OTL logfile created on: 2012-11-03 22:59:40 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Downloads
64bit- An unknown product  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16420)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,87 Gb Total Physical Memory | 3,07 Gb Available Physical Memory | 79,34% Memory free
4,55 Gb Paging File | 3,83 Gb Available in Paging File | 84,16% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = K:\Program Files (x86)
Drive C: | 49,03 Gb Total Space | 9,37 Gb Free Space | 19,12% Space Free | Partition Type: NTFS
 
Computer Name: DAMIAN | User Name: Damian | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-11-03 22:49:00 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Downloads\OTL (1).exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2012-10-12 02:32:22 | 000,239,616 | ---- | M] (AMD) [Auto | Stopped] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:[b]64bit:[/b] - [2012-09-20 10:10:47 | 002,367,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:[b]64bit:[/b] - [2012-09-20 09:18:03 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:[b]64bit:[/b] - [2012-09-20 07:32:59 | 000,169,984 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:[b]64bit:[/b] - [2012-09-20 07:32:58 | 000,178,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:[b]64bit:[/b] - [2012-09-20 07:31:18 | 000,116,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:[b]64bit:[/b] - [2012-09-20 07:30:41 | 000,179,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:[b]64bit:[/b] - [2012-09-20 07:30:38 | 000,169,472 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:[b]64bit:[/b] - [2012-08-29 14:22:36 | 000,208,384 | ---- | M] (Atheros Commnucations) [Auto | Stopped] -- C:\Windows\SysNative\AdminService.exe -- (AtherosSvc)
SRV:[b]64bit:[/b] - [2012-07-26 04:08:51 | 000,021,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlms\wlms.exe -- (WLMS)
SRV:[b]64bit:[/b] - [2012-07-26 04:08:04 | 001,968,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:[b]64bit:[/b] - [2012-07-26 04:07:47 | 000,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:[b]64bit:[/b] - [2012-07-26 04:07:42 | 000,263,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:[b]64bit:[/b] - [2012-07-26 04:07:40 | 000,283,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:[b]64bit:[/b] - [2012-07-26 04:07:25 | 000,012,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:[b]64bit:[/b] - [2012-07-26 04:06:36 | 000,463,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:[b]64bit:[/b] - [2012-07-26 04:06:34 | 000,743,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:[b]64bit:[/b] - [2012-07-26 04:06:33 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:[b]64bit:[/b] - [2012-07-26 04:06:33 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:[b]64bit:[/b] - [2012-07-26 04:06:00 | 000,438,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:[b]64bit:[/b] - [2012-07-26 04:05:55 | 000,059,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:[b]64bit:[/b] - [2012-07-26 04:05:34 | 000,037,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:[b]64bit:[/b] - [2012-07-26 04:05:28 | 000,207,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:[b]64bit:[/b] - [2012-07-26 04:05:24 | 000,342,016 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:[b]64bit:[/b] - [2012-07-26 04:05:08 | 000,122,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV:[b]64bit:[/b] - [2012-07-26 04:05:04 | 000,187,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:[b]64bit:[/b] - [2012-07-26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:[b]64bit:[/b] - [2012-07-26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:[b]64bit:[/b] - [2012-07-26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:[b]64bit:[/b] - [2012-07-26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:[b]64bit:[/b] - [2012-07-26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:[b]64bit:[/b] - [2012-07-26 01:24:02 | 000,336,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV - [2012-11-03 22:56:51 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-10-23 10:47:48 | 002,848,168 | ---- | M] (TeamViewer GmbH) [Auto | Stopped] -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)
SRV - [2012-10-17 23:52:47 | 003,696,632 | ---- | M] (Acronis) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe -- (afcdpsrv)
SRV - [2012-10-16 20:26:54 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-10-02 16:00:00 | 004,773,768 | ---- | M] (RealVNC Ltd) [Auto | Stopped] -- C:\Program Files\RealVNC\VNC Server\vncserver.exe -- (vncserver)
SRV - [2012-10-02 11:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Stopped] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012-09-20 09:18:03 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012-09-19 11:10:58 | 002,365,792 | ---- | M] (TuneUp Software) [Auto | Stopped] -- C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2012-08-23 00:11:48 | 001,126,888 | ---- | M] (Acronis) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe -- (AcrSch2Svc)
SRV - [2012-08-18 20:18:30 | 007,017,888 | ---- | M] (Acronis) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe -- (syncagentsrv)
SRV - [2012-08-17 03:37:50 | 000,007,168 | ---- | M] (Intel Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2012-07-26 04:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2012-07-13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-06-11 10:33:26 | 000,724,376 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012-01-05 16:42:34 | 000,075,624 | ---- | M] (Alcohol Soft Development Team) [Auto | Stopped] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe -- (AxAutoMntSrv)
SRV - [2011-12-24 11:24:36 | 000,202,296 | ---- | M] (Kaspersky Lab ZAO) [Auto | Stopped] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe -- (AVP)
SRV - [2011-06-12 10:43:28 | 051,740,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2010-10-15 19:22:00 | 000,325,200 | ---- | M] (Dritek System Inc.) [Auto | Stopped] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2010-01-09 20:34:24 | 004,925,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE -- (osppsvc)
SRV - [2010-01-09 20:20:56 | 000,174,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE -- (ose64)
SRV - [2009-12-23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Stopped] -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009-12-21 16:34:38 | 000,743,992 | ---- | M] (Infowatch) [Auto | Stopped] -- C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe -- (CSObjectsSrv)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2012-10-25 15:33:18 | 000,636,760 | ---- | M] (Kaspersky Lab) [File_System | System | Stopped] -- C:\Windows\SysNative\Drivers\klif.sys -- (KLIF)
DRV:[b]64bit:[/b] - [2012-10-19 02:13:45 | 000,560,184 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\sptd.sys -- (sptd)
DRV:[b]64bit:[/b] - [2012-10-17 23:52:48 | 000,367,200 | ---- | M] (Acronis) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\afcdp.sys -- (afcdp)
DRV:[b]64bit:[/b] - [2012-10-17 23:52:44 | 001,340,040 | ---- | M] (Acronis) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\tdrpman.sys -- (tdrpman)
DRV:[b]64bit:[/b] - [2012-10-17 23:52:39 | 001,093,256 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\tib_mounter.sys -- (tib_mounter)
DRV:[b]64bit:[/b] - [2012-10-17 23:52:37 | 000,340,104 | ---- | M] (Acronis) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\Drivers\snapman.sys -- (snapman)
DRV:[b]64bit:[/b] - [2012-10-17 23:52:36 | 000,155,272 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\fltsrv.sys -- (fltsrv)
DRV:[b]64bit:[/b] - [2012-10-16 16:13:32 | 000,231,376 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\truecrypt.sys -- (truecrypt)
DRV:[b]64bit:[/b] - [2012-10-12 02:32:26 | 010,316,800 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\atikmdag.sys -- (amdkmdag)
DRV:[b]64bit:[/b] - [2012-10-12 02:32:22 | 000,370,688 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\atikmpag.sys -- (amdkmdap)
DRV:[b]64bit:[/b] - [2012-09-20 09:31:29 | 000,068,840 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\pdc.sys -- (pdc)
DRV:[b]64bit:[/b] - [2012-09-20 08:55:33 | 000,445,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV:[b]64bit:[/b] - [2012-09-20 08:55:33 | 000,337,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV:[b]64bit:[/b] - [2012-09-20 08:55:33 | 000,212,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\UCX01000.SYS -- (UCX01000)
DRV:[b]64bit:[/b] - [2012-09-20 08:55:30 | 000,120,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:[b]64bit:[/b] - [2012-09-20 08:55:30 | 000,056,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\sdstor.sys -- (sdstor)
DRV:[b]64bit:[/b] - [2012-09-20 08:55:29 | 000,028,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:[b]64bit:[/b] - [2012-09-20 08:55:27 | 003,265,256 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2012-09-20 08:55:24 | 000,533,224 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2012-09-20 08:03:08 | 000,148,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\tpm.sys -- (TPM)
DRV:[b]64bit:[/b] - [2012-09-20 08:03:06 | 000,194,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\sdbus.sys -- (sdbus)
DRV:[b]64bit:[/b] - [2012-09-20 08:03:03 | 000,055,528 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\dam.sys -- (dam)
DRV:[b]64bit:[/b] - [2012-09-20 07:09:11 | 000,031,104 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:[b]64bit:[/b] - [2012-09-20 07:08:27 | 000,029,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\BthhfHid.sys -- (bthhfhid)
DRV:[b]64bit:[/b] - [2012-08-29 14:22:38 | 000,565,760 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\btfilter.sys -- (BtFilter)
DRV:[b]64bit:[/b] - [2012-08-22 00:12:20 | 000,055,336 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\AthDfu.sys -- (AthDfu)
DRV:[b]64bit:[/b] - [2012-08-21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:[b]64bit:[/b] - [2012-08-17 03:33:42 | 000,645,952 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\iaStorA.sys -- (iaStorA)
DRV:[b]64bit:[/b] - [2012-08-07 14:06:54 | 000,036,696 | ---- | M] (Egis Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\FPSensor.sys -- (FPSensor)
DRV:[b]64bit:[/b] - [2012-07-26 06:26:46 | 000,025,328 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2012-07-26 06:26:45 | 000,033,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\condrv.sys -- (condrv)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:58 | 000,322,800 | ---- | M] (VIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:58 | 000,106,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\VerifierExt.sys -- (VerifierExt)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:58 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\uaspstor.sys -- (UASPStor)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:57 | 000,077,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\acpiex.sys -- (acpiex)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:55 | 000,283,888 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\spaceport.sys -- (spaceport)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:55 | 000,077,552 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\storahci.sys -- (storahci)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:55 | 000,064,240 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\mvumis.sys -- (mvumis)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:55 | 000,030,960 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:52 | 000,092,400 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:52 | 000,081,136 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:52 | 000,064,752 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:51 | 000,113,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:51 | 000,081,136 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\EhStorClass.sys -- (EhStorClass)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:49 | 000,258,288 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:49 | 000,106,736 | ---- | M] (LSI) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\3ware.sys -- (3ware)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:49 | 000,076,016 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2012-07-26 06:00:48 | 000,026,352 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2012-07-26 05:57:54 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\clfs.sys -- (CLFS)
DRV:[b]64bit:[/b] - [2012-07-26 05:54:34 | 000,096,496 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV:[b]64bit:[/b] - [2012-07-26 05:53:16 | 000,067,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpci.sys -- (vpci)
DRV:[b]64bit:[/b] - [2012-07-26 05:50:20 | 000,053,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:[b]64bit:[/b] - [2012-07-26 05:44:30 | 000,258,288 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdFilter.sys -- (WdFilter)
DRV:[b]64bit:[/b] - [2012-07-26 05:36:15 | 000,034,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WdBoot.sys -- (WdBoot)
DRV:[b]64bit:[/b] - [2012-07-26 04:17:38 | 000,036,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2012-07-26 04:17:38 | 000,027,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2012-07-26 03:29:14 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mshidumdf.sys -- (mshidumdf)
DRV:[b]64bit:[/b] - [2012-07-26 03:29:08 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:[b]64bit:[/b] - [2012-07-26 03:29:03 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\HyperVideo.sys -- (HyperVideo)
DRV:[b]64bit:[/b] - [2012-07-26 03:28:52 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\BasicRender.sys -- (BasicRender)
DRV:[b]64bit:[/b] - [2012-07-26 03:27:58 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\fxppm.sys -- (FxPPM)
DRV:[b]64bit:[/b] - [2012-07-26 03:27:58 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmgencounter.sys -- (gencounter)
DRV:[b]64bit:[/b] - [2012-07-26 03:27:41 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\kdnic.sys -- (kdnic)
DRV:[b]64bit:[/b] - [2012-07-26 03:27:37 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpitime.sys -- (acpitime)
DRV:[b]64bit:[/b] - [2012-07-26 03:27:33 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\npsvctrig.sys -- (npsvctrig)
DRV:[b]64bit:[/b] - [2012-07-26 03:27:29 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:[b]64bit:[/b] - [2012-07-26 03:27:16 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\acpipagr.sys -- (acpipagr)
DRV:[b]64bit:[/b] - [2012-07-26 03:27:01 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hyperkbd.sys -- (hyperkbd)
DRV:[b]64bit:[/b] - [2012-07-26 03:26:46 | 000,062,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SerCx.sys -- (SerCx)
DRV:[b]64bit:[/b] - [2012-07-26 03:26:43 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\SpbCx.sys -- (SpbCx)
DRV:[b]64bit:[/b] - [2012-07-26 03:26:34 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2012-07-26 03:26:13 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV:[b]64bit:[/b] - [2012-07-26 03:25:57 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2012-07-26 03:25:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2012-07-26 03:25:54 | 000,038,400 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\hidi2c.sys -- (hidi2c)
DRV:[b]64bit:[/b] - [2012-07-26 03:25:26 | 000,203,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\Vid.sys -- (Vid)
DRV:[b]64bit:[/b] - [2012-07-26 03:25:22 | 000,067,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\storvsp.sys -- (storvsp)
DRV:[b]64bit:[/b] - [2012-07-26 03:25:13 | 000,045,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\wpcfltr.sys -- (wpcfltr)
DRV:[b]64bit:[/b] - [2012-07-26 03:25:12 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vmbusr.sys -- (vmbusr)
DRV:[b]64bit:[/b] - [2012-07-26 03:25:12 | 000,066,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\vpcivsp.sys -- (vpcivsp)
DRV:[b]64bit:[/b] - [2012-07-26 03:25:01 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:[b]64bit:[/b] - [2012-07-26 03:23:53 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\mslldp.sys -- (MsLldp)
DRV:[b]64bit:[/b] - [2012-07-26 03:23:42 | 000,115,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\tsusbhub.sys -- (tsusbhub)
DRV:[b]64bit:[/b] - [2012-07-26 03:23:42 | 000,097,792 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\Drivers\Ndu.sys -- (Ndu)
DRV:[b]64bit:[/b] - [2012-07-09 12:42:54 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\usbaapl64.sys -- (USBAAPL64)
DRV:[b]64bit:[/b] - [2012-06-11 10:33:46 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:[b]64bit:[/b] - [2012-06-02 15:31:37 | 000,425,472 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\k57nd60a.sys -- (k57nd60a)
DRV:[b]64bit:[/b] - [2012-06-02 15:31:32 | 002,935,808 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\athrx.sys -- (athr)
DRV:[b]64bit:[/b] - [2011-10-20 10:48:00 | 000,458,032 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\kl1.sys -- (KL1)
DRV:[b]64bit:[/b] - [2011-10-20 10:48:00 | 000,013,616 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\kl2.sys -- (kl2)
DRV:[b]64bit:[/b] - [2011-07-29 12:54:56 | 000,016,776 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\epmntdrv.sys -- (epmntdrv)
DRV:[b]64bit:[/b] - [2011-07-29 12:54:56 | 000,009,096 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\EuGdiDrv.sys -- (EuGdiDrv)
DRV:[b]64bit:[/b] - [2011-03-10 17:36:24 | 000,029,488 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\Drivers\klim6.sys -- (KLIM6)
DRV:[b]64bit:[/b] - [2010-10-15 19:26:34 | 000,315,440 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\SynTP.sys -- (SynTP)
DRV:[b]64bit:[/b] - [2009-12-14 11:44:24 | 000,085,048 | ---- | M] (Infowatch) [Kernel | Boot | Running] -- C:\Windows\SysNative\Drivers\CSCrySec.sys -- (CSCrySec)
DRV:[b]64bit:[/b] - [2009-12-14 11:44:24 | 000,066,104 | ---- | M] (Infowatch) [Kernel | System | Stopped] -- C:\Windows\SysNative\Drivers\CSVirtualDiskDrv.sys -- (CSVirtualDiskDrv)
DRV:[b]64bit:[/b] - [2009-11-02 19:27:10 | 000,022,544 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\Drivers\klmouflt.sys -- (klmouflt)
DRV:[b]64bit:[/b] - [2009-09-17 18:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\Drivers\HECIx64.sys -- (HECIx64)
DRV - [2011-07-29 12:54:56 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\epmntdrv.sys -- (epmntdrv)
DRV - [2011-07-29 12:54:56 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2010-07-01 18:11:24 | 000,012,352 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2009-06-24 18:46:50 | 000,032,256 | ---- | M] (http://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\libusb0.sys -- (libusb0)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-716422658-874431797-434333304-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Downloads
IE - HKU\S-1-5-21-716422658-874431797-434333304-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-716422658-874431797-434333304-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pl-PL
IE - HKU\S-1-5-21-716422658-874431797-434333304-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D3 52 A8 37 FE AB CD 01  [binary data]
IE - HKU\S-1-5-21-716422658-874431797-434333304-1001\..\URLSearchHook: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - No CLSID value found
IE - HKU\S-1-5-21-716422658-874431797-434333304-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-716422658-874431797-434333304-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-716422658-874431797-434333304-1001\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=112250&tt=4212_2&babsrc=SP_ss&mntrId=11d3b900000000000000d646194e65fc
IE - HKU\S-1-5-21-716422658-874431797-434333304-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-716422658-874431797-434333304-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: "uTorrentControl2 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT3072253&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.wp.pl/"
FF - prefs.js..extensions.enabledAddons: {1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}:0.4.6
FF - prefs.js..extensions.enabledAddons: {5c7beb8b-4d7f-4dd0-8257-9bf98570cbd2}:1.1
FF - prefs.js..extensions.enabledAddons: {c36177c0-224a-11da-8cd6-0800200c9a91}:3.9.81
FF - prefs.js..extensions.enabledAddons: {1280606b-2510-4fe0-97ef-9b5a22eafe30}:0.7.9.1
FF - prefs.js..extensions.enabledAddons: {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:4.19
FF - prefs.js..extensions.enabledAddons: DeviceDetection@logitech.com:1.23.0.5
FF - prefs.js..extensions.enabledAddons: firegestures@xuldev.org:1.6.18
FF - prefs.js..extensions.enabledAddons: {6E21139C-F48B-11DA-B59C-B582C6649067}:0.6.3
FF - prefs.js..extensions.enabledAddons: {1018e4d6-728f-4b20-ad56-37578a4de76b}:4.2.2
FF - prefs.js..extensions.enabledAddons: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:1.4
FF - prefs.js..extensions.enabledAddons: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.4.8.5
FF - prefs.js..extensions.enabledAddons: {81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}:7.6.0.0
FF - prefs.js..extensions.enabledAddons: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.11
FF - prefs.js..extensions.enabledAddons: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:6.3.0.11079
FF - prefs.js..extensions.enabledItems: firedownload@mozilla.org:2.0.1
FF - prefs.js..extensions.enabledItems: firegestures@xuldev.org:1.6.1
FF - prefs.js..extensions.enabledItems: smarterwiki@wikiatic.com:4.1.8
FF - prefs.js..extensions.enabledItems: support@lastpass.com:1.70.0
FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.8.2
FF - prefs.js..extensions.enabledItems: {340c2bbc-ce74-4362-90b5-7c26312808ef}:1.6.2
FF - prefs.js..extensions.enabledItems: {4BBDD651-70CF-4821-84F8-2B918CF89CA3}:6.3.3.2
FF - prefs.js..extensions.enabledItems: {6E21139C-F48B-11DA-B59C-B582C6649067}:0.6.3
FF - prefs.js..extensions.enabledItems: {81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}:7.1.1.2
FF - prefs.js..extensions.enabledItems: {88ce39f5-1e54-477c-809d-93d411720f0c}:1.3
FF - prefs.js..extensions.enabledItems: {9AA46F4F-4DC7-4c06-97AF-5035170634FE}:3.3.7
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.10
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.2
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: {e0204bd5-9d31-402b-a99d-a6aa8ffebdca}:1.2.5
FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.1
FF - prefs.js..extensions.enabledItems: KavAntiBanner@Kaspersky.ru:11.0.0.232
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:11.0.0.232
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:5.0.0.6778
FF - prefs.js..extensions.enabledItems: nasanightlaunch@example.com:0.6.20101009
FF - prefs.js..keyword.URL: "http://search.babylon.com/?affID=112250&tt=4212_2&babsrc=KW_ss&mntrId=11d3b900000000000000d646194e65fc&q="
FF - prefs.js..network.proxy.backup.gopher: ""
FF - prefs.js..network.proxy.backup.gopher_port: 0
FF - prefs.js..network.proxy.gopher: "83.175.161.227"
FF - prefs.js..network.proxy.gopher_port: 7777
FF - prefs.js..network.proxy.no_proxies_on: "127.0.0.1"
FF - prefs.js..network.proxy.socks: "127.0.0.1"
FF - prefs.js..network.proxy.socks_port: 9050
FF - prefs.js..network.proxy.socks_remote_dns: true
FF - prefs.js..network.proxy.type: 0
FF - user.js - File not found
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_4_402_287.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\linkfilter@kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\linkfilter@kaspersky.ru [2012-10-25 15:43:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\virtualKeyboard@kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\virtualKeyboard@kaspersky.ru [2012-10-25 15:43:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\KavAntiBanner@Kaspersky.ru: C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\KavAntiBanner@Kaspersky.ru [2012-10-25 15:43:44 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-11-03 22:56:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2012-10-15 00:29:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\Extensions
[2012-11-03 03:20:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\Firefox\Profiles\ytmea5eb.default\extensions
[2012-10-16 16:17:17 | 000,000,000 | ---D | M] (Flagfox) -- C:\Users\Damian\AppData\Roaming\mozilla\Firefox\Profiles\ytmea5eb.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2012-10-16 16:17:17 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Damian\AppData\Roaming\mozilla\Firefox\Profiles\ytmea5eb.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012-10-16 16:17:17 | 000,000,000 | ---D | M] ("PajacykXPI") -- C:\Users\Damian\AppData\Roaming\mozilla\Firefox\Profiles\ytmea5eb.default\extensions\{6E21139C-F48B-11DA-B59C-B582C6649067}
[2012-10-25 12:29:31 | 000,000,000 | ---D | M] (iMacros for Firefox) -- C:\Users\Damian\AppData\Roaming\mozilla\Firefox\Profiles\ytmea5eb.default\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}
[2012-11-03 03:20:40 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Damian\AppData\Roaming\mozilla\Firefox\Profiles\ytmea5eb.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012-10-16 16:17:17 | 000,000,000 | ---D | M] (Разпознаване на устройство Logitech) -- C:\Users\Damian\AppData\Roaming\mozilla\Firefox\Profiles\ytmea5eb.default\extensions\DeviceDetection@logitech.com
[2012-10-15 00:50:34 | 000,142,418 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\firegestures@xuldev.org.xpi
[2011-09-19 19:09:14 | 000,010,043 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\IplextoALL@ALLPlayer.org.xpi
[2012-10-25 08:58:42 | 002,290,783 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\nasanightlaunch@example.com.xpi
[2012-10-20 14:04:20 | 000,119,708 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\searchy@searchy.xpi
[2012-09-21 20:26:18 | 000,506,361 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi
[2012-10-25 08:00:25 | 000,340,272 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
[2011-05-09 17:18:02 | 000,079,135 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi
[2011-11-20 11:47:08 | 000,053,625 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{5c7beb8b-4d7f-4dd0-8257-9bf98570cbd2}.xpi
[2012-09-30 17:40:44 | 000,061,406 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi
[2012-07-15 12:55:34 | 000,177,357 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi
[2012-08-04 14:35:12 | 002,966,066 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{c7b3cf78-9cbc-47b9-ba47-bb84a56069dd}.xpi
[2012-07-31 22:27:50 | 000,741,958 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012-10-15 00:54:54 | 000,844,878 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{e0204bd5-9d31-402b-a99d-a6aa8ffebdca}.xpi
[2012-10-15 14:56:34 | 000,252,340 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2010-12-11 18:09:36 | 000,001,955 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{6E21139C-F48B-11DA-B59C-B582C6649067}\chrome\content\pajacykxpi-Overlay.js
[2009-05-05 14:14:32 | 000,000,247 | ---- | M] () (No name found) -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\extensions\{6E21139C-F48B-11DA-B59C-B582C6649067}\chrome\content\pajacykxpi-Overlay.xul
[2012-10-19 15:48:01 | 000,002,536 | ---- | M] () -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\searchplugins\browsemngr.xml
[2012-05-03 18:54:14 | 000,000,935 | ---- | M] () -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\searchplugins\conduit.xml
[2009-10-04 19:49:42 | 000,001,094 | ---- | M] () -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\searchplugins\pwn---sownik-jzyka-polskiego.xml
[2012-10-30 20:01:51 | 000,001,274 | ---- | M] () -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\searchplugins\pwn-sjp.xml
[2010-05-23 14:04:02 | 000,002,077 | ---- | M] () -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\searchplugins\spryciarze.xml
[2009-06-23 11:27:00 | 000,001,979 | ---- | M] () -- C:\Users\Damian\AppData\Roaming\mozilla\firefox\profiles\ytmea5eb.default\searchplugins\wrzuta.xml
[2012-10-16 22:13:53 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\EXTENSIONS\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
 
O1 HOSTS File: ([2012-07-26 06:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\ievkbd.dll (Kaspersky Lab ZAO)
O2:[b]64bit:[/b] - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O2:[b]64bit:[/b] - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ievkbd.dll (Kaspersky Lab ZAO)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\klwtbbho.dll (Kaspersky Lab ZAO)
O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4:[b]64bit:[/b] - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe File not found
O4 - HKLM..\Run: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKU\S-1-5-21-716422658-874431797-434333304-1001..\Run: [AlcoholAutomount] C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-716422658-874431797-434333304-1001..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
O4 - HKU\S-1-5-21-716422658-874431797-434333304-1001..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe (Apple Inc.)
O4 - HKU\S-1-5-21-716422658-874431797-434333304-1001..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKU\S-1-5-21-716422658-874431797-434333304-1001..\Run: [PC Suite Tray] C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe (Nokia)
O4 - HKU\S-1-5-21-716422658-874431797-434333304-1001..\Run: [thebat_startup] C:\Program Files (x86)\The Bat!\thebat.exe (Ritlabs S.R.L.)
O4 - HKU\S-1-5-21-716422658-874431797-434333304-1001..\Run: [TrueCrypt] C:\Program Files\TrueCrypt\TrueCrypt.exe (TrueCrypt Foundation)
O4 - HKU\S-1-5-21-716422658-874431797-434333304-1001..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - Startup: C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ComboFix.exe (Swearware)
O4 - Startup: C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OTL.exe (OldTimer Tools)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 60
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O8:[b]64bit:[/b] - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8:[b]64bit:[/b] - Extra context menu item: Wyślij &do programu OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Wyślij &do programu OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\ievkbd.dll (Kaspersky Lab ZAO)
O9:[b]64bit:[/b] - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9:[b]64bit:[/b] - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O9:[b]64bit:[/b] - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: &Klawiatura wirtualna - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ievkbd.dll (Kaspersky Lab ZAO)
O9 - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: &Sprawdzanie adresów internetowych - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\klwtbbho.dll (Kaspersky Lab ZAO)
O10:[b]64bit:[/b] - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{17D1CA92-7AD5-442A-90FC-C99D41043B98}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D355A518-3C8E-40D0-B6A0-669FC9CECD41}: DhcpNameServer = 192.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\klogon: DllName - (%SystemRoot%\System32\klogon.dll) - C:\Windows\SysNative\klogon.dll (Kaspersky Lab ZAO)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O27:[b]64bit:[/b] - HKLM IFEO\iastorui.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O27 - HKLM IFEO\iastorui.exe: Debugger - C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe (TuneUp Software)
O28:[b]64bit:[/b] - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) -  File not found
O32 - HKLM CDRom: AutoRun - 0
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-11-03 03:15:29 | 004,994,057 | ---- | C] (Swearware) -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ComboFix.exe
[2012-11-03 02:59:45 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OTL.exe
[2012-10-26 07:45:13 | 000,000,000 | R--D | C] -- C:\Users\Damian\Pulpit
[2012-10-26 07:30:51 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012-10-25 16:12:38 | 000,000,000 | ---D | C] -- C:\Downloads
[2012-10-25 15:26:16 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer
[2012-10-25 15:26:16 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\pl-PL
[2012-10-25 15:25:44 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\pl
[2012-10-25 15:25:39 | 000,000,000 | ---D | C] -- C:\Windows\pl-PL
[2012-10-25 15:25:24 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\pl-PL
[2012-10-25 15:24:09 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\pl
[2012-10-25 15:19:10 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\pl-PL\NdisImPlatform.sys.mui
[2012-10-25 15:19:10 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\NdisImPlatform.sys.mui
[2012-10-25 15:19:06 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\vmswitch.sys.mui
[2012-10-25 15:19:06 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\Vid.sys.mui
[2012-10-25 15:19:06 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\storvsp.sys.mui
[2012-10-25 15:19:04 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\volsnap.sys.mui
[2012-10-25 15:19:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\vhdmp.sys.mui
[2012-10-25 15:19:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\vdrvroot.sys.mui
[2012-10-25 15:19:04 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\portcls.sys.mui
[2012-10-25 15:19:04 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\USBAUDIO.sys.mui
[2012-10-25 15:19:04 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wd.sys.mui
[2012-10-25 15:19:04 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BthA2DP.sys.mui
[2012-10-25 15:19:03 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\usbport.sys.mui
[2012-10-25 15:19:03 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\USBHUB3.SYS.mui
[2012-10-25 15:19:03 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\usbhub.sys.mui
[2012-10-25 15:19:03 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\UCX01000.SYS.mui
[2012-10-25 15:19:03 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\USBXHCI.SYS.mui
[2012-10-25 15:19:03 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\tpm.sys.mui
[2012-10-25 15:19:03 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\spaceport.sys.mui
[2012-10-25 15:19:03 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\usbehci.sys.mui
[2012-10-25 15:19:03 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\umbus.sys.mui
[2012-10-25 15:19:03 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\usbvideo.sys.mui
[2012-10-25 15:19:03 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\serscan.sys.mui
[2012-10-25 15:19:01 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\rdvgkmd.sys.mui
[2012-10-25 15:19:01 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\sdbus.sys.mui
[2012-10-25 15:19:01 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\dumpsd.sys.mui
[2012-10-25 15:19:01 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\sdstor.sys.mui
[2012-10-25 15:19:01 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\rfxvmt.sys.mui
[2012-10-25 15:19:00 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wmbclass.sys.mui
[2012-10-25 15:19:00 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\pcmcia.sys.mui
[2012-10-25 15:19:00 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\rndismpx.sys.mui
[2012-10-25 15:19:00 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\rndismp6.sys.mui
[2012-10-25 15:19:00 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\vwifibus.sys.mui
[2012-10-25 15:18:57 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\i8042prt.sys.mui
[2012-10-25 15:18:57 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\serial.sys.mui
[2012-10-25 15:18:57 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ataport.sys.mui
[2012-10-25 15:18:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\sermouse.sys.mui
[2012-10-25 15:18:57 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mouclass.sys.mui
[2012-10-25 15:18:57 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\parport.sys.mui
[2012-10-25 15:18:57 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mssmbios.sys.mui
[2012-10-25 15:18:57 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mouhid.sys.mui
[2012-10-25 15:18:57 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\MTConfig.sys.mui
[2012-10-25 15:18:56 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\afd.sys.mui
[2012-10-25 15:18:53 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wdf01000.sys.mui
[2012-10-25 15:18:53 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ws2ifsl.sys.mui
[2012-10-25 15:18:52 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\usbrpm.sys.mui
[2012-10-25 15:18:50 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\tcpip.sys.mui
[2012-10-25 15:18:50 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\tunnel.sys.mui
[2012-10-25 15:18:50 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\modem.sys.mui
[2012-10-25 15:18:49 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\srv2.sys.mui
[2012-10-25 15:18:49 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mrxsmb.sys.mui
[2012-10-25 15:18:47 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\fvevol.sys.mui
[2012-10-25 15:18:47 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\scfilter.sys.mui
[2012-10-25 15:18:44 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\pacer.sys.mui
[2012-10-25 15:18:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\rdbss.sys.mui
[2012-10-25 15:18:44 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\qwavedrv.sys.mui
[2012-10-25 15:18:43 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\pdc.sys.mui
[2012-10-25 15:18:42 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\partmgr.sys.mui
[2012-10-25 15:18:37 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ntfs.sys.mui
[2012-10-25 15:18:37 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ndis.sys.mui
[2012-10-25 15:18:37 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ndisuio.sys.mui
[2012-10-25 15:18:36 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\pl-PL\ndiscap.sys.mui
[2012-10-25 15:18:36 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ndiscap.sys.mui
[2012-10-25 15:18:36 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\pl-PL\wfplwfs.sys.mui
[2012-10-25 15:18:36 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wfplwfs.sys.mui
[2012-10-25 15:18:36 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mshidumdf.sys.mui
[2012-10-25 15:18:34 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mountmgr.sys.mui
[2012-10-25 15:18:31 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\mslldp.sys.mui
[2012-10-25 15:18:30 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\luafv.sys.mui
[2012-10-25 15:18:18 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\http.sys.mui
[2012-10-25 15:18:17 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\fltmgr.sys.mui
[2012-10-25 15:18:16 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\volmgrx.sys.mui
[2012-10-25 15:18:15 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wudfpf.sys.mui
[2012-10-25 15:18:07 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\bthport.sys.mui
[2012-10-25 15:18:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\processr.sys.mui
[2012-10-25 15:18:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\intelppm.sys.mui
[2012-10-25 15:18:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\amdppm.sys.mui
[2012-10-25 15:18:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\amdk8.sys.mui
[2012-10-25 15:18:07 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\1394ohci.sys.mui
[2012-10-25 15:18:07 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\acpi.sys.mui
[2012-10-25 15:18:07 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\pci.sys.mui
[2012-10-25 15:18:07 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\EhStorTcgDrv.sys.mui
[2012-10-25 15:18:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\battc.sys.mui
[2012-10-25 15:18:07 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\IPMIDrv.sys.mui
[2012-10-25 15:18:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\disk.sys.mui
[2012-10-25 15:18:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BthLEEnum.sys.mui
[2012-10-25 15:18:07 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\kbdclass.sys.mui
[2012-10-25 15:18:07 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\bthpan.sys.mui
[2012-10-25 15:18:07 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\wacompen.sys.mui
[2012-10-25 15:18:07 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\isapnp.sys.mui
[2012-10-25 15:18:07 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\hdaudbus.sys.mui
[2012-10-25 15:18:07 | 000,003,584 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\pl-PL\atikmdag.sys.mui
[2012-10-25 15:18:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\ULIAGPKX.SYS.mui
[2012-10-25 15:18:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\hidi2c.sys.mui
[2012-10-25 15:18:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\hidbth.sys.mui
[2012-10-25 15:18:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\HdAudio.sys.mui
[2012-10-25 15:18:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\GAGP30KX.SYS.mui
[2012-10-25 15:18:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BthMini.SYS.mui
[2012-10-25 15:18:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\bthhfenum.sys.mui
[2012-10-25 15:18:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\UAGP35.SYS.mui
[2012-10-25 15:18:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\pnpmem.sys.mui
[2012-10-25 15:18:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\NV_AGP.SYS.mui
[2012-10-25 15:18:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\kbdhid.sys.mui
[2012-10-25 15:18:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\cdrom.sys.mui
[2012-10-25 15:18:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BTHUSB.SYS.mui
[2012-10-25 15:18:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BthhfHid.sys.mui
[2012-10-25 15:18:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\BthAvrcpTg.sys.mui
[2012-10-25 15:18:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\AGP440.sys.mui
[2012-10-25 15:18:07 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pl-PL\bthenum.sys.mui
[2012-10-23 22:23:26 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\TeamViewer
[2012-10-22 02:48:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2012-10-21 15:32:23 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2012-10-21 15:10:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
[2012-10-21 15:10:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2012-10-21 15:09:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2012-10-21 15:08:22 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2012-10-21 15:05:18 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Microsoft Help
[2012-10-21 15:05:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2012-10-21 15:04:44 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2012-10-19 15:47:44 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\URSoft
[2012-10-19 15:47:43 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2012-10-19 15:47:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
[2012-10-19 15:47:31 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Babylon
[2012-10-19 15:47:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012-10-19 15:46:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alcohol 120%
[2012-10-19 06:28:43 | 000,080,736 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012-10-19 06:28:42 | 000,695,648 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012-10-19 03:52:32 | 002,398,112 | ---- | C] (Hewlett Packard) -- C:\Windows\SysNative\hppldcoi.dll
[2012-10-19 02:38:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2012-10-19 02:13:45 | 000,560,184 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\SysNative\drivers\sptd.sys
[2012-10-19 01:52:15 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\PC Suite
[2012-10-19 01:52:15 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Nokia
[2012-10-19 01:52:13 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Suite
[2012-10-19 01:51:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia PC Suite
[2012-10-19 01:51:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PCSuite
[2012-10-19 01:51:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nokia
[2012-10-19 01:51:34 | 000,026,112 | ---- | C] (Nokia) -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys
[2012-10-19 01:51:15 | 000,057,856 | ---- | C] (Nokia) -- C:\Windows\SysNative\nmwcdclsX64.dll
[2012-10-19 01:49:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Installations
[2012-10-18 13:41:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Qualcomm Atheros
[2012-10-18 13:38:57 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Diagnostics
[2012-10-18 13:33:56 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Acronis
[2012-10-18 13:24:07 | 000,000,000 | R--D | C] -- C:\Windows\BrowserChoice
[2012-10-18 12:30:00 | 000,000,000 | ---D | C] -- C:\D&S
[2012-10-18 01:15:02 | 001,034,216 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\npDeployJava1.dll
[2012-10-18 01:15:02 | 000,916,456 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
[2012-10-18 01:15:02 | 000,289,768 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2012-10-18 01:14:54 | 000,189,416 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2012-10-18 01:14:54 | 000,188,904 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2012-10-18 01:14:54 | 000,108,008 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2012-10-18 00:40:00 | 000,041,984 | ---- | C] (http://libusb-win32.sourceforge.net) -- C:\Windows\SysWow64\libusb0.dll
[2012-10-18 00:40:00 | 000,032,256 | ---- | C] (http://libusb-win32.sourceforge.net) -- C:\Windows\SysWow64\drivers\libusb0.sys
[2012-10-18 00:36:00 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\redsn0w
[2012-10-17 23:52:48 | 000,367,200 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\afcdp.sys
[2012-10-17 23:52:44 | 001,340,040 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\tdrpman.sys
[2012-10-17 23:52:39 | 001,093,256 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\tib_mounter.sys
[2012-10-17 23:52:37 | 000,340,104 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\snapman.sys
[2012-10-17 23:52:36 | 000,155,272 | ---- | C] (Acronis) -- C:\Windows\SysNative\drivers\fltsrv.sys
[2012-10-17 23:52:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Acronis
[2012-10-17 23:52:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acronis
[2012-10-17 23:52:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Acronis
[2012-10-17 23:46:43 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\iFunbox_UserCache
[2012-10-17 23:46:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\i-Funbox DevTeam
[2012-10-17 23:40:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\NetDragon
[2012-10-17 23:05:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinSCP
[2012-10-17 16:10:02 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2012-10-17 16:09:38 | 013,640,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Xaml.dll
[2012-10-17 16:09:38 | 002,367,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSService.dll
[2012-10-17 16:09:33 | 010,092,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinui.dll
[2012-10-17 16:09:30 | 003,265,256 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\evbda.sys
[2012-10-17 16:09:29 | 008,846,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinui.dll
[2012-10-17 16:09:26 | 014,259,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2012-10-17 16:09:25 | 010,791,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Xaml.dll
[2012-10-17 16:09:24 | 003,553,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2012-10-17 16:09:23 | 003,966,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012-10-17 16:09:22 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentServer.dll
[2012-10-17 16:09:20 | 002,397,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WpcMon.exe
[2012-10-17 16:09:19 | 002,116,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2012-10-17 16:09:18 | 003,847,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2012-10-17 16:09:18 | 001,172,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetsrc.dll
[2012-10-17 16:09:17 | 000,929,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetsrc.dll
[2012-10-17 16:09:16 | 011,875,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2012-10-17 16:09:16 | 003,964,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSAT.exe
[2012-10-17 16:09:15 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfnetcore.dll
[2012-10-17 16:09:14 | 002,206,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2012-10-17 16:09:14 | 001,524,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfcore.dll
[2012-10-17 16:09:14 | 000,673,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmpeg2srcsnk.dll
[2012-10-17 16:09:14 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfnetcore.dll
[2012-10-17 16:09:14 | 000,533,224 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\bxvbda.sys
[2012-10-17 16:09:14 | 000,513,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmpeg2srcsnk.dll
[2012-10-17 16:09:13 | 002,764,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2012-10-17 16:09:13 | 001,513,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vssapi.dll
[2012-10-17 16:09:12 | 001,825,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2012-10-17 16:09:12 | 001,449,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfcore.dll
[2012-10-17 16:09:12 | 000,945,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\resetengmig.dll
[2012-10-17 16:09:11 | 001,610,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2012-10-17 16:09:10 | 002,219,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2012-10-17 16:09:10 | 001,841,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2012-10-17 16:09:10 | 001,739,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RacEngn.dll
[2012-10-17 16:09:10 | 001,019,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.dll
[2012-10-17 16:09:09 | 001,304,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Media.Streaming.dll
[2012-10-17 16:09:09 | 001,096,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2012-10-17 16:09:09 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uDWM.dll
[2012-10-17 16:09:08 | 002,302,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2012-10-17 16:09:08 | 000,907,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxtheme.dll
[2012-10-17 16:09:08 | 000,792,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfplat.dll
[2012-10-17 16:09:08 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\provcore.dll
[2012-10-17 16:09:08 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SHCore.dll
[2012-10-17 16:09:08 | 000,490,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEng.dll
[2012-10-17 16:09:08 | 000,447,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2012-10-17 16:09:08 | 000,389,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MMDevAPI.dll
[2012-10-17 16:09:07 | 001,403,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2012-10-17 16:09:07 | 000,767,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012-10-17 16:09:07 | 000,580,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2012-10-17 16:09:07 | 000,543,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlroamextension.dll
[2012-10-17 16:09:07 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2012-10-17 16:09:07 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ubpm.dll
[2012-10-17 16:09:07 | 000,253,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2012-10-17 16:09:06 | 001,267,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2012-10-17 16:09:06 | 001,145,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winmde.dll
[2012-10-17 16:09:06 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSATAPI.dll
[2012-10-17 16:09:05 | 001,357,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.UI.Immersive.dll
[2012-10-17 16:09:05 | 001,093,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2012-10-17 16:09:05 | 001,009,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\reseteng.dll
[2012-10-17 16:09:04 | 001,619,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012-10-17 16:09:04 | 001,217,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2012-10-17 16:09:04 | 000,995,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Media.Streaming.dll
[2012-10-17 16:09:04 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll
[2012-10-17 16:09:04 | 000,488,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2012-10-17 16:09:04 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2012-10-17 16:09:03 | 001,743,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\combase.dll
[2012-10-17 16:09:03 | 001,590,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2012-10-17 16:09:03 | 000,709,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsSpellCheckingFacility.dll
[2012-10-17 16:09:03 | 000,468,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFMediaEngine.dll
[2012-10-17 16:09:03 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SHCore.dll
[2012-10-17 16:09:03 | 000,246,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ubpm.dll
[2012-10-17 16:09:03 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFPlay.dll
[2012-10-17 16:09:03 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IPHLPAPI.DLL
[2012-10-17 16:09:02 | 002,033,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2012-10-17 16:09:02 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2012-10-17 16:09:02 | 000,559,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmp4srcsnk.dll
[2012-10-17 16:09:02 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WWAHost.exe
[2012-10-17 16:09:01 | 000,640,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSShared.dll
[2012-10-17 16:09:01 | 000,611,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfplat.dll
[2012-10-17 16:09:01 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUSettingsProvider.dll
[2012-10-17 16:09:00 | 000,866,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinTypes.dll
[2012-10-17 16:09:00 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2012-10-17 16:09:00 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserLanguagesCpl.dll
[2012-10-17 16:09:00 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2012-10-17 16:09:00 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
[2012-10-17 16:09:00 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rascfg.dll
[2012-10-17 16:08:59 | 001,184,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.UI.Immersive.dll
[2012-10-17 16:08:59 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll
[2012-10-17 16:08:59 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsrcsnk.dll
[2012-10-17 16:08:59 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskeng.exe
[2012-10-17 16:08:59 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfsvr.dll
[2012-10-17 16:08:59 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
[2012-10-17 16:08:59 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlidcredprov.dll
[2012-10-17 16:08:59 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdsrv.dll
[2012-10-17 16:08:59 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rascfg.dll
[2012-10-17 16:08:58 | 001,400,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\propsys.dll
[2012-10-17 16:08:58 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VAN.dll
[2012-10-17 16:08:58 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlroamextension.dll
[2012-10-17 16:08:58 | 000,337,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBXHCI.SYS
[2012-10-17 16:08:58 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012-10-17 16:08:58 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSATAPI.dll
[2012-10-17 16:08:58 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpnprv.dll
[2012-10-17 16:08:57 | 001,046,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
[2012-10-17 16:08:57 | 000,445,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBHUB3.SYS
[2012-10-17 16:08:57 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\services.exe
[2012-10-17 16:08:57 | 000,396,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll
[2012-10-17 16:08:57 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapibase.dll
[2012-10-17 16:08:57 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSClient.dll
[2012-10-17 16:08:56 | 000,891,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winmde.dll
[2012-10-17 16:08:56 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appwiz.cpl
[2012-10-17 16:08:56 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFMediaEngine.dll
[2012-10-17 16:08:56 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bisrv.dll
[2012-10-17 16:08:56 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psmsrv.dll
[2012-10-17 16:08:55 | 000,707,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AppXDeploymentExtensions.dll
[2012-10-17 16:08:55 | 000,548,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll
[2012-10-17 16:08:55 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSShared.dll
[2012-10-17 16:08:55 | 000,522,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AUDIOKSE.dll
[2012-10-17 16:08:55 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmp4srcsnk.dll
[2012-10-17 16:08:55 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.Connectivity.dll
[2012-10-17 16:08:55 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhengine.dll
[2012-10-17 16:08:55 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll
[2012-10-17 16:08:55 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSSync.dll
[2012-10-17 16:08:55 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSClient.dll
[2012-10-17 16:08:55 | 000,028,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpiowin32.sys
[2012-10-17 16:08:54 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appwiz.cpl
[2012-10-17 16:08:54 | 000,602,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2012-10-17 16:08:54 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpncore.dll
[2012-10-17 16:08:54 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2012-10-17 16:08:54 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WWAHost.exe
[2012-10-17 16:08:54 | 000,194,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdbus.sys
[2012-10-17 16:08:54 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll
[2012-10-17 16:08:54 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSSync.dll
[2012-10-17 16:08:54 | 000,120,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msgpioclx.sys
[2012-10-17 16:08:54 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PackageStateRoaming.dll
[2012-10-17 16:08:54 | 000,058,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012-10-17 16:08:53 | 001,369,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RacEngn.dll
[2012-10-17 16:08:53 | 000,963,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll
[2012-10-17 16:08:53 | 000,533,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\provcore.dll
[2012-10-17 16:08:53 | 000,503,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2012-10-17 16:08:53 | 000,463,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AUDIOKSE.dll
[2012-10-17 16:08:53 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.BackgroundTransfer.dll
[2012-10-17 16:08:53 | 000,287,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\portcls.sys
[2012-10-17 16:08:53 | 000,256,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvproc.dll
[2012-10-17 16:08:53 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ProximityService.dll
[2012-10-17 16:08:53 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2012-10-17 16:08:53 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll
[2012-10-17 16:08:53 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TpmTasks.dll
[2012-10-17 16:08:53 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PackageStateRoaming.dll
[2012-10-17 16:08:53 | 000,068,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pdc.sys
[2012-10-17 16:08:53 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2012-10-17 16:08:53 | 000,055,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dam.sys
[2012-10-17 16:08:52 | 002,007,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\batmeter.dll
[2012-10-17 16:08:52 | 001,247,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\combase.dll
[2012-10-17 16:08:52 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfasfsrcsnk.dll
[2012-10-17 16:08:52 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserLanguagesCpl.dll
[2012-10-17 16:08:52 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twinapi.dll
[2012-10-17 16:08:52 | 000,480,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2012-10-17 16:08:52 | 000,449,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsrcsnk.dll
[2012-10-17 16:08:52 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2012-10-17 16:08:52 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\microsoft-windows-kernel-power-events.dll
[2012-10-17 16:08:52 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhostex.exe
[2012-10-17 16:08:52 | 000,062,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpfve.sys
[2012-10-17 16:08:52 | 000,056,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sdstor.sys
[2012-10-17 16:08:52 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2012-10-17 16:08:52 | 000,027,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\avrt.dll
[2012-10-17 16:08:51 | 002,016,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\batmeter.dll
[2012-10-17 16:08:51 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinTypes.dll
[2012-10-17 16:08:51 | 000,444,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2012-10-17 16:08:51 | 000,411,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2012-10-17 16:08:51 | 000,303,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2012-10-17 16:08:51 | 000,212,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UCX01000.SYS
[2012-10-17 16:08:51 | 000,148,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tpm.sys
[2012-10-17 16:08:51 | 000,124,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dumpsd.sys
[2012-10-17 16:08:51 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SettingSyncHost.exe
[2012-10-17 16:08:51 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2012-10-17 16:08:51 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012-10-17 16:08:51 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012-10-17 16:08:51 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfdisk.dll
[2012-10-17 16:08:51 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfdisk.dll
[2012-10-17 16:08:51 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\svchost.exe
[2012-10-17 16:08:51 | 000,021,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2012-10-17 16:08:51 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuaext.dll
[2012-10-17 16:08:50 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfasfsrcsnk.dll
[2012-10-17 16:08:50 | 000,516,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2012-10-17 16:08:50 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfsvr.dll
[2012-10-17 16:08:50 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlidcredprov.dll
[2012-10-17 16:08:50 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2012-10-17 16:08:50 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.Connectivity.dll
[2012-10-17 16:08:50 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhevents.dll
[2012-10-17 16:08:49 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2012-10-17 16:08:49 | 001,342,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2012-10-17 16:08:49 | 000,745,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2012-10-17 16:08:49 | 000,699,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twinapi.dll
[2012-10-17 16:08:49 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2012-10-17 16:08:49 | 000,627,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetup.exe
[2012-10-17 16:08:49 | 000,437,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfh264enc.dll
[2012-10-17 16:08:49 | 000,413,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfh264enc.dll
[2012-10-17 16:08:49 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2012-10-17 16:08:49 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvproc.dll
[2012-10-17 16:08:49 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012-10-17 16:08:49 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\storewuauth.dll
[2012-10-17 16:08:49 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevPropMgr.dll
[2012-10-17 16:08:49 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwm.exe
[2012-10-17 16:08:49 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2012-10-17 16:08:49 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012-10-17 16:08:49 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2012-10-17 16:08:49 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SettingSyncHost.exe
[2012-10-17 16:08:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2012-10-17 16:08:49 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfnet.dll
[2012-10-17 16:08:48 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2012-10-17 16:08:48 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhcfg.dll
[2012-10-17 16:08:48 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2012-10-17 16:08:48 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2012-10-17 16:08:48 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.dll
[2012-10-17 16:08:48 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFCaptureEngine.dll
[2012-10-17 16:08:48 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DAFWSD.dll
[2012-10-17 16:08:48 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesysprep.dll
[2012-10-17 16:08:48 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFCaptureEngine.dll
[2012-10-17 16:08:48 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvinst.exe
[2012-10-17 16:08:48 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2012-10-17 16:08:47 | 002,066,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2012-10-17 16:08:47 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2012-10-17 16:08:46 | 001,701,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2012-10-17 16:08:46 | 000,588,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2012-10-17 16:08:46 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2012-10-17 16:08:46 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SysFxUI.dll
[2012-10-17 16:08:46 | 000,280,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhcat.dll
[2012-10-17 16:08:46 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2012-10-17 16:08:46 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsquirt.exe
[2012-10-17 16:08:46 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfos.dll
[2012-10-17 16:08:46 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll
[2012-10-17 16:08:46 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TimeBrokerServer.dll
[2012-10-17 16:08:46 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioEndpointBuilder.dll
[2012-10-17 16:08:46 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2012-10-17 16:08:46 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.dll
[2012-10-17 16:08:46 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CscMig.dll
[2012-10-17 16:08:46 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysreset.exe
[2012-10-17 16:08:46 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnApi.dll
[2012-10-17 16:08:46 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2012-10-17 16:08:46 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsvc.dll
[2012-10-17 16:08:46 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dafWCN.dll
[2012-10-17 16:08:46 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WcnApi.dll
[2012-10-17 16:08:46 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpremove.exe
[2012-10-17 16:08:46 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsrchapi.dll
[2012-10-17 16:08:46 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UXInit.dll
[2012-10-17 16:08:46 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BdeUISrv.exe
[2012-10-17 16:08:46 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UXInit.dll
[2012-10-17 16:08:46 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2012-10-17 16:08:46 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2012-10-17 16:08:46 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfnet.dll
[2012-10-17 16:08:45 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2012-10-17 16:08:45 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhmanagew.exe
[2012-10-17 16:08:45 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhshl.dll
[2012-10-17 16:08:45 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssitlb.dll
[2012-10-17 16:08:45 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdWCN.dll
[2012-10-17 16:08:45 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssitlb.dll
[2012-10-17 16:08:45 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasdiag.dll
[2012-10-17 16:08:45 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vsstrace.dll
[2012-10-17 16:08:45 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsrchph.dll
[2012-10-17 16:08:45 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhlisten.dll
[2012-10-17 16:08:45 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasdiag.dll
[2012-10-17 16:08:45 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhcleanup.dll
[2012-10-17 16:08:45 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhtask.dll
[2012-10-17 16:08:45 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll
[2012-10-17 16:08:45 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnEapAuthProxy.dll
[2012-10-17 16:08:45 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdbinst.exe
[2012-10-17 16:08:45 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll
[2012-10-17 16:08:45 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsldr.exe
[2012-10-17 16:08:45 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sdbinst.exe
[2012-10-17 16:08:45 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2012-10-17 16:08:44 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDump.dll
[2012-10-17 16:08:44 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssprxy.dll
[2012-10-17 16:08:44 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2012-10-17 16:08:44 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhautoplay.dll
[2012-10-17 16:08:44 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2012-10-17 16:08:44 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2012-10-17 16:08:44 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ndptsp.tsp
[2012-10-17 16:08:44 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ndptsp.tsp
[2012-10-17 16:08:44 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2012-10-17 16:08:44 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kmddsp.tsp
[2012-10-17 16:08:44 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfctrs.dll
[2012-10-17 16:08:44 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasmxs.dll
[2012-10-17 16:08:44 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfctrs.dll
[2012-10-17 16:08:44 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kmddsp.tsp
[2012-10-17 16:08:44 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfproc.dll
[2012-10-17 16:08:44 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfproc.dll
[2012-10-17 16:08:44 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfos.dll
[2012-10-17 16:08:44 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasmxs.dll
[2012-10-17 16:08:44 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasser.dll
[2012-10-17 16:08:44 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2012-10-17 16:08:44 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WcnEapPeerProxy.dll
[2012-10-17 16:08:44 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasser.dll
[2012-10-17 16:08:44 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fhsvcctl.dll
[2012-10-17 16:08:44 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msshooks.dll
[2012-10-17 16:08:43 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vds_ps.dll
[2012-10-17 16:08:43 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmk.sys
[2012-10-17 16:08:43 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vds_ps.dll
[2012-10-17 16:08:43 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LangCleanupSysprepAction.dll
[2012-10-17 16:08:43 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eventcls.dll
[2012-10-17 16:08:43 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eventcls.dll
[2012-10-17 16:08:43 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MUILanguageCleanup.dll
[2012-10-17 16:08:43 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msshooks.dll
[2012-10-17 16:08:43 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2012-10-17 16:08:43 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2012-10-17 16:08:43 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetupproxyserv.dll
[2012-10-17 16:08:43 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shimeng.dll
[2012-10-17 16:08:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2012-10-17 16:08:43 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2012-10-17 16:08:43 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2012-10-17 16:08:43 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2012-10-17 16:08:42 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2012-10-17 16:08:42 | 000,031,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys
[2012-10-17 16:08:42 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BtaMPM.sys
[2012-10-17 16:08:41 | 009,374,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2012-10-17 16:08:41 | 009,374,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2012-10-17 16:08:41 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wushareduxresources.dll
[2012-10-17 16:08:41 | 000,029,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\BthhfHid.sys
[2012-10-17 16:08:18 | 006,972,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012-10-17 16:08:18 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Windows.Networking.dll
[2012-10-17 16:08:18 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2012-10-17 16:08:18 | 000,446,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlansec.dll
[2012-10-17 16:08:18 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Windows.Networking.dll
[2012-10-17 16:08:18 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlansec.dll
[2012-10-17 16:08:18 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\newdev.dll
[2012-10-17 16:08:18 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanapi.dll
[2012-10-17 16:08:17 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
[2012-10-17 16:08:17 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\newdev.dll
[2012-10-17 16:08:17 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanapi.dll
[2012-10-17 16:08:17 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\newdev.exe
[2012-10-17 16:08:17 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ndadmin.exe
[2012-10-17 16:08:17 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\newdev.exe
[2012-10-17 16:08:17 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ndadmin.exe
[2012-10-17 16:08:17 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wfdprov.dll
[2012-10-17 16:08:17 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wfdprov.dll
[2012-10-17 16:08:17 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanhlp.dll
[2012-10-17 16:08:17 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanhlp.dll
[2012-10-17 16:04:39 | 002,893,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2012-10-17 16:04:38 | 002,400,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
[2012-10-17 16:03:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation
[2012-10-17 16:03:15 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Intel Corporation
[2012-10-17 02:18:25 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\ElevatedDiagnostics
[2012-10-17 01:34:51 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\vlc
[2012-10-17 01:26:40 | 000,034,656 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
[2012-10-17 01:26:37 | 000,025,952 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
[2012-10-17 01:26:36 | 000,021,344 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
[2012-10-17 01:26:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013
[2012-10-17 01:26:15 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\TuneUp Software
[2012-10-17 01:25:22 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
[2012-10-17 01:24:52 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
[2012-10-17 01:24:52 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2012-10-17 01:24:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EASEUS Partition Master 9.1.1 Professional Edition
[2012-10-17 01:21:37 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2012-10-17 00:09:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Commander
[2012-10-17 00:07:00 | 000,000,000 | ---D | C] -- C:\totalcmd
[2012-10-16 23:44:35 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
[2012-10-16 23:27:39 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\DriverGenius
[2012-10-16 23:24:21 | 000,000,000 | ---D | C] -- C:\Users\Damian\.shsh
[2012-10-16 23:23:28 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Apple Computer
[2012-10-16 23:21:10 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Adobe
[2012-10-16 23:20:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2012-10-16 23:00:12 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\QuickStoresToolbar
[2012-10-16 22:51:00 | 000,778,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationNative_v0300.dll
[2012-10-16 22:51:00 | 000,102,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2012-10-16 22:51:00 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TsWpfWrp.exe
[2012-10-16 22:50:57 | 001,166,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationNative_v0300.dll
[2012-10-16 22:50:57 | 000,124,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2012-10-16 22:50:57 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsWpfWrp.exe
[2012-10-16 22:50:07 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\NapiProjekt
[2012-10-16 22:50:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NapiProjekt
[2012-10-16 22:48:18 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
[2012-10-16 22:36:43 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\The Bat!
[2012-10-16 22:36:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Bat! E-Mail
[2012-10-16 22:27:57 | 000,037,704 | ---- | C] (RealVNC Ltd) -- C:\Windows\SysNative\VNCpm.dll
[2012-10-16 22:27:56 | 000,000,000 | ---D | C] -- C:\temp
[2012-10-16 22:27:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealVNC
[2012-10-16 22:24:10 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\uTorrent
[2012-10-16 22:13:38 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Skype
[2012-10-16 22:13:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012-10-16 22:13:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012-10-16 22:13:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012-10-16 22:08:18 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Apps
[2012-10-16 22:07:12 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Google
[2012-10-16 22:07:11 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\CRE
[2012-10-16 22:06:59 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Conduit
[2012-10-16 22:05:36 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\uTorrent1
[2012-10-16 21:59:23 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\WinRAR
[2012-10-16 21:59:22 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012-10-16 21:59:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012-10-16 21:56:32 | 001,721,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WdfCoInstaller01009.dll
[2012-10-16 21:56:30 | 000,396,584 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCOM.dll
[2012-10-16 21:56:30 | 000,315,440 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\drivers\SynTP.sys
[2012-10-16 21:56:30 | 000,265,000 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynCtrl.dll
[2012-10-16 21:56:30 | 000,214,824 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPAPI.dll
[2012-10-16 21:56:30 | 000,210,216 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCtrl.dll
[2012-10-16 21:56:30 | 000,173,352 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynCOM.dll
[2012-10-16 21:56:30 | 000,147,752 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysNative\SynTPCo4.dll
[2012-10-16 21:56:30 | 000,107,816 | ---- | C] (Synaptics Incorporated) -- C:\Windows\SysWow64\SynTPCOM.dll
[2012-10-16 21:56:26 | 000,349,776 | ---- | C] (Dritek System Inc.) -- C:\Windows\UNINSTLMv4.EXE
[2012-10-16 21:27:08 | 000,000,000 | R--D | C] -- C:\Backup
[2012-10-16 21:26:03 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Apple Computer
[2012-10-16 21:25:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012-10-16 21:25:37 | 000,033,240 | ---- | C] (GEAR Software Inc.) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys
[2012-10-16 21:24:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012-10-16 21:24:26 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2012-10-16 21:21:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky PURE 2.0
[2012-10-16 21:19:53 | 000,085,048 | ---- | C] (Infowatch) -- C:\Windows\SysNative\drivers\CSCrySec.sys
[2012-10-16 21:19:53 | 000,066,104 | ---- | C] (Infowatch) -- C:\Windows\SysNative\drivers\CSVirtualDiskDrv.sys
[2012-10-16 21:19:51 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2012-10-16 21:18:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InfoWatch
[2012-10-16 21:17:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2012-10-16 21:17:17 | 000,636,760 | ---- | C] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\klif.sys
[2012-10-16 21:16:48 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Apple Computer1
[2012-10-16 21:16:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
[2012-10-16 21:16:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2012-10-16 21:16:06 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Apple
[2012-10-16 21:15:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012-10-16 21:15:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2012-10-16 20:27:08 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Macromedia
[2012-10-16 20:26:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012-10-16 20:26:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012-10-16 16:17:25 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\TrueCrypt
[2012-10-16 16:17:08 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Mozilla
[2012-10-16 16:13:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TrueCrypt
[2012-10-16 16:13:32 | 000,231,376 | ---- | C] (TrueCrypt Foundation) -- C:\Windows\SysNative\drivers\truecrypt.sys
[2012-10-16 15:44:54 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\GHISLER
[2012-10-16 15:43:55 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\GHISLER
[2012-10-16 15:43:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012-10-16 15:42:15 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Mozilla1
[2012-10-16 15:42:15 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Mozilla
[2012-10-16 15:39:12 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Macromedia
[2012-10-16 15:36:05 | 000,000,000 | R--D | C] -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012-10-16 15:36:05 | 000,000,000 | R--D | C] -- C:\Users\Damian\Searches
[2012-10-16 15:36:05 | 000,000,000 | R--D | C] -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012-10-16 15:36:05 | 000,000,000 | -H-D | C] -- C:\Users\Damian\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2012-10-16 15:36:02 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Adobe
[2012-10-16 15:35:32 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\VirtualStore
[2012-10-16 15:35:27 | 000,000,000 | ---D | C] -- C:\ProgramData\PRICache
[2012-10-16 15:35:27 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Packages
[2012-10-16 15:35:14 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012-10-16 15:35:07 | 000,000,000 | --SD | C] -- C:\Users\Damian\AppData\Roaming\Microsoft
[2012-10-16 15:35:07 | 000,000,000 | R--D | C] -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2012-10-16 15:35:07 | 000,000,000 | R--D | C] -- C:\Users\Damian\Saved Games
[2012-10-16 15:35:07 | 000,000,000 | R--D | C] -- C:\Users\Damian\Links
[2012-10-16 15:35:07 | 000,000,000 | R--D | C] -- C:\Users\Damian\Favorites
[2012-10-16 15:35:07 | 000,000,000 | R--D | C] -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012-10-16 15:35:07 | 000,000,000 | R--D | C] -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\AppData\Local\Temporary Internet Files
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\Templates
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\Start Menu
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\SendTo
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\Recent
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\PrintHood
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\NetHood
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\My Documents
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\Local Settings
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\AppData\Local\History
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\Cookies
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\Application Data
[2012-10-16 15:35:07 | 000,000,000 | -HSD | C] -- C:\Users\Damian\AppData\Local\Application Data
[2012-10-16 15:35:07 | 000,000,000 | -H-D | C] -- C:\Users\Damian\AppData
[2012-10-16 15:35:07 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Temp
[2012-10-16 15:35:07 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Local\Microsoft
[2012-10-16 15:35:07 | 000,000,000 | ---D | C] -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012-10-16 15:31:06 | 000,000,000 | ---D | C] -- C:\Windows\CSC
[2012-10-16 15:22:59 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2012-10-16 15:22:15 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012-10-12 02:32:26 | 010,316,800 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys
[2012-10-12 02:32:26 | 000,332,800 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIODE.exe
[2012-10-12 02:32:26 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll
[2012-10-12 02:32:24 | 013,605,888 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll
[2012-10-12 02:32:24 | 006,677,504 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd64.dll
[2012-10-12 02:32:24 | 000,927,744 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\aticfx32.dll
[2012-10-12 02:32:24 | 000,163,840 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe
[2012-10-12 02:32:24 | 000,120,320 | ---- | C] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2012-10-12 02:32:24 | 000,070,144 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst_8.982.10.8.dll
[2012-10-12 02:32:24 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll
[2012-10-12 02:32:24 | 000,051,200 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIODCLI.exe
[2012-10-12 02:32:24 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll
[2012-10-12 02:32:24 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll
[2012-10-12 02:32:24 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll
[2012-10-12 02:32:24 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll
[2012-10-12 02:32:24 | 000,033,280 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2012-10-12 02:32:24 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll
[2012-10-12 02:32:24 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll
[2012-10-12 02:32:22 | 005,540,008 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdag.dll
[2012-10-12 02:32:22 | 000,442,368 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atidemgy.dll
[2012-10-12 02:32:22 | 000,370,688 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys
[2012-10-12 02:32:22 | 000,239,616 | ---- | C] (AMD) -- C:\Windows\SysNative\atiesrxx.exe
[2012-10-12 02:32:22 | 000,056,320 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2012-10-12 02:32:22 | 000,056,320 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2012-10-12 02:32:20 | 024,854,528 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll
[2012-10-12 02:32:18 | 016,034,304 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll
[2012-10-12 02:32:18 | 000,041,984 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2012-10-12 02:32:18 | 000,021,504 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2012-10-12 02:32:16 | 020,445,696 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll
[2012-10-12 02:32:16 | 000,540,672 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll
[2012-10-12 02:32:14 | 006,430,208 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atidxx32.dll
[2012-10-12 02:32:14 | 004,268,544 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll
[2012-10-12 02:32:14 | 000,368,640 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2012-10-12 02:32:14 | 000,118,784 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atibtmon.exe
[2012-10-12 02:32:14 | 000,103,936 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll
[2012-10-12 02:32:14 | 000,083,456 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll
[2012-10-12 02:32:14 | 000,056,832 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2012-10-12 02:32:14 | 000,056,832 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll
[2012-10-12 02:32:14 | 000,017,920 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll
[2012-10-12 02:32:12 | 004,753,408 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll
[2012-10-12 02:32:12 | 000,534,528 | ---- | C] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2012-10-12 02:32:12 | 000,053,248 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-11-03 22:56:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-11-03 22:54:28 | 3320,856,576 | -HS- | M] () -- C:\hiberfil.sys
[2012-11-03 22:54:28 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2012-11-03 22:01:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012-11-03 12:08:09 | 001,796,820 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012-11-03 12:08:09 | 000,795,958 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2012-11-03 12:08:09 | 000,711,282 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012-11-03 12:08:09 | 000,160,066 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2012-11-03 12:08:09 | 000,133,150 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012-11-03 03:21:16 | 000,000,600 | ---- | M] () -- C:\Users\Damian\AppData\Roaming\winscp.rnd
[2012-11-03 03:13:32 | 004,994,057 | ---- | M] (Swearware) -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ComboFix.exe
[2012-11-03 02:48:27 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OTL.exe
[2012-10-31 21:42:05 | 000,000,600 | ---- | M] () -- C:\Users\Damian\AppData\Local\PUTTY.RND
[2012-10-28 22:11:23 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2012-10-28 16:53:31 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2012-10-28 16:04:19 | 003,204,456 | ---- | M] () -- C:\Users\Damian\Pulpit\mp3tagv253setup.exe
[2012-10-26 08:05:37 | 000,147,329 | ---- | M] () -- C:\Users\Damian\Pulpit\BalonPRK.pdf
[2012-10-26 07:49:33 | 000,119,556 | ---- | M] () -- C:\Users\Damian\Pulpit\SquashDM.pdf
[2012-10-26 07:31:20 | 000,001,933 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012-10-25 15:33:18 | 000,636,760 | ---- | M] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\klif.sys
[2012-10-25 15:23:37 | 000,342,912 | ---- | M] () -- C:\Windows\SysNative\perfi015.dat
[2012-10-25 15:23:37 | 000,041,236 | ---- | M] () -- C:\Windows\SysNative\perfd015.dat
[2012-10-25 07:58:47 | 000,422,192 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012-10-24 17:08:05 | 000,120,069 | ---- | M] () -- C:\Users\Damian\Pulpit\squashMW.pdf
[2012-10-23 22:21:51 | 000,001,158 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 7.lnk
[2012-10-19 15:47:40 | 000,001,068 | ---- | M] () -- C:\Users\Damian\Pulpit\Your Unin-staller!.lnk
[2012-10-19 03:52:32 | 003,867,040 | ---- | M] () -- C:\Windows\SysNative\PortChanger.exe
[2012-10-19 03:52:32 | 002,398,112 | ---- | M] (Hewlett Packard) -- C:\Windows\SysNative\hppldcoi.dll
[2012-10-19 02:13:45 | 000,560,184 | ---- | M] (Duplex Secure Ltd.) -- C:\Windows\SysNative\drivers\sptd.sys
[2012-10-19 01:51:42 | 000,002,038 | ---- | M] () -- C:\Users\Public\Desktop\Nokia PC Suite.lnk
[2012-10-19 01:45:45 | 000,000,000 | ---- | M] () -- C:\Windows\Setup.INI
[2012-10-19 01:45:41 | 000,000,184 | ---- | M] () -- C:\Windows\LMv4.UNI
[2012-10-18 01:14:46 | 000,108,008 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2012-10-18 01:14:44 | 001,034,216 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\npDeployJava1.dll
[2012-10-18 01:14:44 | 000,916,456 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\deployJava1.dll
[2012-10-18 01:14:44 | 000,289,768 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2012-10-18 01:14:44 | 000,189,416 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2012-10-18 01:14:44 | 000,188,904 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2012-10-18 00:50:06 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2012-10-17 23:52:48 | 000,367,200 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\afcdp.sys
[2012-10-17 23:52:44 | 001,340,040 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\tdrpman.sys
[2012-10-17 23:52:39 | 001,093,256 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\tib_mounter.sys
[2012-10-17 23:52:37 | 000,340,104 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\snapman.sys
[2012-10-17 23:52:36 | 000,155,272 | ---- | M] (Acronis) -- C:\Windows\SysNative\drivers\fltsrv.sys
[2012-10-17 23:46:39 | 000,001,052 | ---- | M] () -- C:\Users\Public\Desktop\iFunbox.lnk
[2012-10-17 23:05:35 | 000,000,975 | ---- | M] () -- C:\Users\Damian\Pulpit\WinSCP.lnk
[2012-10-17 16:03:03 | 000,857,144 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012-10-17 02:16:20 | 000,001,188 | ---- | M] () -- C:\Users\Public\Desktop\CWK.lnk
[2012-10-16 23:00:12 | 000,000,187 | ---- | M] () -- C:\Users\Damian\Application Data\Microsoft\Internet Explorer\Quick Launch\QuickStores.url
[2012-10-16 22:16:40 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2012-10-16 21:48:04 | 000,153,053 | ---- | M] () -- C:\Windows\SysNative\drivers\klin.dat
[2012-10-16 21:48:04 | 000,107,384 | ---- | M] () -- C:\Windows\SysNative\drivers\klick.dat
[2012-10-16 21:27:16 | 000,017,408 | ---- | M] () -- C:\Users\Damian\AppData\Local\WebpageIcons.db
[2012-10-16 16:13:32 | 000,231,376 | ---- | M] (TrueCrypt Foundation) -- C:\Windows\SysNative\drivers\truecrypt.sys
[2012-10-16 15:42:50 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2012-10-16 15:42:12 | 000,001,126 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012-10-16 15:39:05 | 000,001,420 | ---- | M] () -- C:\Users\Damian\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012-10-16 15:25:12 | 000,033,489 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2012-10-16 15:25:12 | 000,033,489 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2012-10-16 15:23:29 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2012-10-12 02:32:26 | 010,316,800 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys
[2012-10-12 02:32:26 | 003,187,136 | ---- | M] () -- C:\Windows\SysWow64\atiumdva.cap
[2012-10-12 02:32:26 | 000,332,800 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIODE.exe
[2012-10-12 02:32:26 | 000,044,544 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll
[2012-10-12 02:32:24 | 013,605,888 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll
[2012-10-12 02:32:24 | 006,677,504 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd64.dll
[2012-10-12 02:32:24 | 000,927,744 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\aticfx32.dll
[2012-10-12 02:32:24 | 000,637,743 | ---- | M] () -- C:\Windows\SysNative\atiicdxx.dat
[2012-10-12 02:32:24 | 000,163,840 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe
[2012-10-12 02:32:24 | 000,157,144 | ---- | M] () -- C:\Windows\SysWow64\ativvsva.dat
[2012-10-12 02:32:24 | 000,157,144 | ---- | M] () -- C:\Windows\SysNative\ativvsva.dat
[2012-10-12 02:32:24 | 000,120,320 | ---- | M] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2012-10-12 02:32:24 | 000,070,144 | ---- | M] (AMD) -- C:\Windows\SysNative\coinst_8.982.10.8.dll
[2012-10-12 02:32:24 | 000,059,392 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll
[2012-10-12 02:32:24 | 000,051,200 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIODCLI.exe
[2012-10-12 02:32:24 | 000,051,200 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll
[2012-10-12 02:32:24 | 000,046,080 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll
[2012-10-12 02:32:24 | 000,044,544 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll
[2012-10-12 02:32:24 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll
[2012-10-12 02:32:24 | 000,033,280 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2012-10-12 02:32:24 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll
[2012-10-12 02:32:24 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll
[2012-10-12 02:32:22 | 005,540,008 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdag.dll
[2012-10-12 02:32:22 | 003,150,560 | ---- | M] () -- C:\Windows\SysNative\atiumd6a.cap
[2012-10-12 02:32:22 | 001,112,064 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\aticfx64.dll
[2012-10-12 02:32:22 | 000,442,368 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atidemgy.dll
[2012-10-12 02:32:22 | 000,370,688 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys
[2012-10-12 02:32:22 | 000,239,616 | ---- | M] (AMD) -- C:\Windows\SysNative\atiesrxx.exe
[2012-10-12 02:32:22 | 000,204,952 | ---- | M] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012-10-12 02:32:22 | 000,204,952 | ---- | M] () -- C:\Windows\SysNative\ativvsvl.dat
[2012-10-12 02:32:22 | 000,129,536 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll
[2012-10-12 02:32:22 | 000,056,320 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2012-10-12 02:32:22 | 000,056,320 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2012-10-12 02:32:20 | 024,854,528 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll
[2012-10-12 02:32:18 | 016,034,304 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll
[2012-10-12 02:32:18 | 007,052,288 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atidxx64.dll
[2012-10-12 02:32:18 | 000,041,984 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2012-10-12 02:32:18 | 000,038,316 | ---- | M] () -- C:\Windows\atiogl.xml
[2012-10-12 02:32:18 | 000,021,504 | ---- | M] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2012-10-12 02:32:18 | 000,003,917 | ---- | M] () -- C:\Windows\SysWow64\atipblag.dat
[2012-10-12 02:32:18 | 000,003,917 | ---- | M] () -- C:\Windows\SysNative\atipblag.dat
[2012-10-12 02:32:16 | 020,445,696 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll
[2012-10-12 02:32:16 | 000,540,672 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll
[2012-10-12 02:32:16 | 000,053,248 | ---- | M] () -- C:\Windows\SysNative\amdverag.dll
[2012-10-12 02:32:14 | 006,430,208 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atidxx32.dll
[2012-10-12 02:32:14 | 004,268,544 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll
[2012-10-12 02:32:14 | 000,368,640 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2012-10-12 02:32:14 | 000,270,536 | ---- | M] () -- C:\Windows\SysWow64\atiapfxx.blb
[2012-10-12 02:32:14 | 000,270,536 | ---- | M] () -- C:\Windows\SysNative\atiapfxx.blb
[2012-10-12 02:32:14 | 000,118,784 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atibtmon.exe
[2012-10-12 02:32:14 | 000,103,936 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll
[2012-10-12 02:32:14 | 000,083,456 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll
[2012-10-12 02:32:14 | 000,056,832 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2012-10-12 02:32:14 | 000,056,832 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll
[2012-10-12 02:32:14 | 000,017,920 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll
[2012-10-12 02:32:12 | 004,753,408 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll
[2012-10-12 02:32:12 | 000,534,528 | ---- | M] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2012-10-12 02:32:12 | 000,109,568 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll
[2012-10-12 02:32:12 | 000,053,248 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll
[2012-10-06 05:53:04 | 002,893,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msmpeg2vdec.dll
[2012-10-06 05:15:33 | 002,400,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msmpeg2vdec.dll
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-11-02 14:32:06 | 000,000,742 | ---- | C] () -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OTL.lnk
[2012-10-30 22:19:01 | 000,000,600 | ---- | C] () -- C:\Users\Damian\AppData\Local\PUTTY.RND
[2012-10-28 22:11:23 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2012-10-28 16:53:31 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2012-10-28 16:01:59 | 003,204,456 | ---- | C] () -- C:\Users\Damian\Pulpit\mp3tagv253setup.exe
[2012-10-26 08:05:37 | 000,147,329 | ---- | C] () -- C:\Users\Damian\Pulpit\BalonPRK.pdf
[2012-10-26 07:49:28 | 000,119,556 | ---- | C] () -- C:\Users\Damian\Pulpit\SquashDM.pdf
[2012-10-26 07:37:25 | 000,001,251 | ---- | C] () -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kaspersky PURE 2.0.lnk
[2012-10-26 07:31:20 | 000,001,933 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012-10-25 15:28:05 | 000,342,912 | ---- | C] () -- C:\Windows\SysNative\perfi015.dat
[2012-10-25 15:28:04 | 000,795,958 | ---- | C] () -- C:\Windows\SysNative\perfh015.dat
[2012-10-25 15:28:04 | 000,160,066 | ---- | C] () -- C:\Windows\SysNative\perfc015.dat
[2012-10-25 15:28:04 | 000,041,236 | ---- | C] () -- C:\Windows\SysNative\perfd015.dat
[2012-10-25 15:27:04 | 000,120,069 | ---- | C] () -- C:\Users\Damian\Pulpit\squashMW.pdf
[2012-10-25 15:27:04 | 000,001,068 | ---- | C] () -- C:\Users\Damian\Pulpit\Your Unin-staller!.lnk
[2012-10-25 15:27:04 | 000,000,975 | ---- | C] () -- C:\Users\Damian\Pulpit\WinSCP.lnk
[2012-10-25 07:58:29 | 000,422,192 | ---- | C] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012-10-23 22:21:51 | 000,001,170 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 7.lnk
[2012-10-23 22:21:51 | 000,001,158 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 7.lnk
[2012-10-19 03:52:32 | 003,867,040 | ---- | C] () -- C:\Windows\SysNative\PortChanger.exe
[2012-10-19 01:51:42 | 000,002,038 | ---- | C] () -- C:\Users\Public\Desktop\Nokia PC Suite.lnk
[2012-10-19 01:45:45 | 000,000,000 | ---- | C] () -- C:\Windows\Setup.INI
[2012-10-19 01:45:41 | 000,000,184 | ---- | C] () -- C:\Windows\LMv4.UNI
[2012-10-18 00:50:06 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2012-10-17 23:46:39 | 000,001,052 | ---- | C] () -- C:\Users\Public\Desktop\iFunbox.lnk
[2012-10-17 23:36:33 | 000,000,600 | ---- | C] () -- C:\Users\Damian\AppData\Roaming\winscp.rnd
[2012-10-17 16:08:57 | 000,361,934 | ---- | C] () -- C:\Windows\SysNative\ApnDatabase.xml
[2012-10-17 16:08:45 | 000,110,592 | ---- | C] () -- C:\Windows\SysNative\OEMLicense.dll
[2012-10-17 16:08:45 | 000,083,968 | ---- | C] () -- C:\Windows\SysWow64\OEMLicense.dll
[2012-10-17 16:03:03 | 000,857,144 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012-10-17 02:16:20 | 000,001,188 | ---- | C] () -- C:\Users\Public\Desktop\CWK.lnk
[2012-10-17 01:26:29 | 000,002,191 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013.lnk
[2012-10-17 01:24:36 | 003,316,736 | ---- | C] () -- C:\Windows\SysNative\BootMan.exe
[2012-10-17 01:24:36 | 002,469,760 | ---- | C] () -- C:\Windows\SysWow64\BootMan.exe
[2012-10-17 01:24:36 | 000,100,232 | ---- | C] () -- C:\Windows\SysNative\setupempdrvx64.exe
[2012-10-17 01:24:36 | 000,019,840 | ---- | C] () -- C:\Windows\SysWow64\EuEpmGdi.dll
[2012-10-17 01:24:36 | 000,016,776 | ---- | C] () -- C:\Windows\SysNative\epmntdrv.sys
[2012-10-17 01:24:36 | 000,016,256 | ---- | C] () -- C:\Windows\SysNative\EuEpmGdi.dll
[2012-10-17 01:24:36 | 000,009,096 | ---- | C] () -- C:\Windows\SysNative\EuGdiDrv.sys
[2012-10-17 01:24:35 | 000,086,408 | ---- | C] () -- C:\Windows\SysWow64\setupempdrv03.exe
[2012-10-17 01:24:35 | 000,014,216 | ---- | C] () -- C:\Windows\SysWow64\epmntdrv.sys
[2012-10-17 01:24:35 | 000,008,456 | ---- | C] () -- C:\Windows\SysWow64\EuGdiDrv.sys
[2012-10-16 23:21:00 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2012-10-16 23:00:12 | 000,000,187 | ---- | C] () -- C:\Users\Damian\Application Data\Microsoft\Internet Explorer\Quick Launch\QuickStores.url
[2012-10-16 22:36:43 | 000,001,849 | ---- | C] () -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Bat!.LNK
[2012-10-16 22:13:30 | 000,002,517 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2012-10-16 21:27:11 | 000,017,408 | ---- | C] () -- C:\Users\Damian\AppData\Local\WebpageIcons.db
[2012-10-16 21:22:00 | 000,153,053 | ---- | C] () -- C:\Windows\SysNative\drivers\klin.dat
[2012-10-16 21:22:00 | 000,107,384 | ---- | C] () -- C:\Windows\SysNative\drivers\klick.dat
[2012-10-16 21:16:02 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012-10-16 20:26:54 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012-10-16 15:42:50 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2012-10-16 15:42:12 | 000,001,126 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012-10-16 15:42:11 | 000,001,138 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012-10-16 15:39:05 | 000,001,420 | ---- | C] () -- C:\Users\Damian\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012-10-16 15:36:02 | 000,001,426 | ---- | C] () -- C:\Users\Damian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012-10-16 15:35:07 | 000,000,352 | ---- | C] () -- C:\Users\Damian\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2012-10-16 15:35:07 | 000,000,334 | ---- | C] () -- C:\Users\Damian\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2012-10-16 15:26:40 | 3320,856,576 | -HS- | C] () -- C:\hiberfil.sys
[2012-10-16 15:23:29 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012-10-16 15:22:17 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys
[2012-10-12 02:32:26 | 003,187,136 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap
[2012-10-12 02:32:24 | 000,637,743 | ---- | C] () -- C:\Windows\SysNative\atiicdxx.dat
[2012-10-12 02:32:24 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012-10-12 02:32:24 | 000,157,144 | ---- | C] () -- C:\Windows\SysNative\ativvsva.dat
[2012-10-12 02:32:22 | 003,150,560 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap
[2012-10-12 02:32:22 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012-10-12 02:32:22 | 000,204,952 | ---- | C] () -- C:\Windows\SysNative\ativvsvl.dat
[2012-10-12 02:32:18 | 000,038,316 | ---- | C] () -- C:\Windows\atiogl.xml
[2012-10-12 02:32:18 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2012-10-12 02:32:18 | 000,003,917 | ---- | C] () -- C:\Windows\SysNative\atipblag.dat
[2012-10-12 02:32:16 | 000,053,248 | ---- | C] () -- C:\Windows\SysNative\amdverag.dll
[2012-10-12 02:32:14 | 000,270,536 | ---- | C] () -- C:\Windows\SysWow64\atiapfxx.blb
[2012-10-12 02:32:14 | 000,270,536 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb
[2012-07-26 09:13:10 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2012-07-26 09:13:09 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2012-07-26 08:21:26 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012-07-26 02:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2012-07-25 21:37:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012-07-25 21:28:31 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2012-06-02 15:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2012-10-16 23:00:12 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012-09-20 07:32:51 | 019,775,488 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-09-20 06:54:47 | 017,559,552 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012-07-26 04:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012-07-26 04:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012-07-26 04:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-10-18 13:33:56 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\Acronis
[2012-10-19 15:47:31 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\Babylon
[2012-10-16 15:43:56 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\GHISLER
[2012-10-17 23:46:43 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\iFunbox_UserCache
[2012-10-16 22:50:07 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\NapiProjekt
[2012-10-19 01:52:46 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\Nokia
[2012-10-19 01:52:46 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\PC Suite
[2012-10-19 15:50:22 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\QuickStoresToolbar
[2012-10-18 00:36:00 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\redsn0w
[2012-10-23 22:36:19 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\TeamViewer
[2012-11-03 22:46:33 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\The Bat!
[2012-10-18 00:46:03 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\TrueCrypt
[2012-10-17 01:26:15 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\TuneUp Software
[2012-10-19 15:47:44 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\URSoft
[2012-11-03 22:52:29 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\uTorrent
[2012-10-16 22:24:02 | 000,000,000 | ---D | M] -- C:\Users\Damian\AppData\Roaming\uTorrent1
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2012-10-18 00:48:18 | 000,002,191 | ---- | M] ()(C:\Users\Public\Desktop\91???? for iPhone.lnk) -- C:\Users\Public\Desktop\91手机助手 for iPhone.lnk
[2012-10-17 23:38:43 | 000,002,191 | ---- | C] ()(C:\Users\Public\Desktop\91???? for iPhone.lnk) -- C:\Users\Public\Desktop\91手机助手 for iPhone.lnk
[2012-10-17 23:38:43 | 000,000,000 | ---D | C](C:\ProgramData\Microsoft\Windows\Start Menu\Programs\91????) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\91手机助手
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 172 bytes -> C:\ProgramData\TEMP:1CE11B51

< End of report >