Untitled

OTL logfile created on: 2012-11-02 08:52:15 - Run 4
OTL by OldTimer - Version 3.2.69.0     Folder = F:\Users\ScriptKinG\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

4,00 Gb Total Physical Memory | 2,06 Gb Available Physical Memory | 51,62% Memory free
8,00 Gb Paging File | 5,81 Gb Available in Paging File | 72,62% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = F: | %SystemRoot% = F:\Windows | %ProgramFiles% = F:\Program Files (x86)
Drive C: | 149,04 Gb Total Space | 146,10 Gb Free Space | 98,03% Space Free | Partition Type: NTFS
Drive D: | 401,53 Gb Total Space | 79,58 Gb Free Space | 19,82% Space Free | Partition Type: NTFS
Drive F: | 64,22 Gb Total Space | 28,33 Gb Free Space | 44,11% Space Free | Partition Type: NTFS

Computer Name: SCRIPTKING-PC | User Name: ScriptKinG | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2012-11-01 13:39:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- F:\Users\ScriptKinG\Desktop\OTL.exe
PRC - [2012-10-12 13:28:40 | 005,021,448 | ---- | M] (FNet Co., Ltd.) -- F:\Program Files (x86)\XFastUSB\XFastUsb.exe
PRC - [2012-10-10 11:06:17 | 001,239,064 | ---- | M] (Google Inc.) -- F:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2012-08-31 15:02:02 | 002,754,984 | ---- | M] (TeamViewer GmbH) -- F:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
PRC - [2012-08-27 05:21:12 | 026,924,984 | ---- | M] (Dropbox, Inc.) -- F:\Users\ScriptKinG\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2012-05-15 15:59:06 | 001,442,620 | ---- | M] () -- D:\Pozostałości\CRUIZER\Projekty C++\Keylogger\Systems.exe
PRC - [2012-04-17 16:19:32 | 002,614,080 | ---- | M] (DT Soft Ltd) -- D:\DAEMON Tools Lite\DTShellHlp.exe
PRC - [2012-04-03 19:45:36 | 002,121,216 | ---- | M] () -- D:\screenSHU\screenSHU.exe
PRC - [2012-03-07 14:40:34 | 000,913,144 | ---- | M] (ESET) -- D:\ESET NOD32 Antivirus\x86\ekrn.exe
PRC - [2011-08-24 16:30:58 | 000,430,136 | ---- | M] (Sony Corporation) -- D:\PMB\PMBDeviceInfoProvider.exe
PRC - [2007-09-02 12:58:52 | 000,495,616 | ---- | M] () -- D:\RocketDock\RocketDock.exe


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - [2012-10-19 18:23:53 | 000,057,344 | ---- | M] () -- F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj\1.0.0_0\npFreemake.dll
MOD - [2012-10-10 11:06:15 | 000,460,312 | ---- | M] () -- F:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll
MOD - [2012-10-10 11:06:12 | 004,005,912 | ---- | M] () -- F:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\pdf.dll
MOD - [2012-10-10 11:04:57 | 000,578,072 | ---- | M] () -- F:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\libglesv2.dll
MOD - [2012-10-10 11:04:55 | 000,123,928 | ---- | M] () -- F:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\libegl.dll
MOD - [2012-10-10 11:04:44 | 000,156,712 | ---- | M] () -- F:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\avutil-51.dll
MOD - [2012-10-10 11:04:43 | 000,275,496 | ---- | M] () -- F:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\avformat-54.dll
MOD - [2012-10-10 11:04:42 | 002,168,360 | ---- | M] () -- F:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\avcodec-54.dll
MOD - [2012-05-15 15:59:06 | 001,442,620 | ---- | M] () -- D:\Pozostałości\CRUIZER\Projekty C++\Keylogger\Systems.exe
MOD - [2012-04-03 19:45:36 | 002,121,216 | ---- | M] () -- D:\screenSHU\screenSHU.exe
MOD - [2012-02-02 18:26:52 | 000,043,008 | ---- | M] () -- D:\screenSHU\libgcc_s_dw2-1.dll
MOD - [2012-02-02 18:26:52 | 000,011,362 | ---- | M] () -- D:\screenSHU\mingwm10.dll
MOD - [2012-01-08 14:41:12 | 000,093,696 | ---- | M] () -- D:\FileZilla FTP Client\fzshellext.dll
MOD - [2007-09-02 12:58:52 | 000,495,616 | ---- | M] () -- D:\RocketDock\RocketDock.exe
MOD - [2007-09-02 12:57:36 | 000,069,632 | ---- | M] () -- D:\RocketDock\RocketDock.dll


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2012-10-23 03:51:30 | 000,240,640 | ---- | M] (AMD) [Disabled | Stopped] -- F:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:[b]64bit:[/b] - [2011-10-19 15:19:30 | 000,395,136 | R--- | M] (cFos Software GmbH) [Auto | Running] -- F:\Program Files\cFosSpeed\spd.exe -- (cFosSpeedS)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- F:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- F:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012-10-31 07:59:35 | 000,115,168 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- F:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-10-25 17:33:26 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- F:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-10-22 23:21:38 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Disabled | Stopped] -- D:\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV - [2012-09-18 19:39:54 | 000,008,192 | ---- | M] () [Auto | Stopped] -- F:\Windows\SysWOW64\srvany.exe -- (KMService)
SRV - [2012-09-10 17:57:18 | 000,160,944 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- F:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-08-31 15:02:02 | 002,754,984 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- F:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)
SRV - [2012-08-29 11:03:36 | 002,369,960 | ---- | M] (LogMeIn Inc.) [Disabled | Stopped] -- D:\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012-07-27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- F:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012-06-19 13:21:15 | 000,529,232 | ---- | M] (Valve Corporation) [Disabled | Stopped] -- F:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012-06-11 10:33:26 | 000,724,376 | ---- | M] (Nokia) [On_Demand | Stopped] -- F:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2012-03-07 14:40:34 | 000,913,144 | ---- | M] (ESET) [Auto | Running] -- D:\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV - [2012-01-18 13:38:28 | 000,155,320 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- F:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2011-11-25 15:32:36 | 000,687,400 | ---- | M] (Nero AG) [Disabled | Stopped] -- F:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011-08-24 16:30:58 | 000,430,136 | ---- | M] (Sony Corporation) [Auto | Running] -- D:\PMB\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider)
SRV - [2010-03-18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- F:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-10-20 19:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- F:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd)
SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- F:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2012-10-23 04:51:20 | 011,270,656 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:[b]64bit:[/b] - [2012-10-23 03:27:36 | 000,546,304 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:[b]64bit:[/b] - [2012-10-18 18:36:14 | 000,032,320 | ---- | M] (FNet Co., Ltd.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\FNETTBOH_305.SYS -- (FNETTBOH_305)
DRV:[b]64bit:[/b] - [2012-10-12 13:28:40 | 000,016,648 | ---- | M] (FNet Co., Ltd.) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\FNETURPX.SYS -- (FNETURPX)
DRV:[b]64bit:[/b] - [2012-09-07 16:38:22 | 000,147,288 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:[b]64bit:[/b] - [2012-08-23 15:12:16 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:[b]64bit:[/b] - [2012-08-23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2012-08-23 15:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:[b]64bit:[/b] - [2012-08-23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2012-08-09 16:03:06 | 000,034,640 | ---- | M] (ASRock Inc.) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\AsrRamDisk.sys -- (AsrRamDisk)
DRV:[b]64bit:[/b] - [2012-06-11 10:33:46 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:[b]64bit:[/b] - [2012-06-03 17:22:27 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:[b]64bit:[/b] - [2012-05-14 07:12:30 | 000,096,896 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:[b]64bit:[/b] - [2012-04-18 14:05:16 | 000,019,304 | ---- | M] (GARMIN Corp.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\grmnusb.sys -- (grmnusb)
DRV:[b]64bit:[/b] - [2012-03-14 07:40:04 | 000,137,144 | ---- | M] (ESET) [Kernel | Auto | Running] -- F:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:[b]64bit:[/b] - [2012-03-14 07:40:02 | 000,209,768 | ---- | M] (ESET) [File_System | System | Running] -- F:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:[b]64bit:[/b] - [2012-03-14 07:40:02 | 000,148,528 | ---- | M] (ESET) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:[b]64bit:[/b] - [2012-03-01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- F:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2012-01-09 16:28:20 | 000,171,008 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\nmwcdnsux64.sys -- (nmwcdnsux64)
DRV:[b]64bit:[/b] - [2012-01-09 16:28:20 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:[b]64bit:[/b] - [2012-01-09 16:28:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:[b]64bit:[/b] - [2012-01-09 16:28:20 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:[b]64bit:[/b] - [2012-01-09 16:28:18 | 000,027,136 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:[b]64bit:[/b] - [2011-12-01 10:42:44 | 000,072,240 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\NBVol.sys -- (NBVol)
DRV:[b]64bit:[/b] - [2011-12-01 10:42:44 | 000,015,920 | ---- | M] (Nero AG) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\NBVolUp.sys -- (NBVolUp)
DRV:[b]64bit:[/b] - [2011-07-29 12:54:56 | 000,016,776 | ---- | M] () [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\epmntdrv.sys -- (epmntdrv)
DRV:[b]64bit:[/b] - [2011-07-29 12:54:56 | 000,009,096 | ---- | M] () [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\EuGdiDrv.sys -- (EuGdiDrv)
DRV:[b]64bit:[/b] - [2011-07-04 14:19:34 | 001,632,128 | ---- | M] (cFos Software GmbH) [Kernel | System | Running] -- F:\Windows\SysNative\drivers\cfosspeed6.sys -- (cFosSpeed)
DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- F:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010-12-27 14:36:32 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- F:\Windows\SysNative\drivers\cpuz135_x64.sys -- (cpuz135)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2010-02-18 08:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
DRV:[b]64bit:[/b] - [2010-01-21 01:03:10 | 000,027,648 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\lgx64diag.sys -- (UsbDiag)
DRV:[b]64bit:[/b] - [2010-01-21 01:03:08 | 000,033,280 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\lgx64modem.sys -- (USBModem)
DRV:[b]64bit:[/b] - [2010-01-21 01:03:06 | 000,017,920 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\lgx64bus.sys -- (usbbus)
DRV:[b]64bit:[/b] - [2009-10-20 19:19:54 | 000,047,632 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- F:\Windows\SysNative\drivers\npf.sys -- (NPF)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-07-14 01:09:10 | 000,007,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\loop.sys -- (msloop)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-03-18 16:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV:[b]64bit:[/b] - [2009-03-01 23:05:32 | 000,187,392 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Running] -- F:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2007-06-19 06:50:46 | 000,107,048 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- F:\Windows\SysNative\drivers\s816bus.sys -- (s816bus)
DRV - [2012-04-09 10:13:58 | 000,057,472 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- D:\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2)
DRV - [2011-07-29 12:54:56 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- F:\Windows\SysWOW64\epmntdrv.sys -- (epmntdrv)
DRV - [2011-07-29 12:54:56 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- F:\Windows\SysWOW64\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- F:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = F:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\SOFTWARE\Microsoft\Internet Explorer\Main,DefaultNetworkProfile = 27922269
IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\..\SearchScopes,DefaultScope = {51EE5E0D-DCF6-4E7E-AA6B-5694EE83CC00}
IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\..\SearchScopes\{51EE5E0D-DCF6-4E7E-AA6B-5694EE83CC00}: "URL" = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searcerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: F:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: F:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: F:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: F:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: F:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: D:\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: F:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: F:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: F:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: D:\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: F:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: F:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: F:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: F:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: F:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: D:\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: F:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: D:\ESET NOD32 ANTIVIRUS\MOZILLA THUNDERBIRD [2012-06-03 16:36:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 16.0.2\extensions\\Components: D:\Mozilla Thunderbird\components [2012-10-16 07:01:42 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 16.0.2\extensions\\Plugins: D:\Mozilla Thunderbird\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: D:\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-06-03 16:36:33 | 000,000,000 | ---D | M]

[2012-06-24 17:29:24 | 000,000,000 | ---D | M] (No name found) -- F:\Users\ScriptKinG\AppData\Roaming\mozilla\Extensions

[color=#E56717]========== Chrome  ==========[/color]

CHR - homepage: http://www.ask.com/?l=dis&o=1586cr&gct=hp
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms},
CHR - homepage: http://www.ask.com/?l=dis&o=1586cr&gct=hp
CHR - plugin: Shockwave Flash (Enabled) = F:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = F:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = F:\Program Files (x86)\Google\Chrome\Application\22.0.1229.94\pdf.dll
CHR - plugin: Freemake np-plugin for google chrome (Enabled) = F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj\1.0.0_0\npFreemake.dll
CHR - plugin: Free Studio (Enabled) = F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.0.0_0\np_dvs_plugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = D:\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = D:\MICROS~1\Office14\NPAUTHZ.DLL
CHR - plugin: Picasa (Enabled) = D:\Picasa3\npPicasa3.dll
CHR - plugin: Nero Kwik Media Helper (Enabled) = F:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
CHR - plugin: Google Earth Plugin (Enabled) = F:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = F:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = F:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = F:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = F:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Nokia Suite Enabler Plugin (Enabled) = F:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
CHR - plugin: Pando Web Plugin (Enabled) = F:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - Extension: YouTube = F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Adblock Plus = F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.3_0\
CHR - Extension: Szukaj w Google = F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: TinEye Reverse Image Search = F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl\1.1.2_0\
CHR - Extension: Freemake Video Converter = F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj\1.0.0_0\
CHR - Extension: DvdVideoSoft Free Youtube Download = F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.0.0_0\
CHR - Extension: MegaSkipper = F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\phlpjnmkcepflfoglccifhajagahaglm\19.66_0\
CHR - Extension: Gmail = F:\Users\ScriptKinG\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012-09-19 14:16:01 | 000,000,956 | ---- | M]) - F:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 secure.nero.com/us/secure.asp
O1 - Hosts: 127.0.0.1 activation@nero.com
O1 - Hosts: 127.0.0.1 secure.tune-up.com
O1 - Hosts: 127.0.0.1 secure.tune-up.com
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - F:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (IplexToALLPlayer) - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - D:\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.)
O4:[b]64bit:[/b] - HKLM..\Run: []  File not found
O4:[b]64bit:[/b] - HKLM..\Run: [Clock] D:\HTC Home\Clock.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [egui] D:\ESET NOD32 Antivirus\egui.exe (ESET)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] F:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [Systems] D:\Pozostałości\CRUIZER\Projekty C++\Keylogger\Systems.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [XFast LAN] F:\Program Files\cFosSpeed\cfosspeed.exe (cFos Software GmbH)
O4 - HKLM..\Run: [Kkey] C:\WINDOWS\system32\lsass.exe File not found
O4 - HKLM..\Run: [StartCCC] D:\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [XFastUSB] F:\Program Files (x86)\XFastUSB\XFastUsb.exe (FNet Co., Ltd.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] F:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] F:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001..\Run: []  File not found
O4 - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001..\Run: [ASRockOCTuner]  File not found
O4 - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001..\Run: [GoogleChromeAutoLaunch_7FA8F4B42A749BBCD2938E50AFEE8F6F] F:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
O4 - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001..\Run: [RocketDock] D:\RocketDock\RocketDock.exe ()
O4 - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001..\Run: [screenSHU] D:\screenSHU\screenSHU.exe ()
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] F:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] F:\Windows\System32\mctadmin.exe File not found
O4 - Startup: F:\Users\ScriptKinG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2012-11-01 21:29:19 | 000,000,000 | -H-D | M]
O4 - Startup: F:\Users\ScriptKinG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = F:\Users\ScriptKinG\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-2319972160-2137833589-2058199162-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8:[b]64bit:[/b] - Extra context menu item: Add to Google Photos Screensa&ver - res://F:\Windows\system32\GPhotos.scr/200 File not found
O8:[b]64bit:[/b] - Extra context menu item: E&xport to Microsoft Excel - res://D:\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8:[b]64bit:[/b] - Extra context menu item: Free YouTube Download - F:\Users\ScriptKinG\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm File not found
O8:[b]64bit:[/b] - Extra context menu item: Se&nd to OneNote - res://D:\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Add to Google Photos Screensa&ver - F:\Windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Free YouTube Download - F:\Users\ScriptKinG\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm File not found
O8 - Extra context menu item: Se&nd to OneNote - res://D:\MICROS~1\Office14\ONBttnIE.dll/105 File not found
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{38434E88-112D-44EB-BCF8-FF0331FAF480}: DhcpNameServer = 62.179.1.63 62.179.1.62
O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - F:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - F:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (F:\Windows\system32\userinit.exe) - F:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - F:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - F:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012-06-03 10:36:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{2baf539c-ce52-11e1-995f-0025227d94f3}\Shell - "" = AutoRun
O33 - MountPoints2\{2baf539c-ce52-11e1-995f-0025227d94f3}\Shell\AutoRun\command - "" = G:\LGAutoRun.exe
O33 - MountPoints2\{ee92e83a-adcc-11e1-aa2a-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{ee92e83a-adcc-11e1-aa2a-806e6f6e6963}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2012-11-01 21:29:56 | 000,602,112 | ---- | C] (OldTimer Tools) -- F:\Users\ScriptKinG\Desktop\OTL.exe
[2012-11-01 21:29:19 | 000,000,000 | -H-D | C] -- F:\Users\ScriptKinG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled
[2012-11-01 20:45:50 | 000,000,000 | R--D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012-11-01 19:45:18 | 000,000,000 | ---D | C] -- F:\Users\ScriptKinG\Documents\WPA Files
[2012-11-01 19:21:46 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
[2012-11-01 19:21:46 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Windows Kits
[2012-11-01 19:12:00 | 000,000,000 | ---D | C] -- F:\ProgramData\Package Cache
[2012-11-01 17:30:07 | 000,000,000 | ---D | C] -- F:\Users\ScriptKinG\Documents\Euro Truck Simulator 2
[2012-11-01 11:30:46 | 000,013,312 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2012-11-01 11:30:46 | 000,013,312 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2012-11-01 11:30:45 | 000,057,856 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\drivers\TsUsbFlt.sys
[2012-11-01 11:30:45 | 000,030,208 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\drivers\TsUsbGD.sys
[2012-11-01 11:30:45 | 000,029,696 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\drivers\terminpt.sys
[2012-11-01 11:30:45 | 000,019,456 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\drivers\rdpvideominiport.sys
[2012-11-01 11:30:45 | 000,015,360 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2012-11-01 11:30:44 | 003,174,912 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\rdpcorets.dll
[2012-11-01 11:30:44 | 001,123,840 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\mstsc.exe
[2012-11-01 11:30:44 | 001,048,064 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mstsc.exe
[2012-11-01 11:30:44 | 000,384,000 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\wksprt.exe
[2012-11-01 11:30:44 | 000,322,560 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\aaclient.dll
[2012-11-01 11:30:44 | 000,269,312 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\aaclient.dll
[2012-11-01 11:30:44 | 000,243,200 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\rdpudd.dll
[2012-11-01 11:30:44 | 000,228,864 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\rdpendp_winip.dll
[2012-11-01 11:30:44 | 000,192,000 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\rdpendp_winip.dll
[2012-11-01 11:30:44 | 000,062,976 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\TSWbPrxy.exe
[2012-11-01 11:30:44 | 000,054,272 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\MsRdpWebAccess.dll
[2012-11-01 11:30:44 | 000,046,592 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\MsRdpWebAccess.dll
[2012-11-01 11:30:44 | 000,044,032 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\tsgqec.dll
[2012-11-01 11:30:44 | 000,043,520 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2012-11-01 11:30:44 | 000,037,376 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\tsgqec.dll
[2012-11-01 11:30:44 | 000,018,432 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\wksprtPS.dll
[2012-11-01 11:30:44 | 000,016,896 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\wksprtPS.dll
[2012-11-01 11:30:43 | 005,773,824 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\mstscax.dll
[2012-11-01 11:30:43 | 004,916,224 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\mstscax.dll
[2012-11-01 11:25:15 | 001,162,240 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\kernel32.dll
[2012-11-01 11:25:15 | 000,424,448 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\KernelBase.dll
[2012-11-01 11:25:15 | 000,338,432 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\conhost.exe
[2012-11-01 11:25:15 | 000,215,040 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\winsrv.dll
[2012-11-01 11:25:14 | 000,362,496 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\wow64win.dll
[2012-11-01 11:25:14 | 000,243,200 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\wow64.dll
[2012-11-01 11:25:14 | 000,025,600 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\setup16.exe
[2012-11-01 11:25:14 | 000,016,384 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\ntvdm64.dll
[2012-11-01 11:25:14 | 000,014,336 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\ntvdm64.dll
[2012-11-01 11:25:14 | 000,013,312 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\wow64cpu.dll
[2012-11-01 11:25:14 | 000,007,680 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\instnm.exe
[2012-11-01 11:25:14 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012-11-01 11:25:14 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012-11-01 11:25:14 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012-11-01 11:25:14 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012-11-01 11:25:14 | 000,005,120 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\wow32.dll
[2012-11-01 11:25:14 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012-11-01 11:25:14 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012-11-01 11:25:14 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- F:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012-11-01 11:25:14 | 000,002,048 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\user.exe
[2012-11-01 11:25:02 | 001,448,448 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\lsasrv.dll
[2012-11-01 11:25:02 | 000,307,200 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\ncrypt.dll
[2012-11-01 11:25:00 | 005,559,664 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\ntoskrnl.exe
[2012-11-01 11:24:59 | 003,968,880 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\ntkrnlpa.exe
[2012-11-01 11:24:59 | 003,914,096 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\ntoskrnl.exe
[2012-11-01 11:24:58 | 000,245,760 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\OxpsConverter.exe
[2012-11-01 11:24:56 | 000,220,160 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\wintrust.dll
[2012-11-01 11:23:30 | 001,464,320 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\crypt32.dll
[2012-11-01 11:23:30 | 000,140,288 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysNative\cryptnet.dll
[2012-11-01 10:59:25 | 000,000,000 | ---D | C] -- F:\ProgramData\ATI
[2012-11-01 10:59:21 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\AMD AVT
[2012-11-01 10:59:10 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\AMD APP
[2012-11-01 10:58:41 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
[2012-10-26 13:03:32 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\PlayReady
[2012-10-26 12:57:04 | 000,000,000 | ---D | C] -- F:\ProgramData\RDRM
[2012-10-26 12:57:03 | 000,000,000 | ---D | C] -- F:\ProgramData\ipla
[2012-10-23 04:51:20 | 011,270,656 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\drivers\atikmdag.sys
[2012-10-23 04:21:06 | 000,070,144 | ---- | C] (AMD) -- F:\Windows\SysNative\coinst_9.01.8.dll
[2012-10-23 04:15:12 | 000,163,840 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\atiapfxx.exe
[2012-10-23 04:13:42 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\aticalrt64.dll
[2012-10-23 04:13:40 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticalrt.dll
[2012-10-23 04:13:36 | 023,435,776 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\atio6axx.dll
[2012-10-23 04:13:34 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\aticalcl64.dll
[2012-10-23 04:13:32 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticalcl.dll
[2012-10-23 04:13:22 | 016,082,944 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\aticaldd64.dll
[2012-10-23 04:09:06 | 013,703,168 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticaldd.dll
[2012-10-23 03:57:08 | 006,678,528 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atidxx32.dll
[2012-10-23 03:56:48 | 018,957,824 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysWow64\atioglxx.dll
[2012-10-23 03:52:34 | 000,442,368 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\atidemgy.dll
[2012-10-23 03:52:18 | 000,548,864 | ---- | C] (AMD) -- F:\Windows\SysNative\atieclxx.exe
[2012-10-23 03:51:30 | 000,240,640 | ---- | C] (AMD) -- F:\Windows\SysNative\atiesrxx.exe
[2012-10-23 03:50:06 | 000,120,320 | ---- | C] (AMD) -- F:\Windows\SysNative\atitmm64.dll
[2012-10-23 03:49:46 | 000,021,504 | ---- | C] (AMD) -- F:\Windows\SysNative\atimuixx.dll
[2012-10-23 03:49:42 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- F:\Windows\SysNative\atiedu64.dll
[2012-10-23 03:49:36 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- F:\Windows\SysWow64\ati2edxx.dll
[2012-10-23 03:40:20 | 007,370,240 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atidxx64.dll
[2012-10-23 03:28:26 | 000,618,496 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\atiadlxx.dll
[2012-10-23 03:28:14 | 000,421,888 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysWow64\atiadlxy.dll
[2012-10-23 03:28:00 | 000,017,920 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atig6pxx.dll
[2012-10-23 03:27:56 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiglpxx.dll
[2012-10-23 03:27:56 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atiglpxx.dll
[2012-10-23 03:27:52 | 000,041,984 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atig6txx.dll
[2012-10-23 03:27:44 | 000,033,280 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atigktxx.dll
[2012-10-23 03:27:36 | 000,546,304 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\drivers\atikmpag.sys
[2012-10-23 03:25:42 | 000,109,568 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiuxpag.dll
[2012-10-23 03:24:36 | 000,053,248 | ---- | C] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\drivers\ati2erec.dll
[2012-10-23 02:24:00 | 000,056,320 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atimpc64.dll
[2012-10-23 02:24:00 | 000,056,320 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\amdpcom64.dll
[2012-10-23 02:23:50 | 000,056,832 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atimpc32.dll
[2012-10-23 02:23:50 | 000,056,832 | ---- | C] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\amdpcom32.dll
[2012-10-22 23:45:10 | 000,076,288 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\OpenVideo64.dll
[2012-10-22 23:45:06 | 000,065,536 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\OpenVideo.dll
[2012-10-22 23:45:02 | 000,064,512 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\OVDecode64.dll
[2012-10-22 23:44:58 | 000,056,320 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\OVDecode.dll
[2012-10-22 23:44:50 | 034,523,136 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\amdocl64.dll
[2012-10-22 23:40:14 | 028,737,536 | ---- | C] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\amdocl.dll
[2012-10-22 23:36:20 | 000,054,784 | ---- | C] (Khronos Group) -- F:\Windows\SysNative\OpenCL.dll
[2012-10-22 23:36:16 | 000,050,176 | ---- | C] (Khronos Group) -- F:\Windows\SysWow64\OpenCL.dll
[2012-10-21 08:39:38 | 000,000,000 | ---D | C] -- F:\ProgramData\PC Suite
[2012-10-19 22:36:23 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
[2012-10-19 18:23:36 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012-10-19 18:08:49 | 000,000,000 | -HSD | C] -- F:\found.002
[2012-10-19 13:36:13 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\OC Tuner
[2012-10-18 17:45:35 | 000,609,584 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\comctl32.ocx
[2012-10-18 17:45:35 | 000,152,848 | ---- | C] (Microsoft Corporation) -- F:\Windows\SysWow64\comdlg32.ocx
[2012-10-17 20:43:01 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Common Files\Java
[2012-10-17 20:42:47 | 000,246,760 | ---- | C] (Oracle Corporation) -- F:\Windows\SysWow64\javaws.exe
[2012-10-17 20:42:36 | 000,174,056 | ---- | C] (Oracle Corporation) -- F:\Windows\SysWow64\javaw.exe
[2012-10-17 20:42:36 | 000,174,056 | ---- | C] (Oracle Corporation) -- F:\Windows\SysWow64\java.exe
[2012-10-17 20:42:36 | 000,095,208 | ---- | C] (Oracle Corporation) -- F:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012-10-17 20:41:55 | 000,000,000 | ---D | C] -- F:\ProgramData\Sun
[2012-10-17 19:17:49 | 000,916,456 | ---- | C] (Oracle Corporation) -- F:\Windows\SysNative\deployJava1.dll
[2012-10-17 19:17:48 | 001,034,216 | ---- | C] (Oracle Corporation) -- F:\Windows\SysNative\npDeployJava1.dll
[2012-10-17 19:17:48 | 000,289,768 | ---- | C] (Oracle Corporation) -- F:\Windows\SysNative\javaws.exe
[2012-10-17 19:17:30 | 000,189,416 | ---- | C] (Oracle Corporation) -- F:\Windows\SysNative\javaw.exe
[2012-10-17 19:17:30 | 000,188,904 | ---- | C] (Oracle Corporation) -- F:\Windows\SysNative\java.exe
[2012-10-17 19:17:30 | 000,108,008 | ---- | C] (Oracle Corporation) -- F:\Windows\SysNative\WindowsAccessBridge-64.dll
[2012-10-17 19:17:09 | 000,000,000 | ---D | C] -- F:\Program Files\Java
[2012-10-17 19:16:01 | 000,000,000 | ---D | C] -- F:\Program Files\Soluto
[2012-10-17 19:11:33 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012-10-17 19:11:32 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Common Files\Skype
[2012-10-17 19:11:26 | 000,000,000 | R--D | C] -- F:\Program Files (x86)\Skype
[2012-10-14 17:46:57 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2012-10-14 16:05:56 | 000,000,000 | ---D | C] -- F:\Users\ScriptKinG\Documents\Codemasters
[2012-10-14 15:59:07 | 000,466,456 | ---- | C] (Creative Labs) -- F:\Windows\SysNative\wrap_oal.dll
[2012-10-14 15:59:07 | 000,444,952 | ---- | C] (Creative Labs) -- F:\Windows\SysWow64\wrap_oal.dll
[2012-10-14 15:59:07 | 000,121,880 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- F:\Windows\SysNative\OpenAL32.dll
[2012-10-14 15:59:07 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\OpenAL
[2012-10-14 15:59:06 | 000,109,080 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- F:\Windows\SysWow64\OpenAL32.dll
[2012-10-14 15:48:43 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
[2012-10-14 14:27:51 | 000,000,000 | ---D | C] -- F:\ProgramData\Synetic
[2012-10-12 13:27:57 | 000,000,000 | ---D | C] -- F:\Program Files\Realtek
[2012-10-12 13:27:56 | 000,000,000 | ---D | C] -- F:\Windows\SysWow64\RTCOM
[2012-10-12 13:27:23 | 002,605,400 | ---- | C] (Waves Audio Ltd.) -- F:\Windows\SysNative\WavesGUILib.dll
[2012-10-12 13:27:22 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- F:\Windows\SysNative\SRSTSX64.dll
[2012-10-12 13:27:22 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- F:\Windows\SysNative\SRSTSH64.dll
[2012-10-12 13:27:22 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- F:\Windows\SysNative\SRSHP64.dll
[2012-10-12 13:27:22 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- F:\Windows\SysNative\SRSWOW64.dll
[2012-10-12 13:27:20 | 002,674,320 | ---- | C] (Realtek Semiconductor Corp.) -- F:\Windows\SysNative\RtPgEx64.dll
[2012-10-12 13:27:20 | 001,560,168 | ---- | C] (Realtek Semiconductor Corp.) -- F:\Windows\SysNative\RTSnMg64.cpl
[2012-10-12 13:27:20 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- F:\Windows\SysNative\RtlCPAPI64.dll
[2012-10-12 13:27:19 | 003,615,888 | ---- | C] (Realtek Semiconductor Corp.) -- F:\Windows\SysNative\RtkAPO64.dll
[2012-10-12 13:27:19 | 001,262,696 | ---- | C] (Realtek Semiconductor Corp.) -- F:\Windows\SysNative\RTCOM64.dll
[2012-10-12 13:27:19 | 000,869,520 | ---- | C] (Realtek Semiconductor Corp.) -- F:\Windows\SysNative\RtkApi64.dll
[2012-10-12 13:27:19 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- F:\Windows\SysNative\RTEEP64A.dll
[2012-10-12 13:27:19 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- F:\Windows\SysNative\RP3DHT64.dll
[2012-10-12 13:27:19 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- F:\Windows\SysNative\RP3DAA64.dll
[2012-10-12 13:27:19 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- F:\Windows\SysNative\RTEED64A.dll
[2012-10-12 13:27:19 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- F:\Windows\SysNative\RtkCfg64.dll
[2012-10-12 13:27:19 | 000,105,616 | ---- | C] (Realtek Semiconductor Corp.) -- F:\Windows\SysNative\RCoInstII64.dll
[2012-10-12 13:27:19 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- F:\Windows\SysNative\RTEEL64A.dll
[2012-10-12 13:27:19 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- F:\Windows\SysNative\RTEEG64A.dll
[2012-10-12 13:27:19 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- F:\Windows\SysNative\RtkCoLDR64.dll
[2012-10-12 13:27:18 | 000,083,072 | ---- | C] (Creative Technology Ltd.) -- F:\Windows\SysNative\MBWrp64.dll
[2012-10-12 13:27:17 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- F:\Windows\SysNative\MaxxAudioEQ.dll
[2012-10-12 13:27:17 | 001,015,640 | ---- | C] (Waves Audio Ltd.) -- F:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2012-10-12 13:27:17 | 000,897,152 | ---- | C] (Creative Technology Ltd.) -- F:\Windows\SysNative\MBAPO64.dll
[2012-10-12 13:27:17 | 000,753,280 | ---- | C] (Creative Technology Ltd.) -- F:\Windows\SysWow64\MBAPO32.dll
[2012-10-12 13:27:17 | 000,065,112 | ---- | C] (Creative Technology Ltd.) -- F:\Windows\SysNative\MBppld64.dll
[2012-10-12 13:27:17 | 000,060,504 | ---- | C] (Creative Technology Ltd.) -- F:\Windows\SysNative\MBPPCn64.dll
[2012-10-12 13:27:16 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- F:\Windows\SysNative\MaxxAudioAPO20.dll
[2012-10-12 13:27:15 | 002,533,952 | ---- | C] (Fortemedia Corporation) -- F:\Windows\SysNative\FMAPO64.dll
[2012-10-12 13:27:14 | 000,202,336 | ---- | C] (Andrea Electronics Corporation) -- F:\Windows\SysNative\AERTAC64.dll
[2012-10-12 13:27:14 | 000,108,640 | ---- | C] (Andrea Electronics Corporation) -- F:\Windows\SysNative\AERTAR64.dll
[2012-10-12 13:27:13 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Realtek
[2012-10-12 13:27:11 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- F:\Windows\RtlExUpd.dll
[2012-10-12 13:27:11 | 000,000,000 | -H-D | C] -- F:\Program Files (x86)\Temp
[2012-10-12 13:11:32 | 000,032,320 | ---- | C] (FNet Co., Ltd.) -- F:\Windows\SysNative\drivers\FNETTBOH_305.SYS
[2012-10-12 13:11:29 | 000,016,648 | ---- | C] (FNet Co., Ltd.) -- F:\Windows\SysNative\drivers\FNETURPX.SYS
[2012-10-12 13:11:29 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB
[2012-10-12 13:11:29 | 000,000,000 | ---D | C] -- F:\ProgramData\FNET
[2012-10-12 13:11:28 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\XFastUSB
[2012-10-12 13:08:22 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast LAN
[2012-10-12 13:07:38 | 000,000,000 | ---D | C] -- F:\Users\ScriptKinG\AppData\Local\cFos
[2012-10-12 12:59:52 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
[2012-10-12 12:59:51 | 000,034,640 | ---- | C] (ASRock Inc.) -- F:\Windows\SysNative\drivers\AsrRamDisk.sys
[2012-10-11 18:53:52 | 000,000,000 | -HSD | C] -- F:\ProgramData\SecuROM
[2012-10-11 06:56:42 | 000,000,000 | ---D | C] -- F:\ProgramData\Mozilla
[2012-10-11 06:56:40 | 000,000,000 | ---D | C] -- F:\Program Files (x86)\Mozilla Maintenance Service
[2012-10-09 18:46:00 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
[2012-10-09 07:03:02 | 000,000,000 | ---D | C] -- F:\Users\ScriptKinG\AppData\Roaming\U3
[2012-10-08 18:17:16 | 000,000,000 | ---D | C] -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
[2012-10-05 13:32:03 | 000,000,000 | ---D | C] -- F:\Users\ScriptKinG\AppData\Roaming\Draco Organizer
[2012-10-03 21:08:49 | 000,000,000 | ---D | C] -- F:\ProgramData\Adobe
[2 F:\Windows\SysWow64\*.tmp files -> F:\Windows\SysWow64\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2012-11-02 08:54:59 | 000,021,280 | -H-- | M] () -- F:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-11-02 08:54:59 | 000,021,280 | -H-- | M] () -- F:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-11-02 08:46:38 | 004,456,448 | -HS- | M] () -- F:\Users\ScriptKinG\ntuser.dat
[2012-11-02 08:46:26 | 000,000,006 | -H-- | M] () -- F:\Windows\tasks\SA.DAT
[2012-11-02 08:46:23 | 000,067,584 | --S- | M] () -- F:\Windows\bootstat.dat
[2012-11-02 08:46:14 | 3220,627,456 | -HS- | M] () -- F:\hiberfil.sys
[2012-11-02 08:36:23 | 002,062,486 | -H-- | M] () -- F:\Users\ScriptKinG\AppData\Local\IconCache.db
[2012-11-02 08:33:00 | 000,000,830 | ---- | M] () -- F:\Windows\tasks\Adobe Flash Player Updater.job
[2012-11-01 18:03:40 | 000,001,056 | ---- | M] () -- F:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-11-01 16:52:05 | 000,000,381 | ---- | M] () -- F:\Users\ScriptKinG\AppData\Roaming\Network Meter_Settings.ini
[2012-11-01 16:26:38 | 000,000,640 | RHS- | M] () -- F:\Users\ScriptKinG\ntuser.pol
[2012-11-01 14:16:17 | 000,006,656 | ---- | M] () -- F:\Windows\SysNative\lpcio.dll
[2012-11-01 13:39:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- F:\Users\ScriptKinG\Desktop\OTL.exe
[2012-11-01 12:15:19 | 000,524,288 | -HS- | M] () -- F:\Users\ScriptKinG\ntuser.dat{7d97f030-2413-11e2-8a23-0025227d94f3}.TMContainer00000000000000000002.regtrans-ms
[2012-11-01 12:15:19 | 000,524,288 | -HS- | M] () -- F:\Users\ScriptKinG\ntuser.dat{7d97f030-2413-11e2-8a23-0025227d94f3}.TMContainer00000000000000000001.regtrans-ms
[2012-11-01 12:15:19 | 000,065,536 | -HS- | M] () -- F:\Users\ScriptKinG\ntuser.dat{7d97f030-2413-11e2-8a23-0025227d94f3}.TM.blf
[2012-11-01 12:07:43 | 000,524,288 | -HS- | M] () -- F:\Users\ScriptKinG\ntuser.dat{dc5b6ae8-240f-11e2-b832-0025227d94f3}.TMContainer00000000000000000002.regtrans-ms
[2012-11-01 12:07:43 | 000,524,288 | -HS- | M] () -- F:\Users\ScriptKinG\ntuser.dat{dc5b6ae8-240f-11e2-b832-0025227d94f3}.TMContainer00000000000000000001.regtrans-ms
[2012-11-01 12:07:43 | 000,065,536 | -HS- | M] () -- F:\Users\ScriptKinG\ntuser.dat{dc5b6ae8-240f-11e2-b832-0025227d94f3}.TM.blf
[2012-11-01 10:28:51 | 000,524,288 | -HS- | M] () -- F:\Users\ScriptKinG\ntuser.dat{79a358a2-2406-11e2-a0b3-0025227d94f3}.TMContainer00000000000000000002.regtrans-ms
[2012-11-01 10:28:51 | 000,524,288 | -HS- | M] () -- F:\Users\ScriptKinG\ntuser.dat{79a358a2-2406-11e2-a0b3-0025227d94f3}.TMContainer00000000000000000001.regtrans-ms
[2012-11-01 10:28:51 | 000,065,536 | -HS- | M] () -- F:\Users\ScriptKinG\ntuser.dat{79a358a2-2406-11e2-a0b3-0025227d94f3}.TM.blf
[2012-10-31 07:59:44 | 000,000,753 | ---- | M] () -- F:\Users\ScriptKinG\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Thunderbird.lnk
[2012-10-28 08:29:51 | 001,692,506 | ---- | M] () -- F:\Windows\SysNative\PerfStringBackup.INI
[2012-10-28 08:29:51 | 000,747,698 | ---- | M] () -- F:\Windows\SysNative\perfh015.dat
[2012-10-28 08:29:51 | 000,661,064 | ---- | M] () -- F:\Windows\SysNative\perfh009.dat
[2012-10-28 08:29:51 | 000,160,290 | ---- | M] () -- F:\Windows\SysNative\perfc015.dat
[2012-10-28 08:29:51 | 000,125,254 | ---- | M] () -- F:\Windows\SysNative\perfc009.dat
[2012-10-25 17:33:25 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- F:\Windows\SysWow64\FlashPlayerApp.exe
[2012-10-25 17:33:25 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- F:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012-10-23 04:54:56 | 005,623,976 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiumdag.dll
[2012-10-23 04:51:20 | 011,270,656 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\drivers\atikmdag.sys
[2012-10-23 04:21:06 | 000,070,144 | ---- | M] (AMD) -- F:\Windows\SysNative\coinst_9.01.8.dll
[2012-10-23 04:18:26 | 000,317,040 | ---- | M] () -- F:\Windows\SysWow64\atiapfxx.blb
[2012-10-23 04:18:26 | 000,317,040 | ---- | M] () -- F:\Windows\SysNative\atiapfxx.blb
[2012-10-23 04:15:12 | 000,163,840 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\atiapfxx.exe
[2012-10-23 04:13:42 | 000,051,200 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\aticalrt64.dll
[2012-10-23 04:13:40 | 000,046,080 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticalrt.dll
[2012-10-23 04:13:36 | 023,435,776 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\atio6axx.dll
[2012-10-23 04:13:34 | 000,044,544 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\aticalcl64.dll
[2012-10-23 04:13:32 | 000,044,032 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticalcl.dll
[2012-10-23 04:13:22 | 016,082,944 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\aticaldd64.dll
[2012-10-23 04:09:06 | 013,703,168 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\aticaldd.dll
[2012-10-23 04:00:54 | 000,948,224 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\aticfx32.dll
[2012-10-23 03:59:08 | 001,136,640 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\aticfx64.dll
[2012-10-23 03:57:08 | 006,678,528 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atidxx32.dll
[2012-10-23 03:56:48 | 018,957,824 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysWow64\atioglxx.dll
[2012-10-23 03:52:34 | 000,442,368 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\atidemgy.dll
[2012-10-23 03:52:18 | 000,548,864 | ---- | M] (AMD) -- F:\Windows\SysNative\atieclxx.exe
[2012-10-23 03:51:30 | 000,240,640 | ---- | M] (AMD) -- F:\Windows\SysNative\atiesrxx.exe
[2012-10-23 03:50:06 | 000,120,320 | ---- | M] (AMD) -- F:\Windows\SysNative\atitmm64.dll
[2012-10-23 03:49:46 | 000,021,504 | ---- | M] (AMD) -- F:\Windows\SysNative\atimuixx.dll
[2012-10-23 03:49:42 | 000,059,392 | ---- | M] (ATI Technologies, Inc.) -- F:\Windows\SysNative\atiedu64.dll
[2012-10-23 03:49:36 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- F:\Windows\SysWow64\ati2edxx.dll
[2012-10-23 03:40:20 | 007,370,240 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atidxx64.dll
[2012-10-23 03:39:20 | 006,778,880 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atiumd64.dll
[2012-10-23 03:28:26 | 000,618,496 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\atiadlxx.dll
[2012-10-23 03:28:14 | 000,421,888 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysWow64\atiadlxy.dll
[2012-10-23 03:28:00 | 000,017,920 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atig6pxx.dll
[2012-10-23 03:27:56 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiglpxx.dll
[2012-10-23 03:27:56 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atiglpxx.dll
[2012-10-23 03:27:52 | 000,041,984 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atig6txx.dll
[2012-10-23 03:27:44 | 000,033,280 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atigktxx.dll
[2012-10-23 03:27:36 | 000,546,304 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\drivers\atikmpag.sys
[2012-10-23 03:25:48 | 000,130,048 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atiuxp64.dll
[2012-10-23 03:25:42 | 000,109,568 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiuxpag.dll
[2012-10-23 03:25:34 | 000,104,448 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atiu9p64.dll
[2012-10-23 03:25:24 | 000,083,968 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiu9pag.dll
[2012-10-23 03:24:36 | 000,053,248 | ---- | M] (Advanced Micro Devices, Inc.) -- F:\Windows\SysNative\drivers\ati2erec.dll
[2012-10-23 02:44:50 | 004,674,048 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atiumd6a.dll
[2012-10-23 02:41:34 | 003,053,056 | ---- | M] () -- F:\Windows\SysNative\atiumd6a.cap
[2012-10-23 02:34:04 | 003,862,528 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atiumdva.dll
[2012-10-23 02:32:28 | 003,084,672 | ---- | M] () -- F:\Windows\SysWow64\atiumdva.cap
[2012-10-23 02:24:00 | 000,056,320 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\atimpc64.dll
[2012-10-23 02:24:00 | 000,056,320 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysNative\amdpcom64.dll
[2012-10-23 02:23:50 | 000,056,832 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\atimpc32.dll
[2012-10-23 02:23:50 | 000,056,832 | ---- | M] (Advanced Micro Devices, Inc. ) -- F:\Windows\SysWow64\amdpcom32.dll
[2012-10-22 23:45:28 | 000,222,720 | ---- | M] () -- F:\Windows\SysNative\clinfo.exe
[2012-10-22 23:45:10 | 000,076,288 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\OpenVideo64.dll
[2012-10-22 23:45:06 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\OpenVideo.dll
[2012-10-22 23:45:02 | 000,064,512 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\OVDecode64.dll
[2012-10-22 23:44:58 | 000,056,320 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\OVDecode.dll
[2012-10-22 23:44:50 | 034,523,136 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysNative\amdocl64.dll
[2012-10-22 23:40:14 | 028,737,536 | ---- | M] (Advanced Micro Devices Inc.) -- F:\Windows\SysWow64\amdocl.dll
[2012-10-22 23:36:20 | 000,054,784 | ---- | M] (Khronos Group) -- F:\Windows\SysNative\OpenCL.dll
[2012-10-22 23:36:16 | 000,050,176 | ---- | M] (Khronos Group) -- F:\Windows\SysWow64\OpenCL.dll
[2012-10-19 13:55:38 | 406,887,719 | ---- | M] () -- F:\Windows\MEMORY.DMP
[2012-10-18 18:36:14 | 000,032,320 | ---- | M] (FNet Co., Ltd.) -- F:\Windows\SysNative\drivers\FNETTBOH_305.SYS
[2012-10-17 20:42:31 | 000,095,208 | ---- | M] (Oracle Corporation) -- F:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2012-10-17 20:42:28 | 000,246,760 | ---- | M] (Oracle Corporation) -- F:\Windows\SysWow64\javaws.exe
[2012-10-17 20:42:28 | 000,174,056 | ---- | M] (Oracle Corporation) -- F:\Windows\SysWow64\javaw.exe
[2012-10-17 20:42:28 | 000,174,056 | ---- | M] (Oracle Corporation) -- F:\Windows\SysWow64\java.exe
[2012-10-17 20:42:27 | 000,821,736 | ---- | M] (Oracle Corporation) -- F:\Windows\SysWow64\npDeployJava1.dll
[2012-10-17 20:42:27 | 000,746,984 | ---- | M] (Oracle Corporation) -- F:\Windows\SysWow64\deployJava1.dll
[2012-10-17 19:17:16 | 000,108,008 | ---- | M] (Oracle Corporation) -- F:\Windows\SysNative\WindowsAccessBridge-64.dll
[2012-10-17 19:17:11 | 001,034,216 | ---- | M] (Oracle Corporation) -- F:\Windows\SysNative\npDeployJava1.dll
[2012-10-17 19:17:11 | 000,289,768 | ---- | M] (Oracle Corporation) -- F:\Windows\SysNative\javaws.exe
[2012-10-17 19:17:11 | 000,189,416 | ---- | M] (Oracle Corporation) -- F:\Windows\SysNative\javaw.exe
[2012-10-17 19:17:11 | 000,188,904 | ---- | M] (Oracle Corporation) -- F:\Windows\SysNative\java.exe
[2012-10-17 19:17:10 | 000,916,456 | ---- | M] (Oracle Corporation) -- F:\Windows\SysNative\deployJava1.dll
[2012-10-17 19:15:34 | 000,000,193 | ---- | M] () -- F:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
[2012-10-17 01:55:00 | 000,040,667 | ---- | M] () -- F:\Windows\atiogl.xml
[2012-10-15 20:47:56 | 000,000,000 | -H-- | M] () -- F:\Users\ScriptKinG\Documents\Default.rdp
[2012-10-14 15:59:07 | 000,466,456 | ---- | M] (Creative Labs) -- F:\Windows\SysNative\wrap_oal.dll
[2012-10-14 15:59:07 | 000,444,952 | ---- | M] (Creative Labs) -- F:\Windows\SysWow64\wrap_oal.dll
[2012-10-14 15:59:07 | 000,121,880 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- F:\Windows\SysNative\OpenAL32.dll
[2012-10-14 15:59:06 | 000,109,080 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- F:\Windows\SysWow64\OpenAL32.dll
[2012-10-12 13:28:40 | 000,016,648 | ---- | M] (FNet Co., Ltd.) -- F:\Windows\SysNative\drivers\FNETURPX.SYS
[2012-10-12 13:08:22 | 000,000,003 | ---- | M] () -- F:\Users\ScriptKinG\AppData\Local\user_data.ini
[2 F:\Windows\SysWow64\*.tmp files -> F:\Windows\SysWow64\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2012-11-01 16:26:38 | 000,000,640 | RHS- | C] () -- F:\Users\ScriptKinG\ntuser.pol
[2012-11-01 12:15:19 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{7d97f030-2413-11e2-8a23-0025227d94f3}.TMContainer00000000000000000002.regtrans-ms
[2012-11-01 12:15:19 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{7d97f030-2413-11e2-8a23-0025227d94f3}.TMContainer00000000000000000001.regtrans-ms
[2012-11-01 12:15:19 | 000,065,536 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{7d97f030-2413-11e2-8a23-0025227d94f3}.TM.blf
[2012-11-01 12:02:06 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{dc5b6ae8-240f-11e2-b832-0025227d94f3}.TMContainer00000000000000000002.regtrans-ms
[2012-11-01 12:02:06 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{dc5b6ae8-240f-11e2-b832-0025227d94f3}.TMContainer00000000000000000001.regtrans-ms
[2012-11-01 12:02:06 | 000,065,536 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{dc5b6ae8-240f-11e2-b832-0025227d94f3}.TM.blf
[2012-11-01 10:28:51 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{79a358a2-2406-11e2-a0b3-0025227d94f3}.TMContainer00000000000000000002.regtrans-ms
[2012-11-01 10:28:51 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{79a358a2-2406-11e2-a0b3-0025227d94f3}.TMContainer00000000000000000001.regtrans-ms
[2012-11-01 10:28:51 | 000,065,536 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{79a358a2-2406-11e2-a0b3-0025227d94f3}.TM.blf
[2012-10-23 04:18:26 | 000,317,040 | ---- | C] () -- F:\Windows\SysWow64\atiapfxx.blb
[2012-10-23 04:18:26 | 000,317,040 | ---- | C] () -- F:\Windows\SysNative\atiapfxx.blb
[2012-10-23 02:41:34 | 003,053,056 | ---- | C] () -- F:\Windows\SysNative\atiumd6a.cap
[2012-10-23 02:32:28 | 003,084,672 | ---- | C] () -- F:\Windows\SysWow64\atiumdva.cap
[2012-10-22 23:45:28 | 000,222,720 | ---- | C] () -- F:\Windows\SysNative\clinfo.exe
[2012-10-19 13:55:38 | 406,887,719 | ---- | C] () -- F:\Windows\MEMORY.DMP
[2012-10-18 18:17:01 | 000,000,558 | ---- | C] () -- F:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
[2012-10-17 19:04:36 | 000,000,675 | ---- | C] () -- F:\Users\ScriptKinG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update Checker.lnk
[2012-10-17 01:55:00 | 000,040,667 | ---- | C] () -- F:\Windows\atiogl.xml
[2012-10-15 20:47:56 | 000,000,000 | -H-- | C] () -- F:\Users\ScriptKinG\Documents\Default.rdp
[2012-10-12 13:27:19 | 000,293,889 | ---- | C] () -- F:\Windows\SysNative\drivers\RTAIODAT.DAT
[2012-09-21 13:14:14 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{ce9b6280-03e5-11e2-9a10-0025227d94f3}.TMContainer00000000000000000002.regtrans-ms
[2012-09-21 13:14:14 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{ce9b6280-03e5-11e2-9a10-0025227d94f3}.TMContainer00000000000000000001.regtrans-ms
[2012-09-21 13:14:13 | 000,065,536 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{ce9b6280-03e5-11e2-9a10-0025227d94f3}.TM.blf
[2012-09-20 07:31:47 | 002,062,486 | -H-- | C] () -- F:\Users\ScriptKinG\AppData\Local\IconCache.db
[2012-09-18 19:40:31 | 000,008,192 | ---- | C] () -- F:\Windows\SysWow64\srvany.exe
[2012-09-17 14:47:51 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{36975b22-00ce-11e2-a2b1-0025227d94f3}.TMContainer00000000000000000002.regtrans-ms
[2012-09-17 14:47:51 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{36975b22-00ce-11e2-a2b1-0025227d94f3}.TMContainer00000000000000000001.regtrans-ms
[2012-09-17 14:47:51 | 000,065,536 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat{36975b22-00ce-11e2-a2b1-0025227d94f3}.TM.blf
[2012-09-02 07:58:54 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\NTUSER.DAT{9c2c97bd-f4cb-11e1-9ede-0025227d94f3}.TMContainer00000000000000000002.regtrans-ms
[2012-09-02 07:58:54 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\NTUSER.DAT{9c2c97bd-f4cb-11e1-9ede-0025227d94f3}.TMContainer00000000000000000001.regtrans-ms
[2012-09-02 07:58:54 | 000,065,536 | -HS- | C] () -- F:\Users\ScriptKinG\NTUSER.DAT{9c2c97bd-f4cb-11e1-9ede-0025227d94f3}.TM.blf
[2012-08-31 19:36:53 | 000,000,003 | ---- | C] () -- F:\Users\ScriptKinG\AppData\Local\user_data.ini
[2012-08-25 21:08:25 | 000,000,600 | ---- | C] () -- F:\Users\ScriptKinG\AppData\Local\PUTTY.RND
[2012-08-25 21:04:48 | 001,589,248 | ---- | C] () -- F:\Windows\SysWow64\libmysql_d.dll
[2012-07-21 20:53:42 | 000,000,098 | ---- | C] () -- F:\Users\ScriptKinG\AppData\Local\fusioncache.dat
[2012-06-30 13:38:43 | 000,252,782 | ---- | C] () -- F:\Users\ScriptKinG\Bez tytułu.jpg
[2012-06-30 13:37:14 | 000,465,230 | ---- | C] () -- F:\Users\ScriptKinG\Obraza1.jpg
[2012-06-19 16:38:19 | 000,000,080 | ---- | C] () -- F:\Users\ScriptKinG\AppData\Local\X-Plane Installer.prf
[2012-06-06 21:41:23 | 000,175,616 | ---- | C] () -- F:\Windows\SysWow64\unrar.dll
[2012-06-04 20:20:22 | 000,644,608 | ---- | C] () -- F:\Windows\SysWow64\xvidcore.dll
[2012-06-04 20:20:16 | 000,258,048 | ---- | C] () -- F:\Windows\SysWow64\libFLAC.dll
[2012-06-03 17:51:27 | 000,019,840 | ---- | C] () -- F:\Windows\SysWow64\EuEpmGdi.dll
[2012-06-03 17:51:26 | 002,469,760 | ---- | C] () -- F:\Windows\SysWow64\BootMan.exe
[2012-06-03 17:51:26 | 000,086,408 | ---- | C] () -- F:\Windows\SysWow64\setupempdrv03.exe
[2012-06-03 17:51:26 | 000,014,216 | ---- | C] () -- F:\Windows\SysWow64\epmntdrv.sys
[2012-06-03 17:51:26 | 000,008,456 | ---- | C] () -- F:\Windows\SysWow64\EuGdiDrv.sys
[2012-06-03 17:07:19 | 000,000,381 | ---- | C] () -- F:\Users\ScriptKinG\AppData\Roaming\Network Meter_Settings.ini
[2012-06-03 17:04:48 | 000,000,412 | ---- | C] () -- F:\Users\ScriptKinG\AppData\Roaming\All CPU Meter_Settings.ini
[2012-06-03 16:33:12 | 001,716,682 | ---- | C] () -- F:\Windows\SysWow64\PerfStringBackup.INI
[2012-06-03 14:56:01 | 000,109,968 | ---- | C] () -- F:\Users\ScriptKinG\AppData\Local\GDIPFONTCACHEV1.DAT
[2012-06-03 14:55:16 | 000,000,000 | ---- | C] () -- F:\Windows\ativpsrm.bin
[2012-06-03 14:47:39 | 000,000,020 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.ini
[2012-06-03 14:47:38 | 004,456,448 | -HS- | C] () -- F:\Users\ScriptKinG\ntuser.dat
[2012-06-03 14:47:38 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2012-06-03 14:47:38 | 000,524,288 | -HS- | C] () -- F:\Users\ScriptKinG\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2012-06-03 14:47:38 | 000,065,536 | -HS- | C] () -- F:\Users\ScriptKinG\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2012-05-02 14:58:10 | 000,029,184 | ---- | C] () -- F:\Windows\SysWow64\kdbsdk32.dll
[2012-04-06 02:29:34 | 000,204,952 | ---- | C] () -- F:\Windows\SysWow64\ativvsvl.dat
[2012-04-06 02:29:34 | 000,157,144 | ---- | C] () -- F:\Windows\SysWow64\ativvsva.dat
[2011-09-12 23:06:16 | 000,003,917 | ---- | C] () -- F:\Windows\SysWow64\atipblag.dat
[2010-06-18 00:12:48 | 000,000,193 | ---- | C] () -- F:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- F:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = F:\Windows\SysNative\shell32.dll -- [2012-06-09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = F:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = F:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#E56717]========== LOP Check ==========[/color]

[2012-10-29 20:41:09 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\.minecraft
[2012-08-21 12:39:49 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Atari
[2012-10-18 18:39:33 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Audacity
[2012-08-28 20:11:06 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\CoreFTP
[2012-07-24 20:24:53 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\DAEMON Tools Lite
[2012-10-05 13:33:06 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Draco Organizer
[2012-11-02 08:49:01 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Dropbox
[2012-09-09 18:29:32 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\DVDVideoSoft
[2012-10-31 19:18:04 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\FileZilla
[2012-08-01 09:26:11 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Garmin
[2012-10-25 20:59:09 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\GG
[2012-11-01 18:39:42 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\ipla
[2012-07-13 10:24:50 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\LolClient
[2012-07-05 17:48:33 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Nokia
[2012-10-14 15:48:43 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Notepad++
[2012-06-18 15:21:55 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\PC Suite
[2012-06-07 14:38:31 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Publish Providers
[2012-09-21 16:09:16 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\R-TT
[2012-09-01 08:28:05 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Soluto
[2012-06-07 14:38:28 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Sony
[2012-10-31 09:59:22 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\SystemRequirementsLab
[2012-08-24 20:01:53 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\TeamViewer
[2012-07-18 17:18:58 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\Thunderbird
[2012-10-04 18:33:00 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\TS3Client
[2012-06-26 14:56:04 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\ts3overlay
[2012-07-21 13:09:01 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\TuneUp Software
[2012-11-01 14:56:18 | 000,000,000 | ---D | M] -- F:\Users\ScriptKinG\AppData\Roaming\uTorrent

[color=#E56717]========== Purity Check ==========[/color]


< End of report >