OTL logfile created on: 2011-12-03 17:22:00 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Daniel\Desktop 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 3,03 Gb Available Physical Memory | 75,68% Memory free 4,00 Gb Paging File | 2,96 Gb Available in Paging File | 74,11% Paging File free Paging file location(s): [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 97,56 Gb Total Space | 78,96 Gb Free Space | 80,94% Space Free | Partition Type: NTFS Drive D: | 465,76 Gb Total Space | 343,68 Gb Free Space | 73,79% Space Free | Partition Type: NTFS Drive E: | 833,86 Gb Total Space | 557,53 Gb Free Space | 66,86% Space Free | Partition Type: NTFS Computer Name: PC | User Name: Daniel | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-12-03 17:11:55 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Daniel\Desktop\OTL.exe PRC - [2011-11-24 05:59:00 | 002,348,864 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2011-10-19 16:56:36 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe PRC - [2011-10-19 16:56:24 | 000,258,512 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe PRC - [2011-10-19 16:56:24 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe PRC - [2011-03-07 14:33:08 | 000,089,456 | ---- | M] (Elaborate Bytes AG) -- D:\Programy\VirtualCloneDrive\VCDDaemon.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2011-10-07 18:47:16 | 002,663,568 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent) SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2011-11-24 05:59:00 | 002,348,864 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2011-10-19 16:56:36 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2011-10-19 16:56:24 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2010-03-18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009-07-13 00:08:04 | 000,024,168 | ---- | M] (The Within Network, LLC) [Disabled | Stopped] -- C:\Windows\UnsignedThemesSvc.exe -- (UnsignedThemes) SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2011-11-26 22:55:13 | 000,530,488 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2011-10-27 14:15:49 | 000,031,008 | ---- | M] () [File_System | System | Running] -- C:\Windows\SysNative\drivers\AmgHips.sys -- (AmgHips) DRV:[b]64bit:[/b] - [2011-10-19 16:56:50 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr) DRV:[b]64bit:[/b] - [2011-10-19 16:56:49 | 000,130,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb) DRV:[b]64bit:[/b] - [2011-10-19 16:56:49 | 000,097,312 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2011-01-15 17:21:04 | 000,036,352 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VClone.sys -- (VClone) DRV:[b]64bit:[/b] - [2010-12-16 23:58:14 | 000,040,816 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO) DRV:[b]64bit:[/b] - [2010-11-20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2010-11-20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-07-13 00:09:20 | 000,030,568 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\uxpatch.sys -- (uxpatch) DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2000-01-01 01:00:00 | 000,428,136 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2006-03-29 07:49:26 | 000,009,856 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\pfc.sys -- (pfc) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1545932926-3875304271-2734494944-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.pl/ IE - HKU\S-1-5-21-1545932926-3875304271-2734494944-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found O1 HOSTS File: ([2011-10-17 17:25:11 | 000,001,085 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 genuine.microsoft.com O1 - Hosts: 127.0.0.1 mpa.one.microsoft.com O1 - Hosts: 127.0.0.1 sls.microsoft.com O1 - Hosts: 127.0.0.1 serial.alcohol-soft.com O1 - Hosts: 127.0.0.1 www.alcohol-soft.com O1 - Hosts: 127.0.0.1 images.alcohol-soft.com O1 - Hosts: 127.0.0.1 trial.alcohol-soft.com O1 - Hosts: 127.0.0.1 alcohol-soft.com O2:[b]64bit:[/b] - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found. O4:[b]64bit:[/b] - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO) O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [VirtualCloneDrive] D:\Programy\VirtualCloneDrive\VCDDaemon.exe (Elaborate Bytes AG) O4 - HKU\S-1-5-19..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found O4 - HKU\S-1-5-20..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found O4 - HKU\S-1-5-21-1545932926-3875304271-2734494944-1003..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun File not found O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-21-1545932926-3875304271-2734494944-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Main present O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Main present O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Main present O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Main present O7 - HKU\S-1-5-21-1545932926-3875304271-2734494944-1000\Software\Policies\Microsoft\Internet Explorer\Main present O7 - HKU\S-1-5-21-1545932926-3875304271-2734494944-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKU\S-1-5-21-1545932926-3875304271-2734494944-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKU\S-1-5-21-1545932926-3875304271-2734494944-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1 O7 - HKU\S-1-5-21-1545932926-3875304271-2734494944-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRecentDocsNetHood = 1 O7 - HKU\S-1-5-21-1545932926-3875304271-2734494944-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableThumbnails = 1 O7 - HKU\S-1-5-21-1545932926-3875304271-2734494944-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoNotification = 1 O7 - HKU\S-1-5-21-1545932926-3875304271-2734494944-1003\Software\Policies\Microsoft\Internet Explorer\Main present O13[b]64bit:[/b] - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{243F2EA4-D521-430D-BAE6-893D20557D98}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{243F2EA4-D521-430D-BAE6-893D20557D98}: NameServer = 91.214.0.2 O18:[b]64bit:[/b] - Protocol\Handler\linkscanner - No CLSID value found O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll File not found O20:[b]64bit:[/b] - AppInit_DLLs: (C:\Windows\system32\guard64.dll) - C:\Windows\SysNative\guard64.dll (COMODO) O20 - AppInit_DLLs: (C:\Windows\SysWOW64\guard32.dll) -C:\Windows\SysWOW64\guard32.dll (COMODO) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) -C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2011-08-04 15:43:16 | 000,000,000 | RHSD | M] - E:\Autorun.inf -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /sync /restart) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-12-03 17:11:45 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Daniel\Desktop\OTL.exe [2011-12-01 21:59:24 | 008,197,280 | ---- | C] (Adobe Systems, Inc.) -- C:\Users\Daniel\Desktop\install_flash_player_11_active_x_64bit.exe [2011-11-30 23:08:03 | 000,000,000 | ---D | C] -- C:\Drivers [2011-11-30 23:07:43 | 002,802,664 | ---- | C] (Lenovo Group ) -- C:\Users\Daniel\Desktop\IN1PCH05WW5.exe [2011-11-30 22:00:17 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\64 [2011-11-30 21:24:05 | 025,432,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2011-11-30 21:24:05 | 019,348,800 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2011-11-30 21:24:05 | 007,677,248 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2011-11-30 21:24:04 | 025,137,472 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2011-11-30 21:24:04 | 017,498,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2011-11-30 21:24:04 | 017,474,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2011-11-30 21:24:04 | 007,974,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2011-11-30 21:24:04 | 005,868,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2011-11-30 21:24:04 | 002,660,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2011-11-30 21:24:04 | 002,506,048 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2011-11-30 21:24:04 | 002,374,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2011-11-30 21:24:04 | 002,206,016 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2011-11-30 21:24:04 | 002,095,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll [2011-11-30 21:24:04 | 000,068,928 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll [2011-11-30 21:24:04 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll [2011-11-30 21:22:55 | 000,000,000 | ---D | C] -- C:\NVIDIA [2011-11-30 21:02:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VIA Technologies, INC [2011-11-30 21:02:04 | 000,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe [2011-11-30 21:01:43 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\usb device [2011-11-30 20:47:06 | 204,763,832 | ---- | C] (NVIDIA Corporation) -- C:\Users\Daniel\Desktop\290.36-desktop-win7-winvista-64bit-international-beta.exe [2011-11-30 20:40:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes [2011-11-30 19:49:01 | 001,190,672 | ---- | C] (Driver Tool ) -- C:\Users\Daniel\Desktop\DriverTool.exe [2011-11-30 19:42:17 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\intel [2011-11-30 19:38:24 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unknown Device Identifier 7.00 [2011-11-30 19:38:03 | 000,971,455 | ---- | C] (Huntersoft ) -- C:\Users\Daniel\Desktop\UnknownDeviceIdentifier.exe [2011-11-30 17:49:36 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\zmiana obrazu logowania [2011-11-30 15:54:00 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\God Mode.{ED7BA470-8E54-465E-825C-99712043E01C} [2011-11-29 22:17:34 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\usb [2011-11-29 22:13:20 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\usb 2.0 [2011-11-28 14:39:17 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Media Player Classic [2011-11-27 19:47:30 | 002,943,768 | ---- | C] (Intel Corporation) -- C:\Users\Daniel\Desktop\inf_allos_9_2_2_1031_pv.exe [2011-11-27 19:02:53 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images [2011-11-27 17:21:18 | 002,643,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll.bak [2011-11-27 17:21:18 | 002,134,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll.bak [2011-11-27 17:21:18 | 001,307,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2adec.dll.bak [2011-11-27 17:21:17 | 000,970,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2adec.dll.bak [2011-11-27 17:20:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack [2011-11-27 17:03:06 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\BESTplayer [2011-11-27 16:57:17 | 001,093,632 | ---- | C] (Karol Winnicki) -- C:\Users\Daniel\Desktop\BESTplayer.exe [2011-11-26 22:57:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam [2011-11-26 22:52:23 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\DAEMON Tools Lite [2011-11-26 18:09:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SIW [2011-11-26 18:09:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SIW [2011-11-25 21:19:36 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\procesexplorer [2011-11-25 20:25:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera [2011-11-25 19:49:57 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM [2011-11-25 19:49:32 | 002,604,376 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll [2011-11-25 19:49:32 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll [2011-11-25 19:49:32 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll [2011-11-25 19:49:32 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll [2011-11-25 19:49:32 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll [2011-11-25 19:49:30 | 002,518,632 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll [2011-11-25 19:49:30 | 001,560,168 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl [2011-11-25 19:49:29 | 000,332,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll [2011-11-25 19:49:29 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll [2011-11-25 19:49:28 | 003,201,128 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll [2011-11-25 19:49:28 | 001,881,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll [2011-11-25 19:49:28 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll [2011-11-25 19:49:28 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll [2011-11-25 19:49:28 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll [2011-11-25 19:49:27 | 001,247,848 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll [2011-11-25 19:49:27 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll [2011-11-25 19:49:27 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll [2011-11-25 19:49:27 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll [2011-11-25 19:49:26 | 000,097,896 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInst64.dll [2011-11-25 19:49:24 | 000,886,360 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBAPO64.dll [2011-11-25 19:49:24 | 000,746,072 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysWow64\MBAPO32.dll [2011-11-25 19:49:24 | 000,080,984 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBWrp64.dll [2011-11-25 19:49:24 | 000,064,600 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBppld64.dll [2011-11-25 19:49:24 | 000,060,504 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\SysNative\MBPPCn64.dll [2011-11-25 19:49:23 | 002,132,824 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll [2011-11-25 19:49:23 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll [2011-11-25 19:49:20 | 002,085,440 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2011-11-25 19:49:19 | 000,200,800 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll [2011-11-25 19:49:19 | 000,108,960 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll [2011-11-25 19:20:19 | 000,428,136 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys [2011-11-25 19:19:19 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\SlimWare Utilities Inc [2011-11-25 19:15:59 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\My Drivers [2011-11-25 19:15:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Innovative Solutions [2011-11-25 19:15:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimDrivers [2011-11-25 19:14:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Downloaded Installers [2011-11-25 18:27:33 | 000,000,000 | ---D | C] -- C:\DownloadFF [2011-11-25 17:46:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2011-11-25 17:37:14 | 000,000,000 | ---D | C] -- C:\intellos [2011-11-25 17:21:05 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RadarSync [2011-11-24 23:14:18 | 000,000,000 | ---D | C] -- C:\INF_Win7-64_Win7(9.1.1.1020) [2011-11-24 22:52:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Szerokość menu Start [2011-11-24 22:52:43 | 000,000,000 | ---D | C] -- C:\Program Files\Start menu width [2011-11-24 21:34:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab [2011-11-24 21:34:33 | 000,000,000 | ---D | C] -- C:\Users\Daniel\SystemRequirementsLab [2011-11-24 21:23:06 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2011-11-24 21:23:06 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2011-11-24 21:23:06 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2011-11-24 21:22:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2011-11-24 20:32:44 | 000,000,000 | ---D | C] -- C:\P8BWS_Chipset [2011-11-24 20:30:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel [2011-11-24 19:25:41 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler [2011-11-24 18:54:26 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Easeware [2011-11-24 16:52:58 | 000,190,752 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe [2011-11-24 16:52:58 | 000,171,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe [2011-11-24 16:52:58 | 000,171,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe [2011-11-24 16:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2011-11-24 15:08:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZSoft [2011-11-23 22:58:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Comodo [2011-11-23 22:26:25 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Avira [2011-11-23 22:20:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira [2011-11-23 22:20:17 | 000,027,760 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avkmgr.sys [2011-11-23 22:20:16 | 000,130,760 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avipbb.sys [2011-11-23 22:20:16 | 000,097,312 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2011-11-23 22:20:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2011-11-23 22:20:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2011-11-23 22:14:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO [2011-11-23 22:13:44 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO [2011-11-23 21:28:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SRWare Iron [2011-11-23 21:13:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo [2011-11-23 21:12:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader [2011-11-20 19:21:58 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\Zdjęcia z Pielgrzymki [2011-11-19 22:29:57 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\sterowniki 2.0s [2011-11-19 17:48:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft [2011-11-18 21:57:54 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Wise Registry Cleaner [2011-11-18 21:57:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Wise Registry Cleaner [2011-11-18 21:52:51 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\Downloads [2011-11-13 17:33:32 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Blizzard Entertainment [2011-11-13 16:56:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Blizzard Entertainment [2011-11-13 16:55:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard [2011-11-13 15:25:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EssentialPIM [2011-11-13 15:05:29 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\EssentialPIM [2011-11-13 14:35:09 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\stickies [2011-11-13 14:15:51 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\ODUI [2011-11-13 14:15:35 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Stardock [2011-11-13 14:15:23 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\Stardock [2011-11-13 14:15:22 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\Stardock [2011-11-13 14:15:16 | 000,000,000 | -H-D | C] -- C:\ProgramData\{5486EA6B-AF91-4B4B-868E-F80AB4BCD83A} [2011-11-13 14:14:50 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\PackageAware [2011-11-12 22:21:04 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KoshyJohn.com [2011-11-12 22:21:03 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\KoshyJohn.com [2011-11-12 21:32:42 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files [2011-11-12 21:32:34 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\AVG [2011-11-12 21:32:02 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2012 [2011-11-12 21:32:02 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\AVG [2011-11-12 21:22:27 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData [2011-11-12 21:02:09 | 000,000,000 | ---D | C] -- C:\ProgramData\BitDefender [2011-11-12 21:02:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\BitDefender [2011-11-12 21:01:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BitDefender [2011-11-12 20:52:09 | 001,071,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSCOMCTL.OCX [2011-11-12 20:39:59 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP [2011-11-12 19:41:24 | 014,854,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll [2011-11-12 19:38:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MRU-Blaster [2011-11-12 19:28:58 | 000,507,960 | ---- | C] (Javacool Software LLC ) -- C:\Users\Daniel\Documents\mrublastersetup(dobreprogramy.pl).exe [2011-11-12 19:21:28 | 196,504,984 | ---- | C] (NVIDIA Corporation) -- C:\Users\Daniel\Documents\285.79-desktop-win7-winvista-64bit-international-beta.exe [2011-11-07 21:08:10 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Users\Daniel\Desktop\cmd.exe [2011-11-07 19:31:33 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\homebank [2011-11-07 19:31:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeBank [2011-11-06 16:44:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2011-11-06 16:44:39 | 000,025,416 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys [2011-11-06 16:38:18 | 009,852,544 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Daniel\Documents\mbam-setup-1.51.2.1300.exe [2011-11-06 16:03:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts [2011-11-06 15:51:25 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\Electronic Arts [2011-11-04 19:55:51 | 001,248,600 | ---- | C] (IObit) -- C:\Users\Daniel\Desktop\iobituninstaller.exe [2011-11-03 19:37:17 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe.Back [2011-11-03 18:59:24 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QNapi [2011-09-25 16:56:26 | 000,216,064 | ---- | C] ( ) -- C:\Windows\SysWow64\lagarith.dll [6 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-12-03 17:21:52 | 002,359,296 | -HS- | M] () -- C:\Users\Daniel\NTUSER.DAT [2011-12-03 17:12:17 | 000,076,863 | ---- | M] () -- C:\Users\Daniel\Desktop\otl3.png [2011-12-03 17:11:55 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Daniel\Desktop\OTL.exe [2011-12-03 17:11:28 | 000,215,040 | ---- | M] () -- C:\Users\Daniel\Desktop\net-log.exe [2011-12-03 16:48:47 | 001,498,760 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2011-12-03 16:48:47 | 000,674,540 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2011-12-03 16:48:47 | 000,591,614 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2011-12-03 16:48:47 | 000,135,338 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2011-12-03 16:48:47 | 000,104,250 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2011-12-03 16:42:15 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011-12-02 17:55:55 | 003,779,617 | -H-- | M] () -- C:\Users\Daniel\AppData\Local\IconCache.db [2011-12-02 17:15:55 | 000,000,000 | ---- | M] () -- C:\Users\Daniel\Desktop\ipconfig [2011-12-01 22:41:37 | 039,942,259 | ---- | M] () -- C:\Users\Daniel\Desktop\X17-24395.iso [2011-12-01 22:36:29 | 005,878,131 | ---- | M] () -- C:\Users\Daniel\Desktop\X17-24281.iso [2011-12-01 22:01:23 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011-12-01 22:01:22 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011-12-01 22:00:30 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2011-12-01 22:00:05 | 008,197,280 | ---- | M] (Adobe Systems, Inc.) -- C:\Users\Daniel\Desktop\install_flash_player_11_active_x_64bit.exe [2011-11-30 23:07:51 | 002,802,664 | ---- | M] (Lenovo Group ) -- C:\Users\Daniel\Desktop\IN1PCH05WW5.exe [2011-11-30 21:16:04 | 000,000,079 | ---- | M] () -- C:\Users\Daniel\Desktop\Huntersoft Free Download.url [2011-11-30 21:12:44 | 204,763,832 | ---- | M] (NVIDIA Corporation) -- C:\Users\Daniel\Desktop\290.36-desktop-win7-winvista-64bit-international-beta.exe [2011-11-30 20:40:43 | 000,000,212 | ---- | M] () -- C:\Windows\tasks\elbyExecuteWithUAC.job [2011-11-30 20:40:39 | 000,000,702 | ---- | M] () -- C:\Users\Public\Desktop\Virtual CloneDrive.lnk [2011-11-30 20:39:42 | 001,587,696 | ---- | M] () -- C:\Users\Daniel\Desktop\SetupVirtualCloneDrive5450.exe [2011-11-30 19:49:04 | 001,190,672 | ---- | M] (Driver Tool ) -- C:\Users\Daniel\Desktop\DriverTool.exe [2011-11-30 19:38:24 | 000,000,711 | ---- | M] () -- C:\Users\Daniel\Desktop\Unknown Device Identifier.lnk [2011-11-30 19:38:04 | 000,971,455 | ---- | M] (Huntersoft ) -- C:\Users\Daniel\Desktop\UnknownDeviceIdentifier.exe [2011-11-27 19:47:40 | 002,943,768 | ---- | M] (Intel Corporation) -- C:\Users\Daniel\Desktop\inf_allos_9_2_2_1031_pv.exe [2011-11-27 17:42:55 | 000,821,248 | ---- | M] () -- C:\Users\Daniel\Desktop\FreeISOBurner.exe [2011-11-27 16:57:17 | 001,093,632 | ---- | M] (Karol Winnicki) -- C:\Users\Daniel\Desktop\BESTplayer.exe [2011-11-27 16:52:32 | 1066,518,528 | ---- | M] () -- C:\Users\Daniel\Desktop\linuxmint-12-gnome-dvd-64bit.iso [2011-11-26 22:55:13 | 000,530,488 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys [2011-11-26 18:09:36 | 000,000,899 | ---- | M] () -- C:\Users\Daniel\Desktop\SIW.lnk [2011-11-26 12:11:19 | 001,473,962 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011-11-25 20:25:43 | 000,001,793 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk [2011-11-25 19:15:22 | 000,002,445 | ---- | M] () -- C:\Users\Public\Desktop\SlimDrivers.lnk [2011-11-25 17:21:05 | 000,000,662 | ---- | M] () -- C:\Users\Daniel\Desktop\RadarSync PC Updater.lnk [2011-11-24 22:52:45 | 000,000,898 | ---- | M] () -- C:\Users\Public\Desktop\Szerokość menu Start.lnk [2011-11-24 21:22:52 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2011-11-24 21:22:52 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2011-11-24 21:22:52 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2011-11-24 21:22:52 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2011-11-24 19:25:43 | 000,001,724 | ---- | M] () -- C:\Users\Public\Desktop\Defraggler.lnk [2011-11-24 18:54:16 | 000,000,352 | ---- | M] () -- C:\Windows\tasks\DriverEasy Scheduled Scan.job [2011-11-24 17:57:34 | 000,008,629 | ---- | M] () -- C:\Users\Daniel\Desktop\usługi.rtf [2011-11-24 16:52:51 | 000,525,544 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deployJava1.dll [2011-11-24 16:52:51 | 000,190,752 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe [2011-11-24 16:52:51 | 000,171,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe [2011-11-24 16:52:51 | 000,171,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe [2011-11-24 16:28:33 | 000,000,219 | ---- | M] () -- C:\Windows\system.ini [2011-11-24 05:59:00 | 025,432,384 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2011-11-24 05:59:00 | 025,137,472 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2011-11-24 05:59:00 | 019,348,800 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2011-11-24 05:59:00 | 017,498,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2011-11-24 05:59:00 | 017,474,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2011-11-24 05:59:00 | 014,854,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll [2011-11-24 05:59:00 | 009,622,848 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll [2011-11-24 05:59:00 | 007,974,208 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2011-11-24 05:59:00 | 007,677,248 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2011-11-24 05:59:00 | 005,868,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2011-11-24 05:59:00 | 002,660,160 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2011-11-24 05:59:00 | 002,506,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2011-11-24 05:59:00 | 002,403,136 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll [2011-11-24 05:59:00 | 002,374,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2011-11-24 05:59:00 | 002,206,016 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2011-11-24 05:59:00 | 002,095,424 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll [2011-11-24 05:59:00 | 001,726,272 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco64.dll [2011-11-24 05:59:00 | 001,466,176 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvgenco64.dll [2011-11-24 05:59:00 | 000,068,928 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll [2011-11-24 05:59:00 | 000,061,248 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll [2011-11-24 05:59:00 | 000,007,653 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb [2011-11-24 03:47:47 | 006,004,544 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll [2011-11-24 03:41:24 | 003,028,800 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll [2011-11-24 03:38:53 | 002,562,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll [2011-11-24 03:38:44 | 000,118,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll [2011-11-24 03:38:44 | 000,063,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll [2011-11-23 22:20:36 | 000,002,030 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2011-11-23 22:14:19 | 000,001,846 | ---- | M] () -- C:\Users\Public\Desktop\COMODO Firewall.lnk [2011-11-23 21:56:51 | 000,000,378 | ---- | M] () -- C:\Windows\tasks\CisPostUninstall.job [2011-11-23 21:40:31 | 000,000,705 | ---- | M] () -- C:\Users\Public\Desktop\World of Warcraft.lnk [2011-11-21 22:00:10 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2011-11-19 22:50:07 | 000,000,159 | RH-- | M] () -- C:\Windows\ctfile.rfc [2011-11-19 18:29:42 | 110,194,560 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm [2011-11-19 18:29:19 | 000,030,895 | ---- | M] () -- C:\Windows\SysNative\drivers\AVG\iavichjg.avm [2011-11-18 21:57:22 | 000,001,092 | ---- | M] () -- C:\Users\Public\Desktop\Wise Registry Cleaner.lnk [2011-11-12 22:21:06 | 000,001,946 | ---- | M] () -- C:\Users\Daniel\Desktop\DiskMax.lnk [2011-11-12 21:32:34 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\AVG\incavi.avm [2011-11-12 21:32:34 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\drivers\AVG\iavichjw.avm [2011-11-12 21:18:23 | 000,081,984 | ---- | M] () -- C:\Windows\SysNative\bdod.bin [2011-11-12 21:04:32 | 000,000,850 | ---- | M] () -- C:\Windows\SysNative\ProductTweaks.xml [2011-11-12 21:04:32 | 000,000,385 | ---- | M] () -- C:\Windows\SysNative\user_gensett.xml [2011-11-12 19:49:52 | 000,280,696 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2011-11-12 19:35:33 | 196,504,984 | ---- | M] (NVIDIA Corporation) -- C:\Users\Daniel\Documents\285.79-desktop-win7-winvista-64bit-international-beta.exe [2011-11-12 19:29:01 | 000,507,960 | ---- | M] (Javacool Software LLC ) -- C:\Users\Daniel\Documents\mrublastersetup(dobreprogramy.pl).exe [2011-11-12 19:28:30 | 000,557,291 | ---- | M] () -- C:\Users\Daniel\Documents\idblastersetup(dobreprogramy.pl).exe [2011-11-07 19:34:51 | 000,000,314 | ---- | M] () -- C:\Users\Daniel\untitled.xhb [2011-11-07 19:34:51 | 000,000,218 | ---- | M] () -- C:\Users\Daniel\.recently-used.xbel [2011-11-07 19:31:25 | 000,000,657 | ---- | M] () -- C:\Users\Public\Desktop\HomeBank.lnk [2011-11-06 16:39:52 | 009,852,544 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Daniel\Documents\mbam-setup-1.51.2.1300.exe [2011-11-06 16:03:59 | 000,000,833 | ---- | M] () -- C:\Users\Public\Desktop\The Sims™ 3.lnk [2011-11-04 22:01:15 | 240,595,362 | ---- | M] () -- C:\Users\Daniel\Documents\WoW_WotLK_Client.zip [2011-11-04 20:52:56 | 005,227,019 | ---- | M] () -- C:\Users\Daniel\Documents\namebench-1.3.1-Windows.exe [2011-11-03 19:37:17 | 002,871,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe [2011-11-03 19:02:15 | 000,000,550 | ---- | M] () -- C:\Users\Daniel\AppData\Roaming\qnapi.ini [6 C:\Windows\SysWow64\*.tmp files -> C:\Windows\SysWow64\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-12-03 17:12:17 | 000,076,863 | ---- | C] () -- C:\Users\Daniel\Desktop\otl3.png [2011-12-03 17:11:28 | 000,215,040 | ---- | C] () -- C:\Users\Daniel\Desktop\net-log.exe [2011-12-02 17:15:54 | 000,000,000 | ---- | C] () -- C:\Users\Daniel\Desktop\ipconfig [2011-12-01 22:37:18 | 039,942,259 | ---- | C] () -- C:\Users\Daniel\Desktop\X17-24395.iso [2011-12-01 22:36:06 | 005,878,131 | ---- | C] () -- C:\Users\Daniel\Desktop\X17-24281.iso [2011-11-30 20:40:43 | 000,000,212 | ---- | C] () -- C:\Windows\tasks\elbyExecuteWithUAC.job [2011-11-30 20:40:39 | 000,000,702 | ---- | C] () -- C:\Users\Public\Desktop\Virtual CloneDrive.lnk [2011-11-30 20:39:37 | 001,587,696 | ---- | C] () -- C:\Users\Daniel\Desktop\SetupVirtualCloneDrive5450.exe [2011-11-30 19:38:25 | 000,000,079 | ---- | C] () -- C:\Users\Daniel\Desktop\Huntersoft Free Download.url [2011-11-30 19:38:24 | 000,000,711 | ---- | C] () -- C:\Users\Daniel\Desktop\Unknown Device Identifier.lnk [2011-11-28 21:24:33 | 003,779,617 | -H-- | C] () -- C:\Users\Daniel\AppData\Local\IconCache.db [2011-11-27 17:42:35 | 000,821,248 | ---- | C] () -- C:\Users\Daniel\Desktop\FreeISOBurner.exe [2011-11-27 15:44:06 | 1066,518,528 | ---- | C] () -- C:\Users\Daniel\Desktop\linuxmint-12-gnome-dvd-64bit.iso [2011-11-26 18:09:36 | 000,000,899 | ---- | C] () -- C:\Users\Daniel\Desktop\SIW.lnk [2011-11-25 20:25:43 | 000,001,805 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk [2011-11-25 20:25:43 | 000,001,793 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk [2011-11-25 19:20:19 | 000,074,272 | ---- | C] () -- C:\Windows\SysNative\RtNicProp64.dll [2011-11-25 19:15:22 | 000,002,445 | ---- | C] () -- C:\Users\Public\Desktop\SlimDrivers.lnk [2011-11-25 17:48:22 | 001,473,962 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2011-11-25 17:21:05 | 000,000,662 | ---- | C] () -- C:\Users\Daniel\Desktop\RadarSync PC Updater.lnk [2011-11-24 22:52:45 | 000,000,898 | ---- | C] () -- C:\Users\Public\Desktop\Szerokość menu Start.lnk [2011-11-24 19:25:43 | 000,001,724 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk [2011-11-24 18:54:16 | 000,000,352 | ---- | C] () -- C:\Windows\tasks\DriverEasy Scheduled Scan.job [2011-11-24 17:54:35 | 000,008,629 | ---- | C] () -- C:\Users\Daniel\Desktop\usługi.rtf [2011-11-23 22:20:36 | 000,002,030 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2011-11-23 22:14:19 | 000,001,846 | ---- | C] () -- C:\Users\Public\Desktop\COMODO Firewall.lnk [2011-11-23 21:56:51 | 000,000,378 | ---- | C] () -- C:\Windows\tasks\CisPostUninstall.job [2011-11-19 18:29:42 | 110,194,560 | ---- | C] () -- C:\Windows\SysNative\drivers\AVG\incavi.avm [2011-11-19 18:29:19 | 000,030,895 | ---- | C] () -- C:\Windows\SysNative\drivers\AVG\iavichjg.avm [2011-11-19 16:51:03 | 000,000,705 | ---- | C] () -- C:\Users\Public\Desktop\World of Warcraft.lnk [2011-11-18 21:57:22 | 000,001,092 | ---- | C] () -- C:\Users\Public\Desktop\Wise Registry Cleaner.lnk [2011-11-12 22:21:06 | 000,001,946 | ---- | C] () -- C:\Users\Daniel\Desktop\DiskMax.lnk [2011-11-12 21:32:34 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\AVG\incavi.avm [2011-11-12 21:32:34 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\drivers\AVG\iavichjw.avm [2011-11-12 21:18:23 | 000,081,984 | ---- | C] () -- C:\Windows\SysNative\bdod.bin [2011-11-12 21:04:32 | 000,000,850 | ---- | C] () -- C:\Windows\SysNative\ProductTweaks.xml [2011-11-12 21:04:32 | 000,000,385 | ---- | C] () -- C:\Windows\SysNative\user_gensett.xml [2011-11-12 19:49:40 | 000,280,696 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT [2011-11-12 19:28:29 | 000,557,291 | ---- | C] () -- C:\Users\Daniel\Documents\idblastersetup(dobreprogramy.pl).exe [2011-11-07 19:34:51 | 000,000,314 | ---- | C] () -- C:\Users\Daniel\untitled.xhb [2011-11-07 19:34:51 | 000,000,218 | ---- | C] () -- C:\Users\Daniel\.recently-used.xbel [2011-11-07 19:31:25 | 000,000,657 | ---- | C] () -- C:\Users\Public\Desktop\HomeBank.lnk [2011-11-06 16:03:59 | 000,000,833 | ---- | C] () -- C:\Users\Public\Desktop\The Sims™ 3.lnk [2011-11-04 21:31:23 | 240,595,362 | ---- | C] () -- C:\Users\Daniel\Documents\WoW_WotLK_Client.zip [2011-11-04 20:52:42 | 005,227,019 | ---- | C] () -- C:\Users\Daniel\Documents\namebench-1.3.1-Windows.exe [2011-11-03 19:00:41 | 000,000,550 | ---- | C] () -- C:\Users\Daniel\AppData\Roaming\qnapi.ini [2011-10-02 22:07:27 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2011-09-29 11:49:06 | 000,002,048 | ---- | C] () -- C:\Windows\SysWow64\winver.exe [2011-09-27 14:39:24 | 004,122,624 | ---- | C] () -- C:\Windows\SysWow64\x264vfw.dll [2011-09-26 21:18:03 | 000,146,432 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL [2011-09-26 21:18:03 | 000,072,704 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL [2011-07-12 15:56:50 | 000,074,752 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2011-01-04 13:28:18 | 000,175,616 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2009-07-14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009-07-14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT [2009-07-14 03:35:42 | 000,001,405 | ---- | C] () -- C:\Windows\msdfmap.ini [2009-07-14 03:34:57 | 000,000,403 | ---- | C] () -- C:\Windows\win.ini [2009-07-14 03:34:57 | 000,000,219 | ---- | C] () -- C:\Windows\system.ini [2009-07-14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat [2009-07-14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009-07-14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009-07-13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2009-06-10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat [2007-04-27 09:43:58 | 000,120,200 | ---- | C] () -- C:\Windows\SysWow64\DLLDEV32i.dll [2007-02-05 16:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI [color=#E56717]========== LOP Check ==========[/color] [2011-11-27 17:03:16 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\BESTplayer [2011-11-27 19:07:58 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\DAEMON Tools Lite [2011-10-21 14:54:44 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Downloaded Installations [2011-11-24 18:54:26 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Easeware [2011-10-04 19:15:15 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\ESET [2011-12-02 17:15:23 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\EssentialPIM [2011-12-01 22:01:17 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\foobar2000 [2011-11-07 19:34:51 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\homebank [2011-10-13 17:29:53 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\IObit [2011-11-12 22:21:03 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\KoshyJohn.com [2011-11-25 20:25:49 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Opera [2011-11-13 14:15:35 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Stardock [2011-11-13 15:46:43 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\stickies [2011-10-21 16:19:08 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\SumatraPDF [2011-11-18 22:17:21 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Wise Registry Cleaner [2011-11-27 19:07:39 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\XnView [2011-11-23 21:56:51 | 000,000,378 | ---- | M] () -- C:\Windows\Tasks\CisPostUninstall.job [2011-11-24 18:54:16 | 000,000,352 | ---- | M] () -- C:\Windows\Tasks\DriverEasy Scheduled Scan.job [2011-11-30 20:40:43 | 000,000,212 | ---- | M] () -- C:\Windows\Tasks\elbyExecuteWithUAC.job [2011-11-02 20:44:20 | 000,032,592 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:C31F31E6 < End of report >