216 | ---- | C] () -- C:\Windows\SysWow64\TURBO.exe [2011-10-06 15:35:08 | 000,895,251 | ---- | C] () -- C:\Windows\SysWow64\Replacer.exe [2011-10-01 15:09:46 | 000,395,776 | ---- | C] () -- C:\Windows\SysWow64\RESTARTUJ.exe [2011-10-01 15:09:39 | 000,393,216 | ---- | C] () -- C:\Windows\SysWow64\WYLOGUJ.exe [2011-10-01 15:09:36 | 000,388,096 | ---- | C] () -- C:\Windows\SysWow64\ZAMKNIJ.EXE [2002-01-05 02:49:35 | 000,000,754 | ---- | C] () -- C:\Users\Endriu\AppData\Local\RT61_{F0A3F50E-07FE-410E-AF1E-AD1DBA0B6C3D}_sta [2002-01-05 02:49:33 | 000,009,918 | ---- | C] () -- C:\Users\Endriu\AppData\Local\RT61_{F0A3F50E-07FE-410E-AF1E-AD1DBA0B6C3D}_prof [color=#E56717]========== LOP Check ==========[/color] [2012-04-08 12:00:45 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\.minecraft [2012-06-29 10:59:22 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\DAEMON Tools Lite [2012-05-06 11:50:55 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\f0w8uhy98yur9c8qy38cy82yrc280quafu89uya89dh [2012-07-06 16:46:30 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\foobar2000 [2012-05-06 22:11:46 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\GanymedeNet [2012-06-26 16:09:16 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\GetRightToGo [2012-06-27 13:03:49 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\GHISLER [2012-07-06 17:16:32 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\hellomoto [2012-07-06 17:47:04 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\ipla [2012-03-01 14:55:44 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\LolClient [2012-06-09 13:25:38 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\LolClient2 [2012-06-20 10:02:57 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2012-06-28 17:23:17 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\Thinstall [2012-06-18 11:09:40 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\Thunderbird [2012-06-22 21:43:13 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\Tibia [2012-05-23 14:31:29 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\Ulead Systems [2012-07-06 17:46:56 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\uTorrent [2012-06-24 12:36:37 | 000,000,000 | ---D | M] -- C:\Users\Endriu\AppData\Roaming\VDownloader [2012-07-02 19:35:00 | 000,022,486 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2012-07-06 17:46:37 | 000,000,286 | ---- | M] () -- C:\Windows\Tasks\Windows 7 Manager - IP Switcher.job [color=#E56717]========== Purity Check ==========[/color] < End of report >