FRST.zip

OTL - Prośba o sprawdzenie loga

Załączam właściwe logi

  • FRST.zip
    • FRST.txt


Pobierz plik - link do postu

FRST.zip > FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-08-2014 01
Ran by app (administrator) on APP-KOMPUTER on 24-08-2014 15:31:48
Running from C:\Users\app\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Webroot) C:\Program Files (x86)\Webroot\WRSA.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Qihu 360 Software Co., Ltd.) C:\Program Files\360\360 Internet Security\360rps.exe
(Qihu 360 Software Co., Ltd.) C:\Program Files\360\360 Internet Security\deepscan\QHActiveDefense.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(CobianSoft, Luis Cobian) C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe
(Luis Cobian, CobianSoft) C:\Program Files (x86)\Cobian Backup 11\cbService.exe
(COMODO Security Solutions) C:\Program Files\COMODO\COMMON\COSService.exe
( ) C:\Windows\System32\lmabcoms.exe
() C:\Program Files (x86)\ASSECO\mMedica\mmService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Asseco Poland S.A. (TS)) C:\Program Files (x86)\PostgreSQL\9.0\bin\pg_ctl.exe
(COMODO Security Solutions) C:\Program Files\COMODO\COMMON\SynchronizationService.exe
(Asseco Poland S.A. (TS)) C:\Program Files (x86)\PostgreSQL\9.0\bin\postgres.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Asseco Poland S.A. (TS)) C:\Program Files (x86)\PostgreSQL\9.0\bin\postgres.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Asseco Poland S.A. (TS)) C:\Program Files (x86)\PostgreSQL\9.0\bin\postgres.exe
(Asseco Poland S.A. (TS)) C:\Program Files (x86)\PostgreSQL\9.0\bin\postgres.exe
(Asseco Poland S.A. (TS)) C:\Program Files (x86)\PostgreSQL\9.0\bin\postgres.exe
(Asseco Poland S.A. (TS)) C:\Program Files (x86)\PostgreSQL\9.0\bin\postgres.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Webroot) C:\Program Files (x86)\Webroot\WRSA.exe
() C:\Program Files (x86)\Common Files\Innovative Solutions\Advanced Uninstaller\InnovativeSolutions_monitor_Svr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Qihu 360 Software Co., Ltd.) C:\Program Files\360\360 Internet Security\360sd.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
(TrueCrypt Foundation) C:\Program Files\TrueCrypt\TrueCrypt.exe
( ) C:\Program Files (x86)\ChomikBox\chomikbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(Qihu 360 Software Co., Ltd.) C:\Program Files\360\360 Internet Security\safemon\360Tray.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Qihu 360 Software Co., Ltd.) C:\Program Files\360\360 Internet Security\360rp.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_206.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\WerFault.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [CmPCIaudio] = & gt; C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\CMICNFG3.dll,CMICtrlWnd
HKLM\...\Run: [CIS_{15198508-521A-4D69-8E5B-B94A6CCFF805}] = & gt; " C:\ProgramData\cis9734.exe " --PostUninstall {15198508-521A-4D69-8E5B-B94A6CCFF805}
HKLM\...\Run: [360sd] = & gt; C:\Program Files\360\360 Internet Security\360sdrun.exe [287560 2014-04-16] (Qihu 360 Software Co., Ltd.)
HKLM\...\Run: [COMODO Internet Security] = & gt; C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1275608 2014-03-25] (COMODO)
HKLM-x32\...\Run: [WRSVC] = & gt; C:\Program Files (x86)\Webroot\WRSA.exe [767088 2014-08-08] (Webroot)
HKLM-x32\...\Run: [StartCCC] = & gt; C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-04-17] (Advanced Micro Devices, Inc.)
HKU\.DEFAULT\...\Run: [Copy] = & gt; C:\Users\app\AppData\Roaming\Copy\CopyAgent.exe [15504528 2014-04-19] (Barracuda Networks, Inc.)
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\Run: [TrueCrypt] = & gt; C:\Program Files\TrueCrypt\TrueCrypt.exe [1516496 2013-02-14] (TrueCrypt Foundation)
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\Run: [AshSnap] = & gt; C:\Program Files (x86)\Ashampoo\Ashampoo Snap 6\ashsnap.exe [3860304 2013-10-29] (Ashampoo Media GmbH & Co. KG)
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\Run: [] = & gt; [X]
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\Run: [Raptr] = & gt; C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2014-08-20] (Raptr, Inc)
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\Run: [ChomikBox] = & gt; C:\Program Files (x86)\ChomikBox\chomikbox.exe [6033408 2014-03-11] ( )
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\MountPoints2: {028cd2bc-e73b-11e2-9321-001fd059ad03} - E:\AutoRun.exe
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\MountPoints2: {7390c5b5-7b78-11e3-8651-001fd059ad03} - E:\AutoRun.exe
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\MountPoints2: {80b94c24-ed97-11e3-8bf3-806e6f6e6963} - D:\setup.exe
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\MountPoints2: {c8f2dfe4-f081-11e2-9fef-001fd059ad03} - E:\iLinker.exe
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\MountPoints2: {dc99cdd3-de97-11e2-87a6-001fd059ad03} - E:\AutoRun.exe
HKU\S-1-5-21-3779274457-241525021-3594938619-1000\...\MountPoints2: {dc99cde0-de97-11e2-87a6-001fd059ad03} - E:\AutoRun.exe
ShellIconOverlayIdentifiers: 1aCopyShExtError - & gt; {83BEA36E-7680-4598-A4DF-994426F6E78D} = & gt; C:\Users\app\AppData\Roaming\Copy\overlay\CopyShExt.dll (Barracuda Networks, Inc.)
ShellIconOverlayIdentifiers: 2aCopyShExtSynced - & gt; {845B7388-6F85-4F32-9FD5-F02DC7882B89} = & gt; C:\Users\app\AppData\Roaming\Copy\overlay\CopyShExt.dll (Barracuda Networks, Inc.)
ShellIconOverlayIdentifiers: 3aCopyShExtSyncing - & gt; {F6378A7A-F753-449B-AE1B-997A96132E61} = & gt; C:\Users\app\AppData\Roaming\Copy\overlay\CopyShExt.dll (Barracuda Networks, Inc.)
ShellIconOverlayIdentifiers: 4aCopyShExtSyncingProg1 - & gt; {3A511828-777D-46F8-82F4-5B530C1B3D9E} = & gt; C:\Users\app\AppData\Roaming\Copy\overlay\CopyShExt.dll (Barracuda Networks, Inc.)
ShellIconOverlayIdentifiers: 5aCopyShExtSyncingProg2 - & gt; {C8C88204-5B14-40EC-BA72-8AEBC762047E} = & gt; C:\Users\app\AppData\Roaming\Copy\overlay\CopyShExt.dll (Barracuda Networks, Inc.)
ShellIconOverlayIdentifiers: 6aCopyShExtSyncingProg3 - & gt; {ACFF45C3-3EEB-4351-86C2-6696BA264239} = & gt; C:\Users\app\AppData\Roaming\Copy\overlay\CopyShExt.dll (Barracuda Networks, Inc.)
ShellIconOverlayIdentifiers: 7aCopyShExtSyncingProg4 - & gt; {29AF997F-488B-46F0-AE78-7146F1B89CC3} = & gt; C:\Users\app\AppData\Roaming\Copy\overlay\CopyShExt.dll (Barracuda Networks, Inc.)
ShellIconOverlayIdentifiers: 8aCopyShExtSyncingProg5 - & gt; {03F9AD29-1C78-4B66-8890-B177B5430C53} = & gt; C:\Users\app\AppData\Roaming\Copy\overlay\CopyShExt.dll (Barracuda Networks, Inc.)
ShellIconOverlayIdentifiers: COSDriveIconOverlay - & gt; {5FDACB62-6B7B-4116-9403-C5E0D3852A57} = & gt; C:\Program Files\COMODO\COMMON\ShellExtension.dll (C-O-M-O-D-O)
ShellIconOverlayIdentifiers: COSSyncItemInSyncIconOverlay - & gt; {68F287EF-DA6D-4595-AF52-90FF6CE52AFE} = & gt; C:\Program Files\COMODO\COMMON\ShellExtension.dll (C-O-M-O-D-O)
ShellIconOverlayIdentifiers: COSSyncItemModifiedIconOverlay - & gt; {AE67D273-7253-4236-B55E-D40055B305D6} = & gt; C:\Program Files\COMODO\COMMON\ShellExtension.dll (C-O-M-O-D-O)
ShellIconOverlayIdentifiers: COSSyncItemNewIconOverlay - & gt; {022F23E9-DA0F-4A86-A728-CAF6150C0B63} = & gt; C:\Program Files\COMODO\COMMON\ShellExtension.dll (C-O-M-O-D-O)
ShellIconOverlayIdentifiers: COSSyncItemUnsynchronizedIconOverlay - & gt; {4D7EE7CF-E7A1-45FE-8F80-3A37574918D7} = & gt; C:\Program Files\COMODO\COMMON\ShellExtension.dll (C-O-M-O-D-O)
ShellIconOverlayIdentifiers-x32: ###MegaShellExtPending - & gt; {056D528D-CE28-4194-9BA3-BA2E9197FF8C} = & gt; No File
ShellIconOverlayIdentifiers-x32: ###MegaShellExtSynced - & gt; {05B38830-F4E9-4329-978B-1DD28605D202} = & gt; No File
ShellIconOverlayIdentifiers-x32: ###MegaShellExtSyncing - & gt; {0596C850-7BDD-4C9D-AFDF-873BE6890637} = & gt; No File
BootExecute: autocheck autochk * ?????????????

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: ExplorerWnd Helper - & gt; {10921475-03CE-4E04-90CE-E2E7EF20C814} - & gt; C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll No File
BHO: SafeMon Class - & gt; {B69F34DD-F0F9-42DC-9EDD-957187DA688D} - & gt; C:\Program Files\360\360 Internet Security\safemon\safemon64.dll (Qihu 360 Software Co., Ltd.)
BHO: Webroot Filtering Extension - & gt; {C9C42510-9B41-42c1-9DCD-7282A2D07C61} - & gt; C:\Program Files (x86)\Webroot\WRData\PKG\Vistax64\wrflt.dll (Webroot)
BHO-x32: Webroot Filtering Extension - & gt; {C9C42510-9B41-42c1-9DCD-7282A2D07C61} - & gt; C:\Program Files (x86)\Webroot\WRData\PKG\Vistax86\wrflt.dll (Webroot)
Handler: leaf - {3c4a8a13-029e-430d-b8c1-46e834d20b31} - No File
Handler-x32: leaf - {3c4a8a13-029e-430d-b8c1-46e834d20b31} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7FCD0A5A-3ABD-4D04-9740-BF65DBB976A6}: [NameServer] 192.168.1.1,8.8.8.8

FireFox:
========
FF ProfilePath: C:\Users\app\AppData\Roaming\Mozilla\Firefox\Profiles\abtqmpp5.default
FF NetworkProxy: " gopher " , " "
FF NetworkProxy: " gopher_port " , 0
FF NetworkProxy: " share_proxy_settings " , true
FF NetworkProxy: " type " , 0
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_206.dll ()
FF Plugin: @microsoft.com/GENUINE - & gt; disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - & gt; c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - & gt; C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin-x32: @esn/esnlaunch,version=2.1.4 - & gt; C:\Program Files (x86)\Battlelog Web Plugins\2.1.4\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/GENUINE - & gt; disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - & gt; c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin - & gt; C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 - & gt; C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - & gt; C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - & gt; C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - & gt; C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @vmware.com/vmrc,version=5.1.0.00000 - & gt; C:\Program Files (x86)\Common Files\VMware\VMware Remote Console Plug-in 5.1\Firefox\np-vmware-vmrc.dll (VMware, Inc.)
FF Plugin-x32: @vmware.com/vmrc,version=5.5.0.00000 - & gt; No File
FF Plugin-x32: Adobe Reader - & gt; C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\app\AppData\Roaming\mozilla\plugins\npatgpc.dll (Cisco WebEx LLC)
FF Extension: PrivDog - C:\Users\app\AppData\Roaming\Mozilla\Firefox\Profiles\abtqmpp5.default\Extensions\PrivDog@AdTrustMedia.com [2014-06-20]
FF Extension: Disconnect - C:\Users\app\AppData\Roaming\Mozilla\Firefox\Profiles\abtqmpp5.default\Extensions\2.0@disconnect.me.xpi [2013-02-08]
FF Extension: Iplex to ALLPlayer - C:\Users\app\AppData\Roaming\Mozilla\Firefox\Profiles\abtqmpp5.default\Extensions\IplextoALL@ALLPlayer.org.xpi [2013-04-24]
FF Extension: MZ8 - C:\Users\app\AppData\Roaming\Mozilla\Firefox\Profiles\abtqmpp5.default\Extensions\someone@somewhere.xpi [2014-04-16]
FF Extension: Free Hide IP - C:\Users\app\AppData\Roaming\Mozilla\Firefox\Profiles\abtqmpp5.default\Extensions\support@free-hideip.com.xpi [2013-03-02]
FF Extension: ALLYouTubeDownloader - C:\Users\app\AppData\Roaming\Mozilla\Firefox\Profiles\abtqmpp5.default\Extensions\YouTubetoALL@ALLPlayer.org.xpi [2013-04-24]
FF Extension: Easy YouTube Video Downloader - C:\Users\app\AppData\Roaming\Mozilla\Firefox\Profiles\abtqmpp5.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2013-04-17]
FF Extension: Adblock Plus - C:\Users\app\AppData\Roaming\Mozilla\Firefox\Profiles\abtqmpp5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-04-27]
FF HKLM-x32\...\Firefox\Extensions: [webrootsecure@webroot.com] - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer
FF Extension: Webroot Filtering Extension - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer [2014-02-19]

Chrome:
=======
CHR Extension: (Free Download Manager Chrome extension) - C:\Users\app\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahmpjcflkgiildlgicmcieglgoilbfdp [2014-06-07]
CHR Extension: (Dokumenty Google) - C:\Users\app\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-07-07]
CHR Extension: (Dysk Google) - C:\Users\app\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-07-07]
CHR Extension: (YouTube) - C:\Users\app\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-07]
CHR Extension: (Szukaj w Google) - C:\Users\app\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-07]
CHR Extension: (Webroot Filtering Extension) - C:\Users\app\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjeghcllfecehndceplomkocgfbklffd [2014-02-20]
CHR Extension: (Google Wallet) - C:\Users\app\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-26]
CHR Extension: (Gmail) - C:\Users\app\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-07]
CHR Extension: (360 WebShield Plug-in) - C:\Users\app\AppData\Local\Google\Chrome\User Data\Default\Extensions\pppagaglfkmlpgobnlenhknilehpmcbo [2014-04-07]
CHR HKLM-x32\...\Chrome\Extension: [kjeghcllfecehndceplomkocgfbklffd] - C:\ProgramData\WRData\PKG\CHROME\CHROME_1.0.0.26.crx [2014-02-19]
CHR HKLM-x32\...\Chrome\Extension: [pppagaglfkmlpgobnlenhknilehpmcbo] - C:\Program Files\360\360 Internet Security\safemon\360webshield.crx [2014-04-05]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 360rp; C:\Program Files\360\360 Internet Security\360rps.exe [310352 2014-04-16] (Qihu 360 Software Co., Ltd.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-04-17] (Advanced Micro Devices, Inc.) [File not signed]
R2 cbVSCService11; C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [67584 2013-03-08] (CobianSoft, Luis Cobian) [File not signed]
S3 CGVPNCliSrvc; C:\Program Files\CyberGhost VPN\CGVPNCliService.exe [2438696 2012-04-26] (mobile concepts GmbH)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 CobianBackup11; C:\Program Files (x86)\Cobian Backup 11\cbService.exe [1131008 2013-03-08] (Luis Cobian, CobianSoft) [File not signed]
R2 COSService.exe; C:\Program Files\COMODO\COMMON\COSService.exe [3482816 2014-02-10] (COMODO Security Solutions)
R3 InnovativeSolutions_monitor; C:\Program Files (x86)\Common Files\Innovative Solutions\Advanced Uninstaller\InnovativeSolutions_monitor_Svr.exe [1064880 2014-06-04] ()
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit)
R2 lmab_device; C:\Windows\system32\LMabcoms.exe [1044992 2009-10-07] ( ) [File not signed]
R2 lmab_device; C:\Windows\SysWOW64\LMabcoms.exe [593920 2009-10-07] ( ) [File not signed]
R2 mmService; C:\Program Files (x86)\ASSECO\mMedica\mMService.exe [4386816 2014-02-08] () [File not signed]
S2 PCloudCleanerService; C:\Windows\SysWOW64\PCloudCleanerService.EXE [93152 2013-10-04] (Panda Security S.L.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-02-07] ()
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S3 scan; C:\Program Files\360\360 Internet Security\scan.dll [423144 2013-02-20] (S.C. BitDefender S.R.L)
R2 SynchronizationService.exe; C:\Program Files\COMODO\COMMON\SynchronizationService.exe [2558656 2014-02-10] (COMODO Security Solutions)
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [2179056 2013-07-19] (GlavSoft LLC.)
R2 WRSVC; C:\Program Files (x86)\Webroot\WRSA.exe [767088 2014-08-08] (Webroot)
R2 ZhuDongFangYu; C:\Program Files\360\360 Internet Security\deepscan\QHActiveDefense.exe [236360 2014-04-23] (Qihu 360 Software Co., Ltd.)
R2 postgresmm-9.0; C:/Program Files (x86)/PostgreSQL/9.0/bin/pg_ctl.exe runservice -N " postgresmm-9.0 " -D " C:/Program Files (x86)/PostgreSQL/9.0/data " [X]
S2 VMAuthdService; " C:\Program Files (x86)\VMware\VMware Server\vmware-authd.exe " [X]
S2 vmserverdWin32; " C:\Program Files (x86)\VMware\VMware Server\vmserverdWin32.exe " [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker64.sys [97872 2014-04-21] (Qihu 360 Software Co., Ltd.)
R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [67664 2014-04-23] (Qihu 360 Software Co., Ltd.)
R1 360Box64; C:\Windows\System32\DRIVERS\360Box64.sys [305744 2014-04-29] (Qihu 360 Software Co., Ltd.)
S3 360Camera; C:\Windows\System32\Drivers\360Camera64.sys [41552 2014-04-29] (Qihu 360 Software Co., Ltd.)
R1 360fsflt; C:\Windows\System32\DRIVERS\360FsFlt.sys [304208 2014-05-07] (Qihu 360 Software Co., Ltd.)
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [638976 2014-04-18] (Advanced Micro Devices, Inc.) [File not signed]
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [180816 2014-04-18] (Qihu 360 Software Co., Ltd.)
R0 cbvd; C:\Windows\System32\DRIVERS\cbvd.sys [682888 2014-02-10] (COMODO Security Solutions Inc.)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [738472 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2014-04-16] (COMODO)
R3 cmuda3; C:\Windows\System32\drivers\cmudax3.sys [1155072 2009-12-01] (C-Media Inc)
S3 FlashUSB; C:\Windows\System32\DRIVERS\FlashUSB.sys [19968 2013-06-21] (Intel Mobile Communications)
R3 gddcd; C:\Windows\system32\drivers\gddcd64.sys [79704 2014-01-14] (G Data Software AG)
S3 ghsdiagMDM; C:\Windows\System32\DRIVERS\ghsdiagMDM.sys [122496 2011-11-28] (HS Incorporated)
S1 GLogin; No ImagePath
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105552 2014-04-16] (COMODO)
S3 leafnets; C:\Windows\System32\DRIVERS\leafnets.sys [29696 2013-02-05] (Leaf Networks) [File not signed]
R1 networx; C:\Windows\System32\drivers\networx.sys [43512 2013-10-21] (NetFilterSDK.com)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [47632 2013-04-29] (Panda Security, S.L.)
R0 Reparse; C:\Windows\System32\DRIVERS\CBReparse.sys [679792 2014-02-10] (COMODO Security Solutions Inc.)
S3 RTL8023x64; C:\Windows\System32\DRIVERS\Rtnic64.sys [51712 2009-06-10] (Realtek Semiconductor Corporation )
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2013-12-24] (IObit)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [31232 2011-12-15] (The OpenVPN Project) [File not signed]
S2 VMparport; C:\Windows\system32\drivers\VMparport.sys [12288 2008-05-09] (VMware, Inc.) [File not signed]
S2 vmx86; C:\Windows\system32\drivers\vmx86.sys [68096 2008-05-09] (VMware, Inc.) [File not signed]
R0 WRkrn; C:\Windows\System32\drivers\WRkrn.sys [115680 2014-08-08] (Webroot)
S3 zghsmdm; C:\Windows\System32\DRIVERS\zghsmdm.sys [127056 2010-10-18] (ZTE Incorporated)
S3 FwHookDrv; \??\C:\Windows\system32\drivers\FwHookDrv.sys [X]
S3 Fwleaf; system32\DRIVERS\fwleaf.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 massfilter_hs; system32\drivers\massfilter_hs.sys [X]
U0 SR; No ImagePath
U2 srservice; No ImagePath
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
S3 WPRO_41_1742; system32\drivers\WPRO_41_1742.sys [X]
S0 ybJhRgJq; System32\drivers\ybJhRgJq.sys [X]

========================== Drivers MD5 =======================

C:\Windows\system32\drivers\1394ohci.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\360AntiHacker64.sys 4B939E9D89712A8053AD609B36C20EF4
C:\Windows\System32\DRIVERS\360AvFlt.sys 1E851ECB2FAFE6677B9188E899DA424C
C:\Windows\System32\DRIVERS\360Box64.sys 47F0F30B0499E3665C801773A9FA5A03
C:\Windows\System32\Drivers\360Camera64.sys BE5852CE60598FDE3B4D60A25E297277
C:\Windows\System32\DRIVERS\360FsFlt.sys 5760CF20D7B6CBC6D6A03AF2D9B4D766
C:\Windows\System32\drivers\ACPI.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\adp94xx.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\adpahci.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\adpu320.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\afd.sys BDF76C3CE993FFB6214287272708364F
C:\Windows\system32\drivers\agp440.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\aliide.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\amdide.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\amdk8.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\atikmdag.sys 3EFD964D52221360AF0673CD61C2F4F5
C:\Windows\System32\DRIVERS\atikmpag.sys 9DCA2AFEABF1D109FB2C229491C9F293
C:\Windows\System32\DRIVERS\amdppm.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49
C:\Windows\system32\drivers\amdsbs.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys C3D487827E48CC5EC17994FEC5BDFF87
C:\Windows\system32\drivers\appid.sys D6934D14EDAEC74F47C8C6A8026ADA01
C:\Windows\system32\drivers\arc.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\arcsas.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\asyncmac.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\atapi.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\AtihdW76.sys C22D4905DDDF73EB0349D3B0604234A2
C:\Windows\System32\drivers\AtiHdmi.sys FB7602C5C508BE281368AAE0B61B51C6
C:\Windows\System32\DRIVERS\atikmdag.sys 3EFD964D52221360AF0673CD61C2F4F5
C:\Windows\system32\drivers\bxvbda.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60a.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\BAPIDRV64.sys D33811D3113C05B8485BF497B6CB50A9
C:\Windows\System32\Drivers\Beep.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\BrFiltLo.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\BrFiltUp.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\bthmodem.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\cbvd.sys 0F307146C83B870447B3387943BC80EE
C:\Windows\System32\DRIVERS\cdfs.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\circlass.sys == & gt; MD5 is legit
C:\Windows\System32\CLFS.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\CmBatt.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\cmderd.sys 348A7FDDF0D7354ED6308AF96EEF4F54
C:\Windows\System32\DRIVERS\cmdguard.sys 923659525ADAC632EA6F94570CCE1561
C:\Windows\System32\DRIVERS\cmdhlp.sys 0AB6E8D34782E83AEECEEE76BC788957
C:\Windows\system32\drivers\cmdide.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\cmudax3.sys 2835BF2A864CDE9184C80CF4E6A485F9
C:\Windows\System32\Drivers\cng.sys EBF28856F69CF094A902F884CF989706
C:\Windows\system32\drivers\compbatt.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\CompositeBus.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\crcdisk.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys A61E76AA38582730CEFA51B78B3184B2
C:\Windows\System32\DRIVERS\ssudbus.sys 1E0F456A03E204F92D24437CD907A512
C:\Windows\System32\drivers\discache.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\disk.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\drmkaud.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 87CE5C8965E101CCCED1F4675557E868
C:\Windows\system32\drivers\evbda.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\elxstor.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\errdev.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\exfat.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\fastfat.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\fdc.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\filetrace.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\FlashUSB.sys 322761FBC5D9439EE46FA997B4F88064
C:\Windows\system32\drivers\flpydisk.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\fltmgr.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\Fs_Rec.sys 6BD9295CC032DD3077C671FCCF579A7B
C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0
C:\Windows\system32\drivers\gagp30kx.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\gddcd64.sys 468C7CF02FDC148F6B7A0F7B9CFDFA52
C:\Windows\System32\DRIVERS\ghsdiagMDM.sys 35C8434A4C8A689CDE4723FD61D286E1
C:\Windows\system32\drivers\hcmon.sys 40DFA19D230FF7326BF77822D4627540
C:\Windows\system32\drivers\hcw85cir.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A
C:\Windows\System32\DRIVERS\HDAudBus.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\HidBatt.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\hidbth.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\hidir.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\hidusb.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\HTTP.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\ewusbmdm.sys CDAA8E257BB625B2387219E605DDE37D
C:\Windows\System32\drivers\hwpolicy.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\i8042prt.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366
C:\Windows\system32\drivers\iirsp.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\inspect.sys 8E8C4F5DE79216E56A2E61D573C4F9B3
C:\Windows\System32\drivers\RTKVHD64.sys C2F868881D48A568B525255F084EF063
C:\Windows\system32\drivers\intelide.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\intelppm.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\ipnat.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\irenum.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\isapnp.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys 96BB922A0981BC7432C8CF52B5410FE6
C:\Windows\System32\DRIVERS\kbdclass.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys 353009DEDF918B2A51414F330CF72DEC
C:\Windows\System32\Drivers\ksecpkg.sys 1C2D8E18AA8FD50CD04C15CC27F7F5AB
C:\Windows\system32\drivers\ksthunk.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\leafnets.sys 83EC58ED3ACA5028919028667BABF490
C:\Windows\System32\DRIVERS\lltdio.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\lsi_fc.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\lsi_sas.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\lsi_sas2.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\lsi_scsi.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\luafv.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\mcdbus.sys 79D51E7F5926E8CE1B3EBECEBAE28CFF
C:\Windows\SysWOW64\DRIVERS\mcdbus.sys 79D51E7F5926E8CE1B3EBECEBAE28CFF
C:\Windows\system32\drivers\megasas.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\MegaSR.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\modem.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\mpio.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 83A296715A67D696F101130AB44B92A7
C:\Windows\System32\DRIVERS\mrxsmb.sys 631EC673CD9115AA5A3570E7C092A410
C:\Windows\System32\DRIVERS\mrxsmb10.sys B10A0DF47FB6A1B807617A8EB8CF1045
C:\Windows\System32\DRIVERS\mrxsmb20.sys B7D1933C1835A39B55BB59A2190DC858
C:\Windows\system32\drivers\msahci.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\msdsm.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\Msfs.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\MsRPC.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\mssmbios.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\MTConfig.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\mup.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88
C:\Windows\System32\DRIVERS\ndiscap.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys 662CBFAA835FFF1A935DD01890AAFC62
C:\Windows\System32\DRIVERS\ndiswan.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\NDProxy.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\networx.sys EA4B0D57938CFF5802CA5F0E02CFAA8E
C:\Windows\system32\drivers\nfrd960.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\ccdcmbx64.sys 907B5E1E4A592E5EDC5E4CCBDE4863C2
C:\Windows\System32\drivers\ccdcmbox64.sys 205510CDB7B6084BF31760B5D06F9242
C:\Windows\System32\drivers\nmwcdnsucx64.sys 5B6203B2F4B3727A0AEB8DA44545E64E
C:\Windows\System32\drivers\nmwcdnsux64.sys 93CC935F10D17A7AAAA8FC9E5AC7AF6A
C:\Windows\System32\drivers\npf.sys DE7FCC77F4A503AF4CA6A47D49B3713D
C:\Windows\System32\Drivers\Npfs.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\Ntfs.sys 48B6047F82D5A8D0AEC71593F4ACD79B
C:\Windows\System32\Drivers\Null.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD
C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A
C:\Windows\system32\drivers\nv_agp.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\parport.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C
C:\Windows\System32\DRIVERS\pccsmcfdx64.sys 3FDE033DFB0D07F8B7D5C9A3044AA121
C:\Windows\System32\drivers\pci.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\pciide.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\pcmcia.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\pcw.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\peauth.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\raspptp.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\processr.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\PSKMAD.sys 05A0C2744CEAC6F1B723EC469B650EF0
C:\Windows\system32\drivers\ql2300.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\ql40xx.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys DB854D79B792CBDD51F3072B44D724F0
C:\Windows\system32\drivers\rdpbus.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34
C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A
C:\Windows\System32\drivers\rdyboost.sys 9500266AFA2548D2812DC59D8C1D7BD3
C:\Windows\System32\DRIVERS\CBReparse.sys B6257CA9FDD2DD9BD3F6FD38B15C1B57
C:\Windows\System32\DRIVERS\rspndr.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\Rtnic64.sys 68DD0457D18FCCEF7384AE84022F0C86
C:\Windows\System32\DRIVERS\Rt64win7.sys EE082E06A82FF630351D1E0EBBD3D8D0
C:\Windows\system32\drivers\sbp2port.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\secdrv.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\serenum.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\serial.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\sermouse.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\sfloppy.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\SiSRaid2.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\sisraid4.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\SmartDefragDriver.sys E77CB3736A702D46A6FB15FB4A9894E3
C:\Windows\System32\DRIVERS\smb.sys == & gt; MD5 is legit
C:\Windows\System32\Drivers\spldr.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys 20735E269DF367C76EF02DDE9C3FA477
C:\Windows\System32\DRIVERS\srv2.sys 6D1173EDC0D5C02ACE4BEA18F48E0746
C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3
C:\Windows\system32\drivers\stexstor.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\swenum.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\tap0901.sys F9BE29D5E097F03F81D3CD12B794CB66
C:\Windows\System32\drivers\tcpip.sys 4F80944B03112F486212DC20BE166079
C:\Windows\System32\DRIVERS\tcpip.sys 4F80944B03112F486212DC20BE166079
C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC
C:\Windows\System32\drivers\tdpipe.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8
C:\Windows\System32\DRIVERS\tdx.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\termdd.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\truecrypt.sys 370A6907DDF79532A39319492B1FA38A
C:\Windows\System32\DRIVERS\tssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09
C:\Windows\System32\drivers\tsusbflt.sys E9981ECE8D894CEF7038FD1D040EB426
C:\Windows\system32\drivers\TsUsbGD.sys AD64450A4ABE076F5CB34CC08EEACB07
C:\Windows\System32\DRIVERS\tunnel.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\uagp35.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\umbus.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\umpass.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\usbser_lowerfltx64.sys 4E93C8496359E97830C75AC36393654D
C:\Windows\System32\DRIVERS\usbccgp.sys DCA68B0943D6FA415F0C56C92158A83A
C:\Windows\system32\drivers\usbcir.sys 80B0F7D5CCF86CEB5D402EAAF61FEC31
C:\Windows\System32\DRIVERS\usbehci.sys 18A85013A3E0F7E1755365D287443965
C:\Windows\System32\DRIVERS\usbhub.sys 8D1196CFBB223621F2C67D45710F25BA
C:\Windows\System32\DRIVERS\usbohci.sys 765A92D428A8DB88B960DA5A8D6089DC
C:\Windows\System32\DRIVERS\usbprint.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\usbscan.sys 9661DA76B4531B2DA272ECCE25A8AF24
C:\Windows\System32\drivers\usbser.sys B57B4F0BEC4270A281B9F8537EB2FA04
C:\Windows\System32\DRIVERS\usbser_lowerfltjx64.sys 8844CB19A37B65E27049D4A7786726A9
C:\Windows\System32\DRIVERS\USBSTOR.SYS ED08C252A0041F8FC0237BAB585BABDC
C:\Windows\system32\drivers\usbuhci.sys DD253AFC3BC6CBA412342DE60C3647F3
C:\Windows\System32\DRIVERS\VBoxDrv.sys 197AF90E01A473A1862BB5381BE77877
C:\Windows\System32\DRIVERS\VBoxNetAdp.sys 9AFB83D5E465E7F3C2C20F968C774756
C:\Windows\System32\DRIVERS\VBoxNetFlt.sys 1205DFE6DF344DF80FB3AF10F6E9AC77
C:\Windows\System32\DRIVERS\VBoxUSBMon.sys 132DFA8D09CE78952259D1A9B480C335
C:\Windows\System32\drivers\vdrvroot.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\vga.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\vhdmp.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\viaide.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\VMparport.sys 1670F79478DE86C93D4C24FC6239949C
C:\Windows\system32\drivers\vmx86.sys B90695D534C0D122FE22A5785174599C
C:\Windows\System32\drivers\volmgr.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\volsnap.sys DF83AA1C4278E2C0E36C0479C1555A9C
C:\Windows\system32\drivers\vsmraid.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\vwifibus.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\wacompen.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys == & gt; MD5 is legit
C:\Windows\system32\drivers\wd.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys E2C933EDBC389386EBE6D2BA953F43D8
C:\Windows\System32\DRIVERS\wfplwf.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\wimmount.sys == & gt; MD5 is legit
C:\Windows\SysWOW64\drivers\wimmount.sys == & gt; MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D
C:\Windows\system32\drivers\wmiacpi.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\WRkrn.sys F7044D6C6A1BA5EFDEDB491A65FC9F8A
C:\Windows\system32\drivers\ws2ifsl.sys == & gt; MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F
C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659
C:\Windows\System32\DRIVERS\zghsmdm.sys EE804C1C73C0AD7043FDFC3F775BFED9

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 15:31 - 2014-08-24 15:31 - 00000000 ____D () C:\Users\app\Downloads\FRST-OlderVersion
2014-08-24 15:30 - 2014-08-24 15:30 - 00021107 _____ () C:\Users\app\Downloads\Addition.txt
2014-08-24 15:29 - 2014-08-24 15:32 - 00041315 _____ () C:\Users\app\Downloads\FRST.txt
2014-08-24 15:28 - 2014-08-24 15:31 - 02103296 _____ (Farbar) C:\Users\app\Downloads\FRST64.exe
2014-08-24 15:28 - 2014-08-24 15:31 - 00000000 ____D () C:\FRST
2014-08-24 15:15 - 2014-08-24 15:15 - 00245887 _____ () C:\Users\app\Downloads\OTL.zip
2014-08-24 15:15 - 2014-08-24 15:15 - 00012452 _____ () C:\Users\app\Downloads\Extras.zip
2014-08-24 15:12 - 2014-08-24 15:12 - 00077350 _____ () C:\Users\app\Downloads\Extras.Txt
2014-08-24 15:10 - 2014-08-24 15:10 - 02962624 _____ () C:\Users\app\Downloads\OTL.Txt
2014-08-24 12:46 - 2014-08-24 14:42 - 00000000 ____D () C:\Users\app\.gstreamer-0.10
2014-08-24 12:42 - 2014-08-24 15:27 - 00000000 ____D () C:\Users\app\AppData\Local\ChomikBox
2014-08-24 12:41 - 2014-08-24 12:41 - 00000662 _____ () C:\Users\Public\Desktop\ChomikBox.lnk
2014-08-24 12:41 - 2014-08-24 12:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chomikuj.pl
2014-08-24 12:41 - 2014-08-24 12:41 - 00000000 ____D () C:\Program Files (x86)\ChomikBox
2014-08-24 12:40 - 2014-08-24 12:40 - 28266496 ____N () C:\Users\app\Downloads\ChomikBox.msi
2014-08-13 01:58 - 2014-08-13 01:58 - 935003494 ____N () C:\Users\app\Desktop\wsalogs_daniel@appcontrol.pl_2014-08-12-21.56.49.7z
2014-08-12 19:39 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-12 19:39 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-12 19:39 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-12 19:39 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-12 19:39 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-12 19:39 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-12 19:38 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-12 19:38 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-12 19:34 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-12 19:34 - 2014-07-16 05:22 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-12 19:34 - 2014-07-16 04:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-12 19:34 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-12 19:34 - 2014-07-16 04:17 - 03166720 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-12 19:34 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-12 19:34 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-12 19:34 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-12 19:34 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-12 19:34 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-12 19:34 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-12 19:34 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-12 19:34 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-12 19:34 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-12 19:34 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-12 19:34 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-12 19:34 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-12 19:34 - 2014-06-25 04:06 - 14179328 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-12 19:34 - 2014-06-25 03:37 - 12877312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-12 19:34 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-12 19:34 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-12 19:34 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-12 19:34 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-12 19:34 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-12 19:34 - 2014-06-03 04:42 - 01942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-12 19:34 - 2014-06-03 04:42 - 00112576 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-12 19:34 - 2014-06-03 04:13 - 01806336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-12 19:33 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-12 19:33 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-12 19:33 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-12 19:33 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-12 19:33 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-12 19:33 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-12 19:33 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-12 19:33 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-12 19:33 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-12 19:33 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-12 19:33 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-12 19:33 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-12 19:33 - 2014-07-25 15:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-12 19:33 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-12 19:33 - 2014-07-25 15:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-12 19:33 - 2014-07-25 15:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-12 19:33 - 2014-07-25 15:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-12 19:33 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-12 19:33 - 2014-07-25 14:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-12 19:33 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-12 19:33 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-12 19:33 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-12 19:33 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-12 19:33 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-12 19:33 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-12 19:33 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-12 19:33 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-12 19:33 - 2014-07-25 14:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-12 19:33 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-12 19:33 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-12 19:33 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-12 19:33 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-12 19:33 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-12 19:33 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-12 19:33 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-12 19:33 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-12 19:33 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-12 19:33 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-12 19:33 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-12 19:33 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-12 19:33 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-12 19:33 - 2014-07-25 13:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-12 19:33 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-12 19:33 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-12 19:33 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-12 19:33 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-12 19:33 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-12 19:33 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-12 19:33 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-12 19:33 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-12 19:33 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-12 19:33 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-12 19:33 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-12 19:33 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-12 19:33 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-12 19:33 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-12 19:33 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-12 19:33 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-12 19:32 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-12 19:32 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-12 19:27 - 2014-08-12 19:27 - 00000085 _____ () C:\Windows\wininit.ini
2014-08-12 19:19 - 2014-08-21 16:36 - 00003878 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1373390268
2014-08-08 18:40 - 2014-08-08 18:41 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.3
2014-08-08 18:40 - 2014-08-08 18:40 - 00001476 _____ () C:\Users\Public\Desktop\LibreOffice 4.3.lnk
2014-08-08 18:30 - 2014-08-08 18:32 - 223113216 ____N () C:\Users\app\Downloads\LibreOffice_4.3.0_Win_x86.msi
2014-08-07 17:37 - 2014-08-07 17:37 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-08-07 17:37 - 2014-08-07 17:37 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-08-07 17:36 - 2014-08-07 17:36 - 00292184 ____N (Microsoft Corporation) C:\Users\app\Downloads\dxwebsetup.exe
2014-08-07 07:48 - 2014-08-07 07:48 - 00000000 ____D () C:\Users\app\AppData\Local\AMD
2014-08-07 07:45 - 2014-08-07 07:45 - 00000000 ____D () C:\Users\app\AppData\Roaming\ATI
2014-08-07 07:45 - 2014-08-07 07:45 - 00000000 ____D () C:\Users\app\AppData\Local\ATI
2014-08-07 07:45 - 2014-08-07 07:45 - 00000000 ____D () C:\ProgramData\ATI
2014-08-07 07:35 - 2014-08-07 07:35 - 00000000 ____D () C:\Users\app\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-08-07 07:34 - 2014-08-07 07:34 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-07 07:33 - 2014-08-07 07:33 - 00066900 _____ () C:\Windows\SysWOW64\CCCInstall_201408070733591127.log
2014-08-07 07:32 - 2014-08-07 07:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-07 07:30 - 2014-08-07 07:34 - 00000000 ____D () C:\ProgramData\AMD
2014-08-07 07:27 - 2014-08-07 07:27 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-08-07 07:26 - 2014-08-07 07:26 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-08-07 07:24 - 2014-08-07 07:32 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-07 07:24 - 2014-08-07 07:24 - 00000000 ____D () C:\Program Files\ATI
2014-08-07 07:21 - 2014-08-07 07:21 - 00000000 ____D () C:\AMD
2014-08-06 20:20 - 2014-08-06 20:20 - 00059716 _____ () C:\Windows\SysWOW64\CCCInstall_201408062020478098.log
2014-08-06 20:16 - 2014-08-06 20:17 - 06422528 ____N (Advanced Micro Devices) C:\Users\app\Downloads\amdcleanuputility.exe
2014-08-06 20:15 - 2014-08-06 20:17 - 320787824 ____N (AMD Inc.) C:\Users\app\Downloads\amd-catalyst-14.7-rc1-windows-july9.exe
2014-08-06 20:11 - 2014-08-06 20:11 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-08-06 20:10 - 2014-08-12 20:40 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-06 20:10 - 2014-08-12 19:27 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-06 20:08 - 2014-08-06 20:08 - 46525608 ____N (Safer-Networking Ltd. ) C:\Users\app\Downloads\spybot-2.4.exe
2014-08-06 20:06 - 2014-08-06 20:07 - 00017437 _____ () C:\Windows\DirectX.log
2014-08-06 20:04 - 2014-08-12 19:16 - 00000000 ____D () C:\ProgramData\Malwarebytes Anti-Exploit
2014-08-06 20:04 - 2014-08-06 20:04 - 02650408 ____N (Malwarebytes ) C:\Users\app\Downloads\mbae-setup-1.03.1.1220.exe
2014-08-06 20:00 - 2014-08-06 20:00 - 00602112 ____N (OldTimer Tools) C:\Users\app\Downloads\OTL.exe
2014-08-06 19:59 - 2014-08-06 20:00 - 100271992 ____N (Microsoft Corporation) C:\Users\app\Downloads\directx_Jun2010_redist.exe
2014-08-06 19:46 - 2014-08-06 19:46 - 00000000 ____D () C:\Users\app\AppData\Local\SlimWare Utilities Inc
2014-08-06 19:45 - 2014-08-06 19:45 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-08-06 19:44 - 2014-08-06 19:44 - 00940352 ____N (SlimWare Utilities, Inc.) C:\Users\app\Downloads\SlimDrivers-setup.exe
2014-08-06 07:17 - 2014-08-06 07:17 - 246880480 _____ () C:\Windows\MEMORY.DMP
2014-08-06 07:17 - 2014-08-06 07:17 - 01332664 _____ () C:\Windows\Minidump\080614-38891-01.dmp
2014-08-06 07:17 - 2014-08-06 07:17 - 00000000 ____D () C:\Windows\Minidump
2014-08-05 22:39 - 2014-08-05 22:39 - 00066245 _____ () C:\Windows\SysWOW64\CCCInstall_201408052239290014.log
2014-08-05 22:30 - 2014-08-05 22:30 - 00000000 ____D () C:\Program Files\AMD
2014-08-05 22:17 - 2014-08-05 22:17 - 00000000 ____D () C:\Users\app\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Disabled Startup
2014-08-05 21:53 - 2014-08-05 21:53 - 05363840 ____N (Innovative Solutions ) C:\Users\app\Downloads\drivermax.exe
2014-08-05 21:39 - 2014-08-05 22:16 - 00000000 ____D () C:\Program Files (x86)\TweakNow RegCleaner
2014-08-05 21:39 - 2014-08-05 21:39 - 00001100 _____ () C:\Users\Public\Desktop\TweakNow RegCleaner.lnk
2014-08-05 21:39 - 2014-08-05 21:39 - 00000000 ____D () C:\Users\app\AppData\Roaming\TweakNow RegCleaner 2012
2014-08-05 21:39 - 2014-08-05 21:39 - 00000000 ____D () C:\Users\app\AppData\Roaming\TweakNow RegCleaner
2014-08-05 21:39 - 2014-08-05 21:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakNow RegCleaner
2014-08-05 21:34 - 2014-08-05 21:34 - 07222504 ____N (TweakNow.com ) C:\Users\app\Downloads\RegCleaner731.exe
2014-08-05 21:33 - 2014-08-05 21:37 - 207485208 ____N (Advanced Micro Devices, Inc.) C:\Users\app\Downloads\13-9_win7_win8_64_dd_ccc_whql.exe
2014-08-05 21:29 - 2014-08-05 21:29 - 00950504 ____N (DriverIdentifier ) C:\Users\app\Downloads\driveridentifier_setup.exe
2014-08-05 20:27 - 2014-08-05 20:27 - 00000000 ____D () C:\ProgramData\IsolatedStorage
2014-08-05 20:23 - 2014-08-05 20:23 - 00060356 _____ () C:\Windows\SysWOW64\CCCInstall_201408052023310871.log
2014-08-05 20:17 - 2014-08-05 20:17 - 06178581 ____N (Treexy) C:\Users\app\Downloads\driverfusionsetup_[www.programosy.pl].exe
2014-08-04 18:53 - 2014-08-04 18:53 - 00066900 _____ () C:\Windows\SysWOW64\CCCInstall_201408041853457997.log
2014-08-04 18:34 - 2014-08-04 18:34 - 00890744 ____N (AMD) C:\Users\app\Downloads\amddriverdownloader.exe
2014-08-04 05:57 - 2014-08-04 05:57 - 00066040 _____ () C:\Windows\SysWOW64\CCCInstall_201408040557304374.log
2014-08-03 23:33 - 2014-08-24 15:00 - 00000338 _____ () C:\Windows\Tasks\Health-Check-auto.job
2014-08-03 23:33 - 2014-08-19 07:00 - 00000332 _____ () C:\Windows\Tasks\Health-Check.job
2014-08-03 23:33 - 2014-08-18 22:31 - 00000340 _____ () C:\Windows\Tasks\Health-Check-deep.job
2014-08-03 23:33 - 2014-08-03 23:33 - 00002912 _____ () C:\Windows\System32\Tasks\Health-Check-deep
2014-08-03 23:33 - 2014-08-03 23:33 - 00002608 _____ () C:\Windows\System32\Tasks\Health-Check-auto
2014-08-03 23:30 - 2014-08-03 23:30 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-08-03 23:02 - 2014-08-03 23:02 - 04055968 ____N (Tunngle.net GmbH ) C:\Users\app\Downloads\Tunngle_Setup_v4.5.1.4b.exe
2014-08-03 22:31 - 2014-08-03 22:31 - 00000000 ____D () C:\Users\app\AppData\Roaming\ProductData
2014-08-03 22:30 - 2014-08-03 22:30 - 00000000 ____D () C:\Users\app\AppData\Roaming\Apple Computer
2014-08-03 22:28 - 2014-08-03 22:28 - 00002850 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (app)
2014-08-03 22:27 - 2014-08-03 22:28 - 00000000 ____D () C:\ProgramData\IObit
2014-08-03 21:18 - 2014-08-03 21:18 - 00000366 ____N () C:\Users\app\Desktop\Xen-Win7.vnc
2014-08-03 21:03 - 2014-08-12 21:53 - 00532257 ____N () C:\Users\app\Desktop\wsalogs.zip
2014-08-03 20:29 - 2014-08-03 20:30 - 00000000 ____D () C:\Users\app\Desktop\Tor Browser
2014-08-03 20:13 - 2014-08-03 20:13 - 00001010 _____ () C:\Users\Public\Desktop\SRWare Iron.lnk
2014-08-03 20:13 - 2014-08-03 20:13 - 00000000 ____D () C:\Users\app\AppData\Local\Chromium
2014-08-03 20:13 - 2014-08-03 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron
2014-08-03 20:12 - 2014-08-03 20:18 - 00000000 ____D () C:\Program Files (x86)\SRWare Iron
2014-08-03 20:03 - 2014-08-03 20:03 - 00000000 ____N () C:\Users\app\Downloads\bh-setup-ngt.exe
2014-08-03 20:01 - 2014-08-03 20:03 - 42019725 ____N (SRWare ) C:\Users\app\Downloads\srware_iron.exe
2014-08-03 10:19 - 2014-08-03 10:27 - 00000000 ____D () C:\Users\app\Desktop\kopia linuxplcom 03.08.2014
2014-08-03 10:13 - 2014-08-03 10:13 - 06004615 _____ (Tim Kosse) C:\Users\app\Downloads\FileZilla_3.9.0.2_win32-setup.exe
2014-08-03 10:11 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-03 10:11 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-03 10:11 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-03 10:11 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-03 10:10 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-03 10:10 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-03 10:10 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-03 10:10 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-03 10:10 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-03 10:10 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-03 10:10 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-03 10:10 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-03 10:10 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-03 10:10 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-07-31 07:39 - 2014-07-31 07:39 - 00044657 ____N () C:\Users\app\Desktop\aneks.odt
2014-07-31 07:03 - 2014-07-31 07:05 - 00000000 ____D () C:\Users\app\Desktop\umowa pozyczki
2014-07-31 02:37 - 2014-08-24 14:39 - 00003925 _____ () C:\Windows\setupact.log
2014-07-31 02:37 - 2014-07-31 02:37 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-29 21:53 - 2014-08-08 07:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-27 19:41 - 2014-07-27 19:41 - 00000000 ____D () C:\Users\app\Desktop\GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}
2014-07-27 13:38 - 2014-07-27 13:38 - 00000000 ____D () C:\Users\app\Desktop\XS62E001
2014-07-27 12:40 - 2014-07-27 12:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-27 12:40 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-27 12:40 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-27 12:40 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-27 12:40 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-27 12:39 - 2014-07-27 12:40 - 00004564 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-27 00:15 - 2014-07-28 23:29 - 27545479 ____N () C:\Users\app\Desktop\torbrowser-install-3.6.3_pl.exe
2014-07-27 00:10 - 2014-07-27 00:10 - 00000000 ____D () C:\Users\app\Downloads\openSUSE-13.1-DVD-x86_64.iso
2014-07-27 00:10 - 2014-07-27 00:10 - 00000000 ____D () C:\Users\app\Downloads\openSUSE-13.1-DVD-i586.iso
2014-07-27 00:09 - 2014-07-27 00:09 - 00349157 ____N () C:\Users\app\Downloads\openSUSE-13.1-DVD-x86_64.iso.torrent
2014-07-27 00:09 - 2014-07-27 00:09 - 00339151 ____N () C:\Users\app\Downloads\openSUSE-13.1-DVD-i586.iso.torrent
2014-07-27 00:04 - 2014-07-27 00:16 - 764411904 ____N () C:\Users\app\Desktop\ubuntu-12.04.4-alternate-i386.iso
2014-07-26 23:07 - 2014-07-26 23:07 - 00875472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2014-07-26 23:07 - 2014-07-26 23:07 - 00535008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2014-07-26 23:07 - 2014-07-26 23:07 - 00252400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib110.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 15:32 - 2014-08-24 15:29 - 00041315 _____ () C:\Users\app\Downloads\FRST.txt
2014-08-24 15:31 - 2014-08-24 15:31 - 00000000 ____D () C:\Users\app\Downloads\FRST-OlderVersion
2014-08-24 15:31 - 2014-08-24 15:28 - 02103296 _____ (Farbar) C:\Users\app\Downloads\FRST64.exe
2014-08-24 15:31 - 2014-08-24 15:28 - 00000000 ____D () C:\FRST
2014-08-24 15:30 - 2014-08-24 15:30 - 00021107 _____ () C:\Users\app\Downloads\Addition.txt
2014-08-24 15:29 - 2009-07-14 06:45 - 00029136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-24 15:29 - 2009-07-14 06:45 - 00029136 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-24 15:28 - 2014-04-05 11:19 - 00000000 ____D () C:\Users\app\AppData\Roaming\360safe
2014-08-24 15:28 - 2014-02-19 23:02 - 00000000 ____D () C:\ProgramData\WRData
2014-08-24 15:27 - 2014-08-24 12:42 - 00000000 ____D () C:\Users\app\AppData\Local\ChomikBox
2014-08-24 15:25 - 2013-02-04 05:18 - 01619321 _____ () C:\Windows\WindowsUpdate.log
2014-08-24 15:20 - 2013-07-07 23:00 - 00001042 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-24 15:15 - 2014-08-24 15:15 - 00245887 _____ () C:\Users\app\Downloads\OTL.zip
2014-08-24 15:15 - 2014-08-24 15:15 - 00012452 _____ () C:\Users\app\Downloads\Extras.zip
2014-08-24 15:12 - 2014-08-24 15:12 - 00077350 _____ () C:\Users\app\Downloads\Extras.Txt
2014-08-24 15:10 - 2014-08-24 15:10 - 02962624 _____ () C:\Users\app\Downloads\OTL.Txt
2014-08-24 15:02 - 2014-05-02 00:21 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-24 15:00 - 2014-08-03 23:33 - 00000338 _____ () C:\Windows\Tasks\Health-Check-auto.job
2014-08-24 14:59 - 2013-12-26 11:51 - 00000000 ____D () C:\Users\app\AppData\Roaming\Copy
2014-08-24 14:46 - 2014-02-12 00:52 - 00000430 _____ () C:\Windows\Tasks\{915ED9CB-7196-4396-8194-34519CCCA219}.job
2014-08-24 14:46 - 2013-11-01 18:44 - 00000000 ____D () C:\Users\app\AppData\Local\ReadyNASRemote
2014-08-24 14:45 - 2014-06-03 19:25 - 00000000 ____D () C:\Users\app\AppData\Roaming\Raptr
2014-08-24 14:42 - 2014-08-24 12:46 - 00000000 ____D () C:\Users\app\.gstreamer-0.10
2014-08-24 14:41 - 2013-07-07 23:00 - 00001038 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-24 14:40 - 2013-11-11 12:46 - 00000278 _____ () C:\Windows\Tasks\Pulpit.job
2014-08-24 14:40 - 2013-11-11 12:44 - 00000282 _____ () C:\Windows\Tasks\Pobrane.job
2014-08-24 14:40 - 2013-11-11 12:42 - 00000296 _____ () C:\Windows\Tasks\Mojeobrazy.job
2014-08-24 14:40 - 2013-11-11 12:41 - 00000284 _____ () C:\Windows\Tasks\Mojedok.job
2014-08-24 14:40 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-24 14:39 - 2014-07-31 02:37 - 00003925 _____ () C:\Windows\setupact.log
2014-08-24 14:39 - 2014-04-05 11:19 - 00000000 _RSHD () C:\360SANDBOX
2014-08-24 14:39 - 2013-12-25 09:47 - 00000194 _____ () C:\Windows\SysWOW64\PCloudCleanerService.log
2014-08-24 14:39 - 2013-11-13 17:44 - 02369584 _____ () C:\Windows\PFRO.log
2014-08-24 13:09 - 2014-06-10 12:08 - 00000000 ____D () C:\Users\app\Desktop\thun bcp 10-06-2014
2014-08-24 13:08 - 2014-04-20 08:06 - 00000000 ___RD () C:\Users\app\Desktop\Thun Backup
2014-08-24 12:46 - 2013-02-04 05:24 - 00000000 ____D () C:\Users\app
2014-08-24 12:41 - 2014-08-24 12:41 - 00000662 _____ () C:\Users\Public\Desktop\ChomikBox.lnk
2014-08-24 12:41 - 2014-08-24 12:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chomikuj.pl
2014-08-24 12:41 - 2014-08-24 12:41 - 00000000 ____D () C:\Program Files (x86)\ChomikBox
2014-08-24 12:40 - 2014-08-24 12:40 - 28266496 ____N () C:\Users\app\Downloads\ChomikBox.msi
2014-08-24 11:04 - 2009-07-14 06:45 - 00392464 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-21 17:02 - 2014-06-03 19:25 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-08-21 16:36 - 2014-08-12 19:19 - 00003878 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1373390268
2014-08-21 16:36 - 2013-07-09 19:17 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-08-19 07:00 - 2014-08-03 23:33 - 00000332 _____ () C:\Windows\Tasks\Health-Check.job
2014-08-18 22:31 - 2014-08-03 23:33 - 00000340 _____ () C:\Windows\Tasks\Health-Check-deep.job
2014-08-18 21:28 - 2014-04-05 11:19 - 00000000 ____D () C:\ProgramData\360SD
2014-08-18 18:03 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-08-18 07:13 - 2011-04-12 15:21 - 00745778 _____ () C:\Windows\system32\perfh015.dat
2014-08-18 07:13 - 2011-04-12 15:21 - 00158598 _____ () C:\Windows\system32\perfc015.dat
2014-08-18 07:13 - 2009-07-14 07:13 - 01687264 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-15 18:10 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-13 01:58 - 2014-08-13 01:58 - 935003494 ____N () C:\Users\app\Desktop\wsalogs_daniel@appcontrol.pl_2014-08-12-21.56.49.7z
2014-08-12 21:53 - 2014-08-03 21:03 - 00532257 ____N () C:\Users\app\Desktop\wsalogs.zip
2014-08-12 20:40 - 2014-08-06 20:10 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-08-12 19:56 - 2013-07-21 13:18 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-12 19:49 - 2013-02-04 05:53 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-12 19:37 - 2014-05-07 00:48 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-12 19:27 - 2014-08-12 19:27 - 00000085 _____ () C:\Windows\wininit.ini
2014-08-12 19:27 - 2014-08-06 20:10 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-08-12 19:23 - 2014-02-08 19:33 - 00000000 ____D () C:\Program Files (x86)\Innovative Solutions
2014-08-12 19:16 - 2014-08-06 20:04 - 00000000 ____D () C:\ProgramData\Malwarebytes Anti-Exploit
2014-08-12 19:11 - 2009-07-14 07:08 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-10 12:54 - 2013-02-04 07:30 - 00092224 _____ () C:\Users\app\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-08 20:06 - 2013-02-06 07:02 - 00000000 ____D () C:\Users\app\AppData\Roaming\foobar2000
2014-08-08 18:41 - 2014-08-08 18:40 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.3
2014-08-08 18:40 - 2014-08-08 18:40 - 00001476 _____ () C:\Users\Public\Desktop\LibreOffice 4.3.lnk
2014-08-08 18:40 - 2013-09-04 07:25 - 00000000 ____D () C:\Program Files (x86)\LibreOffice 4
2014-08-08 18:32 - 2014-08-08 18:30 - 223113216 ____N () C:\Users\app\Downloads\LibreOffice_4.3.0_Win_x86.msi
2014-08-08 18:20 - 2014-05-22 07:21 - 00001108 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-08-08 18:20 - 2014-05-22 07:21 - 00001096 _____ () C:\Users\Public\Desktop\TeamViewer 9.lnk
2014-08-08 16:39 - 2014-02-19 23:02 - 00154760 _____ (Webroot) C:\Windows\SysWOW64\WRusr.dll
2014-08-08 16:39 - 2014-02-19 23:02 - 00115680 _____ (Webroot) C:\Windows\system32\Drivers\WRkrn.sys
2014-08-08 16:39 - 2014-02-19 23:02 - 00105320 _____ (Webroot) C:\Windows\system32\WRusr.dll
2014-08-08 07:09 - 2014-07-29 21:53 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-08-07 17:38 - 2013-06-20 21:45 - 00000000 ____D () C:\Users\app\AppData\Local\Deployment
2014-08-07 17:37 - 2014-08-07 17:37 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-08-07 17:37 - 2014-08-07 17:37 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-08-07 17:36 - 2014-08-07 17:36 - 00292184 ____N (Microsoft Corporation) C:\Users\app\Downloads\dxwebsetup.exe
2014-08-07 17:02 - 2013-06-20 21:46 - 00000000 ____D () C:\Users\app\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-08-07 07:48 - 2014-08-07 07:48 - 00000000 ____D () C:\Users\app\AppData\Local\AMD
2014-08-07 07:45 - 2014-08-07 07:45 - 00000000 ____D () C:\Users\app\AppData\Roaming\ATI
2014-08-07 07:45 - 2014-08-07 07:45 - 00000000 ____D () C:\Users\app\AppData\Local\ATI
2014-08-07 07:45 - 2014-08-07 07:45 - 00000000 ____D () C:\ProgramData\ATI
2014-08-07 07:35 - 2014-08-07 07:35 - 00000000 ____D () C:\Users\app\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-08-07 07:34 - 2014-08-07 07:34 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-07 07:34 - 2014-08-07 07:30 - 00000000 ____D () C:\ProgramData\AMD
2014-08-07 07:33 - 2014-08-07 07:33 - 00066900 _____ () C:\Windows\SysWOW64\CCCInstall_201408070733591127.log
2014-08-07 07:32 - 2014-08-07 07:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-07 07:32 - 2014-08-07 07:24 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-07 07:27 - 2014-08-07 07:27 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-08-07 07:26 - 2014-08-07 07:26 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-08-07 07:24 - 2014-08-07 07:24 - 00000000 ____D () C:\Program Files\ATI
2014-08-07 07:21 - 2014-08-07 07:21 - 00000000 ____D () C:\AMD
2014-08-07 04:06 - 2014-08-12 19:32 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-12 19:32 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-06 20:20 - 2014-08-06 20:20 - 00059716 _____ () C:\Windows\SysWOW64\CCCInstall_201408062020478098.log
2014-08-06 20:17 - 2014-08-06 20:16 - 06422528 ____N (Advanced Micro Devices) C:\Users\app\Downloads\amdcleanuputility.exe
2014-08-06 20:17 - 2014-08-06 20:15 - 320787824 ____N (AMD Inc.) C:\Users\app\Downloads\amd-catalyst-14.7-rc1-windows-july9.exe
2014-08-06 20:11 - 2014-08-06 20:11 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-08-06 20:08 - 2014-08-06 20:08 - 46525608 ____N (Safer-Networking Ltd. ) C:\Users\app\Downloads\spybot-2.4.exe
2014-08-06 20:07 - 2014-08-06 20:06 - 00017437 _____ () C:\Windows\DirectX.log
2014-08-06 20:04 - 2014-08-06 20:04 - 02650408 ____N (Malwarebytes ) C:\Users\app\Downloads\mbae-setup-1.03.1.1220.exe
2014-08-06 20:00 - 2014-08-06 20:00 - 00602112 ____N (OldTimer Tools) C:\Users\app\Downloads\OTL.exe
2014-08-06 20:00 - 2014-08-06 19:59 - 100271992 ____N (Microsoft Corporation) C:\Users\app\Downloads\directx_Jun2010_redist.exe
2014-08-06 19:46 - 2014-08-06 19:46 - 00000000 ____D () C:\Users\app\AppData\Local\SlimWare Utilities Inc
2014-08-06 19:45 - 2014-08-06 19:45 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-08-06 19:44 - 2014-08-06 19:44 - 00940352 ____N (SlimWare Utilities, Inc.) C:\Users\app\Downloads\SlimDrivers-setup.exe
2014-08-06 07:17 - 2014-08-06 07:17 - 246880480 _____ () C:\Windows\MEMORY.DMP
2014-08-06 07:17 - 2014-08-06 07:17 - 01332664 _____ () C:\Windows\Minidump\080614-38891-01.dmp
2014-08-06 07:17 - 2014-08-06 07:17 - 00000000 ____D () C:\Windows\Minidump
2014-08-05 22:39 - 2014-08-05 22:39 - 00066245 _____ () C:\Windows\SysWOW64\CCCInstall_201408052239290014.log
2014-08-05 22:30 - 2014-08-05 22:30 - 00000000 ____D () C:\Program Files\AMD
2014-08-05 22:23 - 2014-06-03 19:18 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-05 22:17 - 2014-08-05 22:17 - 00000000 ____D () C:\Users\app\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Disabled Startup
2014-08-05 22:16 - 2014-08-05 21:39 - 00000000 ____D () C:\Program Files (x86)\TweakNow RegCleaner
2014-08-05 21:57 - 2014-02-08 19:34 - 00000000 ____D () C:\Users\app\AppData\Local\Innovative Solutions
2014-08-05 21:53 - 2014-08-05 21:53 - 05363840 ____N (Innovative Solutions ) C:\Users\app\Downloads\drivermax.exe
2014-08-05 21:51 - 2014-06-20 20:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox.bak
2014-08-05 21:44 - 2014-06-13 17:03 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-08-05 21:44 - 2013-05-26 01:59 - 00000000 ____D () C:\Users\app\Documents\klucz bank
2014-08-05 21:39 - 2014-08-05 21:39 - 00001100 _____ () C:\Users\Public\Desktop\TweakNow RegCleaner.lnk
2014-08-05 21:39 - 2014-08-05 21:39 - 00000000 ____D () C:\Users\app\AppData\Roaming\TweakNow RegCleaner 2012
2014-08-05 21:39 - 2014-08-05 21:39 - 00000000 ____D () C:\Users\app\AppData\Roaming\TweakNow RegCleaner
2014-08-05 21:39 - 2014-08-05 21:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakNow RegCleaner
2014-08-05 21:37 - 2014-08-05 21:33 - 207485208 ____N (Advanced Micro Devices, Inc.) C:\Users\app\Downloads\13-9_win7_win8_64_dd_ccc_whql.exe
2014-08-05 21:34 - 2014-08-05 21:34 - 07222504 ____N (TweakNow.com ) C:\Users\app\Downloads\RegCleaner731.exe
2014-08-05 21:29 - 2014-08-05 21:29 - 00950504 ____N (DriverIdentifier ) C:\Users\app\Downloads\driveridentifier_setup.exe
2014-08-05 20:51 - 2014-04-26 10:35 - 00000000 ____D () C:\Users\app\AppData\Roaming\IObit
2014-08-05 20:49 - 2013-11-17 18:34 - 00000000 __SHD () C:\#GDATA.Trash.Store#
2014-08-05 20:47 - 2013-06-01 17:46 - 00000000 ____D () C:\ProgramData\Installations
2014-08-05 20:27 - 2014-08-05 20:27 - 00000000 ____D () C:\ProgramData\IsolatedStorage
2014-08-05 20:23 - 2014-08-05 20:23 - 00060356 _____ () C:\Windows\SysWOW64\CCCInstall_201408052023310871.log
2014-08-05 20:17 - 2014-08-05 20:17 - 06178581 ____N (Treexy) C:\Users\app\Downloads\driverfusionsetup_[www.programosy.pl].exe
2014-08-04 18:53 - 2014-08-04 18:53 - 00066900 _____ () C:\Windows\SysWOW64\CCCInstall_201408041853457997.log
2014-08-04 18:34 - 2014-08-04 18:34 - 00890744 ____N (AMD) C:\Users\app\Downloads\amddriverdownloader.exe
2014-08-04 05:57 - 2014-08-04 05:57 - 00066040 _____ () C:\Windows\SysWOW64\CCCInstall_201408040557304374.log
2014-08-03 23:35 - 2014-06-07 03:22 - 00000000 ____D () C:\Program Files (x86)\Free Download Manager
2014-08-03 23:33 - 2014-08-03 23:33 - 00002912 _____ () C:\Windows\System32\Tasks\Health-Check-deep
2014-08-03 23:33 - 2014-08-03 23:33 - 00002608 _____ () C:\Windows\System32\Tasks\Health-Check-auto
2014-08-03 23:33 - 2014-04-27 07:35 - 00002904 _____ () C:\Windows\System32\Tasks\Health-Check
2014-08-03 23:31 - 2014-04-26 10:36 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-08-03 23:30 - 2014-08-03 23:30 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled
2014-08-03 23:02 - 2014-08-03 23:02 - 04055968 ____N (Tunngle.net GmbH ) C:\Users\app\Downloads\Tunngle_Setup_v4.5.1.4b.exe
2014-08-03 22:31 - 2014-08-03 22:31 - 00000000 ____D () C:\Users\app\AppData\Roaming\ProductData
2014-08-03 22:30 - 2014-08-03 22:30 - 00000000 ____D () C:\Users\app\AppData\Roaming\Apple Computer
2014-08-03 22:28 - 2014-08-03 22:28 - 00002850 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (app)
2014-08-03 22:28 - 2014-08-03 22:27 - 00000000 ____D () C:\ProgramData\IObit
2014-08-03 22:03 - 2014-05-30 20:06 - 00000000 ____D () C:\wymiana
2014-08-03 21:18 - 2014-08-03 21:18 - 00000366 ____N () C:\Users\app\Desktop\Xen-Win7.vnc
2014-08-03 21:05 - 2014-03-02 20:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TightVNC
2014-08-03 20:30 - 2014-08-03 20:29 - 00000000 ____D () C:\Users\app\Desktop\Tor Browser
2014-08-03 20:18 - 2014-08-03 20:12 - 00000000 ____D () C:\Program Files (x86)\SRWare Iron
2014-08-03 20:15 - 2014-07-22 17:42 - 00000000 ____D () C:\Program Files (x86)\WinISO Computing
2014-08-03 20:13 - 2014-08-03 20:13 - 00001010 _____ () C:\Users\Public\Desktop\SRWare Iron.lnk
2014-08-03 20:13 - 2014-08-03 20:13 - 00000000 ____D () C:\Users\app\AppData\Local\Chromium
2014-08-03 20:13 - 2014-08-03 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron
2014-08-03 20:03 - 2014-08-03 20:03 - 00000000 ____N () C:\Users\app\Downloads\bh-setup-ngt.exe
2014-08-03 20:03 - 2014-08-03 20:01 - 42019725 ____N (SRWare ) C:\Users\app\Downloads\srware_iron.exe
2014-08-03 11:18 - 2013-02-06 06:55 - 00000000 ____D () C:\Users\app\AppData\Roaming\FileZilla
2014-08-03 10:27 - 2014-08-03 10:19 - 00000000 ____D () C:\Users\app\Desktop\kopia linuxplcom 03.08.2014
2014-08-03 10:14 - 2014-05-11 12:58 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
2014-08-03 10:14 - 2013-05-05 11:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2014-08-03 10:13 - 2014-08-03 10:13 - 06004615 _____ (Tim Kosse) C:\Users\app\Downloads\FileZilla_3.9.0.2_win32-setup.exe
2014-08-03 10:13 - 2014-04-06 00:55 - 00000000 __SHD () C:\360Rec
2014-08-01 07:08 - 2013-02-06 06:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-08-01 01:41 - 2014-08-12 19:33 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 01:16 - 2014-08-12 19:33 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-31 07:39 - 2014-07-31 07:39 - 00044657 ____N () C:\Users\app\Desktop\aneks.odt
2014-07-31 07:05 - 2014-07-31 07:03 - 00000000 ____D () C:\Users\app\Desktop\umowa pozyczki
2014-07-31 02:37 - 2014-07-31 02:37 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-31 02:37 - 2013-06-30 17:55 - 00002562 _____ () C:\Windows\diagwrn.xml
2014-07-31 02:37 - 2013-06-30 17:55 - 00001908 _____ () C:\Windows\diagerr.xml
2014-07-29 07:25 - 2014-01-13 03:14 - 00001825 ____N () C:\Users\app\Desktop\Klucze Domówka WSA Broncol 180dni.txt
2014-07-28 23:29 - 2014-07-27 00:15 - 27545479 ____N () C:\Users\app\Desktop\torbrowser-install-3.6.3_pl.exe
2014-07-28 20:38 - 2014-03-02 13:42 - 00000000 ____D () C:\Users\app\Desktop\aplikacje na serwer
2014-07-27 19:41 - 2014-07-27 19:41 - 00000000 ____D () C:\Users\app\Desktop\GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}
2014-07-27 14:46 - 2014-05-17 19:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix
2014-07-27 13:38 - 2014-07-27 13:38 - 00000000 ____D () C:\Users\app\Desktop\XS62E001
2014-07-27 12:40 - 2014-07-27 12:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-27 12:40 - 2014-07-27 12:39 - 00004564 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-27 12:40 - 2014-02-20 00:39 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-27 08:37 - 2013-12-25 04:11 - 00000000 ____D () C:\Program Files\NetWorx
2014-07-27 00:16 - 2014-07-27 00:04 - 764411904 ____N () C:\Users\app\Desktop\ubuntu-12.04.4-alternate-i386.iso
2014-07-27 00:10 - 2014-07-27 00:10 - 00000000 ____D () C:\Users\app\Downloads\openSUSE-13.1-DVD-x86_64.iso
2014-07-27 00:10 - 2014-07-27 00:10 - 00000000 ____D () C:\Users\app\Downloads\openSUSE-13.1-DVD-i586.iso
2014-07-27 00:09 - 2014-07-27 00:09 - 00349157 ____N () C:\Users\app\Downloads\openSUSE-13.1-DVD-x86_64.iso.torrent
2014-07-27 00:09 - 2014-07-27 00:09 - 00339151 ____N () C:\Users\app\Downloads\openSUSE-13.1-DVD-i586.iso.torrent
2014-07-26 23:07 - 2014-07-26 23:07 - 00875472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr110.dll
2014-07-26 23:07 - 2014-07-26 23:07 - 00535008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp110.dll
2014-07-26 23:07 - 2014-07-26 23:07 - 00252400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vccorlib110.dll
2014-07-26 21:27 - 2013-02-06 07:10 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-26 21:27 - 2013-02-06 07:10 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-25 16:52 - 2014-08-12 19:33 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-25 16:02 - 2014-08-12 19:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-25 16:01 - 2014-08-12 19:33 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-25 15:51 - 2014-08-12 19:33 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-25 15:30 - 2014-08-12 19:33 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-25 15:28 - 2014-08-12 19:33 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-25 15:28 - 2014-08-12 19:33 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-25 15:25 - 2014-08-12 19:33 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-25 15:25 - 2014-08-12 19:33 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-25 15:11 - 2014-08-12 19:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-25 15:10 - 2014-08-12 19:33 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-25 15:04 - 2014-08-12 19:33 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-25 15:03 - 2014-08-12 19:33 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-25 15:00 - 2014-08-12 19:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-25 15:00 - 2014-08-12 19:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-25 14:59 - 2014-08-12 19:33 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-25 14:47 - 2014-08-12 19:33 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-25 14:40 - 2014-08-12 19:33 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-25 14:34 - 2014-08-12 19:33 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-25 14:34 - 2014-08-12 19:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-25 14:33 - 2014-08-12 19:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-25 14:30 - 2014-08-12 19:33 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-25 14:28 - 2014-08-12 19:33 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-25 14:28 - 2014-08-12 19:33 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-25 14:21 - 2014-08-12 19:33 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-25 14:19 - 2014-08-12 19:33 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-25 14:18 - 2014-08-12 19:33 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-25 14:17 - 2014-08-12 19:33 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-25 14:17 - 2014-08-12 19:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-25 14:12 - 2014-08-12 19:33 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-25 14:10 - 2014-08-12 19:33 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-25 14:10 - 2014-08-12 19:33 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-25 14:08 - 2014-08-12 19:33 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-25 14:06 - 2014-08-12 19:33 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-25 13:52 - 2014-08-12 19:33 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-25 13:47 - 2014-08-12 19:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-25 13:43 - 2014-08-12 19:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 13:42 - 2014-08-12 19:33 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-25 13:39 - 2014-08-12 19:33 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-25 13:39 - 2014-08-12 19:33 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-25 13:36 - 2014-08-12 19:33 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-25 13:34 - 2014-08-12 19:33 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-25 13:29 - 2014-08-12 19:33 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-25 13:23 - 2014-08-12 19:33 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-25 13:13 - 2014-08-12 19:33 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-25 13:07 - 2014-08-12 19:33 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-25 13:07 - 2014-08-12 19:33 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-25 13:03 - 2014-08-12 19:33 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-25 12:52 - 2014-08-12 19:33 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-25 12:26 - 2014-08-12 19:33 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-25 12:17 - 2014-08-12 19:33 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-25 12:09 - 2014-08-12 19:33 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-25 12:05 - 2014-08-12 19:33 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-25 12:00 - 2014-08-12 19:33 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-25 00:09 - 2013-02-06 07:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

Files to move or delete:
====================
C:\Windows\Tasks\{915ED9CB-7196-4396-8194-34519CCCA219}.job


Some content of TEMP:
====================
C:\Users\app\AppData\Local\Temp\AMDCleanupUtility.exe
C:\Users\app\AppData\Local\Temp\Cleanup.dll
C:\Users\app\AppData\Local\Temp\DirectX11_instalator_sciagnij.exe
C:\Users\app\AppData\Local\Temp\DSETUP.dll
C:\Users\app\AppData\Local\Temp\dsetup32.dll
C:\Users\app\AppData\Local\Temp\DXSETUP.exe
C:\Users\app\AppData\Local\Temp\msvcm80.dll
C:\Users\app\AppData\Local\Temp\msvcp80.dll
C:\Users\app\AppData\Local\Temp\msvcr80.dll
C:\Users\app\AppData\Local\Temp\raptrpatch.exe
C:\Users\app\AppData\Local\Temp\raptr_stub.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe = & gt; File is digitally signed
C:\Windows\System32\wininit.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\wininit.exe = & gt; File is digitally signed
C:\Windows\explorer.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\explorer.exe = & gt; File is digitally signed
C:\Windows\System32\svchost.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\svchost.exe = & gt; File is digitally signed
C:\Windows\System32\services.exe = & gt; File is digitally signed
C:\Windows\System32\User32.dll = & gt; File is digitally signed
C:\Windows\SysWOW64\User32.dll = & gt; File is digitally signed
C:\Windows\System32\userinit.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\userinit.exe = & gt; File is digitally signed
C:\Windows\System32\rpcss.dll = & gt; File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys = & gt; File is digitally signed

==================== BCD ================================

Menedľer rozruchu systemu Windows
---------------------------------
Identyfikator {bootmgr}
device partition=\Device\HarddiskVolume2
description Windows Boot Manager
locale pl-PL
inherit {globalsettings}
default {current}
resumeobject {fa92d496-6e78-11e2-b716-bd18ddb4d5b8}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Moduˆ ˆadujĄcy rozruchu systemu Windows
---------------------------------------
Identyfikator {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale pl-PL
inherit {bootloadersettings}
recoverysequence {fa92d498-6e78-11e2-b716-bd18ddb4d5b8}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {fa92d496-6e78-11e2-b716-bd18ddb4d5b8}
nx OptOut

Moduˆ ˆadujĄcy rozruchu systemu Windows
---------------------------------------
Identyfikator {fa92d498-6e78-11e2-b716-bd18ddb4d5b8}
device ramdisk=[C:]\Recovery\fa92d498-6e78-11e2-b716-bd18ddb4d5b8\Winre.wim,{fa92d499-6e78-11e2-b716-bd18ddb4d5b8}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\fa92d498-6e78-11e2-b716-bd18ddb4d5b8\Winre.wim,{fa92d499-6e78-11e2-b716-bd18ddb4d5b8}
systemroot \windows
nx OptIn
winpe Yes

Wznawianie ze stanu hibernacji
------------------------------
Identyfikator {fa92d496-6e78-11e2-b716-bd18ddb4d5b8}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale pl-PL
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No

Moduˆ testujĄcy pami(C)+ systemu Windows
--------------------------------------
Identyfikator {memdiag}
device partition=\Device\HarddiskVolume2
path \boot\memtest.exe
description Diagnostyka pami(C)ci systemu Windows
locale pl-PL
inherit {globalsettings}
badmemoryaccess Yes

Ustawienia usˆug EMS
--------------------
Identyfikator {emssettings}
bootems Yes

Ustawienia debugera
-------------------
Identyfikator {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200

Uszkodzenia pami(C)ci RAM
-----------------------
Identyfikator {badmemory}

Ustawienia globalne
-------------------
Identyfikator {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

Ustawienia moduˆu ˆadujĄcego rozruchu
-------------------------------------
Identyfikator {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

Ustawienia funkcji hypervisor
-----------------------------
Identyfikator {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

Ustawienia moduˆu ˆadujĄcego wznawiania
---------------------------------------
Identyfikator {resumeloadersettings}
inherit {globalsettings}

Opcje urzĄdzenia
----------------
Identyfikator {fa92d499-6e78-11e2-b716-bd18ddb4d5b8}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\fa92d498-6e78-11e2-b716-bd18ddb4d5b8\boot.sdi



LastRegBack: 2014-08-18 17:56

==================== End Of Log ============================