OTL logfile created on: 2013-09-11 15:12:12 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\WetiZZe\Documents\MCZAFREE Professional (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16384) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,42 Gb Available Physical Memory | 21,01% Memory free 4,00 Gb Paging File | 1,66 Gb Available in Paging File | 41,61% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 146,39 Gb Total Space | 46,30 Gb Free Space | 31,63% Space Free | Partition Type: NTFS Drive D: | 86,40 Gb Total Space | 79,21 Gb Free Space | 91,68% Space Free | Partition Type: NTFS Drive H: | 100,00 Mb Total Space | 65,71 Mb Free Space | 65,71% Space Free | Partition Type: NTFS Computer Name: WETIZE | User Name: WetiZZe | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-09-11 15:10:55 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\WetiZZe\Documents\MCZAFREE\OTL.exe PRC - [2013-09-02 22:35:59 | 000,829,392 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe PRC - [2013-08-10 11:56:18 | 001,651,144 | ---- | M] (AIMP DevTeam) -- C:\Program Files\AIMP3\AIMP3.exe PRC - [2013-07-15 10:07:30 | 007,162,744 | ---- | M] (Innovative Solutions) -- C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe PRC - [2013-05-28 14:20:34 | 000,083,976 | ---- | M] (Redefine Sp z o.o.) -- C:\Program Files\ipla\ZCEFBrowser.exe PRC - [2013-05-28 14:20:30 | 021,172,832 | ---- | M] (Redefine Sp z o.o.) -- C:\Program Files\ipla\ipla.exe PRC - [2013-03-21 15:19:46 | 001,341,664 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe PRC - [2013-03-21 15:19:40 | 005,078,504 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe PRC - [2013-02-26 00:22:34 | 001,260,320 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2013-01-18 16:21:02 | 000,873,248 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe PRC - [2013-01-18 16:21:00 | 001,821,984 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe PRC - [2013-01-18 08:14:20 | 000,383,264 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe PRC - [2012-12-11 23:58:50 | 000,027,768 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\System32\ViakaraokeSrv.exe PRC - [2012-07-26 05:50:01 | 002,114,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2012-07-26 05:20:59 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostex.exe PRC - [2012-07-26 05:20:44 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2013-09-02 22:35:56 | 000,410,576 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppgooglenaclpluginchrome.dll MOD - [2013-09-02 22:35:55 | 013,599,184 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll MOD - [2013-09-02 22:35:54 | 004,053,456 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll MOD - [2013-09-02 22:35:04 | 000,709,584 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\29.0.1547.66\libglesv2.dll MOD - [2013-09-02 22:35:03 | 000,099,792 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\29.0.1547.66\libegl.dll MOD - [2013-09-02 22:35:01 | 001,604,560 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\29.0.1547.66\ffmpegsumo.dll MOD - [2013-08-10 11:56:24 | 000,435,200 | ---- | M] () -- C:\Program Files\AIMP3\Modules\libFLAC.dll MOD - [2013-08-10 11:56:24 | 000,220,672 | ---- | M] () -- C:\Program Files\AIMP3\Modules\MACDll.dll MOD - [2013-08-10 11:56:23 | 001,733,120 | ---- | M] () -- C:\Program Files\AIMP3\Modules\aimp_libvorbis.dll MOD - [2013-08-10 11:56:23 | 000,141,768 | ---- | M] () -- C:\Program Files\AIMP3\Plugins\PandemicAnalogMeter.dll MOD - [2013-08-10 11:56:23 | 000,071,624 | ---- | M] () -- C:\Program Files\AIMP3\Plugins\aimp_lastfm.dll MOD - [2013-08-10 11:56:23 | 000,026,624 | ---- | M] () -- C:\Program Files\AIMP3\Plugins\Aorta.svp MOD - [2013-08-10 11:56:22 | 000,237,568 | ---- | M] () -- C:\Program Files\AIMP3\Plugins\OptimFROG.dll MOD - [2013-08-10 11:56:21 | 000,480,256 | ---- | M] () -- C:\Program Files\AIMP3\sqlite3.dll MOD - [2013-08-07 21:25:24 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll MOD - [2013-07-15 10:07:36 | 000,009,088 | ---- | M] () -- C:\Program Files\Innovative Solutions\DriverMax\sync.dll MOD - [2013-05-28 14:20:32 | 000,392,200 | ---- | M] () -- C:\Program Files\ipla\jabberoo.dll MOD - [2013-05-28 14:20:32 | 000,068,104 | ---- | M] () -- C:\Program Files\ipla\ziplib.dll MOD - [2013-05-28 14:10:56 | 000,294,400 | ---- | M] () -- C:\Program Files\ipla\MediaFileScanner.dll MOD - [2013-05-13 12:21:38 | 032,644,096 | ---- | M] () -- C:\Program Files\ipla\libcef.dll MOD - [2013-05-13 12:21:30 | 001,148,928 | ---- | M] () -- C:\Program Files\ipla\ffmpegsumo.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - [2013-08-14 19:55:29 | 000,117,656 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2013-07-25 08:52:52 | 000,162,672 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2013-03-21 15:19:46 | 001,341,664 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn) SRV - [2013-02-26 00:22:34 | 001,260,320 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) SRV - [2013-01-18 08:14:20 | 000,383,264 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service) SRV - [2012-12-11 23:58:50 | 000,027,768 | ---- | M] (VIA Technologies, Inc.) [Auto | Running] -- C:\Windows\System32\ViakaraokeSrv.exe -- (VIAKaraokeService) SRV - [2012-07-26 06:03:42 | 002,205,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify) SRV - [2012-07-26 05:31:20 | 002,151,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WSService.dll -- (WSService) SRV - [2012-07-26 05:30:33 | 000,013,864 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend) SRV - [2012-07-26 05:20:30 | 001,536,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc) SRV - [2012-07-26 05:20:19 | 000,051,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc) SRV - [2012-07-26 05:20:13 | 000,226,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc) SRV - [2012-07-26 05:20:11 | 000,192,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc) SRV - [2012-07-26 05:20:07 | 000,113,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBroker) SRV - [2012-07-26 05:20:05 | 000,117,248 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker) SRV - [2012-07-26 05:20:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc) SRV - [2012-07-26 05:20:04 | 000,010,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc) SRV - [2012-07-26 05:19:54 | 000,132,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc) SRV - [2012-07-26 05:19:40 | 002,028,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc) SRV - [2012-07-26 05:19:22 | 000,364,032 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm) SRV - [2012-07-26 05:19:21 | 000,138,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc) SRV - [2012-07-26 05:19:21 | 000,062,976 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup) SRV - [2012-07-26 05:18:55 | 000,349,696 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM) SRV - [2012-07-26 05:18:47 | 000,043,520 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\keyiso.dll -- (KeyIso) SRV - [2012-07-26 05:18:28 | 000,095,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fhsvc.dll -- (fhsvc) SRV - [2012-07-26 05:18:24 | 000,027,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\efssvc.dll -- (EFS) SRV - [2012-07-26 05:18:18 | 000,161,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc) SRV - [2012-07-26 05:18:13 | 000,261,632 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService) SRV - [2012-07-26 05:18:01 | 000,136,704 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure) SRV - [2012-07-26 05:17:58 | 000,136,704 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder) SRV - [2012-07-26 05:17:58 | 000,109,568 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AUInstallAgent.dll -- (AllUserInstallAgent) SRV - [2012-07-26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvss) SRV - [2012-07-26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync) SRV - [2012-07-26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown) SRV - [2012-07-26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicrdv) SRV - [2012-07-26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange) SRV - [2012-07-26 02:27:36 | 000,276,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat) SRV - [2010-02-19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2013-06-04 09:15:02 | 000,181,912 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ssudmdm.sys -- (ssudmdm) DRV - [2013-06-04 09:15:02 | 000,084,248 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\ssudbus.sys -- (dg_ssudbus) DRV - [2013-05-10 20:21:50 | 001,846,448 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\viahduaa.sys -- (VIAHdAudAddService) DRV - [2013-02-26 00:22:06 | 008,939,296 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2013-02-14 12:21:04 | 000,171,680 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\System32\Drivers\eamonm.sys -- (eamonm) DRV - [2013-02-14 12:21:04 | 000,047,568 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\epfwwfp.sys -- (epfwwfp) DRV - [2013-01-10 09:25:22 | 000,150,080 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\epfw.sys -- (epfw) DRV - [2013-01-10 09:25:20 | 000,122,240 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\Drivers\ehdrv.sys -- (ehdrv) DRV - [2013-01-10 09:25:20 | 000,046,056 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\Drivers\EpfwLWF.sys -- (EpfwLWF) DRV - [2012-07-26 06:17:18 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\condrv.sys -- (condrv) DRV - [2012-07-26 05:48:44 | 000,058,608 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\acpiex.sys -- (acpiex) DRV - [2012-07-26 05:48:33 | 000,121,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\tpm.sys -- (TPM) DRV - [2012-07-26 05:48:29 | 000,049,392 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\dam.sys -- (dam) DRV - [2012-07-26 05:42:33 | 000,068,848 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sss.sys -- (LSI_SSS) DRV - [2012-07-26 05:42:32 | 000,099,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv) DRV - [2012-07-26 05:42:32 | 000,070,384 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\EhStorClass.sys -- (EhStorClass) DRV - [2012-07-26 05:42:31 | 000,085,232 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\3ware.sys -- (3ware) DRV - [2012-07-26 05:42:19 | 000,361,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBHUB3.SYS -- (USBHUB3) DRV - [2012-07-26 05:42:19 | 000,285,424 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\VSTXRAID.SYS -- (VSTXRAID) DRV - [2012-07-26 05:42:19 | 000,267,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBXHCI.SYS -- (USBXHCI) DRV - [2012-07-26 05:42:19 | 000,179,952 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\UCX01000.SYS -- (UCX01000) DRV - [2012-07-26 05:42:19 | 000,080,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VerifierExt.sys -- (VerifierExt) DRV - [2012-07-26 05:42:18 | 000,076,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uaspstor.sys -- (UASPStor) DRV - [2012-07-26 05:42:18 | 000,066,288 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storahci.sys -- (storahci) DRV - [2012-07-26 05:42:15 | 000,238,320 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\spaceport.sys -- (spaceport) DRV - [2012-07-26 05:42:15 | 000,097,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpioclx.sys -- (GPIOClx0101) DRV - [2012-07-26 05:42:15 | 000,059,120 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\mvumis.sys -- (mvumis) DRV - [2012-07-26 05:42:15 | 000,046,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\sdstor.sys -- (sdstor) DRV - [2012-07-26 05:42:14 | 000,024,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpiowin32.sys -- (msgpiowin32) DRV - [2012-07-26 05:40:36 | 000,038,640 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\wfplwfs.sys -- (WFPLWFS) DRV - [2012-07-26 05:40:10 | 000,256,240 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\clfs.sys -- (CLFS) DRV - [2012-07-26 05:39:55 | 000,029,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\terminpt.sys -- (terminpt) DRV - [2012-07-26 05:39:55 | 000,023,280 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV - [2012-07-26 05:39:35 | 000,057,072 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\pdc.sys -- (pdc) DRV - [2012-07-26 05:39:13 | 000,030,448 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\Drivers\cnghwassist.sys -- (cnghwassist) DRV - [2012-07-26 05:34:01 | 000,199,920 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WdFilter.sys -- (WdFilter) DRV - [2012-07-26 05:33:00 | 000,130,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmbus.sys -- (vmbus) DRV - [2012-07-26 05:33:00 | 000,042,344 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmstorfl.sys -- (storflt) DRV - [2012-07-26 05:33:00 | 000,032,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storvsc.sys -- (storvsc) DRV - [2012-07-26 05:30:33 | 000,028,072 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WdBoot.sys -- (WdBoot) DRV - [2012-07-26 04:36:54 | 000,042,496 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicDisplay.sys -- (BasicDisplay) DRV - [2012-07-26 04:36:49 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mshidumdf.sys -- (mshidumdf) DRV - [2012-07-26 04:36:36 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\HyperVideo.sys -- (HyperVideo) DRV - [2012-07-26 04:36:35 | 000,024,576 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicRender.sys -- (BasicRender) DRV - [2012-07-26 04:35:48 | 000,025,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg) DRV - [2012-07-26 04:35:30 | 000,006,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vms3cap.sys -- (s3cap) DRV - [2012-07-26 04:35:28 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\npsvctrig.sys -- (npsvctrig) DRV - [2012-07-26 04:35:23 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\fxppm.sys -- (FxPPM) DRV - [2012-07-26 04:35:10 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\kdnic.sys -- (kdnic) DRV - [2012-07-26 04:35:06 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpitime.sys -- (acpitime) DRV - [2012-07-26 04:35:04 | 000,009,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vmgencounter.sys -- (gencounter) DRV - [2012-07-26 04:34:43 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpipagr.sys -- (acpipagr) DRV - [2012-07-26 04:34:42 | 000,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WpdUpFltr.sys -- (WpdUpFltr) DRV - [2012-07-26 04:34:22 | 000,018,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VMBusHID.sys -- (VMBusHID) DRV - [2012-07-26 04:34:16 | 000,022,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthhfHid.sys -- (bthhfhid) DRV - [2012-07-26 04:34:04 | 000,010,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hyperkbd.sys -- (hyperkbd) DRV - [2012-07-26 04:33:53 | 000,051,200 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx.sys -- (SerCx) DRV - [2012-07-26 04:33:50 | 000,046,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SpbCx.sys -- (SpbCx) DRV - [2012-07-26 04:33:37 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\winusb.sys -- (WinUSB) DRV - [2012-07-26 04:33:29 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbGD.sys -- (TsUsbGD) DRV - [2012-07-26 04:33:16 | 000,044,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bthhfenum.sys -- (BthHFEnum) DRV - [2012-07-26 04:33:00 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hidi2c.sys -- (hidi2c) DRV - [2012-07-26 04:32:54 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV - [2012-07-26 04:32:53 | 000,028,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\dmvsc.sys -- (dmvsc) DRV - [2012-07-26 04:32:02 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wpcfltr.sys -- (wpcfltr) DRV - [2012-07-26 04:31:11 | 000,110,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\NdisImPlatform.sys -- (NdisImPlatform) DRV - [2012-07-26 04:30:56 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\mslldp.sys -- (MsLldp) DRV - [2012-07-26 04:30:39 | 000,084,480 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\Ndu.sys -- (Ndu) DRV - [2012-06-02 16:31:29 | 000,085,504 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\L1C63x86.sys -- (L1C) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2545942574-864899998-536737485-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = EA 9E C1 7D B6 95 CE 01 [binary data] IE - HKU\S-1-5-21-2545942574-864899998-536737485-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-2545942574-864899998-536737485-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR IE - HKU\S-1-5-21-2545942574-864899998-536737485-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledAddons: %7B81BF1D23-5F17-408D-AC6B-BD6DF7CAF670%7D:8.3.0 FF - prefs.js..extensions.enabledAddons: %7Bc36177c0-224a-11da-8cd6-0800200c9a91%7D:3.9.81 FF - prefs.js..extensions.enabledAddons: %7BE173B749-DB5B-4fd2-BA0E-94ECEA0CA55B%7D:7.4 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0.1 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2013-08-09 23:24:35 | 000,000,000 | ---D | M] [2013-08-30 10:46:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\WetiZZe\AppData\Roaming\mozilla\Extensions [2013-08-30 11:00:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\WetiZZe\AppData\Roaming\mozilla\Firefox\Profiles\l83gknmw.default\extensions [2013-08-30 10:48:56 | 000,000,000 | ---D | M] (iMacros for Firefox) -- C:\Users\WetiZZe\AppData\Roaming\mozilla\Firefox\Profiles\l83gknmw.default\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} [2013-08-30 11:00:09 | 000,000,000 | ---D | M] (Memory Fox) -- C:\Users\WetiZZe\AppData\Roaming\mozilla\Firefox\Profiles\l83gknmw.default\extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B} [2013-08-30 10:54:47 | 000,007,753 | ---- | M] () (No name found) -- C:\Users\WetiZZe\AppData\Roaming\mozilla\firefox\profiles\l83gknmw.default\extensions\stoptube@kashiif.com.xpi [2013-08-30 10:55:31 | 000,177,357 | ---- | M] () (No name found) -- C:\Users\WetiZZe\AppData\Roaming\mozilla\firefox\profiles\l83gknmw.default\extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi [2013-08-30 10:46:20 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions [2013-08-30 10:46:20 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\29.0.1547.66\pdf.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll CHR - Extension: Easy Auto Refresh = C:\Users\WetiZZe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc\2.9_0\ CHR - Extension: Dokumenty Google = C:\Users\WetiZZe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Dysk Google = C:\Users\WetiZZe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\WetiZZe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Szukaj w Google = C:\Users\WetiZZe\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: AdBlock = C:\Users\WetiZZe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0\ CHR - Extension: Download Ringtones and MP3 from YouTube Videos via HdTransform.com = C:\Users\WetiZZe\AppData\Local\Google\Chrome\User Data\Default\Extensions\iaiicjbbkmidkdnmebipdidclcfdpakk\1.0_0\ CHR - Extension: Chrome In-App Payments service = C:\Users\WetiZZe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0\ CHR - Extension: Black Black Chrome Theme Hot Pink Highlight = C:\Users\WetiZZe\AppData\Local\Google\Chrome\User Data\Default\Extensions\omdhfcagdlpjbpfldpabhkdibdcbaiih\3.4_0\ CHR - Extension: Gmail = C:\Users\WetiZZe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012-07-26 06:17:20 | 000,000,824 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET) O4 - HKLM..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKU\S-1-5-21-2545942574-864899998-536737485-1001..\Run: [AdobeBridge] File not found O4 - HKU\S-1-5-21-2545942574-864899998-536737485-1001..\Run: [DriverMax] C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions) O4 - HKU\S-1-5-21-2545942574-864899998-536737485-1001..\Run: [DriverMax_RESTART] C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions) O4 - HKU\S-1-5-21-2545942574-864899998-536737485-1001..\Run: [IPLA!] C:\Program Files\ipla\ipla.exe (Redefine Sp z o.o.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 188.191.200.2 8.8.8.8 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E93D785D-5000-4156-9FC6-19DAECC4DADB}: DhcpNameServer = 188.191.200.2 8.8.8.8 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2012-07-26 08:52:25 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2013-09-10 18:54:49 | 000,000,000 | ---D | C] -- C:\Windows\Minidump [2013-09-08 19:12:00 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Documents\VirtualMT2 [2013-09-08 18:00:27 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Documents\Concordia [2013-09-08 16:15:32 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\DeMoN [2013-09-08 16:06:56 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\.leagueofminecraft [2013-09-06 14:50:03 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ [2013-09-06 14:50:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ [2013-09-06 14:50:00 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\Notepad++ [2013-09-06 14:50:00 | 000,000,000 | ---D | C] -- C:\Program Files\Notepad++ [2013-09-06 14:48:47 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Documents\MCZAFREE [2013-09-06 14:17:35 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Documents\Basico [2013-09-06 14:13:33 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Documents\mctheme [2013-09-05 17:22:09 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\assets [2013-09-05 17:22:06 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\versions [2013-09-05 17:20:41 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\minecraft [2013-09-05 16:15:33 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\.minecraft [2013-09-05 16:15:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft [2013-09-05 15:17:36 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\Audacity [2013-09-05 15:17:22 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity [2013-09-05 15:17:18 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\Programs [2013-09-03 19:25:10 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Desktop\hostme [2013-09-03 19:02:42 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Desktop\wordpress [2013-09-03 18:57:16 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\FileZilla [2013-09-03 18:57:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client [2013-09-03 18:57:03 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2013-09-02 12:12:52 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\Skype [2013-09-02 12:12:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2013-09-02 12:12:44 | 000,000,000 | R--D | C] -- C:\Program Files\Skype [2013-09-02 12:12:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2013-09-02 12:12:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype [2013-08-31 15:30:12 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2013-08-31 15:30:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JoWood [2013-08-31 15:30:12 | 000,000,000 | ---D | C] -- C:\Program Files\JoWood [2013-08-31 15:29:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2013-08-31 11:12:05 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\LolClient [2013-08-30 23:26:42 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Desktop\PRZYCISKI [2013-08-30 19:12:34 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll [2013-08-30 19:12:34 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll [2013-08-30 19:12:34 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll [2013-08-30 19:12:34 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll [2013-08-30 19:12:32 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll [2013-08-30 19:12:25 | 000,000,000 | -HSD | C] -- C:\Windows\System32\AI_RecycleBin [2013-08-30 19:12:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends [2013-08-30 19:05:51 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\PMB Files [2013-08-30 19:05:50 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files [2013-08-30 19:05:43 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks [2013-08-30 19:05:09 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\Riot Games [2013-08-30 17:13:29 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Desktop\Minecraft Gift-Code Generator v1.2 [2013-08-30 16:33:45 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\Temporary Projects [2013-08-30 10:49:00 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Documents\iMacros [2013-08-30 10:46:31 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\Mozilla [2013-08-30 10:46:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla [2013-08-30 10:46:22 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2013-08-30 10:46:18 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2013-08-29 15:20:05 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Desktop\MCGenerator [2013-08-29 14:30:20 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\Deployment [2013-08-29 14:30:20 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\Apps [2013-08-29 13:10:45 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Desktop\ResHacker [2013-08-29 13:08:59 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Executable File Icons Changer [2013-08-29 13:08:58 | 000,000,000 | ---D | C] -- C:\Program Files\ExeIco [2013-08-29 12:26:24 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\Microsoft Corporation [2013-08-27 16:19:19 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UltraUXThemePatcher [2013-08-27 16:19:19 | 000,000,000 | ---D | C] -- C:\Program Files\UltraUXThemePatcher [2013-08-27 16:19:14 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uxinit.dll.backup [2013-08-23 23:40:19 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\Desktop\CheckitWEAR [2013-08-23 12:05:48 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\Mozilla [2013-08-23 12:05:46 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\A [2013-08-23 12:05:44 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\Geckofx [2013-08-23 12:05:03 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\Enhanceviews_Autowatcher [2013-08-15 19:36:31 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\NVIDIA [2013-08-15 19:14:33 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe [2013-08-15 19:11:58 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2013-08-15 19:07:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2013-08-15 19:02:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2013-08-15 19:01:58 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\Adobe [2013-08-15 15:00:49 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\GetRightToGo [2013-08-15 12:30:55 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Roaming\ipla [2013-08-15 12:30:55 | 000,000,000 | ---D | C] -- C:\ProgramData\ipla [2013-08-15 12:30:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ipla [2013-08-15 12:30:49 | 000,000,000 | ---D | C] -- C:\ProgramData\RDRM [2013-08-15 12:30:17 | 000,000,000 | ---D | C] -- C:\Program Files\ipla [2013-08-15 12:30:11 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc71.dll [2013-08-14 13:04:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [2013-08-14 13:04:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight [2013-08-13 10:43:26 | 000,000,000 | ---D | C] -- C:\Users\WetiZZe\AppData\Local\Diagnostics [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2013-09-11 15:11:23 | 000,000,896 | ---- | M] () -- C:\Users\WetiZZe\Desktop\Użytkownicy — skrót.lnk [2013-09-11 14:41:30 | 000,001,048 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013-09-11 14:26:01 | 000,001,052 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013-09-11 14:20:01 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013-09-11 07:41:27 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2013-09-11 07:41:26 | 1717,215,232 | -HS- | M] () -- C:\hiberfil.sys [2013-09-10 18:54:43 | 156,860,863 | ---- | M] () -- C:\Windows\MEMORY.DMP [2013-09-09 22:00:06 | 000,033,662 | ---- | M] () -- C:\Users\WetiZZe\Desktop\dobreprogramy-pobierz-przycisk_660x494 (1).jpg [2013-09-09 15:39:33 | 003,569,301 | ---- | M] () -- C:\Users\WetiZZe\Documents\Bez Nzwy.png [2013-09-06 14:17:54 | 002,203,004 | ---- | M] () -- C:\Users\WetiZZe\Documents\Basico.zip [2013-09-06 14:17:02 | 002,203,600 | ---- | M] () -- C:\Users\WetiZZe\Documents\minecraft.rar [2013-09-06 14:13:42 | 001,017,572 | ---- | M] () -- C:\Users\WetiZZe\Documents\mctheme.zip [2013-09-05 17:51:31 | 004,897,644 | ---- | M] () -- C:\Users\WetiZZe\Desktop\hbnvg.mp3 [2013-09-05 17:41:41 | 000,005,120 | ---- | M] () -- C:\Users\WetiZZe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013-09-05 16:08:45 | 000,007,081 | ---- | M] () -- C:\Users\WetiZZe\Desktop\logo.png [2013-09-05 16:08:44 | 000,000,132 | ---- | M] () -- C:\Users\WetiZZe\AppData\Roaming\Adobe PNG Format CS6 Prefs [2013-09-05 15:17:32 | 000,000,965 | ---- | M] () -- C:\Users\WetiZZe\Desktop\Audacity.lnk [2013-09-03 20:05:28 | 000,271,399 | ---- | M] () -- C:\Users\WetiZZe\Desktop\ipad_wallpaper_mc_dirt_by_xseanx123-d4ywq8d.jpg [2013-09-03 19:25:34 | 002,052,964 | ---- | M] () -- C:\Users\WetiZZe\Desktop\hostme.zip [2013-09-02 12:12:45 | 000,002,505 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2013-08-31 15:32:02 | 000,002,075 | ---- | M] () -- C:\Users\Public\Desktop\Gothic II.lnk [2013-08-31 10:39:06 | 000,084,458 | ---- | M] () -- C:\Users\WetiZZe\Desktop\minecraftzadarmo.png [2013-08-30 23:38:08 | 000,029,393 | ---- | M] () -- C:\Users\WetiZZe\Desktop\x.png [2013-08-30 23:02:54 | 000,018,355 | ---- | M] () -- C:\Users\WetiZZe\Desktop\Bez nazwy-1.png [2013-08-30 19:12:22 | 000,001,319 | ---- | M] () -- C:\Users\Public\Desktop\Play League of Legends.lnk [2013-08-30 17:12:41 | 000,832,000 | ---- | M] () -- C:\Users\WetiZZe\Desktop\Minecraft Gift-Code Generator v1.2.exe [2013-08-30 10:46:24 | 000,001,105 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013-08-29 13:08:59 | 000,001,813 | ---- | M] () -- C:\Users\WetiZZe\Desktop\Executable File Icons Changer.lnk [2013-08-29 13:08:59 | 000,000,022 | ---- | M] () -- C:\Windows\System32\mseixml.sei [2013-08-29 13:08:59 | 000,000,022 | ---- | M] () -- C:\Windows\mseixml.sei [2013-08-29 13:08:59 | 000,000,002 | ---- | M] () -- C:\Users\WetiZZe\Documents\eisavedicon.bmp [2013-08-28 17:53:01 | 000,001,116 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Update ESET's license.lnk [2013-08-28 17:53:01 | 000,001,078 | ---- | M] () -- C:\Users\Public\Desktop\Update ESET's license.lnk [2013-08-28 14:41:11 | 000,001,276 | ---- | M] () -- C:\Users\WetiZZe\Desktop\FireCashTool — skrót.lnk [2013-08-27 16:22:35 | 002,478,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\explorerframe.dll [2013-08-27 16:19:14 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxinit.dll [2013-08-26 10:22:49 | 003,721,744 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2013-08-22 17:47:42 | 000,757,074 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2013-08-22 17:47:42 | 000,674,750 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2013-08-22 17:47:42 | 000,151,544 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2013-08-22 17:47:42 | 000,124,636 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2013-08-22 10:32:32 | 000,002,129 | ---- | M] () -- C:\Users\WetiZZe\Desktop\Google Chrome.lnk [2013-08-21 13:27:03 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf [2013-08-15 12:30:11 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc71.dll [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-09-11 15:11:23 | 000,000,896 | ---- | C] () -- C:\Users\WetiZZe\Desktop\Użytkownicy — skrót.lnk [2013-09-10 18:54:43 | 156,860,863 | ---- | C] () -- C:\Windows\MEMORY.DMP [2013-09-09 22:00:05 | 000,033,662 | ---- | C] () -- C:\Users\WetiZZe\Desktop\dobreprogramy-pobierz-przycisk_660x494 (1).jpg [2013-09-09 15:38:38 | 003,569,301 | ---- | C] () -- C:\Users\WetiZZe\Documents\Bez Nzwy.png [2013-09-06 14:17:53 | 002,203,004 | ---- | C] () -- C:\Users\WetiZZe\Documents\Basico.zip [2013-09-06 14:17:10 | 002,203,600 | ---- | C] () -- C:\Users\WetiZZe\Documents\minecraft.rar [2013-09-06 14:13:42 | 001,017,572 | ---- | C] () -- C:\Users\WetiZZe\Documents\mctheme.zip [2013-09-05 17:51:05 | 004,897,644 | ---- | C] () -- C:\Users\WetiZZe\Desktop\hbnvg.mp3 [2013-09-05 17:50:50 | 000,421,888 | ---- | C] () -- C:\Users\WetiZZe\Desktop\lame_enc.dll [2013-09-05 15:17:32 | 000,000,977 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk [2013-09-05 15:17:32 | 000,000,965 | ---- | C] () -- C:\Users\WetiZZe\Desktop\Audacity.lnk [2013-09-03 22:52:05 | 000,007,081 | ---- | C] () -- C:\Users\WetiZZe\Desktop\logo.png [2013-09-03 20:05:28 | 000,271,399 | ---- | C] () -- C:\Users\WetiZZe\Desktop\ipad_wallpaper_mc_dirt_by_xseanx123-d4ywq8d.jpg [2013-09-03 19:25:06 | 002,052,964 | ---- | C] () -- C:\Users\WetiZZe\Desktop\hostme.zip [2013-09-02 12:12:45 | 000,002,505 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk [2013-08-31 15:32:02 | 000,002,075 | ---- | C] () -- C:\Users\Public\Desktop\Gothic II.lnk [2013-08-31 10:39:04 | 000,084,458 | ---- | C] () -- C:\Users\WetiZZe\Desktop\minecraftzadarmo.png [2013-08-30 23:10:27 | 000,029,393 | ---- | C] () -- C:\Users\WetiZZe\Desktop\x.png [2013-08-30 23:02:52 | 000,018,355 | ---- | C] () -- C:\Users\WetiZZe\Desktop\Bez nazwy-1.png [2013-08-30 19:12:22 | 000,001,319 | ---- | C] () -- C:\Users\Public\Desktop\Play League of Legends.lnk [2013-08-30 17:13:30 | 000,832,000 | ---- | C] () -- C:\Users\WetiZZe\Desktop\Minecraft Gift-Code Generator v1.2.exe [2013-08-30 10:46:24 | 000,001,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2013-08-30 10:46:24 | 000,001,105 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2013-08-29 13:08:59 | 000,001,813 | ---- | C] () -- C:\Users\WetiZZe\Desktop\Executable File Icons Changer.lnk [2013-08-29 13:08:59 | 000,000,022 | ---- | C] () -- C:\Windows\System32\mseixml.sei [2013-08-29 13:08:59 | 000,000,022 | ---- | C] () -- C:\Windows\mseixml.sei [2013-08-29 13:08:59 | 000,000,002 | ---- | C] () -- C:\Users\WetiZZe\Documents\eisavedicon.bmp [2013-08-28 17:53:01 | 000,001,116 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Update ESET's license.lnk [2013-08-28 17:53:01 | 000,001,078 | ---- | C] () -- C:\Users\Public\Desktop\Update ESET's license.lnk [2013-08-28 14:41:11 | 000,001,276 | ---- | C] () -- C:\Users\WetiZZe\Desktop\FireCashTool — skrót.lnk [2013-08-25 13:16:45 | 000,005,120 | ---- | C] () -- C:\Users\WetiZZe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2013-08-21 13:27:03 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf [2013-08-15 19:53:52 | 000,000,132 | ---- | C] () -- C:\Users\WetiZZe\AppData\Roaming\Adobe PNG Format CS6 Prefs [2013-08-15 19:14:24 | 000,000,812 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk [2013-08-15 19:13:33 | 000,000,784 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk [2013-08-15 19:12:07 | 000,000,932 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk [2013-08-15 19:12:00 | 000,001,477 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk [2012-07-26 10:14:20 | 000,757,074 | ---- | C] () -- C:\Windows\System32\perfh015.dat [2012-07-26 10:14:20 | 000,342,912 | ---- | C] () -- C:\Windows\System32\perfi015.dat [2012-07-26 10:14:20 | 000,151,544 | ---- | C] () -- C:\Windows\System32\perfc015.dat [2012-07-26 10:14:20 | 000,041,236 | ---- | C] () -- C:\Windows\System32\perfd015.dat [2012-07-26 08:55:27 | 000,674,750 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2012-07-26 08:55:27 | 000,296,742 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2012-07-26 08:55:27 | 000,124,636 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2012-07-26 08:55:27 | 000,033,362 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2012-07-26 08:53:47 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2012-07-26 08:53:46 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2012-07-26 08:03:55 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2012-07-26 08:00:17 | 003,721,744 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2012-07-26 03:20:38 | 000,071,680 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll [2012-07-26 03:17:42 | 000,043,520 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll [2012-07-26 02:48:53 | 000,083,968 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll [2012-07-25 22:41:36 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2012-07-25 22:24:47 | 000,526,068 | ---- | C] () -- C:\Windows\System32\staticurllist.bin [2012-07-14 04:00:46 | 000,043,882 | ---- | C] () -- C:\Windows\System32\srms.dat [2012-06-02 22:25:24 | 000,008,192 | ---- | C] () -- C:\Windows\System32\settings.dat [2012-06-02 16:31:24 | 001,520,828 | ---- | C] () -- C:\Windows\System32\WpcNBModel.bin [2012-06-02 16:31:19 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012-09-19 06:39:22 | 017,558,016 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012-07-26 05:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2012-07-26 05:20:13 | 000,354,304 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2013-09-08 16:06:56 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\.leagueofminecraft [2013-09-05 17:18:13 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\.minecraft [2013-08-11 00:41:59 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\.wtw [2013-09-09 23:58:15 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\AIMP3 [2013-09-05 17:22:56 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\assets [2013-09-05 17:51:35 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\Audacity [2013-08-09 23:26:46 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\ESET [2013-09-04 21:25:51 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\FileZilla [2013-08-15 15:20:41 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\GetRightToGo [2013-09-11 14:41:59 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\ipla [2013-08-31 11:12:05 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\LolClient [2013-09-06 15:07:07 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\Notepad++ [2013-08-30 19:05:38 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\Riot Games [2013-09-05 17:22:06 | 000,000,000 | ---D | M] -- C:\Users\WetiZZe\AppData\Roaming\versions [color=#E56717]========== Purity Check ==========[/color] < End of report >