OTL logfile created on: 2012-07-03 09:50:07 - Run 2 OTL by OldTimer - Version 3.2.21.0 Folder = C:\Users\KRIS\Desktop Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 61,00% Memory free 4,00 Gb Paging File | 4,00 Gb Available in Paging File | 86,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 97,66 Gb Total Space | 7,12 Gb Free Space | 7,30% Space Free | Partition Type: NTFS Drive D: | 7,06 Gb Total Space | 2,05 Gb Free Space | 29,03% Space Free | Partition Type: NTFS Drive F: | 274,95 Gb Total Space | 87,34 Gb Free Space | 31,76% Space Free | Partition Type: NTFS Drive G: | 24,42 Gb Total Space | 5,41 Gb Free Space | 22,13% Space Free | Partition Type: NTFS Computer Name: MODERN | User Name: KRIS | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-07-02 22:02:19 | 000,577,024 | R--- | M] (OldTimer Tools) -- C:\Users\KRIS\Desktop\OTL_3.2.21-[www.legalne.info].exe PRC - [2012-06-30 20:44:39 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2012-06-30 20:44:32 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe PRC - [2012-06-27 12:29:22 | 001,385,896 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe PRC - [2012-06-23 21:53:56 | 000,079,384 | ---- | M] (Google) -- C:\Users\KRIS\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe PRC - [2012-06-23 09:51:26 | 001,535,176 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_3_300_262.exe PRC - [2009-04-11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2012-07-02 22:02:19 | 000,577,024 | R--- | M] (OldTimer Tools) -- C:\Users\KRIS\Desktop\OTL_3.2.21-[www.legalne.info].exe MOD - [2010-08-31 17:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2012-06-30 20:44:39 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-06-27 12:29:22 | 001,385,896 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc) SRV - [2012-06-23 09:51:27 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-06-10 16:28:10 | 000,529,232 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012-06-07 19:12:14 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- F:\Programy\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012-06-01 13:18:16 | 000,736,104 | ---- | M] (Tunngle.net GmbH) [On_Demand | Stopped] -- F:\Tunngle\TnglCtrl.exe -- (TunngleService) SRV - [2012-04-13 10:17:10 | 001,529,152 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc) SRV - [2012-04-13 10:17:04 | 000,028,992 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Windows\System32\uxtuneup.dll -- (UxTuneUp) SRV - [2012-03-03 11:35:18 | 000,409,600 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Dyyno\Dyyno Broadcaster\launcherd.exe -- (Dyyno Launcher) SRV - [2012-02-27 00:15:42 | 000,055,144 | ---- | M] (Apple Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2011-10-15 10:53:00 | 002,253,120 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService) SRV - [2011-10-15 01:54:40 | 000,381,248 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2011-04-25 00:15:02 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [On_Demand | Stopped] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe -- (AVP) SRV - [2011-04-11 01:37:48 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2011-02-22 15:33:09 | 000,797,696 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache) SRV - [2010-08-19 10:52:04 | 000,229,376 | ---- | M] () [Auto | Stopped] -- C:\ProgramData\DatacardService\DCService.exe -- (DCService.exe) SRV - [2010-06-14 15:07:14 | 000,615,936 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2010-03-18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400) SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Stopped] -- F:\Programy\Alcohol 52\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE) SRV - [2009-04-02 00:15:30 | 000,114,688 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR) SRV - [2008-06-20 12:08:08 | 000,065,536 | ---- | M] (France Telecom SA) [Auto | Stopped] -- C:\Program Files\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe -- (FTRTSVC) SRV - [2008-06-10 18:59:18 | 000,019,200 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv) SRV - [2008-06-10 18:53:54 | 000,468,224 | ---- | M] (ESET) [Auto | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn) SRV - [2008-01-19 09:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2007-03-16 01:24:02 | 000,537,520 | ---- | M] ( ) [Auto | Stopped] -- C:\Windows\System32\lxbccoms.exe -- (lxbc_device) SRV - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service) SRV - [2007-02-05 11:11:18 | 000,075,320 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe -- (SSScsiSV) SRV - [2007-02-05 11:11:16 | 000,112,184 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe -- (SonicStage Back-End Service) SRV - [2005-03-09 21:50:18 | 000,018,944 | ---- | M] (http://libusb-win32.sourceforge.net) [Auto | Stopped] -- C:\Windows\System32\libusbd-nt.exe -- (libusbd) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2012-03-27 17:03:36 | 003,204,200 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2012-01-07 23:33:34 | 000,570,160 | ---- | M] (Kaspersky Lab) [File_System | System | Stopped] -- C:\Windows\System32\drivers\klif.sys -- (KLIF) DRV - [2011-12-08 06:22:26 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm) DRV - [2011-12-08 06:22:26 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus) SAMSUNG Android USB Composite Device driver (WDM) DRV - [2011-12-08 06:22:26 | 000,114,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadserd.sys -- (ssadserd) SAMSUNG Android USB Diagnostic Serial Port (WDM) DRV - [2011-12-08 06:22:26 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadadb.sys -- (androidusb) DRV - [2011-12-08 06:22:26 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl) SAMSUNG Android USB Modem (Filter) DRV - [2011-11-08 12:47:38 | 000,010,064 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Stopped] -- C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv) DRV - [2011-10-15 10:53:00 | 010,327,360 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2011-06-26 17:05:24 | 000,042,512 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\npf.sys -- (NPF) DRV - [2011-03-10 19:36:18 | 000,023,856 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\klim6.sys -- (KLIM6) DRV - [2011-03-04 14:23:20 | 000,011,352 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\System32\drivers\kl2.sys -- (kl2) DRV - [2011-03-04 14:23:14 | 000,133,208 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\kl1.sys -- (KL1) DRV - [2011-01-11 18:17:35 | 000,049,720 | ---- | M] (Data Encryption Systems Limited) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\dk2drv.sys -- (dk2drv) DRV - [2010-11-01 06:08:46 | 000,014,416 | ---- | M] (OpenLibSys.org) [File_System | On_Demand | Stopped] -- C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys -- (WinRing0_1_2_0) DRV - [2010-09-25 09:50:58 | 000,278,728 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt) DRV - [2010-09-25 09:50:57 | 000,025,416 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt) DRV - [2010-08-11 20:55:45 | 000,697,328 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd) DRV - [2010-05-25 13:35:08 | 000,015,600 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\gdrv.sys -- (gdrv) DRV - [2010-04-09 15:24:18 | 000,069,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_jucdcacm.sys -- (huawei_cdcacm) DRV - [2010-04-09 15:24:12 | 000,063,616 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator) DRV - [2010-03-25 10:08:38 | 000,105,984 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard) DRV - [2010-03-20 11:56:04 | 000,101,504 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev) DRV - [2010-02-26 14:32:58 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2010-02-26 14:32:46 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2010-02-26 14:32:44 | 000,022,528 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2010-02-26 14:32:44 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2010-02-26 14:21:22 | 000,137,344 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsu.sys -- (nmwcdnsu) DRV - [2010-02-26 14:21:22 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdnsuc.sys -- (nmwcdnsuc) DRV - [2010-02-03 16:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi) DRV - [2009-11-02 21:27:16 | 000,019,984 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\klmouflt.sys -- (klmouflt) DRV - [2009-09-16 08:02:40 | 000,027,136 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901t.sys -- (tap0901t) TAP-Win32 Adapter V9 (Tunngle) DRV - [2009-04-11 06:42:54 | 000,073,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2009-02-26 12:39:50 | 004,569,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-06-10 18:56:10 | 000,034,312 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\epfwtdir.sys -- (epfwtdir) DRV - [2008-06-10 18:48:38 | 000,053,256 | ---- | M] (ESET) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\easdrv.sys -- (easdrv) DRV - [2008-06-10 18:47:42 | 000,039,944 | ---- | M] (ESET) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\eamon.sys -- (eamon) DRV - [2007-08-03 04:44:58 | 000,091,648 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169) DRV - [2007-04-18 08:59:40 | 000,098,600 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\COMMONFX.DLL -- (COMMONFX.DLL) DRV - [2007-04-12 08:10:26 | 000,164,608 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\CT20XUT.DLL -- (CT20XUT.DLL) DRV - [2007-04-12 08:10:26 | 000,066,816 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\CTHWIUT.DLL -- (CTHWIUT.DLL) DRV - [2007-04-12 08:10:24 | 001,317,632 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\CTEXFIFX.DLL -- (CTEXFIFX.DLL) DRV - [2007-04-12 08:10:22 | 000,323,328 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\CTEDSPSY.DLL -- (CTEDSPSY.DLL) DRV - [2007-04-12 08:10:22 | 000,128,768 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\CTEDSPIO.DLL -- (CTEDSPIO.DLL) DRV - [2007-04-12 08:10:20 | 000,280,320 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\CTEDSPFX.DLL -- (CTEDSPFX.DLL) DRV - [2007-04-12 08:10:20 | 000,094,976 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\CTERFXFX.DLL -- (CTERFXFX.DLL) DRV - [2007-04-12 08:10:18 | 000,168,192 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\CTEAPSFX.DLL -- (CTEAPSFX.DLL) DRV - [2007-04-12 08:10:16 | 000,560,384 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\CTSBLFX.DLL -- (CTSBLFX.DLL) DRV - [2007-04-12 08:10:16 | 000,546,048 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\CTAUDFX.DLL -- (CTAUDFX.DLL) DRV - [2007-04-10 06:00:24 | 000,157,480 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ctsfm2k.sys -- (ctsfm2k) DRV - [2007-04-10 05:59:04 | 000,126,760 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ctoss2k.sys -- (ossrv) DRV - [2007-04-10 04:32:06 | 000,189,736 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\haP17v2k.sys -- (hap17v2k) DRV - [2007-04-10 04:31:18 | 000,163,112 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\haP16v2k.sys -- (hap16v2k) DRV - [2007-04-10 04:29:10 | 000,797,992 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ha10kx2k.sys -- (ha10kx2k) DRV - [2007-04-10 04:28:36 | 000,092,968 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\emupia2k.sys -- (emupia) DRV - [2007-04-10 04:25:46 | 000,014,632 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ctprxy2k.sys -- (ctprxy2k) DRV - [2007-04-10 04:21:06 | 000,347,128 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ctdvda2k.sys -- (ctdvda2k) DRV - [2007-04-10 04:20:38 | 000,520,488 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM) DRV - [2007-04-10 04:19:30 | 000,511,272 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ctac32k.sys -- (ctac32k) DRV - [2006-12-04 22:00:00 | 000,050,688 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp) DRV - [2006-11-28 21:46:22 | 000,028,224 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PCAMp50.sys -- (PCAMp50) DRV - [2006-11-28 21:46:20 | 000,027,072 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PCASp50.sys -- (PCASp50) DRV - [2006-11-02 11:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300) DRV - [2006-11-02 11:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx) DRV - [2006-11-02 11:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor) DRV - [2006-11-02 11:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci) DRV - [2006-11-02 11:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci) DRV - [2006-11-02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV) DRV - [2006-11-02 11:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320) DRV - [2006-11-02 11:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2) DRV - [2006-11-02 11:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid) DRV - [2006-11-02 11:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx) DRV - [2006-11-02 11:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata) DRV - [2006-11-02 11:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m) DRV - [2006-11-02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid) DRV - [2006-11-02 11:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960) DRV - [2006-11-02 11:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp) DRV - [2006-11-02 11:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4) DRV - [2006-11-02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor) DRV - [2006-11-02 11:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx) DRV - [2006-11-02 11:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas) DRV - [2006-11-02 11:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI) DRV - [2006-11-02 11:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2) DRV - [2006-11-02 11:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs) DRV - [2006-11-02 11:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc) DRV - [2006-11-02 11:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid) DRV - [2006-11-02 11:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi) DRV - [2006-11-02 11:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS) DRV - [2006-11-02 11:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx) DRV - [2006-11-02 11:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC) DRV - [2006-11-02 11:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3) DRV - [2006-11-02 11:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x) DRV - [2006-11-02 11:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi) DRV - [2006-11-02 11:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas) DRV - [2006-11-02 11:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide) DRV - [2006-11-02 11:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide) DRV - [2006-11-02 11:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide) DRV - [2006-11-02 10:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM) DRV - [2006-11-02 10:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer) DRV - [2006-11-02 10:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp) DRV - [2006-11-02 10:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo) DRV - [2006-11-02 10:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm) DRV - [2006-11-02 10:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm) DRV - [2006-11-02 09:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi) DRV - [2006-11-02 09:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R) DRV - [2005-03-09 21:50:16 | 000,033,792 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\libusb0.sys -- (libusb0) DRV - [2001-04-13 20:18:24 | 000,188,276 | ---- | M] (Roland) [Kernel | Auto | Stopped] -- C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys -- (RVIEGVST) DRV - [1999-09-15 21:04:44 | 000,041,797 | ---- | M] () [Kernel | Boot | Stopped] -- C:\Windows\System32\tpkd.vxd -- (TPkd) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Livebox\SearchURLHook\SearchPageURL.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.onet.pl/" FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736 FF - prefs.js..extensions.enabledItems: zacz3k@gmail.com:1.5 FF - prefs.js..extensions.enabledItems: illimitux@illimitux.net:4.0 FF - prefs.js..extensions.enabledItems: toolbar@2conv.com:1.21 FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.4.1 FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.3 FF - prefs.js..extensions.enabledItems: virtualKeyboard@kaspersky.ru:12.0.0.389 FF - prefs.js..network.proxy.type: 4 FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-06-26 11:18:14 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\linkfilter@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\linkfilter@kaspersky.ru [2012-01-07 23:34:53 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\FFExt\virtualKeyboard@kaspersky.ru [2012-01-07 23:34:53 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 14.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-06-30 20:44:39 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 14.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-08-05 15:54:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\KRIS\AppData\Roaming\mozilla\Extensions [2012-06-29 15:33:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\KRIS\AppData\Roaming\mozilla\Firefox\Profiles\p393fevb.default\extensions [2010-11-24 00:48:30 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\KRIS\AppData\Roaming\mozilla\Firefox\Profiles\p393fevb.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-08-29 21:43:57 | 000,000,000 | ---D | M] (Illimitux) -- C:\Users\KRIS\AppData\Roaming\mozilla\Firefox\Profiles\p393fevb.default\extensions\illimitux@illimitux.net [2011-05-01 20:58:25 | 000,000,000 | ---D | M] (2conv.com Toolbar) -- C:\Users\KRIS\AppData\Roaming\mozilla\Firefox\Profiles\p393fevb.default\extensions\toolbar@2conv.com [2012-04-08 18:34:55 | 000,000,000 | ---D | M] (Twojanuta.pl) -- C:\Users\KRIS\AppData\Roaming\mozilla\Firefox\Profiles\p393fevb.default\extensions\zacz3k@gmail.com [2012-05-13 12:45:34 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-06-30 20:44:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions File not found (No name found) -- () (No name found) -- C:\USERS\KRIS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P393FEVB.DEFAULT\EXTENSIONS\{19503E42-CA3C-4C27-B1E2-9CDB2170EE34}.XPI () (No name found) -- C:\USERS\KRIS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P393FEVB.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI () (No name found) -- C:\USERS\KRIS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\P393FEVB.DEFAULT\EXTENSIONS\TESTPILOT@LABS.MOZILLA.COM.XPI [2012-06-30 20:44:39 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll [2012-05-02 09:13:57 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2012-05-02 09:13:57 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2012-05-02 09:13:57 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2012-05-02 09:13:57 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2012-05-02 09:13:57 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2012-05-02 09:13:57 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2012-06-21 17:04:38 | 000,000,060 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 www.pgware.com O1 - Hosts: 127.0.0.1 www.swiftdog.com O2 - BHO: (TinyBHO Class) - {00e71626-0bef-11dc-8314-0800200c9a66} - C:\Users\KRIS\AppData\Roaming\DownloaderGold\ieplug.dll () O2 - BHO: (TinyBHO Class) - {00e71626-0bef-11dc-8314-0864264c9a64} - C:\Users\KRIS\AppData\Roaming\DownloaderGold\ieplug.dll () O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - F:\Programy\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [DataCardMonitor] C:\Program Files\blueconnect\DataCardMonitor.exe (Huawei Technologies Co., Ltd.) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) O4 - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKCU..\Run: [TSWorkspace] C:\Users\KRIS\AppData\Local\Microsoft\Windows\150\TSWorkspace.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1 O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.) O9 - Extra Button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\ievkbd.dll (Kaspersky Lab ZAO) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - F:\Programy\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - F:\Programy\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2012\klwtbbho.dll (Kaspersky Lab ZAO) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O13 - gopher Prefix: missing O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 10.3.0) O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26) O16 - DPF: {CAFEEFAC-0017-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 1.7.0_03) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_03-windows-i586.cab (Java Plug-in 1.7.0_03) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - F:\Programy\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\Windows\System32\igfxdev.dll (Intel Corporation) O20 - Winlogon\Notify\klogon: DllName - C:\Windows\system32\klogon.dll - C:\Windows\System32\klogon.dll (Kaspersky Lab ZAO) O24 - Desktop WallPaper: C:\Users\KRIS\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg O24 - Desktop BackupWallPaper: C:\Users\KRIS\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O32 - AutoRun File - [2009-04-04 11:50:38 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2011-03-29 09:12:19 | 000,000,305 | RHS- | M] () - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - F:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{1445ff62-ec9d-11df-94e2-a03af5cf44f1}\Shell\AutoRun\command - "" = S:\p3vwxx.exe O33 - MountPoints2\{1445ff62-ec9d-11df-94e2-a03af5cf44f1}\Shell\open\Command - "" = S:\p3vwxx.exe O33 - MountPoints2\{404f3e3b-a57a-11df-a1da-001d7d9ca807}\Shell - "" = AutoRun O33 - MountPoints2\{404f3e3b-a57a-11df-a1da-001d7d9ca807}\Shell\AutoRun\command - "" = N:\_AUTORUN\AUTORUN.EXE O33 - MountPoints2\{412c6662-4bf2-11e0-9fba-001d7d9ca807}\Shell\autOplaY\commaNd - "" = J:\shiw.exe O33 - MountPoints2\{412c6662-4bf2-11e0-9fba-001d7d9ca807}\Shell\AutoRun\command - "" = J:\shiw.exe O33 - MountPoints2\{412c6662-4bf2-11e0-9fba-001d7d9ca807}\Shell\EXploRe\COMMand - "" = J:\shiw.exe O33 - MountPoints2\{412c6662-4bf2-11e0-9fba-001d7d9ca807}\Shell\open\comMAnd - "" = J:\shiw.exe O33 - MountPoints2\{412c6666-4bf2-11e0-9fba-001d7d9ca807}\Shell\AUtOPlay\cOmmand - "" = K:\xtvn.exe O33 - MountPoints2\{412c6666-4bf2-11e0-9fba-001d7d9ca807}\Shell\AutoRun\command - "" = K:\xtvn.exe O33 - MountPoints2\{412c6666-4bf2-11e0-9fba-001d7d9ca807}\Shell\explore\CoMmANd - "" = K:\xtvn.exe O33 - MountPoints2\{412c6666-4bf2-11e0-9fba-001d7d9ca807}\Shell\open\comMAnd - "" = K:\xtvn.exe O33 - MountPoints2\{4e8bc2ec-67e2-11df-8f7b-b3452d0922cf}\Shell\AutoRun\command - "" = S:\p3vwxx.exe O33 - MountPoints2\{4e8bc2ec-67e2-11df-8f7b-b3452d0922cf}\Shell\open\Command - "" = S:\p3vwxx.exe O33 - MountPoints2\{52208fde-6cb0-11e0-95f1-001d7d9ca807}\Shell - "" = AutoRun O33 - MountPoints2\{52208fde-6cb0-11e0-95f1-001d7d9ca807}\Shell\AutoRun\command - "" = G:\AutoRun.exe O33 - MountPoints2\{52208fe7-6cb0-11e0-95f1-001d7d9ca807}\Shell - "" = AutoRun O33 - MountPoints2\{52208fe7-6cb0-11e0-95f1-001d7d9ca807}\Shell\AutoRun\command - "" = P:\AutoRun.exe O33 - MountPoints2\{5737310c-b91a-11e1-bfc3-8d38499f4bfc}\Shell - "" = AutoRun O33 - MountPoints2\{5737310c-b91a-11e1-bfc3-8d38499f4bfc}\Shell\AutoRun\command - "" = Q:\PlayDiskStart.exe O33 - MountPoints2\{6d6aea80-e7e8-11df-b13a-001d7d9ca807}\Shell\AutoRun\command - "" = U:\p3vwxx.exe O33 - MountPoints2\{6d6aea80-e7e8-11df-b13a-001d7d9ca807}\Shell\open\Command - "" = U:\p3vwxx.exe O33 - MountPoints2\{86e492ea-10c9-11e0-a16a-001d7d9ca807}\Shell - "" = AutoRun O33 - MountPoints2\{86e492ea-10c9-11e0-a16a-001d7d9ca807}\Shell\AutoRun\command - "" = E:\PlayDiskStart.exe O33 - MountPoints2\{88a46035-abe4-11e1-a4f7-beeb0a82264b}\Shell - "" = AutoRun O33 - MountPoints2\{88a46035-abe4-11e1-a4f7-beeb0a82264b}\Shell\AutoRun\command - "" = J:\thpsk3.exe O33 - MountPoints2\{956248c8-036c-11e0-9e17-001d7d9ca807}\Shell\AutoRun\command - "" = E:\p3vwxx.exe O33 - MountPoints2\{956248c8-036c-11e0-9e17-001d7d9ca807}\Shell\open\Command - "" = E:\p3vwxx.exe O33 - MountPoints2\{b6aed603-bd6d-11df-86d0-001d7d9ca807}\Shell - "" = AutoRun O33 - MountPoints2\{b6aed603-bd6d-11df-86d0-001d7d9ca807}\Shell\AutoRun\command - "" = S:\AutoRun.exe O33 - MountPoints2\{b6aed60c-bd6d-11df-86d0-001d7d9ca807}\Shell - "" = AutoRun O33 - MountPoints2\{b6aed60c-bd6d-11df-86d0-001d7d9ca807}\Shell\AutoRun\command - "" = S:\AutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-07-02 22:05:15 | 000,000,000 | ---D | C] -- C:\_OTL [2012-07-02 22:02:18 | 000,577,024 | R--- | C] (OldTimer Tools) -- C:\Users\KRIS\Desktop\OTL_3.2.21-[www.legalne.info].exe [2012-07-02 09:57:55 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Local\ESET [2012-07-02 08:44:24 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2012-07-02 08:44:22 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2012-07-02 08:44:22 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2012-07-02 08:44:20 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll [2012-07-02 08:44:20 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2012-07-02 08:44:19 | 001,800,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2012-07-02 08:44:19 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2012-07-02 08:44:17 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2012-07-01 21:35:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET [2012-07-01 21:35:44 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET [2012-07-01 21:35:44 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2012-07-01 20:52:19 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\hellomoto [2012-07-01 12:06:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XSplit [2012-07-01 08:57:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\megalog [2012-07-01 07:12:05 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll [2012-07-01 07:12:05 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax [2012-07-01 07:12:05 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax [2012-07-01 07:12:05 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax [2012-07-01 07:12:04 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciseq.dll [2012-07-01 07:11:44 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll [2012-07-01 07:11:34 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll [2012-07-01 07:11:32 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll [2012-07-01 07:11:28 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll [2012-07-01 07:11:28 | 001,069,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll [2012-07-01 07:11:28 | 000,683,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll [2012-07-01 07:11:28 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll [2012-07-01 07:11:28 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll [2012-07-01 07:11:26 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll [2012-07-01 07:11:24 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2012-07-01 07:11:24 | 000,497,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll [2012-07-01 07:11:22 | 001,259,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll [2012-07-01 07:11:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2012-07-01 07:11:06 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll [2012-07-01 07:11:06 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll [2012-07-01 07:10:47 | 002,045,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2012-07-01 07:10:46 | 003,602,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2012-07-01 07:10:46 | 003,550,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2012-07-01 07:00:33 | 000,613,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll [2012-07-01 01:44:48 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll [2012-07-01 01:44:48 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll [2012-07-01 01:44:24 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll [2012-07-01 01:44:24 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll [2012-07-01 01:44:24 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll [2012-07-01 01:43:43 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll [2012-07-01 01:43:43 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe [2012-06-30 18:55:15 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\LOLPBE [2012-06-29 18:17:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi [2012-06-29 18:17:19 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi [2012-06-27 19:22:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace [2012-06-27 19:18:37 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft [2012-06-27 19:17:17 | 000,000,000 | ---D | C] -- C:\Windows\System32\xlive [2012-06-27 19:17:16 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE [2012-06-27 19:08:39 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Documents\Games for Windows - LIVE Demos [2012-06-27 14:10:32 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\Tekkit_Server_3.0.4 [2012-06-27 09:57:47 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\Nowy folder [2012-06-24 19:07:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Nexon [2012-06-24 19:01:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon [2012-06-24 18:56:45 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Nowy folder (3) [2012-06-24 18:56:06 | 000,000,000 | ---D | C] -- C:\ProgramData\NexonEU [2012-06-24 16:28:17 | 1615,309,589 | ---- | C] (Nexon) -- C:\Users\KRIS\Desktop\Combatarms_eu.exe [2012-06-24 14:09:23 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Nowy folder (2) [2012-06-24 14:09:20 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Nowy folder (1) [2012-06-24 14:09:19 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Nowy folder [2012-06-24 14:09:01 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Nagrywki [2012-06-24 14:06:02 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\Mirillis Action [2012-06-24 10:17:31 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\OptiFine_1.2.5_HD_MT_AA_A7 [2012-06-24 10:09:20 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\canary-b10.2 [2012-06-24 10:00:13 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\canary-b8 [2012-06-24 09:57:34 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\canary-b7 [2012-06-24 09:50:44 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\serwer 1.6.6 [2012-06-23 18:09:43 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\Mirillis [2012-06-23 18:09:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Mirillis [2012-06-23 18:09:43 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Documents\Action! [2012-06-23 18:09:42 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Local\Mirillis [2012-06-23 18:07:25 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mirillis [2012-06-23 17:55:40 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\Action1.2.0 [2012-06-23 17:43:38 | 000,638,104 | ---- | C] (Microsoft Corporation) -- C:\Users\KRIS\Desktop\gfwlivesetup.exe [2012-06-23 11:54:28 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Local\Macromedia [2012-06-22 18:29:34 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\MVC [2012-06-22 18:11:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision [2012-06-22 09:22:07 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\Tony.Hawks.Pro-Skater.2.Pc.Cd-Rom.BuRnT [2012-06-21 17:04:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameHike [2012-06-21 16:55:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 2.3 [2012-06-21 16:53:06 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner [2012-06-21 16:41:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameGain [2012-06-21 15:45:58 | 000,106,496 | ---- | C] (Blizzard Entertainment) -- C:\Windows\DIIUnin.exe [2012-06-21 15:45:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo II [2012-06-20 19:45:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GBoost [2012-06-20 19:45:56 | 000,000,000 | ---D | C] -- C:\Program Files\GBoost [2012-06-20 19:32:58 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Local\LiveGBoost [2012-06-20 19:32:41 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Local\GZero [2012-06-20 19:32:01 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\GZero [2012-06-20 19:27:52 | 005,435,543 | ---- | C] (Blizzard Entertainment) -- C:\Users\KRIS\Desktop\LODPatch_113c.exe [2012-06-20 13:20:40 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\The Forgotten Land 2.0 [2012-06-20 13:16:55 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\world_the_end [2012-06-20 13:16:55 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\world_nether [2012-06-20 13:16:54 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\world [2012-06-20 13:09:09 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\Bukkit [2012-06-19 20:33:41 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\MultiHack_v1.8.5_3 [2012-06-18 20:20:09 | 000,000,000 | R--D | C] -- C:\Users\KRIS\Desktop\ [2012-06-17 01:17:48 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\blowbox11 [2012-06-16 23:54:03 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Desktop\patcher [2012-06-16 20:24:54 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Documents\Tunngle [2012-06-16 20:24:54 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\Tunngle [2012-06-16 20:24:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Tunngle [2012-06-16 20:24:49 | 000,027,136 | ---- | C] (Tunngle.net) -- C:\Windows\System32\drivers\tap0901t.sys [2012-06-16 20:24:49 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Tunngle [2012-06-16 20:24:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle [2012-06-13 14:25:19 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\.technicshaftersquared [2012-06-13 12:02:28 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\BANDISOFT [2012-06-13 11:46:24 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\Mumble [2012-06-13 11:45:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble [2012-06-13 11:45:56 | 000,000,000 | ---D | C] -- C:\Program Files\Mumble [2012-06-13 11:00:13 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\.mineshaftersquared [2012-06-13 10:25:39 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll [2012-06-13 10:25:39 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll [2012-06-13 10:25:38 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll [2012-06-13 10:25:38 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll [2012-06-13 10:24:12 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx [2012-06-13 10:16:32 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\.techniclauncher [2012-06-11 14:50:01 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Documents\Bandicam [2012-06-11 14:49:07 | 000,000,000 | ---D | C] -- C:\Program Files\BandiMPEG1 [2012-06-10 16:19:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PacSteamT [2012-06-10 11:33:57 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PacSteamT [2012-06-10 11:33:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Thraex Software [2012-06-10 11:33:53 | 000,000,000 | ---D | C] -- C:\PacSteamT [2012-06-09 08:30:46 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\REAPER [2012-06-09 08:29:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\REAPER [2012-06-08 21:54:36 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Documents\Ableton [2012-06-08 21:54:35 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\Ableton [2012-06-08 19:09:47 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files [2012-06-08 19:09:14 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll [2012-06-08 19:08:59 | 000,028,992 | ---- | C] (TuneUp Software) -- C:\Windows\System32\uxtuneup.dll [2012-06-08 19:05:25 | 000,031,552 | ---- | C] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe [2012-06-08 19:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2012 [2012-06-08 19:04:49 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\TuneUp Software [2012-06-08 19:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2012 [2012-06-08 19:02:53 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software [2012-06-08 19:02:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936} [2012-06-08 18:39:38 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\RotMG.Production [2012-06-07 14:04:34 | 000,000,000 | ---D | C] -- C:\Users\KRIS\Documents\Ulead VideoStudio [2012-06-07 14:02:00 | 000,000,000 | ---D | C] -- C:\Users\KRIS\AppData\Roaming\Ulead Systems [2012-06-07 14:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InterVideo [2012-06-07 14:00:23 | 000,000,000 | ---D | C] -- C:\ProgramData\InterVideo [2012-06-07 14:00:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ulead VideoStudio 11 [2012-06-07 13:58:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Ulead Systems [2012-06-07 13:58:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ulead Systems [2010-05-25 12:23:34 | 000,413,696 | ---- | C] ( ) -- C:\Windows\System32\lxbcinpa.dll [2010-05-25 12:23:34 | 000,397,312 | ---- | C] ( ) -- C:\Windows\System32\lxbciesc.dll [2010-05-25 12:23:34 | 000,323,584 | ---- | C] ( ) -- C:\Windows\System32\LXBChcp.dll [2010-05-25 12:23:33 | 001,224,704 | ---- | C] ( ) -- C:\Windows\System32\lxbcserv.dll [2010-05-25 12:23:33 | 000,995,328 | ---- | C] ( ) -- C:\Windows\System32\lxbcusb1.dll [2010-05-25 12:23:33 | 000,696,320 | ---- | C] ( ) -- C:\Windows\System32\lxbchbn3.dll [2010-05-25 12:23:33 | 000,684,032 | ---- | C] ( ) -- C:\Windows\System32\lxbccomc.dll [2010-05-25 12:23:33 | 000,643,072 | ---- | C] ( ) -- C:\Windows\System32\lxbcpmui.dll [2010-05-25 12:23:33 | 000,585,728 | ---- | C] ( ) -- C:\Windows\System32\lxbclmpm.dll [2010-05-25 12:23:33 | 000,421,888 | ---- | C] ( ) -- C:\Windows\System32\lxbccomm.dll [2010-05-25 12:23:33 | 000,163,840 | ---- | C] ( ) -- C:\Windows\System32\lxbcprox.dll [2010-05-25 12:23:33 | 000,094,208 | ---- | C] ( ) -- C:\Windows\System32\lxbcpplc.dll [2010-02-04 00:00:00 | 000,139,264 | ---- | C] ( ) -- C:\Windows\sipr3260.dll [2007-04-09 12:32:58 | 000,034,816 | ---- | C] ( ) -- C:\Windows\System32\a3d.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-07-03 09:40:20 | 000,002,032 | ---- | M] () -- C:\Users\KRIS\AppData\Local\d3d9caps.dat [2012-07-03 09:30:31 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012-07-03 09:27:43 | 000,005,328 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012-07-03 09:27:43 | 000,005,328 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012-07-02 22:02:19 | 000,577,024 | R--- | M] (OldTimer Tools) -- C:\Users\KRIS\Desktop\OTL_3.2.21-[www.legalne.info].exe [2012-07-02 21:11:15 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012-07-02 12:43:12 | 000,609,365 | ---- | M] () -- C:\Users\KRIS\Desktop\adwcleaner.exe [2012-07-02 12:10:07 | 000,262,304 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2012-07-02 12:06:02 | 000,030,600 | ---- | M] () -- C:\Windows\System32\BMXStateBkp-{00000003-00000000-00000001-00001102-00000008-10211102}.rfx [2012-07-02 12:06:02 | 000,030,600 | ---- | M] () -- C:\Windows\System32\BMXState-{00000003-00000000-00000001-00001102-00000008-10211102}.rfx [2012-07-02 12:06:02 | 000,029,604 | ---- | M] () -- C:\Windows\System32\BMXCtrlState-{00000003-00000000-00000001-00001102-00000008-10211102}.rfx [2012-07-02 12:06:02 | 000,029,604 | ---- | M] () -- C:\Windows\System32\BMXBkpCtrlState-{00000003-00000000-00000001-00001102-00000008-10211102}.rfx [2012-07-02 12:06:02 | 000,011,564 | ---- | M] () -- C:\Windows\System32\DVCState-{00000003-00000000-00000001-00001102-00000008-10211102}.rfx [2012-07-02 11:46:04 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-815695446-219845604-733179369-1000UA.job [2012-07-02 09:46:11 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-815695446-219845604-733179369-1000Core.job [2012-07-02 09:32:21 | 000,681,512 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2012-07-02 09:32:21 | 000,604,566 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2012-07-02 09:32:21 | 000,135,824 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2012-07-02 09:32:21 | 000,107,898 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2012-07-01 11:58:21 | 000,000,777 | ---- | M] () -- C:\Users\KRIS\Desktop\XSplit Broadcaster.lnk [2012-07-01 09:03:14 | 000,000,751 | ---- | M] () -- C:\Users\KRIS\Desktop\Counter Strike 1.6 Non Steam.lnk [2012-07-01 08:57:43 | 000,000,477 | ---- | M] () -- C:\Users\Public\Desktop\Counter-Strike 1.6.lnk [2012-06-30 12:13:11 | 1519,417,223 | ---- | M] () -- C:\Users\KRIS\Desktop\LOLPBE.zip [2012-06-29 19:01:33 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempDd4364.html [2012-06-29 19:01:33 | 000,002,089 | ---- | M] () -- C:\Users\KRIS\AppData\Local\Tempfu4364.html [2012-06-29 18:14:31 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempCn2568.html [2012-06-29 18:14:31 | 000,002,089 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempuA2568.html [2012-06-29 12:10:27 | 000,044,544 | ---- | M] () -- C:\Users\KRIS\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-06-28 22:01:56 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempAIt844.html [2012-06-28 19:36:47 | 000,001,080 | ---- | M] () -- C:\Windows\System32\settingsbkup.sfm [2012-06-28 19:36:47 | 000,001,080 | ---- | M] () -- C:\Windows\System32\settings.sfm [2012-06-28 16:29:17 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempWn2552.html [2012-06-28 16:29:17 | 000,002,089 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempQk2552.html [2012-06-27 19:19:20 | 000,638,104 | ---- | M] (Microsoft Corporation) -- C:\Users\KRIS\Desktop\gfwlivesetup.exe [2012-06-27 19:01:27 | 004,649,472 | ---- | M] () -- C:\Users\KRIS\Desktop\wllogin_32.msi [2012-06-27 17:44:00 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempPE5188.html [2012-06-27 17:44:00 | 000,002,089 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempPg5188.html [2012-06-27 16:50:51 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempgX5432.html [2012-06-27 14:10:22 | 013,926,041 | ---- | M] () -- C:\Users\KRIS\Desktop\Tekkit_Server_3.0.4.zip [2012-06-27 12:29:45 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempSv3288.html [2012-06-27 09:22:54 | 000,002,229 | ---- | M] () -- C:\Users\KRIS\Desktop\Skype.lnk [2012-06-26 20:00:48 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempIZ7524.html [2012-06-26 20:00:48 | 000,002,089 | ---- | M] () -- C:\Users\KRIS\AppData\Local\Tempfd7524.html [2012-06-26 18:50:23 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\Tempox2988.html [2012-06-24 22:15:44 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempaI3596.html [2012-06-24 22:15:44 | 000,002,089 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempEH3596.html [2012-06-24 18:44:55 | 1615,309,589 | ---- | M] (Nexon) -- C:\Users\KRIS\Desktop\Combatarms_eu.exe [2012-06-24 14:07:10 | 000,001,575 | ---- | M] () -- C:\Users\KRIS\Desktop\Action!.lnk [2012-06-24 14:05:41 | 021,801,196 | ---- | M] () -- C:\Users\KRIS\Desktop\Mirillis Action.rar [2012-06-24 10:08:15 | 001,443,799 | ---- | M] () -- C:\Users\KRIS\Desktop\canary-b10.2.zip [2012-06-24 10:00:01 | 001,166,834 | ---- | M] () -- C:\Users\KRIS\Desktop\canary-b8.zip [2012-06-24 09:57:23 | 001,163,331 | ---- | M] () -- C:\Users\KRIS\Desktop\canary-b7.zip [2012-06-23 23:49:15 | 019,950,976 | ---- | M] () -- C:\Users\KRIS\Desktop\action_1_4_0_setup.exe [2012-06-23 15:56:18 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempVi1860.html [2012-06-23 14:13:43 | 000,000,000 | -H-- | M] () -- C:\Users\KRIS\Documents\Default.rdp [2012-06-23 09:51:26 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe [2012-06-23 09:51:25 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2012-06-22 18:13:15 | 000,000,589 | ---- | M] () -- C:\Users\KRIS\Desktop\Tony Hawk's Pro Skater 3.lnk [2012-06-22 09:28:55 | 127,361,180 | ---- | M] () -- C:\Users\KRIS\Desktop\Tony Hawk s 3 Pro Skater.nrg [2012-06-21 22:52:49 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempHt3264.html [2012-06-21 17:04:38 | 000,000,060 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts [2012-06-21 16:48:26 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempURX912.html [2012-06-21 16:48:26 | 000,002,089 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempkjC912.html [2012-06-21 16:17:05 | 001,970,886 | ---- | M] () -- C:\Users\KRIS\Desktop\Fancy - Slice me nice.mp3 [2012-06-21 15:48:59 | 000,015,846 | ---- | M] () -- C:\Windows\DIIUnin.dat [2012-06-21 15:45:58 | 000,106,496 | ---- | M] (Blizzard Entertainment) -- C:\Windows\DIIUnin.exe [2012-06-21 15:45:58 | 000,002,829 | ---- | M] () -- C:\Windows\DIIUnin.pif [2012-06-21 15:20:20 | 009,497,246 | ---- | M] () -- C:\Users\KRIS\Desktop\diablo_2_pl_patch_112a.zip [2012-06-21 10:13:23 | 000,002,224 | ---- | M] () -- C:\Users\KRIS\Santander2.rtf [2012-06-20 22:44:11 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\Tempky3364.html [2012-06-20 19:45:56 | 000,000,762 | ---- | M] () -- C:\Users\Public\Desktop\GBoost.lnk [2012-06-20 19:31:01 | 005,416,754 | ---- | M] () -- C:\Users\KRIS\Desktop\Tony Hawk's Pro skater 4 - Poradnik.pdf [2012-06-20 19:28:17 | 005,435,543 | ---- | M] (Blizzard Entertainment) -- C:\Users\KRIS\Desktop\LODPatch_113c.exe [2012-06-20 14:23:11 | 000,025,485 | ---- | M] () -- C:\Users\KRIS\Desktop\MineshafterSquared-Client.jar [2012-06-20 13:20:23 | 032,654,985 | ---- | M] () -- C:\Users\KRIS\Desktop\The Forgotten Land 2.0.rar [2012-06-19 21:12:55 | 000,089,899 | ---- | M] () -- C:\Users\KRIS\Bez tytułu.jpg [2012-06-19 20:49:24 | 014,938,112 | ---- | M] () -- C:\Users\KRIS\Documents\Metin2Mod_2010SF_09062012.exe [2012-06-19 20:33:10 | 006,044,369 | ---- | M] () -- C:\Users\KRIS\Desktop\Project nowy.zip [2012-06-18 21:44:55 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\Tempfu4164.html [2012-06-18 20:09:07 | 000,021,840 | ---- | M] () -- C:\Windows\System32\SIntfNT.dll [2012-06-18 20:09:07 | 000,017,212 | ---- | M] () -- C:\Windows\System32\SIntf32.dll [2012-06-18 20:09:07 | 000,012,067 | ---- | M] () -- C:\Windows\System32\SIntf16.dll [2012-06-18 17:20:46 | 002,520,431 | ---- | M] () -- C:\Users\KRIS\Desktop\THPS 4 - spolszczenie (www.pobieralnia.pl).rar [2012-06-18 15:05:46 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\Temppz4732.html [2012-06-18 10:28:17 | 006,150,055 | ---- | M] () -- C:\Users\KRIS\Desktop\Pavulon5 - Pomieszczenie.mp3 [2012-06-17 21:36:50 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TemprE5776.html [2012-06-17 21:35:21 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempVo3624.html [2012-06-17 20:28:42 | 000,000,800 | ---- | M] () -- C:\Users\KRIS\Desktop\THPS4.lnk [2012-06-17 14:17:05 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempCY2856.html [2012-06-17 07:55:28 | 000,001,656 | ---- | M] () -- C:\Users\KRIS\Desktop\Tony Hawks Pro Skater 4.lnk [2012-06-17 01:14:36 | 054,591,393 | ---- | M] () -- C:\Users\KRIS\Desktop\blowbox11.rar [2012-06-16 23:53:49 | 000,460,480 | ---- | M] () -- C:\Users\KRIS\Desktop\patcher.rar [2012-06-16 22:44:44 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempADI856.html [2012-06-16 22:37:49 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Access.dat [2012-06-16 21:24:23 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempqI1664.html [2012-06-16 15:24:02 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempjL4388.html [2012-06-16 09:48:04 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempmU5136.html [2012-06-15 16:35:06 | 001,865,353 | ---- | M] () -- C:\Users\KRIS\Documents\Bez tytułu.png [2012-06-15 12:16:41 | 000,000,834 | ---- | M] () -- C:\Users\KRIS\.recently-used.xbel [2012-06-14 20:06:30 | 000,151,949 | R--- | M] () -- C:\Users\KRIS\Desktop\MineshafterSquared-Client.exe [2012-06-13 20:21:09 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempcP7696.html [2012-06-13 14:25:12 | 000,096,457 | ---- | M] () -- C:\Users\KRIS\Desktop\Technicshafter-Squared.exe [2012-06-13 11:48:46 | 000,002,393 | ---- | M] () -- C:\Users\KRIS\Documents\MumbleAutomaticCertificateBackup.p12 [2012-06-12 21:20:15 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempyT4116.html [2012-06-12 17:30:04 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempaQ2220.html [2012-06-11 18:00:46 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TemprK4720.html [2012-06-10 21:40:59 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\Tempko3252.html [2012-06-10 21:04:41 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\Tempaj4524.html [2012-06-10 21:04:41 | 000,002,089 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TemppI4524.html [2012-06-10 18:04:35 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempNb2760.html [2012-06-09 22:43:03 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempNU5564.html [2012-06-09 07:24:30 | 000,000,503 | ---- | M] () -- C:\Users\KRIS\Desktop\Ableton Live 8.lnk [2012-06-08 22:02:33 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempMg5960.html [2012-06-08 18:15:50 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempBX5108.html [2012-06-08 17:47:13 | 000,122,804 | ---- | M] () -- C:\Users\KRIS\Documents\cc_20120608_174707.reg [2012-06-07 22:30:26 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempoY3228.html [2012-06-07 14:07:01 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempWi1416.html [2012-06-06 22:09:37 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempeH5020.html [2012-06-05 19:42:43 | 000,002,432 | ---- | M] () -- C:\Users\KRIS\AppData\Local\TempVi5772.html [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-07-02 12:43:07 | 000,609,365 | ---- | C] () -- C:\Users\KRIS\Desktop\adwcleaner.exe [2012-07-01 11:58:21 | 000,000,777 | ---- | C] () -- C:\Users\KRIS\Desktop\XSplit Broadcaster.lnk [2012-07-01 09:03:14 | 000,000,751 | ---- | C] () -- C:\Users\KRIS\Desktop\Counter Strike 1.6 Non Steam.lnk [2012-07-01 08:57:43 | 000,000,477 | ---- | C] () -- C:\Users\Public\Desktop\Counter-Strike 1.6.lnk [2012-06-30 10:52:55 | 1519,417,223 | ---- | C] () -- C:\Users\KRIS\Desktop\LOLPBE.zip [2012-06-29 19:01:33 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempDd4364.html [2012-06-29 19:01:33 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempfu4364.html [2012-06-29 12:34:34 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempCn2568.html [2012-06-29 12:34:34 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempuA2568.html [2012-06-28 21:03:31 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempAIt844.html [2012-06-28 14:58:46 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempWn2552.html [2012-06-28 14:58:46 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempQk2552.html [2012-06-27 17:44:00 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempPE5188.html [2012-06-27 17:44:00 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempPg5188.html [2012-06-27 14:09:35 | 013,926,041 | ---- | C] () -- C:\Users\KRIS\Desktop\Tekkit_Server_3.0.4.zip [2012-06-27 14:00:58 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempgX5432.html [2012-06-27 11:14:00 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempSv3288.html [2012-06-26 20:00:48 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempIZ7524.html [2012-06-26 20:00:48 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempfd7524.html [2012-06-26 11:56:59 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempox2988.html [2012-06-24 22:15:44 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempaI3596.html [2012-06-24 22:15:44 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempEH3596.html [2012-06-24 14:03:47 | 021,801,196 | ---- | C] () -- C:\Users\KRIS\Desktop\Mirillis Action.rar [2012-06-24 10:08:15 | 001,443,799 | ---- | C] () -- C:\Users\KRIS\Desktop\canary-b10.2.zip [2012-06-24 09:59:59 | 001,166,834 | ---- | C] () -- C:\Users\KRIS\Desktop\canary-b8.zip [2012-06-24 09:57:21 | 001,163,331 | ---- | C] () -- C:\Users\KRIS\Desktop\canary-b7.zip [2012-06-23 23:48:46 | 019,950,976 | ---- | C] () -- C:\Users\KRIS\Desktop\action_1_4_0_setup.exe [2012-06-23 18:07:26 | 000,001,575 | ---- | C] () -- C:\Users\KRIS\Desktop\Action!.lnk [2012-06-23 17:49:48 | 004,649,472 | ---- | C] () -- C:\Users\KRIS\Desktop\wllogin_32.msi [2012-06-23 14:13:43 | 000,000,000 | -H-- | C] () -- C:\Users\KRIS\Documents\Default.rdp [2012-06-23 11:55:53 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempVi1860.html [2012-06-22 21:08:57 | 005,278,096 | ---- | C] () -- C:\Users\KRIS\Desktop\Moje cialo oszalalo_CLIVER.mp3 [2012-06-22 18:13:15 | 000,000,589 | ---- | C] () -- C:\Users\KRIS\Desktop\Tony Hawk's Pro Skater 3.lnk [2012-06-22 09:22:27 | 127,361,180 | ---- | C] () -- C:\Users\KRIS\Desktop\Tony Hawk s 3 Pro Skater.nrg [2012-06-21 18:05:01 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempHt3264.html [2012-06-21 16:16:56 | 001,970,886 | ---- | C] () -- C:\Users\KRIS\Desktop\Fancy - Slice me nice.mp3 [2012-06-21 15:46:01 | 000,015,846 | ---- | C] () -- C:\Windows\DIIUnin.dat [2012-06-21 15:45:58 | 000,002,829 | ---- | C] () -- C:\Windows\DIIUnin.pif [2012-06-21 15:19:43 | 009,497,246 | ---- | C] () -- C:\Users\KRIS\Desktop\diablo_2_pl_patch_112a.zip [2012-06-21 14:16:06 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempURX912.html [2012-06-21 14:16:06 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempkjC912.html [2012-06-21 10:13:23 | 000,002,224 | ---- | C] () -- C:\Users\KRIS\Santander2.rtf [2012-06-20 19:45:56 | 000,000,762 | ---- | C] () -- C:\Users\Public\Desktop\GBoost.lnk [2012-06-20 19:31:57 | 000,001,822 | ---- | C] () -- C:\Users\KRIS\GBoost_Bootstrap.log [2012-06-20 19:30:31 | 005,416,754 | ---- | C] () -- C:\Users\KRIS\Desktop\Tony Hawk's Pro skater 4 - Poradnik.pdf [2012-06-20 14:23:09 | 000,025,485 | ---- | C] () -- C:\Users\KRIS\Desktop\MineshafterSquared-Client.jar [2012-06-20 13:18:09 | 032,654,985 | ---- | C] () -- C:\Users\KRIS\Desktop\The Forgotten Land 2.0.rar [2012-06-19 21:12:55 | 000,089,899 | ---- | C] () -- C:\Users\KRIS\Bez tytułu.jpg [2012-06-19 20:44:46 | 014,938,112 | ---- | C] () -- C:\Users\KRIS\Documents\Metin2Mod_2010SF_09062012.exe [2012-06-19 20:35:25 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempky3364.html [2012-06-18 20:08:19 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll [2012-06-18 20:08:19 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll [2012-06-18 20:08:19 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll [2012-06-18 17:20:34 | 002,520,431 | ---- | C] () -- C:\Users\KRIS\Desktop\THPS 4 - spolszczenie (www.pobieralnia.pl).rar [2012-06-18 15:16:55 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempfu4164.html [2012-06-18 13:58:18 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Temppz4732.html [2012-06-18 10:27:52 | 006,150,055 | ---- | C] () -- C:\Users\KRIS\Desktop\Pavulon5 - Pomieszczenie.mp3 [2012-06-17 21:35:58 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TemprE5776.html [2012-06-17 20:28:05 | 000,000,800 | ---- | C] () -- C:\Users\KRIS\Desktop\THPS4.lnk [2012-06-17 20:12:22 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempVo3624.html [2012-06-17 19:28:49 | 006,044,369 | ---- | C] () -- C:\Users\KRIS\Desktop\Project nowy.zip [2012-06-17 13:15:21 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempCY2856.html [2012-06-17 07:55:28 | 000,001,656 | ---- | C] () -- C:\Users\KRIS\Desktop\Tony Hawks Pro Skater 4.lnk [2012-06-17 01:12:10 | 054,591,393 | ---- | C] () -- C:\Users\KRIS\Desktop\blowbox11.rar [2012-06-16 23:53:48 | 000,460,480 | ---- | C] () -- C:\Users\KRIS\Desktop\patcher.rar [2012-06-16 22:37:49 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Access.dat [2012-06-16 22:23:31 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempADI856.html [2012-06-16 20:13:27 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempqI1664.html [2012-06-16 15:15:53 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempjL4388.html [2012-06-16 09:03:07 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempmU5136.html [2012-06-15 16:34:55 | 001,865,353 | ---- | C] () -- C:\Users\KRIS\Documents\Bez tytułu.png [2012-06-15 12:16:41 | 000,000,834 | ---- | C] () -- C:\Users\KRIS\.recently-used.xbel [2012-06-14 20:06:29 | 000,151,949 | R--- | C] () -- C:\Users\KRIS\Desktop\MineshafterSquared-Client.exe [2012-06-13 14:25:11 | 000,096,457 | ---- | C] () -- C:\Users\KRIS\Desktop\Technicshafter-Squared.exe [2012-06-13 14:04:44 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempcP7696.html [2012-06-13 11:48:46 | 000,002,393 | ---- | C] () -- C:\Users\KRIS\Documents\MumbleAutomaticCertificateBackup.p12 [2012-06-12 20:06:11 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempyT4116.html [2012-06-12 16:14:51 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempaQ2220.html [2012-06-11 14:45:26 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TemprK4720.html [2012-06-10 21:04:56 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempko3252.html [2012-06-10 20:33:47 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempaj4524.html [2012-06-10 20:33:47 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TemppI4524.html [2012-06-10 16:04:34 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempNb2760.html [2012-06-09 10:49:18 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempNU5564.html [2012-06-09 07:24:30 | 000,000,503 | ---- | C] () -- C:\Users\KRIS\Desktop\Ableton Live 8.lnk [2012-06-08 21:45:00 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempMg5960.html [2012-06-08 21:35:55 | 000,000,503 | ---- | C] () -- C:\Users\KRIS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 8.lnk [2012-06-08 19:05:19 | 000,001,935 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2012.lnk [2012-06-08 17:47:09 | 000,122,804 | ---- | C] () -- C:\Users\KRIS\Documents\cc_20120608_174707.reg [2012-06-08 17:16:09 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempBX5108.html [2012-06-07 20:52:51 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempoY3228.html [2012-06-07 14:00:23 | 000,210,456 | ---- | C] () -- C:\Windows\System32\IVIresizeW7.dll [2012-06-07 14:00:23 | 000,206,360 | ---- | C] () -- C:\Windows\System32\IVIresizeA6.dll [2012-06-07 14:00:23 | 000,198,168 | ---- | C] () -- C:\Windows\System32\IVIresizeP6.dll [2012-06-07 14:00:23 | 000,198,168 | ---- | C] () -- C:\Windows\System32\IVIresizeM6.dll [2012-06-07 14:00:23 | 000,194,072 | ---- | C] () -- C:\Windows\System32\IVIresizePX.dll [2012-06-07 14:00:23 | 000,026,136 | ---- | C] () -- C:\Windows\System32\IVIresize.dll [2012-06-07 12:39:10 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempWi1416.html [2012-06-06 21:51:12 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempeH5020.html [2012-06-05 19:03:44 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempVi5772.html [2012-06-02 10:52:21 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempah7984.html [2012-06-02 10:52:21 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempeY7984.html [2012-05-30 16:30:35 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempQD3616.html [2012-05-28 15:18:54 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempHi3620.html [2012-05-28 15:18:54 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempUG3620.html [2012-05-25 20:50:28 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Temppm4996.html [2012-05-24 20:05:15 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempfg2068.html [2012-05-23 17:38:45 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempfq5160.html [2012-05-19 15:53:59 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempsS2992.html [2012-05-19 15:53:59 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempzH2992.html [2012-04-17 20:50:07 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempYF1544.html [2012-04-17 20:50:07 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempac1544.html [2012-04-08 16:28:49 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempap4972.html [2012-04-08 16:28:49 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempGC4972.html [2012-03-16 22:09:31 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempFC4420.html [2012-03-16 18:08:52 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempWf6044.html [2012-02-24 11:26:00 | 000,049,152 | ---- | C] () -- C:\Windows\System32\AudioEncoderEnum.dll [2012-01-31 19:15:42 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll [2012-01-31 19:15:42 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll [2012-01-31 19:15:42 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll [2012-01-31 19:15:42 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll [2012-01-07 23:37:21 | 000,017,408 | ---- | C] () -- C:\Users\KRIS\AppData\Local\WebpageIcons.db [2011-09-28 17:44:14 | 000,179,271 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat [2011-09-19 15:03:40 | 000,045,056 | ---- | C] () -- C:\Windows\System32\rtvcvfw32.dll [2011-09-19 09:07:46 | 000,015,360 | ---- | C] () -- C:\Windows\System32\bdmjpeg.dll [2011-09-19 09:07:32 | 000,058,368 | ---- | C] () -- C:\Windows\System32\bdmpegv.dll [2011-07-30 12:23:02 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempOk3036.html [2011-07-27 13:29:19 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempet5188.html [2011-07-25 10:23:51 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempJb2760.html [2011-07-25 10:23:51 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempMT2760.html [2011-07-21 21:56:23 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempsE5572.html [2011-07-20 11:22:21 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempxT1240.html [2011-07-16 10:30:05 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempCg2928.html [2011-07-13 18:19:50 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempYd4956.html [2011-07-13 18:19:49 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempLK4956.html [2011-07-12 11:37:55 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempkU3300.html [2011-07-12 11:37:55 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempXq3300.html [2011-07-10 20:39:56 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempCh7044.html [2011-07-10 20:39:56 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempDm7044.html [2011-07-10 12:50:22 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempbF2416.html [2011-07-09 20:52:22 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempmX3020.html [2011-07-09 20:52:22 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempvB3020.html [2011-07-08 17:12:39 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempqZ3820.html [2011-07-08 17:12:39 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempIR3820.html [2011-07-04 17:10:03 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempQn1260.html [2011-07-03 12:28:56 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempPQ2388.html [2011-07-03 12:28:56 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempPb2388.html [2011-07-03 11:01:06 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempHc4472.html [2011-07-03 11:01:06 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempnQ4472.html [2011-07-01 13:00:28 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempvn3716.html [2011-06-30 16:15:02 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempft5880.html [2011-06-30 10:44:24 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempPP4576.html [2011-06-29 10:20:11 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempKH5648.html [2011-06-28 11:36:24 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempaO1576.html [2011-06-27 11:13:13 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempIZl752.html [2011-06-27 11:13:13 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempwPM752.html [2011-06-26 17:12:45 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempcoA844.html [2011-06-26 13:45:45 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempOZ5068.html [2011-06-26 10:50:42 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempYS5468.html [2011-06-24 19:17:56 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempDd3492.html [2011-06-23 21:38:21 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempNU4584.html [2011-06-23 11:26:52 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempzs5428.html [2011-06-21 13:47:09 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Temptw5340.html [2011-06-20 14:29:25 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempGX5080.html [2011-06-18 20:58:43 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempHk3660.html [2011-06-18 17:58:13 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempwF3624.html [2011-06-18 17:16:41 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempCh5688.html [2011-06-18 17:16:41 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempNV5688.html [2011-06-12 20:24:11 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempnc3100.html [2011-06-09 17:31:55 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempaq3192.html [2011-06-07 15:03:15 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempzc4212.html [2011-06-07 15:03:15 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempkP4212.html [2011-06-07 14:34:58 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempDT5320.html [2011-06-06 19:11:31 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TemptT3244.html [2011-06-06 16:43:00 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempom3788.html [2011-06-04 12:21:12 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempPV5824.html [2011-06-03 20:57:18 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempvE5884.html [2011-06-03 13:00:21 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempaF5932.html [2011-06-03 13:00:21 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempcI5932.html [2011-04-27 11:21:38 | 003,268,096 | ---- | C] () -- C:\Windows\System32\x264vfw.dll [2011-04-27 00:08:34 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll [2011-04-15 12:22:14 | 000,000,359 | ---- | C] () -- C:\ProgramData\hpzinstall.log [2011-03-29 09:39:28 | 000,000,266 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2011-03-19 11:06:02 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll [2011-03-19 11:04:28 | 000,650,752 | ---- | C] () -- C:\Windows\System32\xvidcore.dll [2011-03-01 16:04:59 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CmdLineExt03.dll [2011-02-19 14:03:24 | 000,047,104 | ---- | C] () -- C:\Windows\System32\KMVIDC32.DLL [2011-02-14 19:52:20 | 000,000,917 | ---- | C] () -- C:\Windows\GTA-SA_Trn_Settings.ini [2011-01-30 20:57:25 | 000,000,092 | ---- | C] () -- C:\Users\KRIS\AppData\Local\fusioncache.dat [2011-01-27 17:14:08 | 000,532,480 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Sony.dll [2011-01-20 21:38:22 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TemplJr792.html [2011-01-20 21:38:22 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TemphcZ792.html [2011-01-19 18:45:04 | 000,000,746 | ---- | C] () -- C:\Windows\CoD.INI [2011-01-11 18:17:29 | 002,325,304 | ---- | C] () -- C:\Windows\System32\DK2INST.DLL [2010-12-26 13:45:41 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempij5428.html [2010-12-22 14:44:41 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempig6072.html [2010-12-22 14:44:41 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempVz6072.html [2010-12-07 18:01:00 | 000,000,632 | ---- | C] () -- C:\Windows\Sin.INI [2010-11-30 19:45:24 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempDM2800.html [2010-11-30 19:36:59 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempei3832.html [2010-11-29 19:01:44 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempmL6108.html [2010-11-29 18:51:56 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempPe1200.html [2010-11-28 16:28:07 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempME3808.html [2010-11-22 12:09:03 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempvd4468.html [2010-11-13 21:55:43 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini [2010-11-13 21:47:20 | 000,029,696 | ---- | C] () -- C:\Windows\System32\pthread.dll [2010-11-13 21:40:25 | 000,000,130 | ---- | C] () -- C:\Windows\7THLEVEL.INI [2010-11-06 22:10:58 | 000,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys [2010-11-03 19:04:52 | 000,053,248 | ---- | C] () -- C:\Windows\System32\mgxasio2.dll [2010-11-03 19:04:19 | 000,120,200 | ---- | C] () -- C:\Windows\System32\DLLDEV32i.dll [2010-11-03 19:03:59 | 000,005,937 | ---- | C] () -- C:\Windows\mgxoschk.ini [2010-10-31 22:03:56 | 000,033,792 | ---- | C] () -- C:\Windows\System32\drivers\libusb0.sys [2010-10-23 20:24:53 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempim4356.html [2010-10-03 09:09:51 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempeK2884.html [2010-09-29 14:02:50 | 000,044,771 | ---- | C] () -- C:\Windows\System32\MRT.INI [2010-09-25 09:50:58 | 000,278,728 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys [2010-09-25 09:50:57 | 000,025,416 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys [2010-09-20 16:32:51 | 000,000,019 | ---- | C] () -- C:\Windows\SoundConverter.INI [2010-09-17 09:58:45 | 000,000,029 | ---- | C] () -- C:\Windows\wordpad.ini [2010-08-25 10:02:37 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempnQ2064.html [2010-08-25 10:02:37 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempaB2064.html [2010-08-24 09:44:13 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempgpE420.html [2010-08-22 21:01:18 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempXH3516.html [2010-08-22 13:31:34 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempiZ2328.html [2010-08-17 18:32:56 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempch2740.html [2010-08-17 18:32:56 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempOY2740.html [2010-08-12 10:17:32 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempRi2376.html [2010-08-12 10:17:32 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempSs2376.html [2010-08-09 17:18:29 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempvd2732.html [2010-08-09 17:18:29 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Temppv2732.html [2010-08-09 13:38:33 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempyw2268.html [2010-08-08 14:52:21 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempct3444.html [2010-08-08 14:52:21 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempSZ3444.html [2010-08-06 19:42:34 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempNO3360.html [2010-08-06 12:33:58 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempvC2728.html [2010-08-06 12:33:58 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempQG2728.html [2010-08-06 11:06:56 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempuH3932.html [2010-08-06 09:29:25 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempvy3108.html [2010-08-05 21:50:31 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempdk2116.html [2010-08-05 21:50:31 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TemphV2116.html [2010-08-05 13:06:27 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempzS3352.html [2010-08-05 09:36:45 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Temphm3416.html [2010-08-03 13:41:23 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempoj4076.html [2010-08-03 09:09:49 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempKn4004.html [2010-08-03 09:09:49 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempdV4004.html [2010-08-02 15:37:20 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempWr3284.html [2010-08-02 15:37:20 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempqS3284.html [2010-08-02 13:32:06 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempJs5860.html [2010-07-28 17:45:01 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempkT1868.html [2010-07-28 17:45:01 | 000,002,089 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Temper1868.html [2010-07-27 15:12:45 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempzl1524.html [2010-06-12 07:47:19 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempRJ2756.html [2010-06-11 20:23:50 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempUG4804.html [2010-06-10 17:04:23 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\TempZC2248.html [2010-06-08 15:08:29 | 000,002,432 | ---- | C] () -- C:\Users\KRIS\AppData\Local\Tempdp3052.html [2010-06-01 17:54:47 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll [2010-05-25 14:13:36 | 000,000,142 | ---- | C] () -- C:\Windows\Lexstat.ini [2010-05-25 13:35:55 | 001,174,000 | ---- | C] () -- C:\Windows\System32\igmedkrn.dll [2010-05-25 13:35:55 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1302.dll [2010-05-25 13:35:55 | 000,104,636 | ---- | C] () -- C:\Windows\System32\igmedcompkrn.dll [2010-05-25 12:45:56 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini [2010-05-25 12:34:33 | 000,044,544 | ---- | C] () -- C:\Users\KRIS\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-05-25 12:23:34 | 000,413,696 | ---- | C] () -- C:\Windows\System32\lxbcutil.dll [2010-05-25 12:23:34 | 000,274,432 | ---- | C] () -- C:\Windows\System32\LXBCinst.dll [2010-05-25 10:44:55 | 000,002,032 | ---- | C] () -- C:\Users\KRIS\AppData\Local\d3d9caps.dat [2010-03-15 05:31:48 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll [2008-06-10 18:56:10 | 000,034,312 | ---- | C] () -- C:\Windows\System32\drivers\epfwtdir.sys [2008-02-11 19:55:18 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1437.dll [2007-04-12 08:10:28 | 000,105,728 | ---- | C] () -- C:\Windows\System32\APOMgrH.dll [2007-04-09 12:55:14 | 000,097,785 | ---- | C] () -- C:\Windows\System32\instwdm.ini [2007-04-09 12:55:14 | 000,000,054 | ---- | C] () -- C:\Windows\System32\ctzapxx.ini [2007-04-09 12:33:50 | 000,043,520 | ---- | C] () -- C:\Windows\System32\CTBurst.dll [2007-02-22 18:32:00 | 000,344,064 | ---- | C] () -- C:\Windows\System32\lxbccoin.dll [2007-02-05 20:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI [2006-11-02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll [2006-11-02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini [2006-10-02 09:25:18 | 000,000,307 | ---- | C] () -- C:\Windows\System32\kill.ini [2005-10-25 14:51:14 | 000,040,960 | ---- | C] () -- C:\Windows\System32\lxbcvs.dll [2005-06-16 10:17:16 | 000,071,680 | ---- | C] () -- C:\Windows\System32\ctmmactl.dll [color=#E56717]========== LOP Check ==========[/color] [2012-06-29 19:38:03 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\.minecraft [2012-06-29 19:37:53 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\.mineshaftersquared [2012-06-27 14:15:18 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\.techniclauncher [2012-06-30 10:42:36 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\.technicshaftersquared [2012-06-08 21:54:36 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Ableton [2010-11-17 10:30:21 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Acoustica [2012-06-29 13:43:41 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\AIMP [2010-12-04 12:38:23 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Antares [2012-03-25 21:55:23 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\ArcaBit [2012-03-25 10:12:03 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\ArcaVirMicroScan [2011-06-26 20:32:53 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Audio Recorder for Free [2011-07-08 21:12:49 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Avnex [2012-06-13 12:02:28 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\BANDISOFT [2011-08-11 21:06:33 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Beat Hazard [2011-02-28 18:24:42 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Bersirc [2011-04-22 09:52:52 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\blueconnect [2012-02-20 17:38:23 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Cableguys [2012-06-01 15:55:15 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Celemony Software GmbH [2010-12-02 20:52:26 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Clickteam [2011-02-01 13:23:34 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\CMplay [2011-06-17 11:00:45 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant [2010-11-14 21:19:10 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Consultia [2010-12-27 13:51:39 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\DAEMON Tools [2010-09-20 16:53:45 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Datalayer [2012-07-02 22:02:21 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\DownloaderGold [2012-03-17 14:51:11 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Dyyno [2010-10-29 14:47:29 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\fizzy [2011-06-16 21:58:51 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\foobar2000 [2012-06-28 15:01:32 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Gadu-Gadu 10 [2011-08-31 09:34:21 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\gtk-2.0 [2012-06-20 19:46:08 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\GZero [2012-07-01 20:52:44 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\hellomoto [2011-10-18 19:51:08 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Image-Line [2010-09-01 17:34:58 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\ipla [2012-03-01 11:54:51 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\iZotope [2012-05-13 12:41:38 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Kalydo [2011-02-28 20:20:35 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Leadertech [2011-06-06 20:00:21 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\LolClient [2012-05-24 15:14:25 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\LolClient2 [2010-05-27 22:08:59 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Maxthon2 [2012-06-23 18:09:43 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Mirillis [2012-06-20 19:35:42 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Mumble [2012-06-02 12:34:46 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\MxBoost [2010-11-14 17:03:37 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Nokia [2010-09-21 09:59:47 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Nokia 9300 [2011-06-03 20:56:58 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Nowe Gadu-Gadu [2010-06-01 17:03:54 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\OpenFM [2011-01-13 14:51:02 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\OxyCube [2011-08-09 18:00:13 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\PC Suite [2012-06-09 08:31:50 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\REAPER [2012-06-08 18:39:38 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\RotMG.Production [2012-03-07 18:37:57 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Samsung [2010-10-24 19:30:09 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Soldat [2011-06-06 17:50:07 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\SoMud [2012-03-17 15:05:56 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\SplitMediaLabs [2012-02-24 11:32:32 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Steinberg [2012-02-02 23:07:04 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Synthesia [2011-10-26 18:15:53 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\SynthMaker [2012-06-23 23:36:15 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\TS3Client [2011-06-21 13:35:08 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\ts3overlay [2012-06-08 19:04:49 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\TuneUp Software [2012-06-16 23:45:06 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Tunngle [2012-06-07 14:04:40 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Ulead Systems [2011-06-25 22:45:52 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\VistaCodecs [2011-06-16 21:19:57 | 000,000,000 | ---D | M] -- C:\Users\KRIS\AppData\Roaming\Waves Audio [2012-07-02 12:05:39 | 000,032,544 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2011-03-17 09:40:14 | 000,000,456 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{BCAC0850-34B2-4FC0-AC12-CC3AB010552F}.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:466F9D5D @Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:51CF25B1 @Alternate Data Stream - 105 bytes -> C:\ProgramData\TEMP:A9662AE0 < End of report >