OTL logfile created on: 2011-05-18 21:25:05 - Run 2
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Users\PC\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
4,00 Gb Total Physical Memory | 3,00 Gb Available Physical Memory | 70,00% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 80,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 49,32 Gb Total Space | 19,53 Gb Free Space | 39,60% Space Free | Partition Type: NTFS
Drive D: | 45,23 Gb Total Space | 34,22 Gb Free Space | 75,66% Space Free | Partition Type: NTFS
Drive E: | 416,44 Gb Total Space | 163,84 Gb Free Space | 39,34% Space Free | Partition Type: NTFS
Drive G: | 7,55 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: PC-PC | User Name: PC | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-05-17 17:33:48 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
PRC - [2011-05-16 20:41:14 | 000,566,784 | RHS- | M] (                                                                               ) -- C:\ProgramData\jushed.exe
PRC - [2011-05-16 20:41:14 | 000,347,136 | RHS- | M] (NirSoft) -- C:\ProgramData\nircmd.exe
PRC - [2011-05-04 17:46:37 | 000,075,136 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2011-03-17 23:07:16 | 003,373,456 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
PRC - [2011-03-17 23:07:00 | 000,019,872 | ---- | M] () -- C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
PRC - [2011-01-20 11:20:12 | 001,305,408 | ---- | M] (DT Soft Ltd) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2010-08-12 14:16:26 | 000,810,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011-05-17 17:33:48 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
MOD - [2010-11-20 04:55:10 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2011-04-06 03:58:48 | 000,203,776 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:[b]64bit:[/b] - [2010-08-12 14:18:40 | 000,042,360 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV:[b]64bit:[/b] - [2010-08-12 14:16:26 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011-05-04 17:46:37 | 000,075,136 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2008-05-15 08:29:18 | 000,087,288 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2011-04-06 06:11:44 | 009,323,520 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:[b]64bit:[/b] - [2011-04-06 03:21:42 | 000,304,128 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:[b]64bit:[/b] - [2011-03-07 08:25:41 | 000,312,480 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:[b]64bit:[/b] - [2011-02-27 08:03:39 | 000,043,168 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:[b]64bit:[/b] - [2011-02-26 14:30:01 | 000,254,528 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:[b]64bit:[/b] - [2011-01-19 18:47:18 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\cpuz135_x64.sys -- (cpuz135)
DRV:[b]64bit:[/b] - [2010-12-21 07:55:02 | 000,161,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV:[b]64bit:[/b] - [2010-12-21 07:55:02 | 000,128,000 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bserd.sys -- (ss_bserd)
DRV:[b]64bit:[/b] - [2010-12-21 07:55:02 | 000,127,488 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV:[b]64bit:[/b] - [2010-12-21 07:55:02 | 000,018,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV:[b]64bit:[/b] - [2010-11-20 06:33:36 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010-11-20 06:32:48 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2010-11-20 06:32:48 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010-11-20 04:07:06 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2010-11-17 14:04:32 | 000,115,216 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:[b]64bit:[/b] - [2010-07-29 13:31:26 | 000,168,544 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:[b]64bit:[/b] - [2010-07-29 13:31:26 | 000,141,264 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:[b]64bit:[/b] - [2010-07-29 13:31:26 | 000,126,320 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:[b]64bit:[/b] - [2010-02-24 12:20:40 | 000,191,616 | ---- | M] (Protect Software GmbH) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\acedrv11.sys -- (acedrv11)
DRV:[b]64bit:[/b] - [2009-09-04 14:39:08 | 000,062,464 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C) NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (NDIS 6.20)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mythos-europe.com
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2011-05-17 16:10:36 | 000,000,000 | ---D | M]
 
 
O1 HOSTS File: ([2009-06-10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3:[b]64bit:[/b] - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll ()
O4:[b]64bit:[/b] - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [ATICustomerCare] C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [jushed] C:\ProgramData\jushed.exe (                                                                               )
O4 - HKCU..\Run: [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe (Samsung)
O4 - HKCU..\Run: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe ()
O4 - HKCU..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: clonewarsadventures.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: freerealms.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: soe.com ([]* in Trusted sites)
O15 - HKCU\..Trusted Domains: sony.com ([]* in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.172.224.160 89.228.6.21
O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-05-17 21:42:03 | 000,231,518 | R--- | M] () - G:\autorun.ico -- [ CDFS ]
O32 - AutoRun File - [2011-05-17 21:42:03 | 000,000,047 | R--- | M] () - G:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{18026d4f-419f-11e0-99a7-002522422cea}\Shell - "" = AutoRun
O33 - MountPoints2\{18026d4f-419f-11e0-99a7-002522422cea}\Shell\AutoRun\command - "" = G:\Setup.exe -- [2011-05-17 21:42:03 | 000,394,016 | R--- | M] (Microsoft Corporation)
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-05-18 19:50:30 | 000,000,000 | -HSD | C] -- C:\ProgramData\DSS
[2011-05-18 19:49:59 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Lionhead Studios
[2011-05-18 19:40:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Game Studios
[2011-05-18 17:45:14 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
[2011-05-18 17:45:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Convar
[2011-05-18 17:45:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
[2011-05-18 17:45:08 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
[2011-05-17 17:34:18 | 000,000,000 | ---D | C] -- C:\_OTL
[2011-05-17 17:33:44 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
[2011-05-17 16:10:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2011-05-17 16:07:38 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2011-05-17 16:07:38 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2011-05-16 21:11:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wiedźmin 2
[2011-05-16 18:52:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
[2011-05-16 18:39:21 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2011-05-16 18:39:21 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2011-05-16 18:39:21 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2011-05-16 18:39:20 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2011-05-16 18:38:56 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2011-05-16 18:38:56 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2011-05-16 18:38:53 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2011-05-16 18:38:53 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2011-05-16 18:38:53 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2011-05-16 18:38:53 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2011-05-16 18:38:53 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2011-05-16 18:38:53 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2011-05-16 18:38:53 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2011-05-16 18:38:49 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2011-05-16 18:38:49 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2011-05-16 18:38:47 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011-05-16 18:38:46 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2011-05-16 18:38:45 | 005,562,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2011-05-16 18:38:42 | 003,967,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2011-05-16 18:38:41 | 003,912,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2011-05-16 18:38:37 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2011-05-16 18:38:37 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2011-05-16 18:38:35 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2011-05-16 18:38:35 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2011-05-16 18:38:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2011-05-16 18:38:10 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2011-05-16 18:38:10 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2011-05-16 18:38:10 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2011-05-16 18:38:10 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2011-05-16 18:36:32 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2011-05-16 18:36:31 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2011-05-16 18:36:31 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2011-05-16 18:27:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TNod User & Password Finder
[2011-05-16 18:26:43 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\ESET
[2011-05-16 18:26:43 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\ESET
[2011-05-16 18:13:27 | 000,000,000 | -H-D | C] -- C:\ProgramData\AVP11
[2011-05-16 16:58:26 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\SCE
[2011-05-16 16:35:38 | 000,000,000 | R--D | C] -- C:\32788R22FWJFW
[2011-05-16 16:34:24 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011-05-16 16:34:19 | 000,000,000 | --SD | C] -- C:\ComboFix
[2011-05-16 16:33:36 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011-05-15 10:29:44 | 000,000,000 | ---D | C] -- C:\Games
[2011-05-15 10:26:07 | 000,566,784 | RHS- | C] (                                                                               ) -- C:\ProgramData\jushed.exe
[2011-05-15 10:26:07 | 000,347,136 | RHS- | C] (NirSoft) -- C:\ProgramData\nircmd.exe
[2011-05-15 10:22:20 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\Witcher 2
[2011-05-15 10:22:20 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\The Witcher 2
[2011-05-14 21:21:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Monte Cristo
[2011-05-14 19:06:35 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011-05-14 09:07:02 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\Lost Horizon
[2011-05-14 09:02:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ProtectDisc Driver Installer
[2011-05-14 08:57:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Techland
[2011-05-13 22:04:18 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\ArcaniA - Gothic 4
[2011-05-13 17:25:44 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Leadertech
[2011-05-13 17:06:06 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Touchstone
[2011-05-09 21:34:11 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment
[2011-05-09 21:34:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Perfect World Entertainment
[2011-05-09 21:01:28 | 000,258,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unicows.dll
[2011-05-09 19:31:07 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\GetRightToGo
[2011-05-07 15:31:39 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\Atari
[2011-05-07 11:03:48 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\gnupg
[2011-05-07 08:36:02 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\Electronic Arts
[2011-05-06 19:40:50 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2011-05-06 19:40:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD APP
[2011-05-06 19:40:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011-05-06 19:39:12 | 001,912,832 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdmv.dll
[2011-05-06 19:39:12 | 001,208,320 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6v.dll
[2011-05-06 19:39:12 | 000,278,528 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\Oemdspif.dll
[2011-05-06 19:39:12 | 000,031,232 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll
[2011-05-06 19:39:11 | 022,623,232 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll
[2011-05-06 19:39:11 | 017,469,952 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll
[2011-05-06 19:39:11 | 009,323,520 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys
[2011-05-06 19:39:11 | 007,467,008 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll
[2011-05-06 19:39:11 | 006,098,432 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll
[2011-05-06 19:39:11 | 004,307,968 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\SysWow64\atidxx32.dll
[2011-05-06 19:39:11 | 000,480,256 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2011-05-06 19:39:11 | 000,356,352 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\atipdlxx.dll
[2011-05-06 19:39:11 | 000,304,128 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys
[2011-05-06 19:39:11 | 000,258,048 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2011-05-06 19:39:11 | 000,203,776 | ---- | C] (AMD) -- C:\Windows\SysNative\atiesrxx.exe
[2011-05-06 19:39:11 | 000,147,456 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe
[2011-05-06 19:39:11 | 000,120,320 | ---- | C] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2011-05-06 19:39:11 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll
[2011-05-06 19:39:11 | 000,053,760 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2011-05-06 19:39:11 | 000,053,760 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2011-05-06 19:39:11 | 000,053,248 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll
[2011-05-06 19:39:11 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2011-05-06 19:39:11 | 000,052,736 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll
[2011-05-06 19:39:11 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll
[2011-05-06 19:39:11 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll
[2011-05-06 19:39:11 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll
[2011-05-06 19:39:11 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll
[2011-05-06 19:39:11 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll
[2011-05-06 19:39:11 | 000,039,936 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2011-05-06 19:39:11 | 000,032,768 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2011-05-06 19:39:11 | 000,016,384 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2011-05-06 19:39:11 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll
[2011-05-06 19:39:11 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll
[2011-05-06 19:39:11 | 000,012,800 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll
[2011-05-06 18:33:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft WSE
[2011-05-06 16:55:00 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\storage
[2011-05-05 19:58:16 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\Ubisoft
[2011-05-05 16:39:43 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\Square Enix
[2011-05-05 16:39:08 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\119614890734658804
[2011-05-05 16:39:04 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\119611678099121396
[2011-05-05 16:21:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenAL
[2011-05-04 18:08:09 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Mozilla
[2011-05-04 17:49:00 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\PunkBuster
[2011-05-04 17:44:32 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011-05-04 17:30:13 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\.minecraft
[2011-05-04 16:06:55 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\GamersFirst LIVE!
[2011-05-04 16:06:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GamersFirst
[2011-05-04 16:06:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GamersFirst
[2011-05-02 21:12:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
[2011-04-30 13:14:45 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\WBGames
[2011-04-30 13:11:43 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\F.E.A.R. 2
[2011-04-30 11:24:52 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\Hitman Blood Money
[2011-04-30 11:24:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Trymedia
[2011-04-30 11:01:11 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\Call of Juarez - Bound in Blood
[2011-04-28 18:45:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Machinarium
[2011-04-27 18:42:08 | 000,000,000 | ---D | C] -- C:\Temp
[2011-04-27 18:41:55 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\Samsung
[2011-04-27 18:41:37 | 000,000,000 | ---D | C] -- C:\Users\PC\Documents\samsung
[2011-04-27 18:20:42 | 000,161,280 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ss_bmdm.sys
[2011-04-27 18:20:42 | 000,128,000 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ss_bserd.sys
[2011-04-27 18:20:42 | 000,018,944 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ss_bmdfl.sys
[2011-04-27 18:20:42 | 000,015,872 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ss_bwhnt.sys
[2011-04-27 18:20:42 | 000,015,872 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ss_bwh.sys
[2011-04-27 18:20:41 | 000,127,488 | ---- | C] (MCCI) -- C:\Windows\SysNative\drivers\ss_bbus.sys
[2011-04-27 18:20:41 | 000,015,360 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ss_bcmnt.sys
[2011-04-27 18:20:41 | 000,015,360 | ---- | C] (MCCI Corporation) -- C:\Windows\SysNative\drivers\ss_bcm.sys
[2011-04-27 18:20:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
[2011-04-27 18:19:59 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\Windows\SysWow64\Redemption.dll
[2011-04-27 18:19:51 | 000,821,824 | ---- | C] (Devguru Co., Ltd.) -- C:\Windows\SysWow64\dgderapi.dll
[2011-04-27 18:19:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MarkAny
[2011-04-27 18:19:15 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Roaming\Samsung
[2011-04-27 18:19:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung
[2011-04-27 18:19:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Samsung
[2011-04-27 18:18:06 | 000,000,000 | ---D | C] -- C:\Users\PC\AppData\Local\Downloaded Installations
[2011-04-27 18:15:03 | 077,557,544 | ---- | C] (Samsung Electronics Co., Ltd.                                ) -- C:\Users\PC\Desktop\Kies_2.0.0.11032_12_9.exe
[2011-04-25 17:28:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\StarCraft II
[2011-04-25 09:45:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2011-04-25 09:45:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment
[2011-04-23 09:15:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2011-04-23 09:15:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-05-18 19:40:11 | 000,001,590 | ---- | M] () -- C:\Users\Public\Desktop\Fable III.lnk
[2011-05-18 17:45:14 | 000,001,344 | ---- | M] () -- C:\Users\PC\Desktop\PC Inspector File Recovery.lnk
[2011-05-18 17:45:08 | 000,001,658 | ---- | M] () -- C:\Users\Public\Desktop\Recuva.lnk
[2011-05-18 16:14:59 | 000,013,760 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011-05-18 16:14:59 | 000,013,760 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011-05-18 16:08:00 | 000,000,002 | ---- | M] () -- C:\ProgramData\timerxfile
[2011-05-18 16:08:00 | 000,000,002 | ---- | M] () -- C:\ProgramData\datesavefile
[2011-05-18 16:08:00 | 000,000,001 | ---- | M] () -- C:\ProgramData\varsavefile
[2011-05-18 16:07:37 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-05-18 16:07:33 | 3220,504,576 | -HS- | M] () -- C:\hiberfil.sys
[2011-05-17 17:33:48 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\PC\Desktop\OTL.exe
[2011-05-16 21:11:19 | 000,000,475 | ---- | M] () -- C:\Users\Public\Desktop\Uruchom Wiedźmin 2.lnk
[2011-05-16 20:48:02 | 000,772,542 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011-05-16 20:48:02 | 000,647,954 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011-05-16 20:48:02 | 000,119,084 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011-05-16 20:41:14 | 000,566,784 | RHS- | M] (                                                                               ) -- C:\ProgramData\jushed.exe
[2011-05-16 20:41:14 | 000,347,136 | RHS- | M] (NirSoft) -- C:\ProgramData\nircmd.exe
[2011-05-16 20:41:14 | 000,004,768 | ---- | M] () -- C:\ProgramData\operaprefs.ini
[2011-05-16 18:53:57 | 000,418,504 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011-05-16 18:47:20 | 000,757,794 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011-05-16 16:58:13 | 000,000,771 | ---- | M] () -- C:\Users\PC\Desktop\Star Wars Galaxies.lnk
[2011-05-14 19:06:35 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011-05-14 09:05:07 | 000,000,737 | ---- | M] () -- C:\Users\Public\Desktop\Lost Horizon.lnk
[2011-05-13 21:56:42 | 000,000,789 | ---- | M] () -- C:\Users\PC\Desktop\Uruchom grę ArcaniA - Gothic 4.lnk
[2011-05-13 17:32:19 | 000,000,001 | ---- | M] () -- C:\Windows\SysWow64\SI.bin
[2011-05-13 17:26:14 | 000,000,120 | ---- | M] () -- C:\Windows\disney.ini
[2011-05-12 17:05:32 | 000,000,000 | ---- | M] () -- C:\Users\PC\__ng3d.lock
[2011-05-09 21:34:25 | 000,000,717 | ---- | M] () -- C:\Users\PC\Desktop\Forsaken World.lnk
[2011-05-09 21:01:15 | 000,258,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\unicows.dll
[2011-05-09 17:35:24 | 000,000,945 | ---- | M] () -- C:\Users\PC\Desktop\Shogun2.exe - Shortcut.lnk
[2011-05-07 10:20:27 | 000,001,293 | ---- | M] () -- C:\Users\PC\Desktop\TSM.exe - Shortcut.lnk
[2011-05-05 19:49:28 | 000,000,978 | ---- | M] () -- C:\Users\Public\Desktop\Tom Clancy's Splinter Cell Chaos Theory.lnk
[2011-05-05 16:21:55 | 000,466,456 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2011-05-05 16:21:55 | 000,444,952 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2011-05-05 16:21:55 | 000,122,904 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2011-05-05 16:21:55 | 000,109,080 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2011-05-04 17:49:06 | 000,281,200 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2011-05-04 17:49:06 | 000,281,200 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011-05-04 17:46:50 | 000,189,248 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2011-05-04 17:46:37 | 000,075,136 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011-05-04 16:06:43 | 000,001,128 | ---- | M] () -- C:\Users\Public\Desktop\GamersFirst LIVE!.lnk
[2011-04-30 11:01:04 | 000,001,242 | ---- | M] () -- C:\Users\PC\Desktop\CoJ2.lnk
[2011-04-27 18:22:19 | 000,001,953 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies.lnk
[2011-04-27 18:20:03 | 000,001,977 | ---- | M] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk
[2011-04-27 18:16:58 | 077,557,544 | ---- | M] (Samsung Electronics Co., Ltd.                                ) -- C:\Users\PC\Desktop\Kies_2.0.0.11032_12_9.exe
[2011-04-25 17:28:38 | 000,000,565 | ---- | M] () -- C:\Users\PC\AppData\Roaming\myMPQ.ini
[2011-04-23 09:17:24 | 000,000,989 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2011-04-23 08:44:21 | 000,000,861 | ---- | M] () -- C:\Users\Public\Desktop\Phoenix.lnk
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-05-18 19:40:11 | 000,001,590 | ---- | C] () -- C:\Users\Public\Desktop\Fable III.lnk
[2011-05-18 17:45:14 | 000,001,344 | ---- | C] () -- C:\Users\PC\Desktop\PC Inspector File Recovery.lnk
[2011-05-18 17:45:08 | 000,001,658 | ---- | C] () -- C:\Users\Public\Desktop\Recuva.lnk
[2011-05-16 21:11:19 | 000,000,475 | ---- | C] () -- C:\Users\Public\Desktop\Uruchom Wiedźmin 2.lnk
[2011-05-16 16:58:13 | 000,000,771 | ---- | C] () -- C:\Users\PC\Desktop\Star Wars Galaxies.lnk
[2011-05-16 16:58:13 | 000,000,771 | ---- | C] () -- C:\Users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Star Wars Galaxies.lnk
[2011-05-15 10:26:09 | 000,000,002 | ---- | C] () -- C:\ProgramData\timerxfile
[2011-05-15 10:26:09 | 000,000,002 | ---- | C] () -- C:\ProgramData\datesavefile
[2011-05-15 10:26:09 | 000,000,001 | ---- | C] () -- C:\ProgramData\varsavefile
[2011-05-15 10:26:07 | 000,004,768 | ---- | C] () -- C:\ProgramData\operaprefs.ini
[2011-05-14 09:05:07 | 000,000,737 | ---- | C] () -- C:\Users\Public\Desktop\Lost Horizon.lnk
[2011-05-13 21:56:42 | 000,000,789 | ---- | C] () -- C:\Users\PC\Desktop\Uruchom grę ArcaniA - Gothic 4.lnk
[2011-05-13 17:32:19 | 000,000,001 | ---- | C] () -- C:\Windows\SysWow64\SI.bin
[2011-05-13 16:35:24 | 000,000,120 | ---- | C] () -- C:\Windows\disney.ini
[2011-05-12 17:05:32 | 000,000,000 | ---- | C] () -- C:\Users\PC\__ng3d.lock
[2011-05-09 21:34:25 | 000,000,717 | ---- | C] () -- C:\Users\PC\Desktop\Forsaken World.lnk
[2011-05-09 17:35:24 | 000,000,945 | ---- | C] () -- C:\Users\PC\Desktop\Shogun2.exe - Shortcut.lnk
[2011-05-07 10:20:27 | 000,001,293 | ---- | C] () -- C:\Users\PC\Desktop\TSM.exe - Shortcut.lnk
[2011-05-06 19:39:12 | 000,916,704 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap
[2011-05-06 19:39:11 | 000,916,704 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap
[2011-05-06 19:39:11 | 000,233,012 | ---- | C] () -- C:\Windows\SysNative\atiicdxx.dat
[2011-05-06 19:39:11 | 000,156,408 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb
[2011-05-06 19:39:11 | 000,031,249 | ---- | C] () -- C:\Windows\atiogl.xml
[2011-05-06 19:39:11 | 000,003,949 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011-05-06 19:39:11 | 000,003,949 | ---- | C] () -- C:\Windows\SysNative\atipblag.dat
[2011-05-06 18:32:26 | 000,757,794 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011-05-05 19:49:28 | 000,000,978 | ---- | C] () -- C:\Users\Public\Desktop\Tom Clancy's Splinter Cell Chaos Theory.lnk
[2011-05-04 17:49:06 | 000,281,200 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2011-05-04 16:06:43 | 000,001,128 | ---- | C] () -- C:\Users\Public\Desktop\GamersFirst LIVE!.lnk
[2011-04-30 11:01:04 | 000,001,242 | ---- | C] () -- C:\Users\PC\Desktop\CoJ2.lnk
[2011-04-27 18:22:19 | 000,001,953 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies.lnk
[2011-04-27 18:20:03 | 000,001,977 | ---- | C] () -- C:\Users\PC\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk
[2011-04-25 17:28:32 | 000,000,565 | ---- | C] () -- C:\Users\PC\AppData\Roaming\myMPQ.ini
[2011-04-23 09:15:35 | 000,000,989 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2011-04-13 21:59:14 | 000,059,904 | ---- | C] () -- C:\Windows\SysWow64\OVDecode.dll
[2011-04-09 18:55:28 | 000,179,261 | ---- | C] () -- C:\Windows\SysWow64\xlive.dll.cat
[2011-03-26 08:49:15 | 000,000,268 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2011-03-19 10:55:51 | 000,000,060 | ---- | C] () -- C:\Windows\wininit.ini
[2011-03-18 21:15:44 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011-03-18 21:15:40 | 000,183,808 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011-03-18 21:15:40 | 000,080,896 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011-03-18 21:14:18 | 000,810,496 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011-03-18 21:14:17 | 000,258,048 | ---- | C] () -- C:\Windows\SysWow64\libFLAC.dll
[2011-03-17 17:25:45 | 000,281,200 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011-03-17 17:25:42 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011-03-08 14:41:06 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2011-03-08 14:41:04 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll
[2011-03-08 14:41:04 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll
[2011-03-08 14:41:04 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll
[2011-03-08 14:41:04 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll
[2011-03-05 07:52:36 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011-02-26 12:36:13 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011-02-26 12:20:15 | 000,146,432 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2011-02-26 12:20:15 | 000,072,704 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2009-07-14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009-07-14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009-07-14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009-07-13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009-06-10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-05-04 17:30:17 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\.minecraft
[2011-03-06 18:56:27 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Bioshock
[2011-03-05 08:32:48 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Bioshock2
[2011-02-26 14:37:02 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\DAEMON Tools Lite
[2011-05-16 18:26:43 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\ESET
[2011-03-07 09:37:37 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Gadu-Gadu
[2011-02-26 14:27:41 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Gadu-Gadu 10
[2011-05-09 21:01:37 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\GetRightToGo
[2011-05-07 11:03:48 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\gnupg
[2011-05-13 17:25:44 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Leadertech
[2011-05-18 19:49:59 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Lionhead Studios
[2011-04-13 16:06:59 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Mumble
[2011-03-17 17:25:42 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\PunkBuster
[2011-04-30 08:52:14 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\RIFT
[2011-04-27 18:19:15 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Samsung
[2011-02-26 14:18:19 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Softland
[2011-05-09 17:09:34 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\The Creative Assembly
[2011-05-13 17:06:06 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\Touchstone
[2011-02-28 20:18:50 | 000,000,000 | ---D | M] -- C:\Users\PC\AppData\Roaming\XRay Engine
[2011-05-01 19:02:44 | 000,032,612 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >