OTL logfile created on: 24/05/2012 10:28:13 - Run 4
OTL by OldTimer - Version 3.2.43.1     Folder = C:\Users\grajur\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
 
3,00 Gb Total Physical Memory | 1,55 Gb Available Physical Memory | 51,59% Memory free
6,20 Gb Paging File | 4,39 Gb Available in Paging File | 70,82% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 582,17 Gb Total Space | 446,53 Gb Free Space | 76,70% Space Free | Partition Type: NTFS
 
Computer Name: PC-DE-GRAJUR | User Name: grajur | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012/05/24 10:26:57 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\grajur\Downloads\OTL.exe
PRC - [2012/05/23 21:05:31 | 000,183,096 | ---- | M] (Microsoft Corporation) -- C:\Users\grajur\AppData\Roaming\Microsoft\Outil de notification de cadeaux MSN\msnotif.exe
PRC - [2012/04/21 03:16:21 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/04/19 05:57:44 | 000,336,952 | ---- | M] (Power Software Ltd) -- C:\Program Files\PowerISO\PWRISOVM.EXE
PRC - [2011/09/10 18:46:33 | 000,347,008 | ---- | M] (EasyBits Software AS) -- C:\ProgramData\GameXN\GameXNGO.exe
PRC - [2011/05/21 06:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/05/21 06:01:00 | 000,839,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2011/05/21 06:01:00 | 000,373,864 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2011/04/25 00:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
PRC - [2011/04/25 00:12:42 | 000,131,472 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\klwtblfs.exe
PRC - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2009/11/05 21:03:35 | 000,198,160 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
PRC - [2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/07/07 15:37:08 | 000,337,344 | ---- | M] (Carbonite, Inc.) -- C:\Program Files\Packard Bell\Carbonite\CarboniteSetupLitePBPreInstaller.exe
PRC - [2008/06/11 14:28:54 | 000,741,376 | ---- | M] () -- C:\Program Files\Philips\CamSuite\1.0.9.0\ACPService.exe
PRC - [2008/06/11 14:28:24 | 000,815,104 | ---- | M] () -- C:\Program Files\Philips\CamSuite\1.0.9.0\ACPGUI.dll
PRC - [2008/04/24 17:25:52 | 006,111,232 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2008/03/19 17:51:00 | 000,684,032 | ---- | M] (Sonix) -- C:\Windows\vspc1330.exe
PRC - [2008/01/21 04:23:43 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wermgr.exe
PRC - [2008/01/21 04:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007/06/29 00:02:08 | 001,049,856 | ---- | M] (O&O Software GmbH) -- C:\Windows\System32\oodag.exe
PRC - [2007/06/29 00:01:00 | 002,512,128 | ---- | M] (O&O Software GmbH) -- C:\Windows\System32\oodtray.exe
PRC - [2007/05/04 10:39:28 | 000,910,896 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
PRC - [2007/05/04 10:39:12 | 000,149,040 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
PRC - [2007/04/27 01:54:56 | 000,321,048 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDPOP3.exe
PRC - [2007/04/27 01:54:30 | 000,774,168 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\Logitech\LCD Manager\LCDMon.exe
PRC - [2007/04/27 01:54:18 | 000,374,296 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDMedia.exe
PRC - [2007/04/27 01:53:48 | 000,388,120 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDCountdown.exe
PRC - [2007/04/27 01:53:24 | 000,203,288 | ---- | M] (Logitech Inc.) -- C:\Program Files\Common Files\Logitech\LCD Manager\Applets\LCDClock.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012/05/15 21:44:39 | 008,797,856 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_2_202_235.dll
MOD - [2012/04/21 03:16:53 | 001,952,696 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011/04/25 00:13:30 | 007,008,656 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\QtGui4.dll
MOD - [2011/04/25 00:13:28 | 000,192,912 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\QtSql4.dll
MOD - [2011/04/25 00:13:26 | 001,270,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\QtScript4.dll
MOD - [2011/04/25 00:13:26 | 000,758,160 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\QtNetwork4.dll
MOD - [2011/04/25 00:13:24 | 002,118,032 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\QtCore4.dll
MOD - [2011/04/25 00:13:24 | 002,089,360 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\QtDeclarative4.dll
MOD - [2011/04/20 20:56:28 | 000,025,088 | ---- | M] () -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\imageformats\qgif4.dll
MOD - [2009/06/03 00:04:39 | 000,014,384 | ---- | M] () -- C:\Windows\linkinfo.dll
MOD - [2008/06/11 14:29:16 | 000,270,336 | ---- | M] () -- C:\PROGRAM FILES\PHILIPS\CAMSUITE\1.0.9.0\Resources.dll
MOD - [2008/06/11 14:28:40 | 000,884,736 | ---- | M] () -- C:\Program Files\Philips\CamSuite\1.0.9.0\ACPPlugins.dll
MOD - [2008/06/11 14:28:24 | 000,815,104 | ---- | M] () -- C:\Program Files\Philips\CamSuite\1.0.9.0\ACPGUI.dll
MOD - [2008/06/11 14:26:44 | 000,471,040 | ---- | M] () -- C:\Program Files\Philips\CamSuite\1.0.9.0\ACP_Lib.dll
MOD - [2008/06/11 14:26:12 | 000,167,936 | ---- | M] () -- C:\Program Files\Philips\CamSuite\1.0.9.0\ACPSharedTypes.dll
MOD - [2008/06/11 14:26:04 | 000,319,488 | ---- | M] () -- C:\Program Files\Philips\CamSuite\1.0.9.0\Common.dll
MOD - [2007/02/16 17:40:42 | 005,521,408 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll
MOD - [2007/02/16 17:40:40 | 001,466,368 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2012/05/15 21:44:39 | 000,257,696 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/04/21 03:16:42 | 000,129,976 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2011/05/21 06:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/04/25 00:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe -- (AVP)
SRV - [2010/03/18 11:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2008/11/21 09:40:09 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2008/06/11 14:28:54 | 000,741,376 | ---- | M] () [Auto | Running] -- C:\Program Files\Philips\CamSuite\1.0.9.0\ACPService.exe -- (ACPService)
SRV - [2008/02/03 13:00:00 | 000,129,992 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\System32\ezsvc7.dll -- (ezSharedSvc)
SRV - [2008/01/21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2007/06/29 00:02:08 | 001,049,856 | ---- | M] (O&O Software GmbH) [Auto | Running] -- C:\Windows\System32\oodag.exe -- (O&O Defrag)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Unknown] --  -- (a5k75yoe)
DRV - [2012/04/19 05:57:38 | 000,113,072 | ---- | M] (Power Software Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2011/05/21 06:01:00 | 010,589,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2011/04/20 15:50:14 | 000,570,160 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\System32\drivers\klif.sys -- (KLIF)
DRV - [2011/03/10 19:36:18 | 000,023,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6)
DRV - [2011/03/04 14:23:20 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kl2.sys -- (kl2)
DRV - [2011/03/04 14:23:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\kl1.sys -- (kl1)
DRV - [2010/01/05 03:39:40 | 003,002,240 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\spc1330.sys -- (SPC1330) USB2.0 PC Camera (SPC1330)
DRV - [2009/11/02 21:27:16 | 000,019,984 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\klmouflt.sys -- (klmouflt)
DRV - [2009/10/21 02:20:34 | 000,089,648 | ---- | M] (Philips Applied Technologies) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\phaudlwr.sys -- (phaudlwr)
DRV - [2009/05/26 12:02:34 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2008/11/11 13:42:00 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2008/11/11 13:41:00 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2008/11/11 13:41:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2008/08/26 09:57:28 | 000,140,832 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\nvstor32.sys -- (nvstor32)
DRV - [2007/11/17 20:39:50 | 001,040,544 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2007/09/11 15:19:20 | 000,123,424 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\nvrd32.sys -- (nvrd32)
DRV - [2007/07/07 15:13:10 | 000,012,032 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\nvsmu.sys -- (nvsmu)
DRV - [2005/08/30 03:47:38 | 000,058,320 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssm_bus.sys -- (ssm_bus) SAMSUNG Mobile USB Device II 1.0 driver (WDM)
DRV - [2005/08/17 07:46:26 | 000,093,872 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdm.sys -- (sscdmdm)
DRV - [2005/08/17 07:46:20 | 000,008,272 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV - [2005/08/17 07:45:00 | 000,058,352 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sscdbus.sys -- (sscdbus) SAMSUNG USB Composite Device driver (WDM)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = 
IE - HKLM\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://home.microsoft.com/access/allinone.asp
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?PC=TIE9
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\..\URLSearchHook: {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - No CLSID value found
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\..\SearchScopes,DefaultScope = {CE9C53E3-CF67-4DEA-90A7-50CB00732A5C}
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\..\SearchScopes\{0633EE93-1111-472f-A0FF-E1416B8B2EAA}: "URL" = http://www.pucuy.com/google?q={searchTerms}&sa=Search&cx=partner-pub-3546861938806019:fn51rv5o9ne&cof=FORID%3A10&ie=UTF-8&hl=fr
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\..\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}: "URL" = http://127.0.0.1:4664/search&s=q0cO2vKKSgf3O65Xjxh3157hxQM?q={searchTerms}
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\..\SearchScopes\{9D5BD211-422C-4164-9298-BB4186A30F31}: "URL" = http://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MKTIE9
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\..\SearchScopes\{CE9C53E3-CF67-4DEA-90A7-50CB00732A5C}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLL_fr
IE - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.449: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.3.448: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=:  File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.19: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\linkfilter@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\linkfilter@kaspersky.ru [2012/05/03 16:48:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru [2012/05/03 16:48:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\KavAntiBanner@Kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\KavAntiBanner@Kaspersky.ru [2012/05/03 16:48:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/05/23 20:54:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/05/15 21:41:20 | 000,000,000 | ---D | M]
 
[2009/05/21 18:39:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\grajur\AppData\Roaming\mozilla\Extensions
[2012/05/17 10:31:34 | 000,000,000 | ---D | M] (No name found) -- C:\Users\grajur\AppData\Roaming\mozilla\Firefox\Profiles\9baiuy7z.default\extensions
[2012/05/17 10:31:34 | 000,000,000 | ---D | M] (WOT) -- C:\Users\grajur\AppData\Roaming\mozilla\Firefox\Profiles\9baiuy7z.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2012/05/23 20:54:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2012/04/21 03:18:00 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/11/10 06:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012/04/21 04:18:44 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012/04/21 04:18:44 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012/04/21 04:18:44 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2010/08/03 08:50:08 | 000,000,615 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pucuy.xml
[2012/04/21 04:18:44 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012/04/21 04:18:44 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012/04/21 04:18:44 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.56\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U30 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit)  (Enabled) = C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Analyse des liens (URL Advisor) = C:\Users\grajur\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\12.0.0.462_0\
CHR - Extension: Clavier virtuel = C:\Users\grajur\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\12.0.0.374_0\
CHR - Extension: Kaspersky Anti-banni\u00E8re = C:\Users\grajur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\12.0.0.374_0\
 
O1 HOSTS File: ([2006/09/18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (Aide pour le lien d'Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Outil d'Amélioration d'Internet Explorer) - {7D5E43F1-ED9C-4F03-9B55-2AFB6EA21DB4} - C:\Users\grajur\AppData\Roaming\Microsoft\Outil d'Amélioration d'Internet Explorer\iemp32.dll (Microsoft Corporation)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (Reg Error: Value error.) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - Reg Error: Value error. File not found
O3 - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\..\Toolbar\WebBrowser: (no name) - {05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} - No CLSID value found.
O3 - HKU\S-1-5-21-467254925-1194682291-1123341809-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [CarboniteSetupLite] C:\Program Files\Packard Bell\Carbonite\CarboniteSetupLitePBPreInstaller.exe (Carbonite, Inc.)
O4 - HKLM..\Run: [Google Quick Search Box] C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe (Google Inc.)
O4 - HKLM..\Run: [Launch LCDMon] C:\Program Files\Common Files\Logitech\LCD Manager\LCDMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [Onet.pl AutoUpdate] C:\Program Files\Common Files\Onet.pl\AutoUpdate.exe (Onet.pl)
O4 - HKLM..\Run: [OODefragTray] C:\Windows\System32\oodtray.exe (O&O Software GmbH)
O4 - HKLM..\Run: [PLF1330] C:\Windows\PLF1330.exe (sonix)
O4 - HKLM..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE (Power Software Ltd)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SPC1330] C:\Windows\vspc1330.exe (Sonix)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-467254925-1194682291-1123341809-1000..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKU\S-1-5-21-467254925-1194682291-1123341809-1000..\Run: [GameXN] C:\ProgramData\GameXN\GameXNGO.exe (EasyBits Software AS)
O4 - HKU\S-1-5-21-467254925-1194682291-1123341809-1000..\Run: [GameXN (news)] C:\ProgramData\GameXN\GameXNGO.exe (EasyBits Software AS)
O4 - HKU\S-1-5-21-467254925-1194682291-1123341809-1000..\Run: [GameXN (update)] C:\ProgramData\GameXN\GameXNGO.exe (EasyBits Software AS)
O4 - HKU\S-1-5-21-467254925-1194682291-1123341809-1000..\Run: [GG] C:\Users\grajur\AppData\Local\GG\Application\gghub.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-467254925-1194682291-1123341809-1000..\Run: [Philips Intelligent Agent] C:\Program Files\Philips\Intelligent Agent\Philips Intelligent Agent.exe (Philips Consumer Electronics)
O4 - HKU\S-1-5-21-467254925-1194682291-1123341809-1001..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - Startup: C:\Users\grajur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Outil de notification de cadeaux MSN.lnk = C:\Users\grajur\AppData\Roaming\Microsoft\Outil de notification de cadeaux MSN\msnotif.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm ()
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\ievkbd.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\klwtbbho.dll (Kaspersky Lab ZAO)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2333D946-FCD5-4E90-A6DF-860CFAF29FCD}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\GOOGLE\GOOGLE~1\GOEC62~1.DLL) - C:\PROGRA~1\GOOGLE\GOOGLE~1\GOEC62~1.DLL (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\ezShellStart.exe) - C:\Windows\System32\ezShellStart.exe (EasyBits Software AS)
O20 - Winlogon\Notify\klogon: DllName - (C:\Windows\system32\klogon.dll) - C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO)
O24 - Desktop WallPaper: C:\Users\grajur\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\grajur\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\System32\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{faf2b817-10ba-11df-bce3-0022683a5aae}\Shell\AutoRun\command - "" = F:\hbcd\wintools\autorun.exe
O33 - MountPoints2\{faf2b817-10ba-11df-bce3-0022683a5aae}\Shell\Option1\Command - "" = F:\hbcd\wintools\autorun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (OODBS)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012/05/24 09:58:28 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{019AE23F-6E31-4D16-BFC4-D9367D3310BF}
[2012/05/24 09:58:17 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{92C69E39-298E-4B12-87A2-B93F338B032E}
[2012/05/24 00:19:20 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2012/05/24 00:19:20 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2012/05/23 21:57:51 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{265C1EF1-627B-444B-A352-204B6EEA271C}
[2012/05/23 21:57:39 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{5B32E53F-B011-4321-A59B-C1833B7E63E1}
[2012/05/23 21:34:52 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/05/23 20:09:39 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\VS Revo Group
[2012/05/23 14:13:25 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2012/05/23 13:47:43 | 000,000,000 | ---D | C] -- C:\Users\grajur\.gstreamer-0.10\Documents\CAPCOM
[2012/05/23 13:34:46 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll
[2012/05/23 13:34:46 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll
[2012/05/23 13:34:46 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll
[2012/05/23 13:34:46 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll
[2012/05/23 13:34:46 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll
[2012/05/23 13:34:45 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll
[2012/05/23 13:34:45 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll
[2012/05/23 13:34:45 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll
[2012/05/23 13:34:45 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll
[2012/05/23 13:34:45 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll
[2012/05/23 13:34:45 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll
[2012/05/23 13:34:45 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll
[2012/05/23 13:34:45 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll
[2012/05/23 13:34:44 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll
[2012/05/23 13:34:44 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2012/05/23 13:34:44 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2012/05/23 13:34:44 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2012/05/23 13:34:44 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll
[2012/05/23 13:34:43 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2012/05/23 13:34:43 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2012/05/23 13:34:43 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll
[2012/05/23 13:34:43 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2012/05/23 13:34:43 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2012/05/23 13:34:43 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll
[2012/05/23 13:34:43 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2012/05/23 13:34:43 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2012/05/23 13:34:42 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2012/05/23 13:34:42 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll
[2012/05/23 13:34:42 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll
[2012/05/23 13:34:42 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll
[2012/05/23 13:34:42 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll
[2012/05/23 13:34:42 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2012/05/23 13:34:42 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll
[2012/05/23 13:34:42 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2012/05/23 13:33:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx
[2012/05/23 09:57:14 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{40B1B804-6BDA-467A-B4E9-E52475861047}
[2012/05/23 09:57:03 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{71A5E246-718A-46EE-AF48-2928F33F21FD}
[2012/05/22 21:56:37 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{E4E7260E-DA3D-4FAC-B368-2B3FC7670520}
[2012/05/22 21:56:25 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{9863D123-D36E-4611-B3B3-7E85362A0066}
[2012/05/22 09:55:56 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{DCE1E6D2-9FD7-45F1-BA35-B5947C64605F}
[2012/05/22 09:55:37 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{AB00FFD2-9F5E-4790-85E3-0F269600082A}
[2012/05/21 20:04:48 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{4B178046-73B3-441C-A362-663024D4B31B}
[2012/05/21 20:04:32 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{AB1AA8D2-F6A7-434C-8C15-6A6595DF681C}
[2012/05/21 12:32:52 | 000,000,000 | ---D | C] -- C:\Program Files\Veetle
[2012/05/21 07:15:54 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{68058700-1118-4636-BCC9-10E6C0398788}
[2012/05/21 07:15:36 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{131DC959-324D-4009-B60B-74D95F933D46}
[2012/05/20 14:51:00 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{044F3B32-CBA4-485E-996B-8C47C4986EF4}
[2012/05/20 14:50:48 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{BFBFE5DB-3117-4F8D-8B9C-6A6EA7D94935}
[2012/05/20 14:12:56 | 000,000,000 | ---D | C] -- C:\Windows\fr
[2012/05/20 13:54:51 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{3FAE6ED7-EBF0-4C1A-AEA3-3791962606A4}
[2012/05/20 13:54:30 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{FED4BEC8-BC7E-4CBB-8E46-150850DE06B4}
[2012/05/20 12:55:29 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{F4557E71-56C2-4326-83CA-14A676E4B786}
[2012/05/20 08:05:21 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{A1ECCB27-C9C7-4EDC-9603-EBA6241FED80}
[2012/05/20 08:05:01 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{3F9E0629-0853-40B3-9818-5196234AF8CE}
[2012/05/19 23:46:33 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{443CB236-2F62-4D75-8978-E76A16741F33}
[2012/05/19 23:46:21 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{89C8353B-E16D-4C64-A1F0-FBDC08D059A6}
[2012/05/19 20:50:57 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{CBF3BDA8-420F-4C16-B97B-5C807D85CAFC}
[2012/05/19 20:50:35 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{D22534BE-1DAE-4F71-A0AA-7784B617B040}
[2012/05/19 20:12:07 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{E9D480BB-1CF2-41E5-9436-D224027652A3}
[2012/05/19 20:11:46 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{260B9B4A-8610-4372-89B9-0BE758D73A80}
[2012/05/19 16:33:30 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{2B6C6F2C-6EE6-4844-A7C1-629FB5817B26}
[2012/05/19 16:33:16 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{3B93EDA3-2DFF-4FC8-BC1D-4A92796C0871}
[2012/05/19 14:40:13 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{4A2D11A9-79BD-4A76-A7E9-1E595C089181}
[2012/05/19 14:39:53 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{64378D75-5E97-4A56-A73B-EC947A72CD82}
[2012/05/19 08:50:45 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{47D4D725-CBC0-4A4B-A248-55E0AF488E95}
[2012/05/19 08:50:31 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{61EDA3CC-4B50-489D-A0BB-37B89C1C3B41}
[2012/05/19 08:05:29 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{371F95B5-B5F3-4D98-9752-B14E52164E37}
[2012/05/19 08:05:17 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{D8B1AE64-0467-44C9-A14E-67480A3E9148}
[2012/05/18 08:32:08 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{73735706-77DD-4FBB-BCD3-98312C0FC7A5}
[2012/05/18 08:31:44 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{B1217CE2-08E5-40E1-BBDF-B160DDB7943E}
[2012/05/17 21:34:20 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{CD357595-28DB-4874-96EE-0C917A8DD170}
[2012/05/17 21:34:08 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{86F3E591-2D69-4471-99AA-0A88ABCAB9B7}
[2012/05/17 20:33:28 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{58BA3913-C882-4200-A2C3-C456ED6FA5A7}
[2012/05/17 20:33:12 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{D91F7C4F-CF68-4984-A3EA-CAB7375E7126}
[2012/05/17 11:32:24 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Silent Hill Homecoming
[2012/05/17 10:29:18 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{28B85831-DB9E-4BF3-92C1-1B09E0C0DBB8}
[2012/05/17 10:29:07 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{940B3458-20AA-4409-B09B-049B051389A2}
[2012/05/16 17:48:01 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{17771B7A-C4D1-4931-93ED-404D9FE2AE77}
[2012/05/16 17:47:50 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{297C6994-CC7A-48C1-AC67-4BFC2F49BE32}
[2012/05/16 17:38:04 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Roaming\PowerISO
[2012/05/16 17:35:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerISO
[2012/05/16 17:35:16 | 000,000,000 | ---D | C] -- C:\Program Files\PowerISO
[2012/05/16 14:06:03 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2012/05/16 14:03:08 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\CRE
[2012/05/16 14:02:21 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\Conduit
[2012/05/16 13:11:00 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast
[2012/05/16 13:11:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SopCast
[2012/05/16 13:11:00 | 000,000,000 | ---D | C] -- C:\Program Files\SopCast
[2012/05/15 21:41:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/05/15 21:41:24 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/05/15 21:38:09 | 000,419,488 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/05/14 16:59:30 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{F4C0FE9B-C7B4-4941-BF1C-77C74BA420CE}
[2012/05/14 16:59:18 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{0329CC15-B8C8-4A37-848C-E0E7AD32F238}
[2012/05/13 22:01:42 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{0CC8BF86-FC10-4C32-BE46-2680A1C9BFCD}
[2012/05/13 22:01:31 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{1AD92E74-F53E-4F6A-BC39-E352333AB3E1}
[2012/05/13 16:59:52 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{25D9863D-7272-4FAE-B011-42784D94599E}
[2012/05/13 16:59:39 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{84361D69-1BEF-4A56-9C07-AAFE85E92844}
[2012/05/12 16:02:32 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{EBF2C0CA-357E-4C5E-9374-44691948765F}
[2012/05/12 16:02:21 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{8A64F4F6-8650-46EE-8379-BCCDBDA139FB}
[2012/05/11 15:32:10 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{D053F551-E8C6-44EB-BAED-FD836FE0EB5E}
[2012/05/11 15:31:51 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{EB30CA84-C4FB-453B-AF00-94DE8A1F188D}
[2012/05/10 15:44:46 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{4861A9E0-F61A-43CF-8837-9F340110D831}
[2012/05/10 15:44:35 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{BA4E58F5-C83D-4880-9A65-30B15839AAC6}
[2012/05/10 15:08:38 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{FA9CD8BB-0EEF-4954-8B18-96C8C741B46E}
[2012/05/10 15:08:20 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{9C7EFC74-DC35-4B94-8221-EC2511DB3281}
[2012/05/09 19:04:41 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{0022610D-153A-4A28-BC93-05A1395FF659}
[2012/05/09 19:04:21 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{E1979748-5D17-46EF-9F3F-E182880703B3}
[2012/05/09 07:59:15 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2012/05/09 07:59:15 | 001,069,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2012/05/09 07:59:15 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2012/05/09 07:59:15 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2012/05/09 07:59:15 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2012/05/09 07:59:07 | 003,550,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012/05/09 07:59:06 | 003,602,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012/05/09 07:59:06 | 002,044,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/05/09 07:50:42 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{BC0CC0D4-6CE1-4ECC-8C29-2CC277FC70C2}
[2012/05/09 07:50:20 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{194BD4A5-0EDF-4155-931C-77E55BE43B65}
[2012/05/07 07:18:44 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{70FF22C1-2ADE-4EB1-9E17-9BAE712BFA90}
[2012/05/07 07:18:23 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{38D0778A-BDCD-43B7-BCFA-E7C7B83D2CFC}
[2012/05/06 17:00:56 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{A1898AB6-28E7-4755-904A-D5EF27ED601F}
[2012/05/06 17:00:37 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{54AFB4B1-E73D-438D-A9FD-4211B52B873E}
[2012/05/05 13:45:58 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{88CA2C88-37E3-4744-983E-21FFB9E62C3A}
[2012/05/05 13:45:39 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{55345B2B-1BC5-40BB-8504-F1BFF9E2B74C}
[2012/05/04 15:53:24 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{4504F1E3-00B5-436B-B580-42BE09E06284}
[2012/05/04 15:53:05 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{76027C4B-D98B-479C-94CD-6CBC54933266}
[2012/05/03 15:58:03 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{421ED639-FE35-41EC-9A69-DB88428FB4D4}
[2012/05/03 15:57:43 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{B45E4C32-4DD7-499B-ABD0-7373CA18128A}
[2012/05/02 07:37:24 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{BACF0E31-4FBB-4273-8CB3-547DCCC361C5}
[2012/05/02 07:36:58 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{18DE4DDE-C095-4E24-97F2-736D73469F27}
[2012/05/01 07:04:57 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{A4DA225B-8DD9-4CFE-8CAA-E4C59188809E}
[2012/05/01 07:04:37 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{B59C52B9-914A-4AC5-9450-9EEA7E420A24}
[2012/04/30 13:57:09 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{B30DB6E5-0147-4A75-A946-4C5B02FC06DD}
[2012/04/30 13:56:53 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{B46E17A2-AAE4-42F7-9B31-9A33335C0065}
[2012/04/29 17:23:41 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{9E4588A5-DB46-4240-A850-6C9F42713CCD}
[2012/04/29 17:23:25 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{8657F4F0-7575-49B3-96ED-C29950092D97}
[2012/04/28 14:25:20 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{B711B4B5-1245-4A81-A18D-E3E36EEC0BE4}
[2012/04/28 14:25:06 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{784B939D-0DA9-4352-A8E6-EDFA646C5D80}
[2012/04/27 15:25:11 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{F5D4E9B4-FC8B-4550-B103-65F69170A21E}
[2012/04/27 15:24:47 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{1B7D719A-3625-40F3-B8B8-D9E4F3DA7C4F}
[2012/04/26 16:03:13 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{3165FEAE-A9C4-402C-8D27-500BA1AC4E7E}
[2012/04/26 16:03:01 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{7DBC8448-2F92-4E36-B115-9B10EB86382E}
[2012/04/26 15:52:22 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{BBEA1DE9-6AC0-4A4E-AFE8-F93DA3AC4E69}
[2012/04/26 15:51:58 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{0A4AF7B0-F5D2-44EE-B7E2-73E7F411E3F6}
[2012/04/25 14:58:01 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{0C5FF022-8614-4432-B565-A1F75E626670}
[2012/04/25 14:57:47 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{48DCC847-4316-4087-83B3-B85A6F8E3BF0}
[2012/04/25 07:40:52 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{367A5408-6CA9-456A-A844-F2790CBA7D08}
[2012/04/25 07:40:33 | 000,000,000 | ---D | C] -- C:\Users\grajur\AppData\Local\{5535E5FD-3BFF-4B09-94CA-A158EF22FAB2}
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012/05/24 10:32:01 | 004,456,448 | -HS- | M] () -- C:\Users\grajur\ntuser.dat
[2012/05/24 10:30:02 | 000,000,342 | ---- | M] () -- C:\Windows\tasks\Recovery DVD Creator-grajur.job
[2012/05/24 10:30:02 | 000,000,342 | ---- | M] () -- C:\Windows\tasks\Extension de garantie-grajur.job
[2012/05/24 10:19:01 | 000,001,056 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/05/24 10:08:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/05/24 10:00:40 | 001,495,948 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2012/05/24 10:00:40 | 000,678,804 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2012/05/24 10:00:40 | 000,595,798 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/05/24 10:00:40 | 000,126,420 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2012/05/24 10:00:40 | 000,103,872 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/05/24 09:53:07 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/05/24 09:53:07 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/05/24 09:53:07 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/05/24 09:53:05 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2012/05/24 09:53:03 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/05/24 09:53:00 | 3219,283,968 | -HS- | M] () -- C:\hiberfil.sys
[2012/05/24 09:52:58 | 002,182,393 | ---- | M] () -- C:\Windows\System32\oodbs.lor
[2012/05/24 01:19:33 | 000,524,288 | -HS- | M] () -- C:\Users\grajur\ntuser.dat{0a034287-79aa-11e1-a9ee-0022683a5aae}.TMContainer00000000000000000001.regtrans-ms
[2012/05/24 01:19:33 | 000,065,536 | -HS- | M] () -- C:\Users\grajur\ntuser.dat{0a034287-79aa-11e1-a9ee-0022683a5aae}.TM.blf
[2012/05/24 01:19:16 | 005,605,393 | -H-- | M] () -- C:\Users\grajur\AppData\Local\IconCache.db
[2012/05/23 21:08:14 | 000,000,104 | ---- | M] () -- C:\Users\grajur\Desktop\Internet - Raccourci.lnk
[2012/05/23 21:05:53 | 000,000,952 | ---- | M] () -- C:\Users\grajur\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Live Messenger.lnk
[2012/05/23 21:05:53 | 000,000,555 | R--- | M] () -- C:\Users\grajur\Application Data\Microsoft\Internet Explorer\Quick Launch\Découvrez Hotmail.url
[2012/05/23 21:05:53 | 000,000,242 | R--- | M] () -- C:\Users\grajur\Application Data\Microsoft\Internet Explorer\Quick Launch\Aller sur MSN.fr.url
[2012/05/23 21:05:31 | 000,001,076 | ---- | M] () -- C:\Users\grajur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Outil de notification de cadeaux MSN.lnk
[2012/05/23 20:54:36 | 000,000,873 | ---- | M] () -- C:\Users\grajur\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/05/23 20:54:36 | 000,000,849 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/05/23 19:47:56 | 000,000,082 | ---- | M] () -- C:\Users\grajur\.gstreamer-0.10\Documents\cc_20120523_194738.reg
[2012/05/23 18:48:29 | 000,001,890 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 8.lnk
[2012/05/23 18:31:25 | 000,001,040 | ---- | M] () -- C:\Users\grajur\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/05/23 15:48:26 | 000,076,288 | ---- | M] () -- C:\Users\grajur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/05/20 20:26:20 | 000,000,534 | ---- | M] () -- C:\Users\grajur\.gstreamer-0.10\Documents\cc_20120520_202614.reg
[2012/05/19 20:29:10 | 000,013,514 | ---- | M] () -- C:\Users\grajur\.gstreamer-0.10\Documents\cc_20120519_202906.reg
[2012/05/17 21:41:29 | 000,000,938 | ---- | M] () -- C:\Users\grajur\Desktop\GG.lnk
[2012/05/15 21:44:39 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2012/05/15 21:44:39 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/05/10 15:43:37 | 000,310,968 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012/05/23 21:08:14 | 000,000,104 | ---- | C] () -- C:\Users\grajur\Desktop\Internet - Raccourci.lnk
[2012/05/23 21:05:53 | 000,000,952 | ---- | C] () -- C:\Users\grajur\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Live Messenger.lnk
[2012/05/23 21:05:53 | 000,000,555 | R--- | C] () -- C:\Users\grajur\Application Data\Microsoft\Internet Explorer\Quick Launch\Découvrez Hotmail.url
[2012/05/23 21:05:53 | 000,000,242 | R--- | C] () -- C:\Users\grajur\Application Data\Microsoft\Internet Explorer\Quick Launch\Aller sur MSN.fr.url
[2012/05/23 21:05:31 | 000,001,076 | ---- | C] () -- C:\Users\grajur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Outil de notification de cadeaux MSN.lnk
[2012/05/23 20:54:36 | 000,000,873 | ---- | C] () -- C:\Users\grajur\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/05/23 20:54:36 | 000,000,861 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/05/23 20:54:36 | 000,000,849 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/05/23 19:47:56 | 000,000,082 | ---- | C] () -- C:\Users\grajur\.gstreamer-0.10\Documents\cc_20120523_194738.reg
[2012/05/20 20:26:17 | 000,000,534 | ---- | C] () -- C:\Users\grajur\.gstreamer-0.10\Documents\cc_20120520_202614.reg
[2012/05/19 20:29:08 | 000,013,514 | ---- | C] () -- C:\Users\grajur\.gstreamer-0.10\Documents\cc_20120519_202906.reg
[2012/05/17 21:41:29 | 000,000,938 | ---- | C] () -- C:\Users\grajur\Desktop\GG.lnk
[2012/05/17 21:41:24 | 000,000,946 | ---- | C] () -- C:\Users\grajur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
[2012/05/15 21:38:15 | 000,001,002 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/02/13 21:17:15 | 000,017,408 | ---- | C] () -- C:\Users\grajur\AppData\Local\WebpageIcons.db
[2011/03/11 13:43:54 | 000,029,763 | ---- | C] () -- C:\Windows\System32\drivers\klopp.dat
[2010/10/20 22:07:55 | 000,000,073 | ---- | C] () -- C:\Windows\wininit.ini
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2009/07/28 16:18:03 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\AutoUpdate
[2009/05/26 12:11:03 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\DAEMON Tools Lite
[2009/05/26 12:02:08 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\DAEMON Tools Pro
[2012/02/13 23:53:23 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\Gadu-Gadu 10
[2012/05/24 10:01:10 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\GG
[2012/05/24 09:53:17 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\go
[2010/08/03 12:28:51 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\Kamerzysta
[2009/04/29 17:33:34 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\Nowe Gadu-Gadu
[2009/10/01 21:35:05 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\OpenFM
[2009/02/21 22:00:51 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\Packard Bell
[2010/03/03 09:27:34 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\PeerNetworking
[2012/05/16 17:38:04 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\PowerISO
[2009/05/24 16:25:43 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\PPMate
[2011/04/25 17:28:01 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\SANYO
[2009/03/25 15:46:15 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\Smart PC Solutions
[2009/02/18 17:15:31 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\Template
[2010/02/27 22:24:25 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\Uniblue
[2012/05/23 19:46:31 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\uTorrent
[2009/05/31 23:24:47 | 000,000,000 | ---D | M] -- C:\Users\grajur\AppData\Roaming\XRay Engine
[2012/05/24 10:30:02 | 000,000,342 | ---- | M] () -- C:\Windows\Tasks\Extension de garantie-grajur.job
[2012/05/24 10:30:02 | 000,000,342 | ---- | M] () -- C:\Windows\Tasks\Recovery DVD Creator-grajur.job
[2012/05/24 01:19:39 | 000,032,614 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 64 bytes -> C:\Users\grajur\.gstreamer-0.10\Documents\SANY0155.MP4:TOC.WMV
@Alternate Data Stream - 64 bytes -> C:\Users\grajur\.gstreamer-0.10\Documents\MVI_1586.AVI:TOC.WMV
@Alternate Data Stream - 126 bytes -> C:\ProgramData\TEMP:22446EB0
@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:DFC5A2B2

< End of report >