OTL logfile created on: 2013-03-06 11:45:02 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Tomek\Downloads
 Professional  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16484)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 0,60 Gb Available Physical Memory | 30,21% Memory free
3,87 Gb Paging File | 1,74 Gb Available in Paging File | 44,81% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 50,36 Gb Total Space | 20,92 Gb Free Space | 41,55% Space Free | Partition Type: NTFS
Drive D: | 3,79 Gb Total Space | 3,04 Gb Free Space | 80,01% Space Free | Partition Type: FAT32
Drive E: | 213,76 Gb Total Space | 108,15 Gb Free Space | 50,60% Space Free | Partition Type: NTFS
 
Computer Name: KOMPUTER | User Name: Tomek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2013-03-06 11:44:31 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Tomek\Downloads\OTL.exe
PRC - [2013-03-06 11:22:48 | 004,477,336 | ---- | M] (Spotify Ltd) -- C:\Users\Tomek\AppData\Roaming\Spotify\Spotify.exe
PRC - [2013-03-06 09:54:07 | 000,389,016 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Thunderbird\thunderbird.exe
PRC - [2013-03-01 00:08:21 | 001,274,832 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2012-11-29 14:50:25 | 003,463,080 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2012-11-26 13:34:12 | 001,329,304 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2012-11-26 13:34:02 | 005,074,384 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2012-11-06 05:20:42 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostex.exe
PRC - [2012-10-11 06:56:41 | 002,115,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2012-07-26 04:20:44 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe
PRC - [2012-07-04 07:21:18 | 000,453,632 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2012-07-04 07:20:42 | 000,217,088 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2012-07-04 01:34:42 | 000,291,840 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
PRC - [2009-03-16 12:29:28 | 006,562,432 | ---- | M] () -- c:\xampp\mysql\bin\mysqld.exe
PRC - [2008-12-10 00:10:14 | 000,024,636 | ---- | M] (Apache Software Foundation) -- C:\xampp\apache\bin\httpd.exe
PRC - [2008-12-10 00:10:14 | 000,024,636 | ---- | M] (Apache Software Foundation) -- c:\xampp\apache\bin\httpd.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2013-03-06 11:22:46 | 021,938,072 | ---- | M] () -- C:\Users\Tomek\AppData\Roaming\Spotify\Data\libcef.dll
MOD - [2013-03-06 09:54:08 | 002,243,480 | ---- | M] () -- C:\Program Files\Mozilla Thunderbird\mozjs.dll
MOD - [2013-03-06 09:54:08 | 000,158,104 | ---- | M] () -- C:\Program Files\Mozilla Thunderbird\nsldap32v60.dll
MOD - [2013-03-06 09:54:08 | 000,022,424 | ---- | M] () -- C:\Program Files\Mozilla Thunderbird\nsldappr32v60.dll
MOD - [2013-03-01 00:08:19 | 000,459,728 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.152\ppgooglenaclpluginchrome.dll
MOD - [2013-03-01 00:08:18 | 012,637,136 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.152\PepperFlash\pepflashplayer.dll
MOD - [2013-03-01 00:08:16 | 004,050,896 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.152\pdf.dll
MOD - [2013-03-01 00:07:25 | 000,596,944 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.152\libglesv2.dll
MOD - [2013-03-01 00:07:24 | 000,124,368 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.152\libegl.dll
MOD - [2013-03-01 00:07:21 | 001,552,848 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\25.0.1364.152\ffmpegsumo.dll
MOD - [2012-11-29 22:59:32 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2012-06-18 16:24:30 | 000,260,096 | ---- | M] () -- C:\Program Files\Notepad++\NppShell_05.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - [2013-01-10 00:26:37 | 001,532,928 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc)
SRV - [2013-01-10 00:26:08 | 000,364,544 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm)
SRV - [2013-01-10 00:26:01 | 000,349,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM)
SRV - [2012-12-06 05:23:01 | 000,114,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBroker)
SRV - [2012-12-06 05:22:59 | 000,117,248 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV - [2012-11-29 14:50:25 | 003,463,080 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2012-11-26 13:34:12 | 001,329,304 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2012-11-06 05:54:13 | 002,205,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify)
SRV - [2012-11-06 05:18:36 | 000,136,704 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV - [2012-09-20 07:32:32 | 002,151,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WSService.dll -- (WSService)
SRV - [2012-09-20 06:53:51 | 000,095,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fhsvc.dll -- (fhsvc)
SRV - [2012-09-20 06:53:35 | 000,142,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure)
SRV - [2012-07-26 04:30:33 | 000,013,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2012-07-26 04:20:19 | 000,051,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc)
SRV - [2012-07-26 04:20:13 | 000,226,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc)
SRV - [2012-07-26 04:20:11 | 000,192,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc)
SRV - [2012-07-26 04:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2012-07-26 04:20:04 | 000,010,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc)
SRV - [2012-07-26 04:19:54 | 000,132,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2012-07-26 04:19:40 | 002,028,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2012-07-26 04:19:21 | 000,138,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc)
SRV - [2012-07-26 04:19:21 | 000,062,976 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2012-07-26 04:18:47 | 000,043,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\keyiso.dll -- (KeyIso)
SRV - [2012-07-26 04:18:24 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\efssvc.dll -- (EFS)
SRV - [2012-07-26 04:18:18 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc)
SRV - [2012-07-26 04:18:13 | 000,261,632 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService)
SRV - [2012-07-26 04:17:58 | 000,109,568 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AUInstallAgent.dll -- (AllUserInstallAgent)
SRV - [2012-07-26 01:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvss)
SRV - [2012-07-26 01:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync)
SRV - [2012-07-26 01:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown)
SRV - [2012-07-26 01:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicrdv)
SRV - [2012-07-26 01:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange)
SRV - [2012-07-26 01:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat)
SRV - [2012-07-04 07:20:42 | 000,217,088 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2012-07-04 01:34:42 | 000,291,840 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV - [2009-03-16 12:29:28 | 006,562,432 | ---- | M] () [Auto | Running] -- c:\xampp\mysql\bin\mysqld.exe -- (mysql)
SRV - [2008-12-10 00:10:14 | 000,024,636 | ---- | M] (Apache Software Foundation) [Auto | Running] -- c:\xampp\apache\bin\httpd.exe -- (Apache2.2)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ProgramData\MTA San Andreas All\1.3\temp\FairplayKD.sys -- (FairplayKD)
DRV - [2013-01-10 02:07:00 | 000,024,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV - [2012-11-29 06:42:09 | 000,058,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\pdc.sys -- (pdc)
DRV - [2012-11-27 04:54:13 | 000,025,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV - [2012-11-27 04:53:14 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthhfHid.sys -- (bthhfhid)
DRV - [2012-11-20 05:56:58 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hidi2c.sys -- (hidi2c)
DRV - [2012-11-06 07:37:04 | 000,361,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV - [2012-11-06 04:52:56 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\fxppm.sys -- (FxPPM)
DRV - [2012-10-20 12:30:48 | 000,013,024 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SWDUMon.sys -- (SWDUMon)
DRV - [2012-10-12 08:12:33 | 000,023,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012-10-11 06:45:31 | 000,050,920 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\dam.sys -- (dam)
DRV - [2012-10-11 06:28:23 | 000,046,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\sdstor.sys -- (sdstor)
DRV - [2012-10-08 08:21:08 | 000,121,216 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\Drivers\ehdrv.sys -- (ehdrv)
DRV - [2012-10-08 08:21:08 | 000,104,712 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2012-10-08 08:21:06 | 000,170,656 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\System32\Drivers\eamonm.sys -- (eamonm)
DRV - [2012-09-20 08:09:32 | 000,031,464 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\Drivers\cnghwassist.sys -- (cnghwassist)
DRV - [2012-09-20 07:34:12 | 000,268,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV - [2012-09-20 07:34:10 | 000,179,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\UCX01000.SYS -- (UCX01000)
DRV - [2012-09-20 07:34:07 | 000,097,000 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV - [2012-09-20 07:30:10 | 000,121,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\tpm.sys -- (TPM)
DRV - [2012-09-20 05:35:36 | 000,083,168 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2012-07-26 05:17:18 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\condrv.sys -- (condrv)
DRV - [2012-07-26 04:48:44 | 000,058,608 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\acpiex.sys -- (acpiex)
DRV - [2012-07-26 04:42:33 | 000,068,848 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV - [2012-07-26 04:42:32 | 000,099,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV - [2012-07-26 04:42:32 | 000,070,384 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorClass.sys -- (EhStorClass)
DRV - [2012-07-26 04:42:31 | 000,085,232 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\3ware.sys -- (3ware)
DRV - [2012-07-26 04:42:19 | 000,285,424 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV - [2012-07-26 04:42:19 | 000,080,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VerifierExt.sys -- (VerifierExt)
DRV - [2012-07-26 04:42:18 | 000,076,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uaspstor.sys -- (UASPStor)
DRV - [2012-07-26 04:42:18 | 000,066,288 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storahci.sys -- (storahci)
DRV - [2012-07-26 04:42:15 | 000,238,320 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\spaceport.sys -- (spaceport)
DRV - [2012-07-26 04:42:15 | 000,059,120 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\mvumis.sys -- (mvumis)
DRV - [2012-07-26 04:40:36 | 000,038,640 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV - [2012-07-26 04:40:10 | 000,256,240 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\clfs.sys -- (CLFS)
DRV - [2012-07-26 04:39:55 | 000,029,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\terminpt.sys -- (terminpt)
DRV - [2012-07-26 04:34:01 | 000,199,920 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WdFilter.sys -- (WdFilter)
DRV - [2012-07-26 04:33:00 | 000,130,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmbus.sys -- (vmbus)
DRV - [2012-07-26 04:33:00 | 000,042,344 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmstorfl.sys -- (storflt)
DRV - [2012-07-26 04:33:00 | 000,032,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storvsc.sys -- (storvsc)
DRV - [2012-07-26 04:30:33 | 000,028,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WdBoot.sys -- (WdBoot)
DRV - [2012-07-26 03:36:54 | 000,042,496 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV - [2012-07-26 03:36:49 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mshidumdf.sys -- (mshidumdf)
DRV - [2012-07-26 03:36:36 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\HyperVideo.sys -- (HyperVideo)
DRV - [2012-07-26 03:36:35 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicRender.sys -- (BasicRender)
DRV - [2012-07-26 03:35:30 | 000,006,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vms3cap.sys -- (s3cap)
DRV - [2012-07-26 03:35:28 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\npsvctrig.sys -- (npsvctrig)
DRV - [2012-07-26 03:35:10 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\kdnic.sys -- (kdnic)
DRV - [2012-07-26 03:35:06 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpitime.sys -- (acpitime)
DRV - [2012-07-26 03:35:04 | 000,009,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vmgencounter.sys -- (gencounter)
DRV - [2012-07-26 03:34:43 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpipagr.sys -- (acpipagr)
DRV - [2012-07-26 03:34:42 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV - [2012-07-26 03:34:22 | 000,018,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2012-07-26 03:34:04 | 000,010,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hyperkbd.sys -- (hyperkbd)
DRV - [2012-07-26 03:33:53 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx.sys -- (SerCx)
DRV - [2012-07-26 03:33:50 | 000,046,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SpbCx.sys -- (SpbCx)
DRV - [2012-07-26 03:33:37 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\winusb.sys -- (WinUsb)
DRV - [2012-07-26 03:33:29 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2012-07-26 03:33:16 | 000,044,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV - [2012-07-26 03:32:54 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012-07-26 03:32:53 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\dmvsc.sys -- (dmvsc)
DRV - [2012-07-26 03:32:02 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wpcfltr.sys -- (wpcfltr)
DRV - [2012-07-26 03:31:11 | 000,110,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV - [2012-07-26 03:30:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\mslldp.sys -- (MsLldp)
DRV - [2012-07-26 03:30:39 | 000,084,480 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\Ndu.sys -- (Ndu)
DRV - [2012-07-04 07:58:12 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\atikmdag.sys -- (amdkmdag)
DRV - [2012-07-04 06:10:30 | 000,290,304 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\atikmpag.sys -- (amdkmdap)
DRV - [2012-06-27 09:37:56 | 000,136,808 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2012-06-27 09:37:56 | 000,121,064 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ssadbus.sys -- (ssadbus)
DRV - [2012-06-27 09:37:56 | 000,114,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ssadserd.sys -- (ssadserd)
DRV - [2012-06-27 09:37:56 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ssadadb.sys -- (androidusb)
DRV - [2012-06-27 09:37:56 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ssadmdfl.sys -- (ssadmdfl)
DRV - [2012-06-02 15:31:54 | 000,291,456 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvmf6232.sys -- (NVNET)
DRV - [2012-03-05 16:04:30 | 000,045,184 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\aoddriver2.sys -- (AODDriver4.1)
DRV - [2011-08-17 10:03:58 | 000,137,472 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\nmwcdnsu.sys -- (nmwcdnsu)
DRV - [2011-08-17 09:56:32 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011-08-17 09:56:30 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011-08-17 09:56:26 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011-08-17 09:56:22 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ccdcmb.sys -- (nmwcd)
DRV - [2010-02-18 09:18:22 | 000,037,944 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\amdiox86.sys -- (amdiox86)
DRV - [2009-09-21 20:26:10 | 000,046,192 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\GenericMount.sys -- (GenericMount)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010000.10014&barid={A0F3B1FD-3D73-11E2-B04C-00241DA5AC33}
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 16 28 E6 D5 B2 18 CE 01  [binary data]
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\..\SearchScopes,DefaultScope = {BEA4ECBB-E37D-4844-9293-C33433491BA6}
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searcerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\..\SearchScopes\{BEA4ECBB-E37D-4844-9293-C33433491BA6}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@idsoftware.com/QuakeLive: C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fmconverter@gmail.com: C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [2012-12-03 18:48:23 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.3\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2013-03-05 13:18:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.3\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2013-02-03 20:57:58 | 000,000,000 | ---D | M]
 
[2012-11-08 10:24:20 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Tomek\AppData\Roaming\mozilla\Extensions
[2013-02-27 19:13:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.152\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.152\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\25.0.1364.152\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - Extension: Dysk Google = C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_2\
CHR - Extension: Slinky Elegancki = C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln\19.6_0\
CHR - Extension: Szukaj w Google = C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_2\
CHR - Extension: Freemake Video Converter = C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj\1.0.0_0\
CHR - Extension: Hover Zoom = C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl\4.12_0\
CHR - Extension: Gmail = C:\Users\Tomek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_2\
 
O1 HOSTS File: ([2012-07-26 05:17:20 | 000,000,824 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [Greenshot] C:\Program Files\Greenshot\Greenshot.exe (Greenshot)
O4 - HKU\S-1-5-21-4224538745-1391870583-4049991509-1001..\Run: [Spotify Web Helper] C:\Users\Tomek\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Spotify Ltd)
O4 - Startup: C:\Users\Bartek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk =  File not found
O4 - Startup: C:\Users\Kajtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wilq - Kalendarz 2010.lnk =  File not found
O4 - Startup: C:\Users\Kajtek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Wilq - Kalendarz 2013.lnk =  File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{491DAEA6-56FE-4588-9EF8-1AD9579E29A2}: DhcpNameServer = 192.168.2.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012-07-26 07:52:25 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2013-02-27 21:38:27 | 000,000,000 | ---D | M] - E:\Autobus-Sim -- [ NTFS ]
O33 - MountPoints2\{f27d7b5d-1a9f-11e2-af9d-00241da5ac33}\Shell - "" = AutoRun
O33 - MountPoints2\{f27d7b5d-1a9f-11e2-af9d-00241da5ac33}\Shell\AutoRun\command - "" = "H:\setup.exe" 
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = "H:\Install.exe" 
O34 - HKLM BootExecute: (autocheck autochk /m /P \Device\HarddiskVolume3)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2013-03-04 13:53:08 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\PITy
[2013-03-04 13:53:08 | 000,000,000 | ---D | C] -- C:\ProgramData\PITy
[2013-03-04 13:53:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PITy
[2013-03-04 13:53:03 | 000,000,000 | ---D | C] -- C:\Program Files\PITy
[2013-03-03 14:18:39 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013-03-03 14:13:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2013-03-02 12:29:39 | 000,000,000 | ---D | C] -- C:\Users\Tomek\AppData\Local\WMTools Downloaded Files
[2013-03-02 12:29:26 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker 2.6
[2013-02-27 21:38:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Techland
[2013-02-27 19:13:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\searchplugins
[2013-02-27 19:13:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\Extensions
[2013-02-27 19:13:28 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2013-02-27 19:13:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2013-02-27 14:35:16 | 000,444,952 | ---- | C] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2013-02-27 14:35:16 | 000,109,080 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[2013-02-27 14:35:16 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2013-02-27 14:35:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symulator Jazdy 2
[2013-02-27 07:17:31 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reseteng.dll
[2013-02-27 07:17:30 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ReAgent.dll
[2013-02-25 15:23:59 | 000,000,000 | ---D | C] -- C:\Users\Tomek\AppData\Local\debergerac
[2013-02-25 15:23:43 | 000,000,000 | ---D | C] -- C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeBergerac
[2013-02-25 15:23:13 | 000,000,000 | ---D | C] -- C:\Users\Tomek\AppData\Local\Deployment
[2013-02-25 15:23:13 | 000,000,000 | ---D | C] -- C:\Users\Tomek\AppData\Local\Apps
[2013-02-21 10:01:49 | 000,000,000 | ---D | C] -- C:\Users\Tomek\AppData\Local\Symantec_Corporation
[2013-02-21 10:01:49 | 000,000,000 | ---D | C] -- C:\Users\Tomek\AppData\Roaming\Symantec
[2013-02-21 09:47:32 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\capicom.dll
[2013-02-21 09:47:31 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFC71.DLL
[2013-02-21 09:47:30 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2013-02-21 09:46:14 | 000,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2013-02-21 09:45:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Symantec
[2013-02-21 09:45:59 | 000,000,000 | ---D | C] -- C:\ProgramData\{1C6FDDD8-FC9E-4C12-9FA5-1AAD377097B3}
[2013-02-20 18:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\Game Cam V2
[2013-02-19 11:03:23 | 000,000,000 | ---D | C] -- C:\Users\Tomek\Documents\Hedgewars
[2013-02-15 10:31:57 | 003,400,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2013-02-14 17:31:23 | 005,554,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2013-02-14 15:45:07 | 001,437,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\GdiPlus.dll
[2013-02-14 14:23:55 | 001,611,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mmc.exe
[2013-02-14 14:23:54 | 001,532,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlidsvc.dll
[2013-02-14 14:23:53 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netprofmsvc.dll
[2013-02-14 14:23:52 | 000,582,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpprefcl.dll
[2013-02-14 14:23:52 | 000,024,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\msgpiowin32.sys
[2013-02-14 14:23:51 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MP4SDECD.DLL
[2013-02-14 14:23:51 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.dll
[2013-02-14 14:23:51 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsm.dll
[2013-02-14 14:23:51 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srm.dll
[2013-02-14 14:23:51 | 000,261,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Media.dll
[2013-02-14 14:23:51 | 000,259,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2013-02-14 14:23:51 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2013-02-14 14:23:51 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srmstormod.dll
[2013-02-14 14:23:51 | 000,104,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dumpsd.sys
[2013-02-14 14:23:51 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wiaacmgr.exe
[2013-02-14 11:15:43 | 002,881,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2013-02-14 11:15:43 | 000,493,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2013-02-14 11:15:43 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2013-02-14 11:15:43 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2013-02-14 11:15:42 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2013-02-14 11:15:42 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UXInit.dll
[2013-02-14 10:39:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Greenshot
[2013-02-14 10:39:19 | 000,000,000 | ---D | C] -- C:\Program Files\Greenshot
[2013-02-12 10:30:53 | 000,000,000 | ---D | C] -- C:\Users\Tomek\AppData\Local\Spotify
[2013-02-12 10:29:54 | 000,000,000 | ---D | C] -- C:\Users\Tomek\AppData\Roaming\Spotify
[2013-02-06 17:14:37 | 000,000,000 | ---D | C] -- C:\Users\Tomek\AppData\Local\FalloutNV
[2013-02-06 17:11:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bethesda Softworks
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2013-03-06 11:47:01 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1ce0f4e8e88e448.job
[2013-03-06 11:25:02 | 000,211,409 | ---- | M] () -- C:\Users\Tomek\Desktop\gar.png
[2013-03-06 10:47:00 | 000,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-03-06 08:59:26 | 000,069,193 | ---- | M] () -- C:\Users\Tomek\Desktop\czat.php
[2013-03-06 08:29:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013-03-06 08:26:59 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2013-03-06 07:23:06 | 000,362,568 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013-03-05 12:24:31 | 000,793,704 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2013-03-05 12:24:31 | 000,710,046 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013-03-05 12:24:31 | 000,159,324 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2013-03-05 12:24:31 | 000,132,416 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013-03-04 13:53:08 | 000,000,913 | ---- | M] () -- C:\Users\Tomek\Desktop\PITy roczne.lnk
[2013-03-04 13:40:51 | 000,064,073 | ---- | M] () -- C:\Users\Tomek\Desktop\Skrypt jQuery File Upload w akcji.jpg
[2013-03-04 11:35:30 | 000,047,629 | ---- | M] () -- C:\Users\Tomek\Desktop\WordPress Backup to Dropbox.jpg
[2013-03-04 09:27:12 | 000,032,214 | ---- | M] () -- C:\Users\Tomek\Desktop\Przykładowy alert.jpg
[2013-03-04 09:14:58 | 000,028,787 | ---- | M] () -- C:\Users\Tomek\Documents\Alerty Google.jpg
[2013-03-02 19:19:19 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013-03-02 12:33:09 | 000,213,349 | ---- | M] () -- C:\Users\Tomek\Desktop\jimmyeatworld.jpg
[2013-03-02 12:29:46 | 000,003,584 | ---- | M] () -- C:\Users\Tomek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013-03-02 12:28:24 | 011,478,302 | ---- | M] () -- C:\Users\Tomek\Desktop\Jimmy Eat World - Hear You Me.mp3
[2013-02-27 21:38:46 | 000,000,706 | ---- | M] () -- C:\Users\Public\Desktop\Symulator Autobusu.lnk
[2013-02-27 14:35:16 | 000,444,952 | ---- | M] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2013-02-27 14:35:16 | 000,109,080 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[2013-02-27 11:32:35 | 000,218,421 | ---- | M] () -- C:\Users\Tomek\Desktop\1.jpg
[2013-02-25 15:35:04 | 006,905,167 | ---- | M] () -- C:\Users\Tomek\Documents\dyplomacjafm_blogml.xml
[2013-02-25 12:28:57 | 000,018,879 | ---- | M] () -- C:\Users\Tomek\Desktop\2.jpg
[2013-02-21 08:29:31 | 000,078,168 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2013-02-21 08:29:30 | 000,692,568 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2013-02-19 18:04:46 | 000,001,029 | ---- | M] () -- C:\Users\Tomek\Desktop\Notepad++.lnk
[2013-02-19 11:42:38 | 000,000,327 | ---- | M] () -- C:\Users\Tomek\AppData\Roaming\burnaware.ini
[2013-02-12 10:30:52 | 000,001,767 | ---- | M] () -- C:\Users\Tomek\Desktop\Spotify.lnk
[2013-02-06 17:11:42 | 000,000,702 | ---- | M] () -- C:\Users\Public\Desktop\Fallout New Vegas.lnk
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013-03-06 11:25:02 | 000,211,409 | ---- | C] () -- C:\Users\Tomek\Desktop\gar.png
[2013-03-06 08:58:36 | 000,069,193 | ---- | C] () -- C:\Users\Tomek\Desktop\czat.php
[2013-03-06 07:22:57 | 000,362,568 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013-03-04 13:53:08 | 000,000,913 | ---- | C] () -- C:\Users\Tomek\Desktop\PITy roczne.lnk
[2013-03-04 13:40:50 | 000,064,073 | ---- | C] () -- C:\Users\Tomek\Desktop\Skrypt jQuery File Upload w akcji.jpg
[2013-03-04 11:34:13 | 000,047,629 | ---- | C] () -- C:\Users\Tomek\Desktop\WordPress Backup to Dropbox.jpg
[2013-03-04 09:27:12 | 000,032,214 | ---- | C] () -- C:\Users\Tomek\Desktop\Przykładowy alert.jpg
[2013-03-04 09:14:58 | 000,028,787 | ---- | C] () -- C:\Users\Tomek\Documents\Alerty Google.jpg
[2013-03-02 12:33:09 | 000,213,349 | ---- | C] () -- C:\Users\Tomek\Desktop\jimmyeatworld.jpg
[2013-03-02 12:29:46 | 000,003,584 | ---- | C] () -- C:\Users\Tomek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013-03-02 12:29:26 | 000,002,495 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Movie Maker 2.6.lnk
[2013-03-02 12:27:35 | 011,478,302 | ---- | C] () -- C:\Users\Tomek\Desktop\Jimmy Eat World - Hear You Me.mp3
[2013-02-27 21:38:46 | 000,000,706 | ---- | C] () -- C:\Users\Public\Desktop\Symulator Autobusu.lnk
[2013-02-25 15:35:01 | 006,905,167 | ---- | C] () -- C:\Users\Tomek\Documents\dyplomacjafm_blogml.xml
[2013-02-25 12:28:56 | 000,018,879 | ---- | C] () -- C:\Users\Tomek\Desktop\2.jpg
[2013-02-21 10:58:53 | 000,218,421 | ---- | C] () -- C:\Users\Tomek\Desktop\1.jpg
[2013-02-20 10:42:11 | 000,001,062 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1ce0f4e8e88e448.job
[2013-02-14 14:23:51 | 000,386,577 | ---- | C] () -- C:\Windows\System32\ApnDatabase.xml
[2013-02-12 10:30:52 | 000,001,767 | ---- | C] () -- C:\Users\Tomek\Desktop\Spotify.lnk
[2013-02-12 10:30:52 | 000,001,753 | ---- | C] () -- C:\Users\Tomek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
[2013-02-06 17:11:42 | 000,000,702 | ---- | C] () -- C:\Users\Public\Desktop\Fallout New Vegas.lnk
[2013-01-17 09:16:11 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswnet.sys.sum
[2012-12-13 19:34:36 | 000,000,327 | ---- | C] () -- C:\Users\Tomek\AppData\Roaming\burnaware.ini
[2012-10-20 12:35:18 | 000,332,665 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2012-10-20 12:30:48 | 000,013,024 | ---- | C] () -- C:\Windows\System32\drivers\SWDUMon.sys
[2012-10-20 11:34:53 | 000,083,968 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll
[2012-10-20 11:20:51 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2012-07-26 09:14:12 | 000,793,704 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2012-07-26 09:14:12 | 000,342,912 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2012-07-26 09:14:12 | 000,159,324 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2012-07-26 09:14:12 | 000,041,236 | ---- | C] () -- C:\Windows\System32\perfd015.dat
[2012-07-26 07:55:27 | 000,710,046 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2012-07-26 07:55:27 | 000,296,742 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2012-07-26 07:55:27 | 000,132,416 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2012-07-26 07:55:27 | 000,033,362 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2012-07-26 07:53:47 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2012-07-26 07:53:46 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2012-07-26 07:03:55 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2012-07-26 02:20:38 | 000,071,680 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2012-07-26 02:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2012-07-25 21:41:36 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2012-07-25 21:24:47 | 000,526,068 | ---- | C] () -- C:\Windows\System32\staticurllist.bin
[2012-07-14 03:00:46 | 000,043,882 | ---- | C] () -- C:\Windows\System32\srms.dat
[2012-07-04 06:27:30 | 000,204,952 | ---- | C] () -- C:\Windows\System32\ativvsvl.dat
[2012-07-04 06:27:30 | 000,157,144 | ---- | C] () -- C:\Windows\System32\ativvsva.dat
[2012-07-04 02:32:18 | 000,159,232 | ---- | C] () -- C:\Windows\System32\clinfo.exe
[2012-06-02 21:25:24 | 000,008,192 | ---- | C] () -- C:\Windows\System32\settings.dat
[2012-06-02 15:31:24 | 001,520,828 | ---- | C] () -- C:\Windows\System32\WpcNBModel.bin
[2012-06-02 15:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2012-04-18 19:39:06 | 000,028,672 | ---- | C] () -- C:\Windows\System32\kdbsdk32.dll
[2012-03-06 18:59:32 | 000,618,823 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2011-09-12 23:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\System32\atipblag.dat
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2012-11-10 12:29:28 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013-01-10 00:26:23 | 017,560,576 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2012-07-26 04:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2012-07-26 04:20:13 | 000,354,304 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-10-20 19:54:24 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\.wtw
[2013-03-05 20:28:45 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\AIMP3
[2013-02-27 19:13:08 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Babylon
[2013-02-27 19:13:28 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Claro LTD
[2013-03-05 20:28:46 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\DAEMON Tools Lite
[2013-03-06 08:27:29 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Dropbox
[2013-02-04 11:28:42 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\e-academy Inc
[2013-03-05 19:49:51 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\FileZilla
[2013-01-02 18:09:45 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Greenshot
[2013-03-05 20:28:44 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Notepad++
[2012-12-03 19:43:30 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\systweak
[2012-12-08 20:42:08 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\TeamViewer
[2013-03-05 20:28:45 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\TS3Client
[2012-12-15 12:12:06 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\TuneUp Software
[2013-03-05 20:28:45 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\uTorrent
[2012-11-28 16:42:13 | 000,000,000 | ---D | M] -- C:\Users\Bartek\AppData\Roaming\Wargaming.net
[2012-10-21 10:09:55 | 000,000,000 | ---D | M] -- C:\Users\Kajtek\AppData\Roaming\Ascaron Entertainment
[2013-01-25 12:49:12 | 000,000,000 | ---D | M] -- C:\Users\Kajtek\AppData\Roaming\Atari
[2013-01-07 15:15:34 | 000,000,000 | ---D | M] -- C:\Users\Kajtek\AppData\Roaming\com.adobe.example.wilq.31780CAEAAA26670054AA51B21F17F0B86A843CE.1
[2013-01-06 09:59:27 | 000,000,000 | ---D | M] -- C:\Users\Kajtek\AppData\Roaming\DAEMON Tools Lite
[2012-10-20 15:21:37 | 000,000,000 | ---D | M] -- C:\Users\Kajtek\AppData\Roaming\dll-files.com
[2013-01-02 16:22:20 | 000,000,000 | ---D | M] -- C:\Users\Kajtek\AppData\Roaming\Greenshot
[2012-12-27 09:14:09 | 000,000,000 | ---D | M] -- C:\Users\Kajtek\AppData\Roaming\Wargaming.net
[2012-11-04 10:27:07 | 000,000,000 | ---D | M] -- C:\Users\Kajtek\AppData\Roaming\Warner Bros. Interactive Entertainment
[2012-10-20 13:28:18 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\.wtw
[2013-03-03 14:18:07 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\AIMP3
[2013-02-03 16:32:30 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Atari
[2012-11-07 13:47:36 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Bioshock
[2013-02-01 11:34:50 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\com.aspiro.wimp.pl.25F5C0086CDE1F22CA0B92A487729991CA6CD013.1
[2013-03-06 11:40:24 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\DAEMON Tools Lite
[2012-11-11 15:16:17 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Dev-Cpp
[2012-11-10 19:55:57 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\dll-files.com
[2013-02-03 22:15:25 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\e-academy Inc
[2013-03-06 11:32:29 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\FileZilla
[2012-10-30 08:08:29 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Foxit Software
[2013-01-02 11:38:01 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Greenshot
[2013-03-06 08:59:34 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Notepad++
[2013-03-06 11:37:56 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Spotify
[2012-11-08 10:24:20 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Thunderbird
[2012-12-15 15:36:40 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\TuneUp Software
[2013-03-03 14:18:07 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\uTorrent
[2012-11-29 09:44:30 | 000,000,000 | ---D | M] -- C:\Users\Tomek\AppData\Roaming\Wargaming.net
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >