OTL logfile created on: 2013-01-28 18:52:10 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kucu\Desktop 64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 8.0.7601.17514) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 15,95 Gb Total Physical Memory | 13,28 Gb Available Physical Memory | 83,25% Memory free 31,89 Gb Paging File | 29,02 Gb Available in Paging File | 91,01% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 111,69 Gb Total Space | 16,52 Gb Free Space | 14,79% Space Free | Partition Type: NTFS Drive E: | 1024,00 Gb Total Space | 965,39 Gb Free Space | 94,28% Space Free | Partition Type: NTFS Drive F: | 512,00 Gb Total Space | 428,66 Gb Free Space | 83,72% Space Free | Partition Type: NTFS Drive G: | 326,92 Gb Total Space | 315,15 Gb Free Space | 96,40% Space Free | Partition Type: NTFS Drive X: | 100,00 Mb Total Space | 86,24 Mb Free Space | 86,25% Space Free | Partition Type: NTFS Computer Name: KOMPUTER | User Name: Kucu | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-01-28 00:03:10 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kucu\Desktop\OTL.exe PRC - [2013-01-21 16:18:22 | 000,138,096 | ---- | M] (Facebook Inc.) -- C:\Users\Kucu\AppData\Local\Facebook\Update\FacebookUpdate.exe PRC - [2013-01-20 20:29:18 | 028,539,272 | ---- | M] (Dropbox, Inc.) -- C:\Users\Kucu\AppData\Roaming\Dropbox\bin\Dropbox.exe PRC - [2013-01-18 12:31:27 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2013-01-03 19:36:03 | 000,879,080 | ---- | M] (Opera Software) -- C:\Program Files (x86)\Opera\opera.exe PRC - [2012-12-18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2012-12-03 16:47:14 | 001,259,880 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2012-11-30 22:43:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2012-11-16 14:24:44 | 000,913,184 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe PRC - [2012-09-25 11:05:20 | 000,247,728 | ---- | M] (Facebook) -- C:\Users\Kucu\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe PRC - [2012-08-07 13:42:12 | 001,504,640 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe PRC - [2012-07-17 14:57:22 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe PRC - [2012-07-17 14:57:20 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe PRC - [2012-07-16 22:01:20 | 000,658,080 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AsDLNAServerReal.exe PRC - [2012-07-12 17:36:08 | 001,384,608 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe PRC - [2012-07-12 17:36:06 | 003,984,032 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFi GO! Server.exe PRC - [2012-06-25 10:57:14 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe PRC - [2012-06-01 10:42:18 | 000,951,936 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe PRC - [2012-06-01 10:42:18 | 000,920,736 | ---- | M] () -- C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe PRC - [2012-05-20 17:26:26 | 000,291,648 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe PRC - [2012-03-13 12:34:12 | 002,935,424 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe PRC - [2012-02-17 07:26:00 | 000,149,120 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe PRC - [2012-02-01 16:29:58 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2012-02-01 16:29:56 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe PRC - [2011-09-08 21:29:12 | 001,112,704 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe PRC - [2011-02-22 21:52:54 | 000,086,016 | ---- | M] () -- C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe PRC - [2011-02-02 14:08:16 | 000,018,656 | ---- | M] () -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe PRC - [2008-10-20 18:47:32 | 002,580,480 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 2.4\program\soffice.BIN PRC - [2008-10-20 18:47:30 | 002,363,392 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 2.4\program\soffice.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-01-09 02:07:10 | 014,586,888 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll MOD - [2013-01-03 19:36:03 | 000,835,584 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\gstreamer.dll MOD - [2013-01-03 19:36:03 | 000,312,832 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstoggdec.dll MOD - [2013-01-03 19:36:03 | 000,158,208 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstffmpegcolorspace.dll MOD - [2013-01-03 19:36:03 | 000,101,888 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstwebmdec.dll MOD - [2013-01-03 19:36:03 | 000,096,256 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstcoreplugins.dll MOD - [2013-01-03 19:36:03 | 000,094,208 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioresample.dll MOD - [2013-01-03 19:36:03 | 000,093,696 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstaudioconvert.dll MOD - [2013-01-03 19:36:03 | 000,073,728 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstwavparse.dll MOD - [2013-01-03 19:36:03 | 000,067,072 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstdirectsound.dll MOD - [2013-01-03 19:36:03 | 000,062,976 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstdecodebin2.dll MOD - [2013-01-03 19:36:03 | 000,057,344 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstautodetect.dll MOD - [2013-01-03 19:36:03 | 000,038,912 | ---- | M] () -- C:\Program Files (x86)\Opera\gstreamer\plugins\gstwaveform.dll MOD - [2012-09-25 11:05:32 | 022,423,984 | ---- | M] () -- C:\Users\Kucu\AppData\Local\Facebook\Messenger\2.1.4651.0\libcef.dll MOD - [2012-09-25 11:05:08 | 000,181,680 | ---- | M] () -- C:\Users\Kucu\AppData\Local\Facebook\Messenger\2.1.4651.0\CefSharp.WinForms.dll MOD - [2012-09-25 11:05:00 | 000,286,640 | ---- | M] () -- C:\Users\Kucu\AppData\Local\Facebook\Messenger\2.1.4651.0\CefSharp.dll MOD - [2012-07-17 16:55:26 | 000,062,464 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi Engine\IsSupported.dll MOD - [2012-07-10 17:55:30 | 001,625,600 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\WiFiGO.dll MOD - [2012-06-22 13:32:10 | 000,184,320 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\DLCapPP.dll MOD - [2012-05-28 21:27:04 | 001,622,528 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll MOD - [2012-05-25 10:33:10 | 000,883,712 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll MOD - [2012-05-02 18:04:30 | 000,233,472 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\AudioProjection.dll MOD - [2012-04-25 14:57:54 | 000,073,728 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\IsSupported.dll MOD - [2012-04-25 14:47:54 | 000,659,456 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\PhoneCtrlAPI.dll MOD - [2012-04-20 16:24:08 | 000,716,800 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiMoveHelp.dll MOD - [2012-03-21 12:07:44 | 000,972,288 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll MOD - [2012-02-06 21:08:30 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\pngio.dll MOD - [2012-01-12 16:44:02 | 000,475,136 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFiGO_HookKey.dll MOD - [2011-10-14 20:03:22 | 000,885,248 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll MOD - [2011-09-19 20:18:20 | 001,243,136 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll MOD - [2011-08-09 14:52:50 | 000,425,984 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\awiscale.DLL MOD - [2011-07-21 09:06:44 | 000,846,848 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll MOD - [2011-07-12 19:14:52 | 000,147,456 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll MOD - [2010-12-14 17:46:32 | 000,067,584 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\CoreAudioCap.dll MOD - [2010-10-05 08:22:50 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll MOD - [2010-10-05 08:22:50 | 000,208,896 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll MOD - [2010-08-23 03:17:40 | 000,662,016 | ---- | M] () -- C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll MOD - [2009-08-12 20:15:52 | 000,253,952 | ---- | M] () -- C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll MOD - [2007-12-19 15:04:24 | 000,828,416 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 2.4\program\libxml2.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2013-01-03 22:05:04 | 001,431,888 | ---- | M] (Flexera Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64) SRV:[b]64bit:[/b] - [2012-11-16 14:24:44 | 000,913,184 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn) SRV:[b]64bit:[/b] - [2012-06-05 17:40:38 | 000,190,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\IPROSetMonitor.exe -- (Intel(R) SRV:[b]64bit:[/b] - [2012-04-20 14:16:12 | 000,635,104 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R) SRV:[b]64bit:[/b] - [2012-01-23 15:30:22 | 000,233,328 | ---- | M] (DTS, Inc) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe -- (DTSAudioSvc) SRV:[b]64bit:[/b] - [2011-02-22 21:52:54 | 000,086,016 | ---- | M] () [Auto | Running] -- C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe -- (mi-raysat_3dsmax2012_64) SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2013-01-18 12:31:27 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2013-01-09 02:07:11 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2013-01-07 23:35:29 | 000,115,760 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-12-18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2012-12-03 16:47:14 | 001,259,880 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2012-11-30 22:43:38 | 000,382,824 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2012-07-17 14:57:22 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS) SRV - [2012-07-17 14:57:20 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2012-06-25 10:57:14 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service) SRV - [2012-06-01 10:42:18 | 000,951,936 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe -- (asHmComSvc) SRV - [2012-06-01 10:42:18 | 000,920,736 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe -- (asComSvc) SRV - [2012-02-17 07:26:00 | 000,149,120 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe -- (AsSysCtrlService) SRV - [2012-02-01 16:29:58 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) SRV - [2011-02-02 14:08:16 | 000,018,656 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe -- (Autodesk Content Service) SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - File not found [Kernel | On_Demand | Running] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard) DRV:[b]64bit:[/b] - [2012-11-16 13:56:48 | 000,209,808 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm) DRV:[b]64bit:[/b] - [2012-11-16 13:56:48 | 000,062,024 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp) DRV:[b]64bit:[/b] - [2012-10-12 09:20:38 | 000,013,728 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidkmdf.sys -- (hidkmdf) DRV:[b]64bit:[/b] - [2012-07-03 16:25:16 | 000,189,288 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:[b]64bit:[/b] - [2012-07-02 15:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64) DRV:[b]64bit:[/b] - [2012-06-06 09:19:32 | 000,033,640 | ---- | M] (Intel Corporation ) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iqvw64e.sys -- (NAL) DRV:[b]64bit:[/b] - [2012-05-22 01:03:38 | 002,811,904 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr) DRV:[b]64bit:[/b] - [2012-05-20 17:25:32 | 000,789,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc) DRV:[b]64bit:[/b] - [2012-05-20 17:25:32 | 000,357,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub) DRV:[b]64bit:[/b] - [2012-05-20 17:25:32 | 000,019,264 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs) DRV:[b]64bit:[/b] - [2012-03-15 13:57:30 | 000,514,736 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1c62x64.sys -- (e1cexpress) DRV:[b]64bit:[/b] - [2012-03-14 07:40:04 | 000,187,632 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw) DRV:[b]64bit:[/b] - [2012-03-14 07:40:04 | 000,038,288 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF) DRV:[b]64bit:[/b] - [2012-03-14 07:40:02 | 000,148,528 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv) DRV:[b]64bit:[/b] - [2012-03-01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:[b]64bit:[/b] - [2012-02-01 16:16:40 | 000,568,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor) DRV:[b]64bit:[/b] - [2012-01-06 10:44:12 | 000,049,760 | ---- | M] (Asmedia Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\asahci64.sys -- (asahci64) DRV:[b]64bit:[/b] - [2011-11-03 11:10:42 | 000,395,752 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmtxhci.sys -- (asmtxhci) DRV:[b]64bit:[/b] - [2011-11-03 11:10:42 | 000,130,536 | ---- | M] (ASMedia Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\asmthub3.sys -- (asmthub3) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2010-11-21 04:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:[b]64bit:[/b] - [2009-09-19 05:30:14 | 000,161,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bmdm.sys -- (ss_bmdm) DRV:[b]64bit:[/b] - [2009-09-19 05:30:14 | 000,127,488 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bbus.sys -- (ss_bbus) DRV:[b]64bit:[/b] - [2009-09-19 05:30:14 | 000,018,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bmdfl.sys -- (ss_bmdfl) DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-4104769620-4137627604-3995400415-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-4104769620-4137627604-3995400415-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-4104769620-4137627604-3995400415-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll () FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@graphisoft.com/GDL Web Plug-in: C:\Program Files (x86)\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll () FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_32: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\facebook.com/fbDesktopPlugin: C:\Users\Kucu\AppData\Local\Facebook\Messenger\2.1.4651.0\npFbDesktopPlugin.dll (Facebook, Inc.) 64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD [2013-01-03 19:25:19 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components [2013-01-21 15:57:18 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-01-03 19:25:19 | 000,000,000 | ---D | M] [2013-01-21 15:57:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kucu\AppData\Roaming\mozilla\Extensions [color=#E56717]========== Chrome ==========[/color] CHR - homepage: http://www.google.com CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter} CHR - homepage: http://www.google.com CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\24.0.1312.56\pdf.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_135.dll CHR - Extension: Dysk Google = C:\Users\Kucu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\Kucu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Szukaj w Google = C:\Users\Kucu\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Gmail = C:\Users\Kucu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O4:[b]64bit:[/b] - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:[b]64bit:[/b] - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVBg_DTS] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [ASUS WiFi GO! FileTransfer Execute] C:\Program Files (x86)\ASUS\AI Suite II\Wi-Fi GO!\AssistTools\WiFile\WiFileTransfer.exe (ASUSTeK Computer Inc.) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation) O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation) O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-4104769620-4137627604-3995400415-1000..\Run: [Facebook Update] C:\Users\Kucu\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) O4 - HKU\S-1-5-21-4104769620-4137627604-3995400415-1003..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - HKU\S-1-5-21-4104769620-4137627604-3995400415-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found O4 - Startup: C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Kucu\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) O4 - Startup: C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk = C:\Users\Kucu\AppData\Local\Facebook\Messenger\2.1.4651.0\FacebookMessenger.exe (Facebook) O4 - Startup: C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk = C:\Program Files (x86)\OpenOffice.org 2.4\program\quickstart.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:[b]64bit:[/b] - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 File not found O8:[b]64bit:[/b] - Extra context menu item: Funkcja Google Sidewiki - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\SysWow64\GPhotos.scr (Google Inc.) O8 - Extra context menu item: Funkcja Google Sidewiki - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html File not found O13[b]64bit:[/b] - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32) O16 - DPF: {CAFEEFAC-0016-0000-0032-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_32-windows-i586.cab (Java Plug-in 1.6.0_32) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{328806B9-62B3-4867-9758-6815E775796C}: DhcpNameServer = 192.168.1.1 O18:[b]64bit:[/b] - Protocol\Handler\wlpg - No CLSID value found O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2013-01-06 13:25:10 | 000,000,000 | ---D | M] - C:\Autodesk -- [ NTFS ] O32 - AutoRun File - [2013-01-27 22:15:07 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{d6991828-578b-11e2-aef8-50465d517bb4}\Shell - "" = AutoRun O33 - MountPoints2\{d6991828-578b-11e2-aef8-50465d517bb4}\Shell\AutoRun\command - "" = D:\KB_WotN-MX.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-01-28 18:48:03 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2013-01-28 18:45:43 | 000,000,000 | ---D | C] -- C:\Users\Public\Desktop\CC Support [2013-01-28 18:42:44 | 000,000,000 | ---D | C] -- C:\_OTL [2013-01-28 00:13:04 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2013-01-28 00:03:10 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Kucu\Desktop\OTL.exe [2013-01-27 23:48:56 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Desktop\Agend.BA Sirefef Conedex proźba o pomoc w usunięciu [2013-01-27 22:14:59 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group [2013-01-25 02:17:27 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\OpenOffice.org2 [2013-01-25 02:16:59 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 2.4 [2013-01-25 02:16:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 2.4 [2013-01-25 02:16:15 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Desktop\OpenOffice.org 2.4 (pl) Installation Files [2013-01-24 06:13:35 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services [2013-01-24 06:13:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services [2013-01-24 06:13:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2013-01-24 06:13:32 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Microsoft Help [2013-01-24 06:13:30 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2013-01-24 06:13:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2013-01-24 06:13:26 | 000,000,000 | RH-D | C] -- C:\MSOCache [2013-01-24 05:53:34 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\MicrosoftStore [2013-01-24 01:51:55 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\PACE Anti-Piracy [2013-01-24 01:51:55 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\PACE Anti-Piracy [2013-01-24 01:51:55 | 000,000,000 | ---D | C] -- C:\ProgramData\PACE Anti-Piracy [2013-01-24 01:51:54 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Documents\Adobe [2013-01-24 01:46:18 | 000,000,000 | ---D | C] -- C:\Windows\pl [2013-01-24 01:46:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition [2013-01-24 01:46:07 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH [2013-01-24 01:46:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live [2013-01-24 01:44:46 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Windows Live [2013-01-24 01:44:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live [2013-01-22 15:07:11 | 000,000,000 | ---D | C] -- C:\ProgramData\RELOADED [2013-01-22 15:07:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\King's Bounty - Warriors of the North PL-MX [2013-01-21 16:19:11 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook [2013-01-21 16:18:23 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Facebook [2013-01-21 15:57:20 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Thunderbird [2013-01-21 15:57:20 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Thunderbird [2013-01-21 15:57:20 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Mozilla [2013-01-21 15:57:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service [2013-01-21 15:57:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla [2013-01-21 15:57:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird [2013-01-17 14:07:05 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\PunkBuster [2013-01-17 14:06:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Orbit [2013-01-17 14:06:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FarCry 3 [2013-01-17 01:29:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 [2013-01-15 19:17:25 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\TuneUp Software [2013-01-15 19:17:15 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software [2013-01-15 19:16:53 | 000,000,000 | -HSD | C] -- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} [2013-01-15 19:16:53 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files [2013-01-15 14:56:27 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2013-01-13 20:48:44 | 000,000,000 | ---D | C] -- C:\Users\Kucu\easyHDR BASIC 2 [2013-01-13 20:48:44 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\easyHDR BASIC 2 [2013-01-13 20:48:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\easyHDR BASIC 2 [2013-01-08 23:19:50 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Documents\KONAMI [2013-01-08 23:17:22 | 000,000,000 | ---D | C] -- C:\ProgramData\KONAMI [2013-01-07 20:53:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls V Skyrim [2013-01-07 20:36:26 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Skyrim [2013-01-07 13:35:59 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\OctaneRender [2013-01-07 13:13:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 8 [2013-01-07 13:09:51 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Google [2013-01-07 13:09:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Google [2013-01-07 03:37:52 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Documents\IAmAlive [2013-01-07 01:44:06 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Documents\BIMx [2013-01-07 01:44:00 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Graphisoft [2013-01-07 01:44:00 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Graphisoft [2013-01-07 01:44:00 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Graphisoft [2013-01-06 23:11:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune [2013-01-06 23:11:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HD Tune [2013-01-06 21:26:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Nexon [2013-01-06 21:16:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NEXON [2013-01-06 18:05:14 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\cache [2013-01-06 17:50:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GRAPHISOFT [2013-01-06 17:49:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GRAPHISOFT [2013-01-06 17:49:04 | 000,000,000 | ---D | C] -- C:\Program Files\GRAPHISOFT [2013-01-06 17:46:48 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Install.GS [2013-01-06 17:46:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2013-01-06 17:46:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2013-01-06 17:46:43 | 000,476,960 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\npdeployJava1.dll [2013-01-06 17:46:43 | 000,472,864 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2013-01-06 17:46:43 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2013-01-06 17:46:43 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2013-01-06 17:46:43 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2013-01-06 17:46:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2013-01-06 13:31:54 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Documents\Inventor Server x64 AutoCAD 2012 Language Pack - Polski [2013-01-06 13:25:46 | 000,446,464 | ---- | C] (NEXON Inc.) -- C:\Windows\NEXON_EU_DownloaderUpdater.exe [2013-01-06 03:03:23 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Documents\My Games [2013-01-06 03:01:31 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys [2013-01-06 03:01:31 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys [2013-01-06 02:59:21 | 000,000,000 | RH-D | C] -- C:\Users\Kucu\AppData\Roaming\SecuROM [2013-01-06 02:58:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts [2013-01-06 02:49:04 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\DAEMON Tools Lite [2013-01-06 02:48:03 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite [2013-01-06 00:00:58 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat [2013-01-06 00:00:58 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat [2013-01-05 21:37:15 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Media Player Classic [2013-01-05 21:36:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack [2013-01-05 21:36:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\K-Lite Codec Pack [2013-01-05 21:31:42 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Programs [2013-01-05 20:34:15 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\AIMP3 [2013-01-05 20:34:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AIMP3 [2013-01-05 14:05:39 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox [2013-01-05 14:05:29 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Dropbox [2013-01-05 13:34:15 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll [2013-01-05 13:34:15 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll [2013-01-05 13:34:15 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll [2013-01-05 13:34:15 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll [2013-01-04 20:38:21 | 000,000,000 | ---D | C] -- C:\Program Files\TabletPlugins [2013-01-04 20:38:19 | 000,013,728 | ---- | C] (Windows (R) Win 7 DDK provider) -- C:\Windows\SysNative\drivers\hidkmdf.sys [2013-01-04 19:17:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt [2013-01-04 18:43:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies [2013-01-04 16:58:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2013-01-04 15:22:02 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Documents\4A Games [2013-01-04 15:16:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard [2013-01-04 15:13:35 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\4A Games [2013-01-04 03:12:03 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\uTorrent [2013-01-04 01:43:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Core Temp [2013-01-04 01:43:42 | 000,000,000 | ---D | C] -- C:\Program Files\Core Temp [2013-01-04 01:43:40 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\AI_RecycleBin [2013-01-04 01:43:40 | 000,000,000 | ---D | C] -- C:\ProgramData\W3i [2013-01-04 01:43:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\W3i [2013-01-04 01:43:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uninstall Helper [2013-01-04 00:16:11 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\NVIDIA [2013-01-04 00:12:07 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe [2013-01-04 00:11:28 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013-01-04 00:10:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013-01-04 00:09:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe [2013-01-03 23:53:10 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\CrashDumps [2013-01-03 23:43:02 | 000,000,000 | ---D | C] -- C:\ProgramData\ipla [2013-01-03 23:42:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ipla [2013-01-03 23:42:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ipla [2013-01-03 23:09:14 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\backburner [2013-01-03 23:01:34 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\foobar2000 [2013-01-03 22:53:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PlayReady [2013-01-03 22:49:00 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant [2013-01-03 22:46:30 | 000,000,000 | ---D | C] -- C:\ProgramData\RDRM [2013-01-03 22:46:30 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\ipla [2013-01-03 22:38:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Download Assistant [2013-01-03 22:38:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe [2013-01-03 22:38:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR [2013-01-03 22:36:46 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Adobe [2013-01-03 22:25:17 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Macromedia [2013-01-03 22:25:17 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Adobe [2013-01-03 22:24:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chaos Group [2013-01-03 22:24:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ChaosGroup [2013-01-03 22:24:41 | 000,000,000 | ---D | C] -- C:\Program Files\Chaos Group [2013-01-03 22:24:34 | 000,697,864 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013-01-03 22:24:34 | 000,074,248 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013-01-03 22:24:29 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed [2013-01-03 22:24:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2013-01-03 22:23:24 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess [2013-01-03 22:20:51 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet [2013-01-03 22:20:50 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Autodesk [2013-01-03 22:20:24 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\WinRAR [2013-01-03 22:20:24 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2013-01-03 22:20:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2013-01-03 22:20:10 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013-01-03 22:05:05 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Documents\Inventor Server x64 Autodesk 3ds Max 2012 64-bit - English [2013-01-03 22:05:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared [2013-01-03 22:04:19 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Documents\3dsMax [2013-01-03 22:04:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared [2013-01-03 22:04:04 | 000,000,000 | ---D | C] -- C:\Program Files\Autodesk [2013-01-03 22:03:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk [2013-01-03 22:03:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Autodesk [2013-01-03 22:03:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Autodesk Shared [2013-01-03 22:01:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2013-01-03 21:57:31 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Autodesk [2013-01-03 21:57:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Autodesk [2013-01-03 21:53:43 | 000,000,000 | ---D | C] -- C:\Autodesk [2013-01-03 20:07:22 | 026,811,240 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2013-01-03 20:07:22 | 025,256,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2013-01-03 20:07:22 | 020,335,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2013-01-03 20:07:22 | 018,045,968 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2013-01-03 20:07:22 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2013-01-03 20:07:22 | 015,016,256 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll [2013-01-03 20:07:22 | 012,603,960 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2013-01-03 20:07:22 | 009,271,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2013-01-03 20:07:22 | 007,819,016 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2013-01-03 20:07:22 | 007,446,192 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2013-01-03 20:07:22 | 006,149,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2013-01-03 20:07:22 | 002,784,104 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2013-01-03 20:07:22 | 002,606,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2013-01-03 20:07:22 | 002,496,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll [2013-01-03 20:07:22 | 002,226,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvenc.dll [2013-01-03 20:07:22 | 001,874,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvenc.dll [2013-01-03 20:07:22 | 001,472,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420103.dll [2013-01-03 20:07:22 | 000,841,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll [2013-01-03 20:07:22 | 000,417,128 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll [2013-01-03 20:07:22 | 000,361,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll [2013-01-03 20:07:22 | 000,245,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll [2013-01-03 20:07:22 | 000,201,136 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll [2013-01-03 20:07:22 | 000,189,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys [2013-01-03 20:07:22 | 000,031,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll [2013-01-03 19:49:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation [2013-01-03 19:39:07 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2013-01-03 19:39:05 | 006,223,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll [2013-01-03 19:39:05 | 003,311,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll [2013-01-03 19:39:05 | 002,557,800 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll [2013-01-03 19:39:05 | 000,118,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll [2013-01-03 19:39:05 | 000,063,336 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll [2013-01-03 19:38:57 | 000,060,776 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll [2013-01-03 19:38:57 | 000,052,584 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll [2013-01-03 19:38:51 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2013-01-03 19:38:46 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2013-01-03 19:38:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2013-01-03 19:36:06 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Opera [2013-01-03 19:36:06 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Opera [2013-01-03 19:36:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera [2013-01-03 19:35:05 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed [2013-01-03 19:25:56 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\ESET [2013-01-03 19:25:56 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\ESET [2013-01-03 19:25:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET [2013-01-03 19:25:19 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET [2013-01-03 19:25:19 | 000,000,000 | ---D | C] -- C:\Program Files\ESET [2013-01-03 19:20:35 | 001,374,624 | ---- | C] (ESET) -- C:\Users\Kucu\Desktop\eset_smart_security_live_installer.exe [2013-01-03 19:17:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation [2013-01-03 19:16:44 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Intel Corporation [2013-01-03 19:14:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Norton [2013-01-03 19:14:36 | 000,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller [2013-01-03 19:14:32 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel [2013-01-03 19:14:18 | 000,568,600 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iaStor.sys [2013-01-03 19:13:45 | 000,000,000 | ---D | C] -- C:\Users\Kucu\Documents\ASUS Wi-Fi GO! [2013-01-03 19:13:37 | 000,184,320 | ---- | C] (ASUSTeK) -- C:\Windows\SysWow64\drivers\UpdateHelper.dll [2013-01-03 19:13:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS [2013-01-03 19:13:27 | 000,000,000 | ---D | C] -- C:\ProgramData\ASUS [2013-01-03 19:13:20 | 000,028,672 | ---- | C] (ASUSTek Computer Inc.) -- C:\Windows\SysWow64\AsIO.dll [2013-01-03 19:13:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASUS [2013-01-03 19:13:19 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\MFDLL [2013-01-03 19:12:40 | 002,811,904 | ---- | C] (Qualcomm Atheros Communications, Inc.) -- C:\Windows\SysNative\drivers\athrx.sys [2013-01-03 19:12:40 | 002,811,904 | ---- | C] (Qualcomm Atheros Communications, Inc.) -- C:\Windows\SysNative\athrx.sys [2013-01-03 19:12:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation [2013-01-03 19:12:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Qualcomm Atheros [2013-01-03 19:11:59 | 000,524,704 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\PROUnstl.exe [2013-01-03 19:10:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASM104xUSB3 [2013-01-03 19:10:44 | 000,041,984 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\USB3Ver.dll [2013-01-03 19:10:42 | 000,000,000 | ---D | C] -- C:\Temp [2013-01-03 19:10:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Asmedia Technology [2013-01-03 19:10:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ASM106xSATA [2013-01-03 19:10:18 | 000,015,168 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\IntelMEFWVer.dll [2013-01-03 19:10:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel [2013-01-03 19:10:13 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2013-01-03 19:09:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent [2013-01-03 19:09:50 | 000,062,784 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\HECIx64.sys [2013-01-03 19:09:46 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\InstallShield [2013-01-03 19:09:13 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2013-01-03 19:09:12 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM [2013-01-03 19:09:03 | 002,605,400 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll [2013-01-03 19:09:03 | 001,361,336 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll [2013-01-03 19:09:03 | 000,836,544 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll [2013-01-03 19:09:03 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll [2013-01-03 19:09:03 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll [2013-01-03 19:09:03 | 000,148,416 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll [2013-01-03 19:09:03 | 000,065,944 | ---- | C] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll [2013-01-03 19:09:02 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll [2013-01-03 19:09:02 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll [2013-01-03 19:09:01 | 000,584,320 | ---- | C] (Sony Corporation) -- C:\Windows\SysNative\SFSS_APO.dll [2013-01-03 19:09:01 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll [2013-01-03 19:09:01 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll [2013-01-03 19:09:01 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll [2013-01-03 19:09:01 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll [2013-01-03 19:09:00 | 002,674,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll [2013-01-03 19:09:00 | 001,560,168 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl [2013-01-03 19:09:00 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll [2013-01-03 19:08:59 | 003,615,888 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll [2013-01-03 19:08:59 | 000,869,520 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll [2013-01-03 19:08:59 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll [2013-01-03 19:08:59 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll [2013-01-03 19:08:59 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll [2013-01-03 19:08:58 | 001,262,696 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll [2013-01-03 19:08:58 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll [2013-01-03 19:08:58 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll [2013-01-03 19:08:58 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll [2013-01-03 19:08:58 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll [2013-01-03 19:08:58 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll [2013-01-03 19:08:57 | 005,096,448 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat [2013-01-03 19:08:57 | 000,105,616 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll [2013-01-03 19:08:56 | 007,163,744 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll [2013-01-03 19:08:56 | 000,433,504 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll [2013-01-03 19:08:56 | 000,141,152 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll [2013-01-03 19:08:56 | 000,123,744 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll [2013-01-03 19:08:56 | 000,074,592 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll [2013-01-03 19:08:55 | 008,363,864 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek.dll [2013-01-03 19:08:55 | 001,345,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek264.dll [2013-01-03 19:08:55 | 000,396,632 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll [2013-01-03 19:08:54 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll [2013-01-03 19:08:54 | 001,015,640 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll [2013-01-03 19:08:54 | 000,603,984 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll [2013-01-03 19:08:54 | 000,341,336 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll [2013-01-03 19:08:54 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll [2013-01-03 19:08:50 | 002,533,952 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2013-01-03 19:08:50 | 000,693,352 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll [2013-01-03 19:08:50 | 000,449,392 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll [2013-01-03 19:08:49 | 001,756,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll [2013-01-03 19:08:49 | 001,568,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll [2013-01-03 19:08:49 | 000,712,296 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll [2013-01-03 19:08:49 | 000,537,456 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll [2013-01-03 19:08:49 | 000,524,656 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll [2013-01-03 19:08:49 | 000,491,112 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll [2013-01-03 19:08:49 | 000,432,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll [2013-01-03 19:08:49 | 000,428,648 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll [2013-01-03 19:08:49 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll [2013-01-03 19:08:49 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll [2013-01-03 19:08:49 | 000,241,768 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll [2013-01-03 19:08:48 | 001,486,952 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll [2013-01-03 19:08:48 | 000,728,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll [2013-01-03 19:08:48 | 000,108,640 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll [2013-01-03 19:08:47 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll [2013-01-03 19:08:47 | 000,202,336 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll [2013-01-03 19:08:47 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp [2013-01-03 19:08:47 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2013-01-03 19:08:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek [2013-01-03 19:08:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2013-01-03 19:08:03 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll [2013-01-03 19:08:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel [2013-01-03 19:07:36 | 000,000,000 | ---D | C] -- C:\Windows\AsusInstAll [2013-01-03 19:07:27 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013-01-03 19:07:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2013-01-03 19:07:22 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2013-01-03 19:07:21 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Google [2013-01-03 19:07:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2013-01-03 18:30:54 | 000,789,824 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iusb3xhc.sys [2013-01-03 18:30:53 | 000,357,184 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iusb3hub.sys [2013-01-03 18:30:52 | 000,019,264 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iusb3hcs.sys [2013-01-03 18:28:59 | 000,514,736 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\e1c62x64.sys [2013-01-03 18:28:59 | 000,072,360 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\e1cmsg.dll [2013-01-03 18:28:57 | 000,099,520 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\NicInstC.dll [2013-01-03 18:28:57 | 000,036,472 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\NicCo36.dll [2013-01-03 18:09:24 | 000,000,000 | R--D | C] -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2013-01-03 18:09:24 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Searches [2013-01-03 18:09:24 | 000,000,000 | R--D | C] -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2013-01-03 18:09:18 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Identities [2013-01-03 18:09:17 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Contacts [2013-01-03 18:09:17 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\VirtualStore [2013-01-03 18:09:14 | 000,000,000 | --SD | C] -- C:\Users\Kucu\AppData\Roaming\Microsoft [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Videos [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Saved Games [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Pictures [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Music [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Links [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Favorites [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Downloads [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Documents [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\Desktop [2013-01-03 18:09:14 | 000,000,000 | R--D | C] -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\Ustawienia lokalne [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\AppData\Local\Temporary Internet Files [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\Szablony [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\SendTo [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\Recent [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\PrintHood [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\NetHood [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\Documents\Moje wideo [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\Documents\Moje obrazy [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\Moje dokumenty [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\Documents\Moja muzyka [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\Menu Start [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\AppData\Local\Historia [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\Dane aplikacji [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\AppData\Local\Dane aplikacji [2013-01-03 18:09:14 | 000,000,000 | -HSD | C] -- C:\Users\Kucu\Cookies [2013-01-03 18:09:14 | 000,000,000 | -H-D | C] -- C:\Users\Kucu\AppData [2013-01-03 18:09:14 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Temp [2013-01-03 18:09:14 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Local\Microsoft [2013-01-03 18:09:14 | 000,000,000 | ---D | C] -- C:\Users\Kucu\AppData\Roaming\Media Center Programs [2013-01-03 18:09:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ulubione [2013-01-03 18:09:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony [2013-01-03 18:09:12 | 000,000,000 | -HSD | C] -- C:\Recovery [2013-01-03 18:09:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit [2013-01-03 18:09:12 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo [2013-01-03 18:09:12 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy [2013-01-03 18:09:12 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka [2013-01-03 18:09:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start [2013-01-03 18:09:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty [2013-01-03 18:09:12 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji [2013-01-03 18:09:10 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2013-01-03 18:03:40 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2013-01-03 18:03:32 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2013-01-03 18:03:20 | 000,000,000 | ---D | C] -- C:\Windows\Panther [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-01-28 18:52:39 | 001,662,556 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2013-01-28 18:52:39 | 000,737,730 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2013-01-28 18:52:39 | 000,651,938 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2013-01-28 18:52:39 | 000,154,418 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2013-01-28 18:52:39 | 000,120,870 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2013-01-28 18:46:51 | 000,001,040 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013-01-28 18:46:43 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013-01-28 18:46:42 | 4252,241,918 | -HS- | M] () -- C:\hiberfil.sys [2013-01-28 18:46:21 | 000,022,208 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2013-01-28 18:46:21 | 000,022,208 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2013-01-28 18:32:03 | 000,394,644 | ---- | M] () -- C:\Users\Kucu\Desktop\naprawa.png [2013-01-28 18:29:52 | 000,613,976 | ---- | M] () -- C:\Users\Kucu\Desktop\GrantPerms64.zip [2013-01-28 18:20:00 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013-01-28 18:07:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013-01-28 13:23:00 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4104769620-4137627604-3995400415-1000UA.job [2013-01-28 00:03:10 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kucu\Desktop\OTL.exe [2013-01-27 22:15:07 | 000,000,000 | ---- | M] () -- C:\autoexec.bat [2013-01-27 16:23:00 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4104769620-4137627604-3995400415-1000Core.job [2013-01-25 14:49:46 | 000,001,048 | ---- | M] () -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2013-01-25 14:49:42 | 000,001,014 | ---- | M] () -- C:\Users\Kucu\Desktop\Dropbox.lnk [2013-01-25 14:48:18 | 004,981,952 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2013-01-25 05:00:11 | 000,072,018 | ---- | M] () -- C:\Users\Kucu\Desktop\opis.pdf [2013-01-25 02:17:58 | 000,001,251 | ---- | M] () -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk [2013-01-24 06:11:53 | 001,074,176 | ---- | M] () -- C:\Users\Kucu\Desktop\Aktywator.exe [2013-01-24 06:04:36 | 000,001,822 | ---- | M] () -- C:\Users\Kucu\Desktop\Office 2010 dla Uytkownikw Domowych Trial_1359003876130.lnk [2013-01-23 23:14:40 | 000,000,132 | ---- | M] () -- C:\Users\Kucu\AppData\Roaming\Adobe OpenEXR Format CS6 Prefs [2013-01-23 17:12:14 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2013-01-23 17:12:14 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2013-01-23 12:32:07 | 000,281,688 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2013-01-22 15:07:08 | 000,000,806 | ---- | M] () -- C:\Users\Public\Desktop\King's Bounty - Warriors of the North PL-MX.lnk [2013-01-21 18:02:24 | 000,100,453 | ---- | M] () -- C:\Users\Kucu\Desktop\minimizetotray_plus-1.0.8-fx+tb+sb+sm-win.xpi [2013-01-21 16:19:11 | 000,001,319 | ---- | M] () -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk [2013-01-21 15:57:18 | 000,002,090 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk [2013-01-18 12:31:27 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe [2013-01-17 02:14:15 | 059,981,307 | ---- | M] () -- C:\Users\Kucu\Desktop\skazany na trening.rar [2013-01-17 01:38:55 | 000,004,608 | ---- | M] () -- C:\Users\Kucu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013-01-17 01:29:40 | 000,001,110 | ---- | M] () -- C:\Users\Public\Desktop\Picasa 3.lnk [2013-01-14 00:58:02 | 001,095,319 | ---- | M] () -- C:\Users\Kucu\Desktop\1.jpg [2013-01-10 09:18:50 | 001,637,758 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013-01-09 23:21:51 | 000,000,992 | ---- | M] () -- C:\Users\Kucu\Desktop\Core Temp.lnk [2013-01-09 02:07:10 | 000,697,864 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2013-01-09 02:07:10 | 000,074,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2013-01-08 22:27:34 | 004,089,583 | ---- | M] () -- C:\Users\Kucu\Desktop\3ba-di.pdf [2013-01-08 18:53:36 | 010,481,730 | ---- | M] () -- C:\Users\Kucu\Desktop\vfbHistory_2013_01_08_18_53_33_812.vrimg [2013-01-08 18:53:33 | 010,468,053 | ---- | M] () -- C:\Users\Kucu\Desktop\vfbHistory_2013_01_08_18_53_31_195.vrimg [2013-01-08 18:53:27 | 010,422,252 | ---- | M] () -- C:\Users\Kucu\Desktop\vfbHistory_2013_01_08_18_53_24_733.vrimg [2013-01-07 13:13:16 | 000,003,120 | ---- | M] () -- C:\Windows\SysWow64\ALLFSAF8a.ocx [2013-01-07 13:13:16 | 000,002,196 | ---- | M] () -- C:\Users\Public\Desktop\Style Builder 2.lnk [2013-01-07 13:13:16 | 000,002,110 | ---- | M] () -- C:\Users\Public\Desktop\LayOut 3.lnk [2013-01-07 13:13:16 | 000,002,025 | ---- | M] () -- C:\Users\Public\Desktop\SketchUp 8.lnk [2013-01-06 21:16:07 | 000,000,608 | ---- | M] () -- C:\Users\Kucu\Desktop\MapleStory Europe.lnk [2013-01-06 18:53:11 | 000,446,464 | ---- | M] (NEXON Inc.) -- C:\Windows\NEXON_EU_DownloaderUpdater.exe [2013-01-06 18:53:11 | 000,000,235 | ---- | M] () -- C:\Windows\SysWow64\nxEuUninstall.bat [2013-01-06 17:51:18 | 000,001,235 | ---- | M] () -- C:\Users\Public\Desktop\BIMx dla ArchiCADa 16.lnk [2013-01-06 17:51:18 | 000,001,058 | ---- | M] () -- C:\Users\Public\Desktop\ArchiCAD 16.lnk [2013-01-06 17:50:27 | 000,007,910 | ---- | M] () -- C:\Windows\vpd.properties [2013-01-06 17:46:40 | 000,476,960 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\npdeployJava1.dll [2013-01-06 17:46:40 | 000,472,864 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll [2013-01-06 17:46:40 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe [2013-01-06 17:46:40 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe [2013-01-06 17:46:40 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe [2013-01-06 13:32:03 | 000,002,059 | ---- | M] () -- C:\Users\Public\Desktop\Inventor Fusion 2012.lnk [2013-01-06 13:31:21 | 000,000,153 | ---- | M] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [2013-01-06 13:31:10 | 000,002,097 | ---- | M] () -- C:\Users\Public\Desktop\AutoCAD 2012 - Polski.lnk [2013-01-06 04:30:09 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk [2013-01-06 03:11:49 | 000,669,184 | ---- | M] () -- C:\Windows\SysWow64\pbsvc.exe [2013-01-05 20:28:55 | 000,000,546 | ---- | M] () -- C:\Users\Kucu\AppData\Roaming\All CPU MeterV3_Settings.ini [2013-01-04 20:39:18 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_wachidrouter_01009.Wdf [2013-01-04 17:50:15 | 000,000,200 | ---- | M] () -- C:\Users\Kucu\Documents\Autodesk 3ds Max Setup Launcher.html [2013-01-03 23:42:59 | 000,000,955 | ---- | M] () -- C:\Users\Public\Desktop\ipla.lnk [2013-01-03 22:38:15 | 000,001,031 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Download Assistant.lnk [2013-01-03 22:04:54 | 000,001,974 | ---- | M] () -- C:\Users\Public\Desktop\Autodesk 3ds Max 2012 64-bit - English.lnk [2013-01-03 20:21:21 | 000,002,378 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013-01-03 19:36:04 | 000,001,833 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk [2013-01-03 19:15:06 | 000,074,977 | ---- | M] () -- C:\Windows\Ascd_log.ini [2013-01-03 19:13:44 | 000,001,816 | ---- | M] () -- C:\Users\Public\Desktop\Wi-Fi GO!.lnk [2013-01-03 19:10:55 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf [2013-01-03 19:06:53 | 000,052,710 | ---- | M] () -- C:\Windows\Ascd_tmp.ini [2013-01-03 19:06:49 | 000,001,769 | ---- | M] () -- C:\Windows\Language_trs.ini [2013-01-03 18:05:01 | 000,185,589 | ---- | M] () -- C:\Windows\SysWow64\license.rtf [2013-01-03 18:05:01 | 000,185,589 | ---- | M] () -- C:\Windows\SysNative\license.rtf [2013-01-03 18:04:04 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-01-28 18:32:03 | 000,394,644 | ---- | C] () -- C:\Users\Kucu\Desktop\naprawa.png [2013-01-28 18:29:52 | 000,613,976 | ---- | C] () -- C:\Users\Kucu\Desktop\GrantPerms64.zip [2013-01-27 22:15:07 | 000,000,000 | ---- | C] () -- C:\autoexec.bat [2013-01-25 05:00:11 | 000,072,018 | ---- | C] () -- C:\Users\Kucu\Desktop\opis.pdf [2013-01-25 02:17:58 | 000,001,251 | ---- | C] () -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk [2013-01-24 06:11:53 | 001,074,176 | ---- | C] () -- C:\Users\Kucu\Desktop\Aktywator.exe [2013-01-24 06:04:36 | 000,001,822 | ---- | C] () -- C:\Users\Kucu\Desktop\Office 2010 dla Uytkownikw Domowych Trial_1359003876130.lnk [2013-01-24 01:46:15 | 000,001,305 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk [2013-01-24 01:46:14 | 000,001,374 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk [2013-01-24 01:10:07 | 000,001,194 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CS6.lnk [2013-01-24 01:09:28 | 000,001,090 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CS6.lnk [2013-01-24 01:09:09 | 000,000,997 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk [2013-01-23 23:14:40 | 000,000,132 | ---- | C] () -- C:\Users\Kucu\AppData\Roaming\Adobe OpenEXR Format CS6 Prefs [2013-01-22 15:07:08 | 000,000,806 | ---- | C] () -- C:\Users\Public\Desktop\King's Bounty - Warriors of the North PL-MX.lnk [2013-01-21 18:02:24 | 000,100,453 | ---- | C] () -- C:\Users\Kucu\Desktop\minimizetotray_plus-1.0.8-fx+tb+sb+sm-win.xpi [2013-01-21 16:19:11 | 000,001,319 | ---- | C] () -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk [2013-01-21 16:18:27 | 000,000,924 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4104769620-4137627604-3995400415-1000UA.job [2013-01-21 16:18:27 | 000,000,902 | ---- | C] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4104769620-4137627604-3995400415-1000Core.job [2013-01-21 15:57:18 | 000,002,102 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk [2013-01-21 15:57:18 | 000,002,090 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Thunderbird.lnk [2013-01-21 14:30:06 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2013-01-17 02:05:40 | 059,981,307 | ---- | C] () -- C:\Users\Kucu\Desktop\skazany na trening.rar [2013-01-17 01:38:50 | 000,004,608 | ---- | C] () -- C:\Users\Kucu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013-01-17 01:29:40 | 000,001,110 | ---- | C] () -- C:\Users\Public\Desktop\Picasa 3.lnk [2013-01-14 00:58:00 | 001,095,319 | ---- | C] () -- C:\Users\Kucu\Desktop\1.jpg [2013-01-08 22:27:30 | 004,089,583 | ---- | C] () -- C:\Users\Kucu\Desktop\3ba-di.pdf [2013-01-08 18:53:33 | 010,481,730 | ---- | C] () -- C:\Users\Kucu\Desktop\vfbHistory_2013_01_08_18_53_33_812.vrimg [2013-01-08 18:53:31 | 010,468,053 | ---- | C] () -- C:\Users\Kucu\Desktop\vfbHistory_2013_01_08_18_53_31_195.vrimg [2013-01-08 18:53:24 | 010,422,252 | ---- | C] () -- C:\Users\Kucu\Desktop\vfbHistory_2013_01_08_18_53_24_733.vrimg [2013-01-07 13:13:16 | 000,003,120 | ---- | C] () -- C:\Windows\SysWow64\ALLFSAF8a.ocx [2013-01-07 13:13:16 | 000,002,196 | ---- | C] () -- C:\Users\Public\Desktop\Style Builder 2.lnk [2013-01-07 13:13:16 | 000,002,110 | ---- | C] () -- C:\Users\Public\Desktop\LayOut 3.lnk [2013-01-07 13:09:33 | 000,002,025 | ---- | C] () -- C:\Users\Public\Desktop\SketchUp 8.lnk [2013-01-06 21:16:07 | 000,000,608 | ---- | C] () -- C:\Users\Kucu\Desktop\MapleStory Europe.lnk [2013-01-06 17:51:18 | 000,001,235 | ---- | C] () -- C:\Users\Public\Desktop\BIMx dla ArchiCADa 16.lnk [2013-01-06 17:51:18 | 000,001,058 | ---- | C] () -- C:\Users\Public\Desktop\ArchiCAD 16.lnk [2013-01-06 17:49:55 | 000,007,910 | ---- | C] () -- C:\Windows\vpd.properties [2013-01-06 13:32:03 | 000,002,059 | ---- | C] () -- C:\Users\Public\Desktop\Inventor Fusion 2012.lnk [2013-01-06 13:31:21 | 000,000,153 | ---- | C] () -- C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [2013-01-06 13:31:10 | 000,002,097 | ---- | C] () -- C:\Users\Public\Desktop\AutoCAD 2012 - Polski.lnk [2013-01-06 13:25:47 | 000,000,235 | ---- | C] () -- C:\Windows\SysWow64\nxEuUninstall.bat [2013-01-06 04:30:09 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk [2013-01-06 04:30:09 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk [2013-01-06 02:58:39 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe [2013-01-06 02:58:39 | 000,281,688 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.ex0 [2013-01-06 02:58:39 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe [2013-01-06 02:58:38 | 000,669,184 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe [2013-01-05 21:36:28 | 000,178,688 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2013-01-05 14:08:09 | 000,001,014 | ---- | C] () -- C:\Users\Kucu\Desktop\Dropbox.lnk [2013-01-05 14:05:45 | 000,001,048 | ---- | C] () -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2013-01-05 13:37:10 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf [2013-01-05 13:34:07 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf [2013-01-04 20:39:18 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_wachidrouter_01009.Wdf [2013-01-04 17:46:39 | 000,000,200 | ---- | C] () -- C:\Users\Kucu\Documents\Autodesk 3ds Max Setup Launcher.html [2013-01-04 01:43:42 | 000,000,992 | ---- | C] () -- C:\Users\Kucu\Desktop\Core Temp.lnk [2013-01-04 00:12:03 | 000,001,075 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk [2013-01-04 00:11:47 | 000,001,211 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk [2013-01-04 00:11:30 | 000,001,037 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk [2013-01-04 00:11:18 | 000,001,173 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk [2013-01-04 00:10:49 | 000,001,357 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk [2013-01-04 00:10:47 | 000,001,523 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk [2013-01-03 23:42:59 | 000,000,955 | ---- | C] () -- C:\Users\Public\Desktop\ipla.lnk [2013-01-03 22:38:15 | 000,001,043 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk [2013-01-03 22:38:15 | 000,001,031 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Download Assistant.lnk [2013-01-03 22:24:35 | 000,000,930 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2013-01-03 22:08:11 | 000,000,546 | ---- | C] () -- C:\Users\Kucu\AppData\Roaming\All CPU MeterV3_Settings.ini [2013-01-03 22:04:54 | 000,001,974 | ---- | C] () -- C:\Users\Public\Desktop\Autodesk 3ds Max 2012 64-bit - English.lnk [2013-01-03 22:02:37 | 001,637,758 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013-01-03 19:39:05 | 003,663,213 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin [2013-01-03 19:36:04 | 000,001,845 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk [2013-01-03 19:36:04 | 000,001,833 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk [2013-01-03 19:13:44 | 000,001,816 | ---- | C] () -- C:\Users\Public\Desktop\Wi-Fi GO!.lnk [2013-01-03 19:13:20 | 000,013,440 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsIO.sys [2013-01-03 19:13:19 | 000,011,832 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp64.sys [2013-01-03 19:13:19 | 000,010,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\AsInsHelp32.sys [2013-01-03 19:12:40 | 000,481,248 | ---- | C] () -- C:\Windows\SysNative\netathrx.inf [2013-01-03 19:12:40 | 000,073,708 | ---- | C] () -- C:\Windows\SysNative\athrextx.cat [2013-01-03 19:11:59 | 000,001,904 | ---- | C] () -- C:\Windows\SysNative\SetupBD.din [2013-01-03 19:10:55 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_iusb3hcs_01009.Wdf [2013-01-03 19:09:05 | 000,001,332 | ---- | C] () -- C:\Windows\SysNative\drivers\DTSU2P.DAT [2013-01-03 19:08:58 | 000,290,813 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT [2013-01-03 19:07:25 | 000,002,378 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013-01-03 19:07:22 | 000,001,044 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013-01-03 19:07:21 | 000,001,040 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013-01-03 19:07:11 | 000,074,977 | ---- | C] () -- C:\Windows\Ascd_log.ini [2013-01-03 19:06:49 | 000,052,710 | ---- | C] () -- C:\Windows\Ascd_tmp.ini [2013-01-03 19:06:49 | 000,010,296 | ---- | C] () -- C:\Windows\SysWow64\drivers\ASUSHWIO.SYS [2013-01-03 19:06:49 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2013-01-03 18:28:58 | 000,003,114 | ---- | C] () -- C:\Windows\SysNative\e1c62x64.din [2013-01-03 18:09:25 | 000,001,421 | ---- | C] () -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk [2013-01-03 18:09:24 | 000,001,455 | ---- | C] () -- C:\Users\Kucu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2013-01-03 18:04:59 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk [2013-01-03 18:04:58 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk [2013-01-03 18:04:04 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf [2013-01-03 18:03:32 | 4252,241,918 | -HS- | C] () -- C:\hiberfil.sys [2012-04-20 13:59:44 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll [color=#E56717]========== ZeroAccess Check ==========[/color] [2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\desktop.in0 [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012-06-09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] [color=#E56717]========== LOP Check ==========[/color] [2013-01-20 14:29:15 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\AIMP3 [2013-01-09 21:21:43 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\Autodesk [2013-01-03 22:49:00 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant [2013-01-06 02:51:22 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\DAEMON Tools Lite [2013-01-28 18:46:52 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\Dropbox [2013-01-03 19:25:56 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\ESET [2013-01-03 23:49:50 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\foobar2000 [2013-01-07 01:44:00 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\Graphisoft [2013-01-06 17:50:20 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\Install.GS [2013-01-27 02:12:16 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\ipla [2013-01-07 13:53:02 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\OctaneRender [2013-01-03 19:36:06 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\Opera [2013-01-24 01:51:55 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\PACE Anti-Piracy [2013-01-15 14:56:27 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 [2013-01-21 15:57:20 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\Thunderbird [2013-01-15 19:17:25 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\TuneUp Software [2013-01-22 14:48:08 | 000,000,000 | ---D | M] -- C:\Users\Kucu\AppData\Roaming\uTorrent [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 1109 bytes -> C:\Users\Kucu\AppData\Local\Temp:PYLPdnDWuU0u4tDPGEfvK3B7D73Ni < End of report >