OTL logfile created on: 2011-05-25 17:25:31 - Run 2
OTL by OldTimer - Version 3.2.22.3     Folder = C:\Users\Liesmith\Desktop
 An unknown product  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 61,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 77,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 53,19 Gb Total Space | 22,15 Gb Free Space | 41,64% Space Free | Partition Type: NTFS
Drive D: | 412,57 Gb Total Space | 204,73 Gb Free Space | 49,62% Space Free | Partition Type: NTFS
Drive E: | 74,55 Gb Total Space | 45,00 Gb Free Space | 60,36% Space Free | Partition Type: NTFS
 
Computer Name: LIEFATHER | User Name: Liesmith | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-05-20 12:36:00 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Liesmith\Desktop\OTL.exe
PRC - [2011-05-18 01:56:12 | 000,566,784 | RHS- | M] (                                                                               ) -- C:\ProgramData\jushed.exe
PRC - [2011-04-20 04:04:36 | 000,393,216 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2011-04-20 04:04:06 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2011-04-14 18:59:13 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011-02-15 03:32:52 | 001,230,704 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2011-01-07 22:06:12 | 000,803,432 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2011-01-07 20:48:56 | 000,378,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2010-12-21 12:53:40 | 001,483,264 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
PRC - [2010-12-08 15:31:06 | 000,628,736 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2010-11-16 15:48:32 | 000,152,576 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2009-10-27 10:15:02 | 000,120,832 | ---- | M] (Nokia) -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2009-07-14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009-07-14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2007-09-02 13:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011-05-20 12:36:00 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Liesmith\Desktop\OTL.exe
MOD - [2009-07-14 03:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
MOD - [2007-09-02 13:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2011-05-14 16:57:11 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2011-04-20 04:04:06 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2011-01-07 20:48:56 | 000,378,984 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010-12-08 15:31:06 | 000,628,736 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009-07-14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2011-05-25 17:01:34 | 000,443,448 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2011-04-20 04:43:40 | 007,772,160 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2011-04-20 04:43:40 | 007,772,160 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2011-04-20 03:22:08 | 000,243,712 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2011-03-30 20:46:36 | 000,100,880 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2011-03-05 20:24:34 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2011-01-08 05:27:00 | 010,467,656 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010-07-30 15:16:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2010-07-30 15:16:44 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2010-07-30 15:16:42 | 000,023,040 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2010-07-30 15:16:38 | 000,018,048 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009-07-14 03:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009-07-14 03:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009-07-14 03:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009-07-14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009-07-14 01:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009-07-14 01:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009-07-14 00:02:52 | 000,043,008 | ---- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007-09-29 07:30:52 | 000,065,024 | ---- | M] (JMicron Technology Corp.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\jraid.sys -- (JRAID)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-3472702258-1565098801-265929518-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-3472702258-1565098801-265929518-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.736
FF - prefs.js..extensions.enabledItems: smartwebprinting@hp.com:4.51
FF - prefs.js..extensions.enabledItems: {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.1.94
FF - prefs.js..extensions.enabledItems: {6904342A-8307-11DF-A508-4AE2DFD72085}:2.1.1.94
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
 
FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-03-09 12:03:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2011-03-09 12:27:27 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011-03-19 01:26:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{6904342A-8307-11DF-A508-4AE2DFD72085}: C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011-03-19 01:26:14 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-05-14 03:38:33 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-05-14 03:38:33 | 000,000,000 | ---D | M]
 
[2011-03-05 20:15:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Liesmith\AppData\Roaming\mozilla\Extensions
[2011-03-09 22:51:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Liesmith\AppData\Roaming\mozilla\Firefox\Profiles\n8fjhptw.default\extensions
[2011-05-06 09:57:55 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011-04-27 15:11:15 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2011-05-06 09:57:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
File not found (No name found) -- 
[2011-04-14 18:59:14 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2011-02-02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-01-01 10:00:00 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-01 10:00:00 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-01-01 10:00:00 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-01-01 10:00:00 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-01-01 10:00:00 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-01-01 10:00:00 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2011-05-14 18:13:12 | 000,003,650 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1				activate.adobe.com
O1 - Hosts: 127.0.0.1				practivate.adobe.com
O1 - Hosts: 127.0.0.1				ereg.adobe.com
O1 - Hosts: 127.0.0.1				activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1				wip3.adobe.com
O1 - Hosts: 127.0.0.1				3dns-3.adobe.com
O1 - Hosts: 127.0.0.1				3dns-2.adobe.com
O1 - Hosts: 127.0.0.1				adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1				adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1				adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1				ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1				activate-sea.adobe.com
O1 - Hosts: 127.0.0.1				wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1				activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1                               adobe.activate.com
O1 - Hosts: 127.0.0.1                               adobeereg.com                        
O1 - Hosts: 127.0.0.1                               www.adobeereg.com                    
O1 - Hosts: 127.0.0.1                               wwis-dubc1-vip60.adobe.com           
O1 - Hosts: 127.0.0.1                               125.252.224.90                       
O1 - Hosts: 127.0.0.1                               125.252.224.91
O1 - Hosts: 127.0.0.1                               hl2rcv.adobe.com127.0.0.1				practivate.adobe.com
O1 - Hosts: 127.0.0.1				ereg.adobe.com
O1 - Hosts: 127.0.0.1				activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1				wip3.adobe.com
O1 - Hosts: 127.0.0.1				3dns-3.adobe.com
O1 - Hosts: 48 more lines...
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O2 - BHO: (DivX HiQ) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS5ServiceManager] C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
O4 - HKU\S-1-5-21-3472702258-1565098801-265929518-1000..\Run: [AdobeBridge]  File not found
O4 - HKU\S-1-5-21-3472702258-1565098801-265929518-1000..\Run: [jushed] C:\ProgramData\jushed.exe (                                                                               )
O4 - HKU\S-1-5-21-3472702258-1565098801-265929518-1000..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - HKU\S-1-5-21-3472702258-1565098801-265929518-1000..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Liesmith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupCPU.lnk = C:\Users\Liesmith\AppData\Roaming\FAH\CPU\StartupCPU.exe ()
O4 - Startup: C:\Users\Liesmith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupGPU.lnk = C:\Users\Liesmith\AppData\Roaming\FAH\GPU\StartupGPU.exe ()
O4 - Startup: C:\Users\Liesmith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VersionCheck.lnk = C:\Users\Liesmith\AppData\Roaming\FAH\VersionCheck.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8 - Extra context menu item: &Download by Arles Download Manager - C:\Users\Liesmith\AppData\Local\Ariel Download Manager\DownloadManager.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O29 - HKLM SecurityProviders - (msapsspc.dll) -  File not found
O29 - HKLM SecurityProviders - (digest.dll) -  File not found
O29 - HKLM SecurityProviders - (msnsspc.dll) -  File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-05-25 17:01:04 | 000,607,288 | ---- | C] (Duplex Secure Ltd.) -- C:\Users\Liesmith\Desktop\SPTDinst-v178-x86.exe
[2011-05-23 23:33:46 | 001,153,912 | ---- | C] (Emsi Software GmbH) -- C:\Users\Liesmith\Desktop\BlitzBlank.exe
[2011-05-23 22:38:59 | 000,000,000 | ---D | C] -- C:\_OTL
[2011-05-20 13:54:39 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Desktop\GM2
[2011-05-20 12:35:58 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Liesmith\Desktop\OTL.exe
[2011-05-19 19:50:51 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Roaming\ATI
[2011-05-19 19:50:51 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Local\ATI
[2011-05-19 19:50:51 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2011-05-19 19:49:03 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP
[2011-05-19 19:49:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2011-05-19 19:48:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2011-05-19 19:48:16 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2011-05-19 19:47:42 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2011-05-19 19:47:05 | 000,000,000 | ---D | C] -- C:\ATI
[2011-05-19 14:55:28 | 059,443,408 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Users\Liesmith\Desktop\11-5_vista32_win7_32_dd_ccc_ocl.exe
[2011-05-19 13:53:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher 2
[2011-05-19 13:35:47 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Documents\The Witcher 2
[2011-05-18 19:15:14 | 000,000,000 | ---D | C] -- C:\totalcmd
[2011-05-18 19:15:14 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
[2011-05-18 19:15:14 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Roaming\GHISLER
[2011-05-18 19:14:29 | 003,280,704 | ---- | C] (Ghisler Software GmbH) -- C:\Users\Liesmith\Desktop\tcmd756a.exe
[2011-05-18 17:23:42 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011-05-18 03:00:20 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Documents\Witcher 2
[2011-05-18 03:00:20 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Local\The Witcher 2
[2011-05-18 02:14:34 | 007,987,953 | ---- | C] (CCCP Project                                                ) -- C:\Users\Liesmith\AppData\Local\Codecs.exe
[2011-05-18 02:03:01 | 005,073,240 | ---- | C] (Microsoft Corporation) -- C:\Users\Liesmith\Desktop\vcredist_x86.exe
[2011-05-18 02:00:38 | 004,368,720 | ---- | C] (Microsoft Corporation) -- C:\Users\Liesmith\Desktop\mfc100u.dll
[2011-05-18 01:56:13 | 000,566,784 | RHS- | C] (                                                                               ) -- C:\ProgramData\jushed.exe
[2011-05-18 01:56:13 | 000,347,136 | RHS- | C] (NirSoft) -- C:\ProgramData\nircmd.exe
[2011-05-18 01:56:12 | 000,566,784 | ---- | C] (                                                                               ) -- C:\Users\Liesmith\AppData\Local\jushed.exe
[2011-05-18 01:56:12 | 000,347,136 | ---- | C] (NirSoft) -- C:\Users\Liesmith\AppData\Local\nircmd.exe
[2011-05-18 01:56:04 | 000,505,344 | ---- | C] (CD Projekt RED) -- C:\Users\Liesmith\Desktop\Launcher.exe
[2011-05-18 01:54:37 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Roaming\FAH
[2011-05-17 22:31:12 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011-05-17 15:13:26 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Desktop\Nowy folder (2)
[2011-05-17 14:38:44 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Desktop\ptp
[2011-05-17 02:04:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JDownloader
[2011-05-17 02:03:53 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader
[2011-05-17 02:02:53 | 030,157,280 | ---- | C] (AppWork UG (haftungsbeschränkt)) -- C:\Users\Liesmith\Desktop\JDownloaderSetup_0.9581(dobreprogramy.pl).exe.exe
[2011-05-17 01:02:57 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Desktop\GM
[2011-05-16 02:25:53 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011-05-16 02:25:53 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Roaming\Adobe Mini Bridge CS5
[2011-05-15 23:46:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Minnetonka Audio Software
[2011-05-14 20:41:22 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Local\Apple Computer
[2011-05-14 20:40:55 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Roaming\Apple Computer
[2011-05-14 20:40:03 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Desktop\qpa qpa qpa
[2011-05-14 18:26:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
[2011-05-14 18:26:49 | 000,000,000 | ---D | C] -- C:\Program Files\RocketDock
[2011-05-14 16:57:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
[2011-05-14 16:27:05 | 000,000,000 | ---D | C] -- C:\AdobeTemp
[2011-05-14 13:52:36 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Desktop\photo
[2011-05-14 05:04:25 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Application Data
[2011-05-14 03:38:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2011-05-14 03:38:16 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2011-05-14 03:38:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2011-05-14 03:37:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2011-05-14 03:37:38 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Local\Apple
[2011-05-14 03:37:35 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2011-05-14 03:37:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2011-05-08 21:25:17 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Desktop\ele
[2011-05-06 09:59:19 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011-05-06 09:57:54 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2011-05-06 09:57:54 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2011-05-06 09:57:54 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2011-05-05 14:22:27 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Local\Ariel Download Manager
[2011-04-27 17:16:21 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Local\SKIDROW
[2011-04-27 17:15:32 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Desktop\Crack 4
[2011-04-27 15:11:49 | 000,000,000 | ---D | C] -- C:\Windows\Sun
[2011-04-27 15:11:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2011-04-27 15:11:14 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2011-04-27 15:11:07 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2011-04-27 12:50:18 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\AppData\Local\2K Games
[2011-04-27 12:47:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2011-04-27 12:43:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\2K Games
[2011-04-27 03:59:46 | 000,000,000 | ---D | C] -- C:\Users\Liesmith\Desktop\Nowy folder
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-05-25 17:25:59 | 002,621,440 | -HS- | M] () -- C:\Users\Liesmith\NTUSER.DAT
[2011-05-25 17:10:17 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011-05-25 17:10:17 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011-05-25 17:07:20 | 001,523,412 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2011-05-25 17:07:20 | 000,687,590 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2011-05-25 17:07:20 | 000,606,992 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011-05-25 17:07:20 | 000,131,176 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2011-05-25 17:07:20 | 000,103,370 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011-05-25 17:05:56 | 000,302,080 | ---- | M] () -- C:\Users\Liesmith\Desktop\pb2y69xn.exe
[2011-05-25 17:03:25 | 000,000,002 | ---- | M] () -- C:\ProgramData\timerxfile
[2011-05-25 17:03:25 | 000,000,002 | ---- | M] () -- C:\ProgramData\datesavefile
[2011-05-25 17:03:25 | 000,000,001 | ---- | M] () -- C:\ProgramData\varsavefile
[2011-05-25 17:03:08 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2011-05-25 17:03:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-05-25 17:03:03 | 2414,731,264 | -HS- | M] () -- C:\hiberfil.sys
[2011-05-25 17:02:12 | 008,136,051 | -H-- | M] () -- C:\Users\Liesmith\AppData\Local\IconCache.db
[2011-05-25 17:01:34 | 000,443,448 | ---- | M] () -- C:\Windows\System32\drivers\sptd.sys
[2011-05-25 17:01:05 | 000,607,288 | ---- | M] (Duplex Secure Ltd.) -- C:\Users\Liesmith\Desktop\SPTDinst-v178-x86.exe
[2011-05-23 23:37:21 | 000,002,890 | ---- | M] () -- C:\Users\Liesmith\Desktop\FIX.REG
[2011-05-23 23:33:58 | 001,153,912 | ---- | M] (Emsi Software GmbH) -- C:\Users\Liesmith\Desktop\BlitzBlank.exe
[2011-05-22 03:08:33 | 000,000,219 | ---- | M] () -- C:\Windows\System32\lsprst7.tgz
[2011-05-22 03:08:33 | 000,000,205 | ---- | M] () -- C:\Windows\System32\lsprst7.dll
[2011-05-22 03:08:33 | 000,000,087 | ---- | M] () -- C:\Windows\System32\ssprs.tgz
[2011-05-22 03:08:33 | 000,000,073 | ---- | M] () -- C:\Windows\System32\ssprs.dll
[2011-05-22 03:08:33 | 000,000,021 | ---- | M] () -- C:\Windows\SurCode.INI
[2011-05-21 21:00:14 | 000,000,132 | ---- | M] () -- C:\Users\Liesmith\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011-05-20 22:28:26 | 000,212,764 | ---- | M] () -- C:\Users\Liesmith\Desktop\studio.png
[2011-05-20 13:54:45 | 005,449,628 | ---- | M] () -- C:\Users\Liesmith\Desktop\GM-v74.04.rar
[2011-05-20 12:36:00 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Liesmith\Desktop\OTL.exe
[2011-05-19 19:50:22 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2011-05-19 14:56:35 | 059,443,408 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Users\Liesmith\Desktop\11-5_vista32_win7_32_dd_ccc_ocl.exe
[2011-05-19 13:53:44 | 000,000,491 | ---- | M] () -- C:\Users\Public\Desktop\Start The Witcher 2.lnk
[2011-05-18 19:19:52 | 200,000,000 | ---- | M] () -- C:\sr-tw2a
[2011-05-18 19:17:32 | 000,140,286 | -H-- | M] () -- C:\treeinfo.wc
[2011-05-18 19:15:16 | 000,000,632 | ---- | M] () -- C:\Users\Liesmith\Desktop\Total Commander.lnk
[2011-05-18 19:14:44 | 003,280,704 | ---- | M] (Ghisler Software GmbH) -- C:\Users\Liesmith\Desktop\tcmd756a.exe
[2011-05-18 03:06:31 | 007,987,953 | ---- | M] (CCCP Project                                                ) -- C:\Users\Liesmith\AppData\Local\Codecs.exe
[2011-05-18 03:06:31 | 000,566,784 | ---- | M] (                                                                               ) -- C:\Users\Liesmith\AppData\Local\jushed.exe
[2011-05-18 03:06:31 | 000,347,136 | RHS- | M] (NirSoft) -- C:\ProgramData\nircmd.exe
[2011-05-18 03:06:31 | 000,347,136 | ---- | M] (NirSoft) -- C:\Users\Liesmith\AppData\Local\nircmd.exe
[2011-05-18 03:06:31 | 000,004,768 | ---- | M] () -- C:\Users\Liesmith\AppData\Local\operaprefs.ini
[2011-05-18 03:06:31 | 000,004,768 | ---- | M] () -- C:\ProgramData\operaprefs.ini
[2011-05-18 02:29:38 | 024,475,671 | ---- | M] () -- C:\Users\Liesmith\Desktop\Crackonly.rar
[2011-05-18 02:13:39 | 005,073,240 | ---- | M] (Microsoft Corporation) -- C:\Users\Liesmith\Desktop\vcredist_x86.exe
[2011-05-18 02:00:31 | 002,285,182 | ---- | M] () -- C:\Users\Liesmith\Desktop\mfc100u.zip
[2011-05-18 01:56:20 | 000,000,992 | -H-- | M] () -- C:\Users\Liesmith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupGPU.lnk
[2011-05-18 01:56:20 | 000,000,992 | -H-- | M] () -- C:\Users\Liesmith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupCPU.lnk
[2011-05-18 01:56:20 | 000,000,912 | -H-- | M] () -- C:\Users\Liesmith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VersionCheck.lnk
[2011-05-18 01:56:12 | 000,566,784 | RHS- | M] (                                                                               ) -- C:\ProgramData\jushed.exe
[2011-05-17 22:31:12 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2011-05-17 14:57:47 | 005,116,166 | ---- | M] () -- C:\Users\Liesmith\Desktop\GM.rar
[2011-05-17 13:56:47 | 040,494,173 | ---- | M] () -- C:\Users\Liesmith\Desktop\350029_PLK_i386_zip.exe
[2011-05-17 02:04:01 | 000,001,006 | ---- | M] () -- C:\Users\Public\Desktop\JDownloader.lnk
[2011-05-17 02:03:21 | 030,157,280 | ---- | M] (AppWork UG (haftungsbeschränkt)) -- C:\Users\Liesmith\Desktop\JDownloaderSetup_0.9581(dobreprogramy.pl).exe.exe
[2011-05-15 23:46:18 | 000,001,025 | ---- | M] () -- C:\Windows\System32\sysprs7.tgz
[2011-05-15 23:46:18 | 000,001,025 | ---- | M] () -- C:\Windows\System32\sysprs7.dll
[2011-05-15 23:46:18 | 000,001,025 | ---- | M] () -- C:\Windows\System32\clauth2.dll
[2011-05-15 23:46:18 | 000,001,025 | ---- | M] () -- C:\Windows\System32\clauth1.dll
[2011-05-15 23:17:35 | 003,777,816 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011-05-14 18:26:51 | 000,000,933 | ---- | M] () -- C:\Users\Liesmith\Desktop\RocketDock.lnk
[2011-05-14 17:09:15 | 000,112,376 | ---- | M] () -- C:\Users\Liesmith\AppData\Local\GDIPFONTCACHEV1.DAT
[2011-05-14 07:15:59 | 000,014,124 | ---- | M] () -- C:\Users\Liesmith\Desktop\ADOBE_ENCORE_CS5_TRAINING_DVD_[thethingy].5811229.TPB.torrent
[2011-05-14 03:38:25 | 000,001,815 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011-05-09 16:17:25 | 000,064,917 | ---- | M] () -- C:\Users\Liesmith\Desktop\Curriculum-Vitae2.pdf
[2011-05-09 16:14:00 | 000,064,767 | ---- | M] () -- C:\Users\Liesmith\Desktop\Curriculum-Vitae.pdf
[2011-05-08 22:51:13 | 000,509,285 | ---- | M] () -- C:\Users\Liesmith\Desktop\WzmOpPodstUkła.pdf
[2011-05-06 22:06:45 | 000,046,742 | ---- | M] () -- C:\Users\Liesmith\AppData\Roaming\room.dat
[2011-05-05 14:22:11 | 000,209,214 | ---- | M] () -- C:\Users\Liesmith\Desktop\Arles_Download_Manager1.8.7.1[www.instalki.pl].zip
[2011-05-03 09:29:32 | 000,001,096 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011-04-27 15:16:09 | 002,737,246 | ---- | M] () -- C:\Users\Liesmith\Desktop\Ella Fitzgerald - Lullaby Of Birdland.mp3
[2011-04-27 12:43:58 | 000,000,794 | ---- | M] () -- C:\Users\Public\Desktop\Mafia II.lnk
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-05-25 17:05:48 | 000,302,080 | ---- | C] () -- C:\Users\Liesmith\Desktop\pb2y69xn.exe
[2011-05-25 17:01:34 | 000,443,448 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2011-05-23 23:37:21 | 000,002,890 | ---- | C] () -- C:\Users\Liesmith\Desktop\FIX.REG
[2011-05-20 22:35:34 | 000,212,764 | ---- | C] () -- C:\Users\Liesmith\Desktop\studio.png
[2011-05-20 13:54:21 | 005,449,628 | ---- | C] () -- C:\Users\Liesmith\Desktop\GM-v74.04.rar
[2011-05-19 19:50:22 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011-05-19 13:53:44 | 000,000,491 | ---- | C] () -- C:\Users\Public\Desktop\Start The Witcher 2.lnk
[2011-05-18 19:19:28 | 200,000,000 | ---- | C] () -- C:\sr-tw2a
[2011-05-18 19:17:32 | 000,140,286 | -H-- | C] () -- C:\treeinfo.wc
[2011-05-18 19:15:16 | 000,000,632 | ---- | C] () -- C:\Users\Liesmith\Desktop\Total Commander.lnk
[2011-05-18 19:15:14 | 000,000,545 | ---- | C] () -- C:\Windows\UC.PIF
[2011-05-18 19:15:14 | 000,000,545 | ---- | C] () -- C:\Windows\RAR.PIF
[2011-05-18 19:15:14 | 000,000,545 | ---- | C] () -- C:\Windows\PKZIP.PIF
[2011-05-18 19:15:14 | 000,000,545 | ---- | C] () -- C:\Windows\PKUNZIP.PIF
[2011-05-18 19:15:14 | 000,000,545 | ---- | C] () -- C:\Windows\NOCLOSE.PIF
[2011-05-18 19:15:14 | 000,000,545 | ---- | C] () -- C:\Windows\LHA.PIF
[2011-05-18 19:15:14 | 000,000,545 | ---- | C] () -- C:\Windows\ARJ.PIF
[2011-05-18 02:28:07 | 024,475,671 | ---- | C] () -- C:\Users\Liesmith\Desktop\Crackonly.rar
[2011-05-18 02:00:26 | 002,285,182 | ---- | C] () -- C:\Users\Liesmith\Desktop\mfc100u.zip
[2011-05-18 01:56:20 | 000,000,992 | -H-- | C] () -- C:\Users\Liesmith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupGPU.lnk
[2011-05-18 01:56:20 | 000,000,992 | -H-- | C] () -- C:\Users\Liesmith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StartupCPU.lnk
[2011-05-18 01:56:20 | 000,000,912 | -H-- | C] () -- C:\Users\Liesmith\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VersionCheck.lnk
[2011-05-18 01:56:15 | 000,000,002 | ---- | C] () -- C:\ProgramData\timerxfile
[2011-05-18 01:56:15 | 000,000,002 | ---- | C] () -- C:\ProgramData\datesavefile
[2011-05-18 01:56:15 | 000,000,001 | ---- | C] () -- C:\ProgramData\varsavefile
[2011-05-18 01:56:13 | 000,004,768 | ---- | C] () -- C:\ProgramData\operaprefs.ini
[2011-05-18 01:56:12 | 000,004,768 | ---- | C] () -- C:\Users\Liesmith\AppData\Local\operaprefs.ini
[2011-05-18 01:47:51 | 001,108,832 | ---- | C] () -- C:\Users\Liesmith\Desktop\manual.pdf
[2011-05-17 13:54:13 | 040,494,173 | ---- | C] () -- C:\Users\Liesmith\Desktop\350029_PLK_i386_zip.exe
[2011-05-17 02:04:01 | 000,001,006 | ---- | C] () -- C:\Users\Public\Desktop\JDownloader.lnk
[2011-05-17 01:02:14 | 005,116,166 | ---- | C] () -- C:\Users\Liesmith\Desktop\GM.rar
[2011-05-15 23:46:18 | 000,001,025 | ---- | C] () -- C:\Windows\System32\sysprs7.tgz
[2011-05-15 23:46:18 | 000,001,025 | ---- | C] () -- C:\Windows\System32\sysprs7.dll
[2011-05-15 23:46:18 | 000,001,025 | ---- | C] () -- C:\Windows\System32\clauth2.dll
[2011-05-15 23:46:18 | 000,001,025 | ---- | C] () -- C:\Windows\System32\clauth1.dll
[2011-05-15 23:46:18 | 000,000,219 | ---- | C] () -- C:\Windows\System32\lsprst7.tgz
[2011-05-15 23:46:18 | 000,000,205 | ---- | C] () -- C:\Windows\System32\lsprst7.dll
[2011-05-15 23:46:18 | 000,000,087 | ---- | C] () -- C:\Windows\System32\ssprs.tgz
[2011-05-15 23:46:18 | 000,000,073 | ---- | C] () -- C:\Windows\System32\ssprs.dll
[2011-05-15 23:46:18 | 000,000,021 | ---- | C] () -- C:\Windows\SurCode.INI
[2011-05-14 19:09:02 | 000,000,132 | ---- | C] () -- C:\Users\Liesmith\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011-05-14 18:26:51 | 000,000,933 | ---- | C] () -- C:\Users\Liesmith\Desktop\RocketDock.lnk
[2011-05-14 18:12:45 | 000,000,990 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CS4.lnk
[2011-05-14 18:11:58 | 000,000,942 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Encore CS4.lnk
[2011-05-14 18:11:25 | 000,000,974 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe OnLocation CS4.lnk
[2011-05-14 17:00:33 | 000,001,191 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mocha for After Effects CS4.lnk
[2011-05-14 17:00:16 | 000,000,927 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS4.lnk
[2011-05-14 16:59:58 | 000,001,173 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CS4.lnk
[2011-05-14 16:59:40 | 000,002,285 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Pixel Bender Toolkit.lnk
[2011-05-14 16:58:58 | 000,000,990 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS4.lnk
[2011-05-14 16:58:06 | 000,001,047 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS4.lnk
[2011-05-14 16:57:57 | 000,001,365 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS4.lnk
[2011-05-14 07:15:58 | 000,014,124 | ---- | C] () -- C:\Users\Liesmith\Desktop\ADOBE_ENCORE_CS5_TRAINING_DVD_[thethingy].5811229.TPB.torrent
[2011-05-14 03:38:25 | 000,001,815 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2011-05-14 03:37:36 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2011-05-09 16:17:25 | 000,064,917 | ---- | C] () -- C:\Users\Liesmith\Desktop\Curriculum-Vitae2.pdf
[2011-05-09 16:14:00 | 000,064,767 | ---- | C] () -- C:\Users\Liesmith\Desktop\Curriculum-Vitae.pdf
[2011-05-08 22:51:12 | 000,509,285 | ---- | C] () -- C:\Users\Liesmith\Desktop\WzmOpPodstUkła.pdf
[2011-05-05 14:22:10 | 000,209,214 | ---- | C] () -- C:\Users\Liesmith\Desktop\Arles_Download_Manager1.8.7.1[www.instalki.pl].zip
[2011-05-03 09:29:32 | 000,001,108 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2011-05-03 09:29:32 | 000,001,096 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011-04-27 17:51:32 | 022,687,869 | ---- | C] () -- C:\Users\Liesmith\Desktop\Mafia_2_crack.rar
[2011-04-27 17:15:32 | 000,034,628 | ---- | C] () -- C:\Users\Liesmith\Desktop\elamigos.jpg
[2011-04-27 15:13:52 | 002,737,246 | ---- | C] () -- C:\Users\Liesmith\Desktop\Ella Fitzgerald - Lullaby Of Birdland.mp3
[2011-04-27 12:43:58 | 000,000,794 | ---- | C] () -- C:\Users\Public\Desktop\Mafia II.lnk
[2011-04-19 22:10:32 | 000,059,904 | ---- | C] () -- C:\Windows\System32\OVDecode.dll
[2011-04-06 13:38:49 | 000,000,193 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2011-03-22 13:59:32 | 000,046,742 | ---- | C] () -- C:\Users\Liesmith\AppData\Roaming\room.dat
[2011-03-17 19:51:44 | 000,003,929 | ---- | C] () -- C:\Windows\System32\atipblag.dat
[2011-03-14 21:46:57 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2011-03-14 21:46:56 | 000,810,496 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011-03-14 21:46:56 | 000,183,808 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011-03-14 21:46:56 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011-03-14 21:46:55 | 000,080,896 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2011-03-14 21:46:55 | 000,000,590 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2011-03-09 11:59:53 | 000,229,914 | ---- | C] () -- C:\Windows\hpoins19.dat
[2011-03-09 11:59:53 | 000,013,898 | ---- | C] () -- C:\Windows\hpomdl19.dat
[2011-03-06 12:44:32 | 000,112,376 | ---- | C] () -- C:\Users\Liesmith\AppData\Local\GDIPFONTCACHEV1.DAT
[2011-03-05 20:09:36 | 008,136,051 | -H-- | C] () -- C:\Users\Liesmith\AppData\Local\IconCache.db
[2011-03-05 20:08:25 | 001,523,412 | ---- | C] () -- C:\Windows\System32\PerfStringBackup.INI
[2011-03-05 20:08:13 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2011-02-28 23:30:06 | 000,233,012 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2009-07-14 10:07:57 | 000,687,590 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2009-07-14 10:07:57 | 000,337,158 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2009-07-14 10:07:57 | 000,131,176 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2009-07-14 10:07:57 | 000,038,710 | ---- | C] () -- C:\Windows\System32\perfd015.dat
[2009-07-14 06:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-14 06:33:53 | 003,777,816 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009-07-14 04:05:48 | 000,606,992 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009-07-14 04:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009-07-14 04:05:48 | 000,103,370 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009-07-14 04:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009-07-14 04:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009-07-14 04:04:57 | 000,001,405 | ---- | C] () -- C:\Windows\msdfmap.ini
[2009-07-14 04:04:23 | 000,000,513 | ---- | C] () -- C:\Windows\win.ini
[2009-07-14 04:04:23 | 000,000,219 | ---- | C] () -- C:\Windows\system.ini
[2009-07-14 04:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009-07-14 02:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009-07-14 01:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009-07-13 23:41:56 | 000,053,552 | ---- | C] () -- C:\Windows\System32\dosx.exe
[2009-07-13 23:41:05 | 000,000,718 | ---- | C] () -- C:\Windows\System32\mscdexnt.exe
[2009-07-13 23:41:04 | 000,002,842 | ---- | C] () -- C:\Windows\System32\redir.exe
[2009-07-13 23:41:02 | 000,000,882 | ---- | C] () -- C:\Windows\System32\share.exe
[2009-07-13 23:41:02 | 000,000,882 | ---- | C] () -- C:\Windows\System32\fastopen.exe
[2009-07-13 23:41:01 | 000,019,694 | ---- | C] () -- C:\Windows\System32\GRAPHICS.COM
[2009-07-13 23:40:59 | 000,014,710 | ---- | C] () -- C:\Windows\System32\KB16.COM
[2009-07-13 23:40:57 | 000,007,052 | ---- | C] () -- C:\Windows\System32\nlsfunc.exe
[2009-07-13 23:40:57 | 000,001,131 | ---- | C] () -- C:\Windows\System32\LOADFIX.COM
[2009-07-13 23:40:56 | 000,039,274 | ---- | C] () -- C:\Windows\System32\mem.exe
[2009-07-13 23:40:54 | 000,011,753 | ---- | C] () -- C:\Windows\System32\setver.exe
[2009-07-13 23:40:52 | 000,020,634 | ---- | C] () -- C:\Windows\System32\debug.exe
[2009-07-13 23:40:51 | 000,008,424 | ---- | C] () -- C:\Windows\System32\exe2bin.exe
[2009-07-13 23:40:50 | 000,012,642 | ---- | C] () -- C:\Windows\System32\edlin.exe
[2009-07-13 23:40:49 | 000,012,498 | ---- | C] () -- C:\Windows\System32\append.exe
[2009-07-13 23:40:48 | 000,050,648 | ---- | C] () -- C:\Windows\System32\COMMAND.COM
[2009-07-13 23:40:44 | 000,027,097 | ---- | C] () -- C:\Windows\System32\country.sys
[2009-07-13 23:40:43 | 000,042,809 | ---- | C] () -- C:\Windows\System32\KEY01.SYS
[2009-07-13 23:40:43 | 000,042,537 | ---- | C] () -- C:\Windows\System32\KEYBOARD.SYS
[2009-07-13 23:40:41 | 000,009,029 | ---- | C] () -- C:\Windows\System32\ANSI.SYS
[2009-07-13 23:40:40 | 000,004,768 | ---- | C] () -- C:\Windows\System32\HIMEM.SYS
[2009-07-13 23:40:39 | 000,029,274 | ---- | C] () -- C:\Windows\System32\NTDOS412.SYS
[2009-07-13 23:40:35 | 000,029,370 | ---- | C] () -- C:\Windows\System32\NTDOS411.SYS
[2009-07-13 23:40:31 | 000,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS404.SYS
[2009-07-13 23:40:27 | 000,029,146 | ---- | C] () -- C:\Windows\System32\NTDOS804.SYS
[2009-07-13 23:40:23 | 000,027,866 | ---- | C] () -- C:\Windows\System32\NTDOS.SYS
[2009-07-13 23:40:19 | 000,035,536 | ---- | C] () -- C:\Windows\System32\NTIO412.SYS
[2009-07-13 23:40:17 | 000,035,776 | ---- | C] () -- C:\Windows\System32\NTIO411.SYS
[2009-07-13 23:40:15 | 000,034,672 | ---- | C] () -- C:\Windows\System32\NTIO404.SYS
[2009-07-13 23:40:13 | 000,034,672 | ---- | C] () -- C:\Windows\System32\NTIO804.SYS
[2009-07-13 23:40:11 | 000,033,952 | ---- | C] () -- C:\Windows\System32\NTIO.SYS
[2009-07-13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\System32\msjetoledb40.dll
[2009-07-13 22:29:46 | 000,013,312 | ---- | C] () -- C:\Windows\System32\win87em.dll
[2009-06-10 23:42:32 | 000,069,886 | ---- | C] () -- C:\Windows\System32\edit.com
[2009-06-10 23:39:59 | 000,060,124 | ---- | C] () -- C:\Windows\System32\tcpmon.ini
[2009-06-10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2007-06-21 08:34:08 | 000,203,328 | R--- | C] () -- C:\Windows\GSetup.exe
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-05-18 17:23:42 | 000,000,000 | ---D | M] -- C:\Users\Liesmith\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2011-04-04 01:30:18 | 000,000,000 | ---D | M] -- C:\Users\Liesmith\AppData\Roaming\DAEMON Tools Lite
[2011-05-18 01:56:20 | 000,000,000 | ---D | M] -- C:\Users\Liesmith\AppData\Roaming\FAH
[2011-05-18 19:15:14 | 000,000,000 | ---D | M] -- C:\Users\Liesmith\AppData\Roaming\GHISLER
[2011-03-09 12:27:55 | 000,000,000 | ---D | M] -- C:\Users\Liesmith\AppData\Roaming\Nokia
[2011-03-18 16:16:37 | 000,000,000 | ---D | M] -- C:\Users\Liesmith\AppData\Roaming\Opera
[2011-03-09 12:22:03 | 000,000,000 | ---D | M] -- C:\Users\Liesmith\AppData\Roaming\PC Suite
[2011-05-16 02:25:53 | 000,000,000 | ---D | M] -- C:\Users\Liesmith\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011-05-19 10:30:13 | 000,000,000 | ---D | M] -- C:\Users\Liesmith\AppData\Roaming\uTorrent
[2011-05-06 19:32:18 | 000,032,590 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2011-05-18 02:43:26 | 000,001,179 | ---- | M] ()(C:\Users\Liesmith\Desktop\??????? 2. ?????? ???????.lnk) -- C:\Users\Liesmith\Desktop\Ведьмак 2. Убийцы королей.lnk
[2011-05-18 01:38:40 | 000,001,179 | ---- | C] ()(C:\Users\Liesmith\Desktop\??????? 2. ?????? ???????.lnk) -- C:\Users\Liesmith\Desktop\Ведьмак 2. Убийцы королей.lnk
[2011-05-18 01:38:40 | 000,000,000 | ---D | C](C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1C-????????) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1C-СофтКлаб

< End of report >