Nie dałeś loga Additon.txt Reset Firefoxa: Pomoc-Informacje dla pomocy technicznej-Zresetuj program Firefox Reset I.E. http://windows.microsoft.com/pl-PL/windows7/Reset-Internet-Explorer-settings-in-Internet-Explorer-9 W Operze musisz usunąć ręcznie bo FRST nie pokazuje Opery. Udało mi się usunąć z Firefox'a i Opery, natomiast w IE cały czas siedzi. Wcześniej nie zaznczyłem w FRST 'Addition.txt'. Wstawiam zatem nowe logi.
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by Adam (administrator) on ADAM on 19-09-2014 14:35:10
Running from C:\Users\Adam\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Foxit Corporation) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Opera Software) C:\Program Files (x86)\Opera x64\opera.exe
(Opera Software) C:\Program Files (x86)\Opera x64\pluginwrapper\opera_plugin_wrapper.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] = & gt; C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [Autodesk Sync] = & gt; C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [418280 2012-07-25] (Autodesk, Inc.)
HKLM-x32\...\Run: [StartCCC] = & gt; C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642304 2013-04-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] = & gt; C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] = & gt; C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKU\.DEFAULT\...\RunOnce: [SPReview] = & gt; C:\Windows\System32\SPReview\SPReview.exe [301568 2014-01-01] (Microsoft Corporation)
HKU\S-1-5-21-3911258985-4238780220-1332891320-1000\...\MountPoints2: {aa1512ed-7229-11e3-8055-806e6f6e6963} - E:\autorun.exe
ShellIconOverlayIdentifiers: AutoCAD Digital Signatures Icon Overlay Handler - & gt; {36A21736-36C2-4C11-8ACB-D4136F2B57BD} = & gt; C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
BHO-x32: Java(tm) Plug-In SSV Helper - & gt; {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - & gt; C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - & gt; {DBC80044-A445-435b-BC74-9C25C1C588A9} - & gt; C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
FireFox:
========
FF ProfilePath: C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\h1xtwkh2.default-1411128580372
FF Plugin: @adobe.com/FlashPlayer - & gt; C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @microsoft.com/GENUINE - & gt; disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - & gt; C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - & gt; C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 - & gt; C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 - & gt; C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - & gt; disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - & gt; C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR Profile: C:\Users\Adam\AppData\Local\Google\Chrome\User Data\Default
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)
S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242728 2014-07-01] (Foxit Corporation)
S2 SwOffScheduler; C:\Program Files\Airytec\Switch Off\swoff.exe [173056 2011-05-28] (Airytec) [File not signed]
S2 SwOffWeb; C:\Program Files\Airytec\Switch Off\swoff.exe [173056 2011-05-28] (Airytec) [File not signed]
R2 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-09-28] (Ulead Systems, Inc.) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 Aspi32; C:\Windows\SysWOW64\drivers\aspi32.sys [16877 2002-07-17] (Adaptec) [File not signed]
S3 AV88BASE; C:\Windows\System32\drivers\av88base.sys [607744 2007-07-13] (Conexant, Inc.)
R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx64.sys [34512 2014-07-14] ()
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-07-19] (Duplex Secure Ltd.)
S3 StkCMini; C:\Windows\System32\Drivers\StkCMini.sys [1917576 2010-06-07] (Syntek)
U3 aycc73an; C:\Windows\System32\Drivers\aycc73an.sys [0 ] (Advanced Micro Devices)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-19 14:35 - 2014-09-19 14:35 - 00008412 _____ () C:\Users\Adam\Desktop\FRST.txt
2014-09-19 14:26 - 2014-09-19 14:26 - 00001885 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 12.17 1863.lnk
2014-09-19 14:26 - 2014-09-19 14:26 - 00001873 _____ () C:\Users\Public\Desktop\Opera 12.17 1863.lnk
2014-09-19 14:26 - 2014-09-19 14:26 - 00000000 ____D () C:\Program Files (x86) (x86)
2014-09-19 14:22 - 2014-09-19 14:26 - 00000000 ____D () C:\Program Files (x86)\Opera x64
2014-09-19 14:22 - 2014-09-19 14:22 - 00001831 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-09-19 14:22 - 2014-09-19 14:22 - 00000000 ____D () C:\Program Files\Opera x64
2014-09-19 14:19 - 2014-09-19 14:20 - 14491632 _____ (Opera Software ASA) C:\Users\Adam\Desktop\Opera_1217_int_Setup_x64.exe
2014-09-19 14:15 - 2014-09-19 14:15 - 00092958 _____ () C:\Users\Adam\Desktop\zakladki 19 09 14.adr
2014-09-19 14:14 - 2014-09-19 11:59 - 00035824 _____ () C:\Users\Adam\Desktop\wand.dat
2014-09-19 14:14 - 2014-08-16 21:16 - 00004317 _____ () C:\Users\Adam\Desktop\speeddial.ini
2014-09-19 14:09 - 2014-09-19 14:09 - 00000000 ____D () C:\Users\Adam\Desktop\Stare dane programu Firefox
2014-09-19 13:54 - 2014-09-19 13:54 - 00000000 __SHD () C:\Users\Adam\AppData\Local\EmieUserList
2014-09-19 13:54 - 2014-09-19 13:54 - 00000000 __SHD () C:\Users\Adam\AppData\Local\EmieSiteList
2014-09-19 12:57 - 2014-09-19 12:57 - 02105856 _____ (Farbar) C:\Users\Adam\Desktop\FRST64.exe
2014-09-19 12:57 - 2014-09-19 12:57 - 00000000 ____D () C:\Users\Adam\Desktop\FRST-OlderVersion
2014-09-19 12:56 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-09-19 12:55 - 2014-09-19 12:55 - 01373475 _____ () C:\Users\Adam\Desktop\AdwCleaner.exe
2014-09-18 22:09 - 2014-09-18 22:32 - 00000000 ____D () C:\Users\Adam\AppData\Roaming\VOPackage
2014-09-13 17:58 - 2014-09-13 17:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-08 17:20 - 2014-09-08 17:30 - 00000000 ____D () C:\ProgramData\INFO-TECH
2014-09-08 17:20 - 2014-09-08 17:25 - 00000000 ____D () C:\Program Files (x86)\Workshop
2014-09-08 17:20 - 2014-09-08 17:20 - 00000989 _____ () C:\Users\Public\Desktop\INFO-TECH.lnk
2014-09-08 17:20 - 2014-09-08 17:20 - 00000201 _____ () C:\Windows\ODBCINST.INI
2014-09-08 17:20 - 2014-09-08 17:20 - 00000037 _____ () C:\Windows\Crypkey.ini
2014-09-08 17:20 - 2014-09-08 17:20 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-09-08 17:20 - 2014-09-08 17:20 - 00000000 ____D () C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\INFO-TECH
2014-09-08 17:20 - 2004-07-30 02:35 - 00031654 _____ () C:\Windows\SysWOW64\Ckldrv.sys
2014-09-08 17:20 - 2004-04-16 00:07 - 00073728 _____ (CrypKey (Canada) Ltd.) C:\Windows\SysWOW64\Crypserv.exe
2014-09-08 17:20 - 2003-09-11 22:42 - 00016384 _____ () C:\Windows\SysWOW64\FileOps.exe
2014-09-08 17:20 - 2002-10-23 09:52 - 00042752 _____ () C:\Windows\SysWOW64\WHIP.GID
2014-09-08 17:20 - 1999-10-14 16:22 - 00401462 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.00A
2014-09-08 17:20 - 1999-10-14 16:22 - 00194341 _____ () C:\Windows\SysWOW64\WHIP.HLP
2014-09-08 17:20 - 1999-10-14 16:22 - 00077878 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.00B
2014-09-08 17:20 - 1999-10-14 16:22 - 00040094 _____ () C:\Windows\SysWOW64\whipcrak.wav
2014-09-08 17:20 - 1999-10-14 16:22 - 00011067 _____ () C:\Windows\SysWOW64\whip.CNT
2014-09-08 17:20 - 1999-10-14 16:16 - 00978944 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\WHIP.OCX
2014-09-08 17:20 - 1999-10-14 15:58 - 00237568 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\whiptkw.dll
2014-09-08 17:20 - 1999-10-14 15:58 - 00090112 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\gdifontw.hdi
2014-09-08 17:20 - 1999-10-14 15:58 - 00061440 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\gdiw.hdi
2014-09-08 17:20 - 1999-10-14 15:54 - 00106496 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\dllongw.dll
2014-09-08 17:20 - 1999-10-14 15:51 - 00024576 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\texturew.dll
2014-09-08 17:20 - 1999-10-14 15:50 - 00028672 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\mtlw.dll
2014-09-08 17:20 - 1999-10-14 15:49 - 00278528 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\szbw.hdi
2014-09-08 17:20 - 1999-10-14 15:41 - 00499712 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\heidiw.dll
2014-09-08 17:20 - 1999-10-14 15:41 - 00040960 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\rblastw.hdi
2014-09-08 17:20 - 1999-09-03 15:58 - 00995383 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.00F
2014-09-08 17:20 - 1999-07-20 14:16 - 00078336 _____ () C:\Windows\SysWOW64\dbjavio6.dll
2014-09-08 17:20 - 1999-07-20 14:10 - 00077312 _____ () C:\Windows\SysWOW64\dbauth6.dll
2014-09-08 17:20 - 1999-06-18 23:49 - 00165888 _____ (Kenonic Controls) C:\Windows\Ckconfig.exe
2014-09-08 17:20 - 1999-03-07 23:00 - 00598288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.010
2014-09-08 17:20 - 1999-03-07 23:00 - 00164112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.011
2014-09-08 17:20 - 1999-02-11 01:33 - 00266293 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.00D
2014-09-08 17:20 - 1998-08-19 15:24 - 01124864 _____ (Home Page Software Inc. -- webster@homepagesw.com) C:\Windows\SysWOW64\WEBPRO32.OCX
2014-09-08 17:20 - 1998-06-08 08:19 - 00446976 _____ (Autodesk, Inc.) C:\Windows\SysWOW64\heidi3.dll
2014-09-08 17:20 - 1997-02-24 16:41 - 00210944 _____ () C:\Windows\SysWOW64\MSVCRT10.DLL
2014-09-08 17:20 - 1997-02-24 15:41 - 00018321 _____ () C:\Windows\SysWOW64\odbcinst.hlp
2014-09-08 17:20 - 1997-02-24 15:41 - 00000544 _____ () C:\Windows\SysWOW64\odbcinst.cnt
2014-09-08 17:20 - 1997-02-13 00:00 - 00326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.00C
2014-09-08 17:20 - 1997-02-13 00:00 - 00253952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\temp.00E
2014-09-08 17:20 - 1996-05-03 19:21 - 00027648 ____R () C:\Windows\Setup_ck.exe
2014-09-08 17:20 - 1996-05-03 17:36 - 00018432 _____ () C:\Windows\Setup_ck.dll
2014-09-08 17:20 - 1995-07-04 20:33 - 00011776 _____ () C:\Windows\Ckrfresh.exe
2014-09-08 08:59 - 2014-09-08 08:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Cleaner 3
2014-09-07 20:08 - 2014-09-07 22:30 - 00000000 ____D () C:\Program Files (x86)\SSC Service Utility
2014-08-28 11:35 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 11:35 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-28 11:35 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-25 11:40 - 2014-09-19 14:35 - 00000000 ____D () C:\FRST
2014-08-25 10:59 - 2014-08-25 10:59 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-08-23 12:22 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-08-23 12:22 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-08-23 12:22 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-08-23 12:22 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-08-22 16:20 - 2014-08-22 16:20 - 00000000 ____D () C:\Users\Adam\Desktop\autocad
2014-08-21 18:57 - 2014-08-21 18:57 - 00000000 ____D () C:\Users\Adam\AppData\Roaming\Softland
2014-08-21 18:57 - 2014-08-21 18:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\doPDF 7
2014-08-21 18:57 - 2014-08-21 18:57 - 00000000 ____D () C:\Program Files\Softland
2014-08-21 18:57 - 2013-05-09 10:54 - 00025920 _____ (Softland) C:\Windows\system32\dopdfmn7.dll
2014-08-21 18:57 - 2013-05-09 10:54 - 00021312 _____ (Softland) C:\Windows\system32\dopdfmi7.dll
2014-08-21 18:57 - 2010-11-25 12:17 - 00007549 _____ () C:\Windows\system32\dopdf7.ctm
2014-08-21 18:57 - 2010-02-05 15:00 - 01700352 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2014-08-21 17:59 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-08-21 17:59 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-08-21 17:59 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-08-21 17:59 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-08-21 17:59 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-08-21 17:59 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-08-21 17:59 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-08-21 17:59 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-08-21 17:59 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-08-21 17:59 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-08-21 17:59 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-08-21 17:59 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-08-21 17:59 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-08-21 17:59 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-08-21 17:59 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-08-21 17:59 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-08-21 17:50 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-08-21 17:50 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-08-21 17:50 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-08-21 17:50 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-08-21 17:41 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-21 17:41 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-21 17:41 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-21 17:41 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-21 17:41 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-21 17:41 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-21 17:40 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-21 17:40 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-21 17:39 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-08-21 17:39 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-08-21 17:39 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-08-21 17:39 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-08-21 17:39 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-08-21 17:39 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-08-21 17:39 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-08-21 17:39 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-08-21 17:39 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-08-21 17:39 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-08-21 17:39 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-08-21 17:39 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-08-21 17:39 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-08-21 17:39 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-08-21 17:39 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-08-21 17:39 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-08-21 17:39 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-08-21 17:39 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-08-21 17:39 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-08-21 17:39 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-08-21 17:39 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-08-21 17:39 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-08-21 17:39 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-08-21 17:39 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-08-21 17:39 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-08-21 17:39 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-08-21 17:39 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-08-21 17:39 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-08-21 17:38 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-21 17:38 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-21 17:38 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-21 17:38 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-21 17:38 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-08-21 17:38 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-08-21 17:38 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-21 17:38 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-21 17:38 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-21 17:38 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-21 17:38 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-21 17:38 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-21 17:38 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-21 17:38 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-21 17:38 - 2014-05-30 10:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-08-21 17:38 - 2014-05-30 10:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-08-21 17:38 - 2014-05-30 10:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-08-21 17:38 - 2014-05-30 10:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-08-21 17:38 - 2014-05-30 10:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-08-21 17:38 - 2014-05-30 10:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-08-21 17:38 - 2014-05-30 10:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-08-21 17:38 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-08-21 17:38 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-08-21 17:38 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-08-21 17:38 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-08-21 17:38 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-08-21 17:38 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-08-21 17:38 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-08-21 17:38 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-08-21 17:38 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-08-21 17:38 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-08-21 17:38 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-08-21 17:38 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-08-21 17:38 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-08-21 17:38 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-08-21 17:38 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-08-21 17:38 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-08-21 17:38 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-08-21 17:38 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-08-21 17:38 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-08-21 17:38 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-08-21 17:38 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-08-21 17:38 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-08-21 17:38 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-08-21 17:38 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-08-21 17:38 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-08-21 17:38 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-08-21 17:38 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-08-21 17:38 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-08-21 17:38 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-08-21 17:38 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-08-21 17:38 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-08-21 17:38 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-08-21 17:38 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-08-21 17:38 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-08-21 17:38 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-08-21 17:37 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-21 17:37 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-21 17:37 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-21 17:37 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-21 17:37 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-21 17:37 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-21 17:37 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-21 17:37 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-21 17:37 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-21 17:37 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-21 17:37 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-21 17:37 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-21 17:37 - 2014-07-25 15:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-21 17:37 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-21 17:37 - 2014-07-25 15:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-21 17:37 - 2014-07-25 15:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-21 17:37 - 2014-07-25 15:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-21 17:37 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-21 17:37 - 2014-07-25 14:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-21 17:37 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-21 17:37 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-21 17:37 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-21 17:37 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-21 17:37 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-21 17:37 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-21 17:37 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-21 17:37 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-21 17:37 - 2014-07-25 14:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-21 17:37 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-21 17:37 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-21 17:37 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-21 17:37 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-21 17:37 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-21 17:37 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-21 17:37 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-21 17:37 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-21 17:37 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-21 17:37 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-21 17:37 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-21 17:37 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-21 17:37 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-21 17:37 - 2014-07-25 13:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-21 17:37 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-21 17:37 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-21 17:37 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-21 17:37 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-21 17:37 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-21 17:37 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-21 17:37 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-21 17:37 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-21 17:37 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-21 17:37 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-21 17:37 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-21 17:37 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-21 17:37 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-21 17:37 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-21 17:37 - 2014-06-05 16:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-08-21 17:37 - 2014-06-05 16:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-08-21 17:37 - 2014-06-05 16:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-08-21 17:37 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-08-21 17:37 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-08-21 17:37 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-08-21 17:37 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-08-21 17:37 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-08-21 17:37 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-08-21 17:32 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-21 17:32 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-21 16:35 - 2014-08-21 17:11 - 00000356 _____ () C:\Users\Adam\Documents\acad.err
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-19 14:35 - 2014-09-19 14:35 - 00008412 _____ () C:\Users\Adam\Desktop\FRST.txt
2014-09-19 14:35 - 2014-08-25 11:40 - 00000000 ____D () C:\FRST
2014-09-19 14:32 - 2009-07-14 19:55 - 00740422 _____ () C:\Windows\system32\perfh015.dat
2014-09-19 14:32 - 2009-07-14 19:55 - 00155996 _____ () C:\Windows\system32\perfc015.dat
2014-09-19 14:32 - 2009-07-14 07:13 - 01670518 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-19 14:31 - 2013-12-31 16:49 - 01751451 _____ () C:\Windows\WindowsUpdate.log
2014-09-19 14:29 - 2013-12-31 19:43 - 00000000 ____D () C:\Users\Adam\AppData\Roaming\Opera
2014-09-19 14:27 - 2014-03-19 09:09 - 00024996 _____ () C:\Windows\setupact.log
2014-09-19 14:27 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-19 14:26 - 2014-09-19 14:26 - 00001885 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 12.17 1863.lnk
2014-09-19 14:26 - 2014-09-19 14:26 - 00001873 _____ () C:\Users\Public\Desktop\Opera 12.17 1863.lnk
2014-09-19 14:26 - 2014-09-19 14:26 - 00000000 ____D () C:\Program Files (x86) (x86)
2014-09-19 14:26 - 2014-09-19 14:22 - 00000000 ____D () C:\Program Files (x86)\Opera x64
2014-09-19 14:22 - 2014-09-19 14:22 - 00001831 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-09-19 14:22 - 2014-09-19 14:22 - 00000000 ____D () C:\Program Files\Opera x64
2014-09-19 14:22 - 2013-12-31 19:43 - 00000000 ____D () C:\Users\Adam\AppData\Local\Opera
2014-09-19 14:21 - 2013-12-31 19:43 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-09-19 14:20 - 2014-09-19 14:19 - 14491632 _____ (Opera Software ASA) C:\Users\Adam\Desktop\Opera_1217_int_Setup_x64.exe
2014-09-19 14:15 - 2014-09-19 14:15 - 00092958 _____ () C:\Users\Adam\Desktop\zakladki 19 09 14.adr
2014-09-19 14:09 - 2014-09-19 14:09 - 00000000 ____D () C:\Users\Adam\Desktop\Stare dane programu Firefox
2014-09-19 13:54 - 2014-09-19 13:54 - 00000000 __SHD () C:\Users\Adam\AppData\Local\EmieUserList
2014-09-19 13:54 - 2014-09-19 13:54 - 00000000 __SHD () C:\Users\Adam\AppData\Local\EmieSiteList
2014-09-19 13:49 - 2014-01-01 22:35 - 00526828 _____ () C:\Windows\PFRO.log
2014-09-19 12:57 - 2014-09-19 12:57 - 02105856 _____ (Farbar) C:\Users\Adam\Desktop\FRST64.exe
2014-09-19 12:57 - 2014-09-19 12:57 - 00000000 ____D () C:\Users\Adam\Desktop\FRST-OlderVersion
2014-09-19 12:55 - 2014-09-19 12:55 - 01373475 _____ () C:\Users\Adam\Desktop\AdwCleaner.exe
2014-09-19 11:59 - 2014-09-19 14:14 - 00035824 _____ () C:\Users\Adam\Desktop\wand.dat
2014-09-19 10:32 - 2014-07-04 19:31 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-19 10:30 - 2014-05-20 21:00 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-09-18 22:32 - 2014-09-18 22:09 - 00000000 ____D () C:\Users\Adam\AppData\Roaming\VOPackage
2014-09-18 22:32 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-09-18 22:30 - 2014-07-18 17:41 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-09-18 22:30 - 2009-07-14 04:34 - 00000505 _____ () C:\Windows\win.ini
2014-09-18 22:08 - 2014-05-20 21:00 - 00001379 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-18 22:08 - 2013-12-31 16:49 - 00001653 _____ () C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-18 14:06 - 2013-12-31 19:36 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-18 14:06 - 2013-12-31 19:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-18 13:36 - 2009-07-14 06:45 - 00010128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-18 13:36 - 2009-07-14 06:45 - 00010128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-15 17:16 - 2014-01-02 17:56 - 00000000 ____D () C:\Users\Adam\AppData\Roaming\Skype
2014-09-14 14:12 - 2014-07-21 17:42 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-13 17:58 - 2014-09-13 17:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-11 23:13 - 2014-03-12 21:07 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-09-11 23:13 - 2014-03-12 21:07 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-09-11 16:14 - 2014-03-12 21:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-09-08 18:06 - 2014-01-03 22:30 - 00000000 ____D () C:\Users\Adam\AppData\Local\cache
2014-09-08 17:30 - 2014-09-08 17:20 - 00000000 ____D () C:\ProgramData\INFO-TECH
2014-09-08 17:25 - 2014-09-08 17:20 - 00000000 ____D () C:\Program Files (x86)\Workshop
2014-09-08 17:24 - 2014-01-01 22:46 - 00000842 _____ () C:\Windows\ODBC.INI
2014-09-08 17:20 - 2014-09-08 17:20 - 00000989 _____ () C:\Users\Public\Desktop\INFO-TECH.lnk
2014-09-08 17:20 - 2014-09-08 17:20 - 00000201 _____ () C:\Windows\ODBCINST.INI
2014-09-08 17:20 - 2014-09-08 17:20 - 00000037 _____ () C:\Windows\Crypkey.ini
2014-09-08 17:20 - 2014-09-08 17:20 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-09-08 17:20 - 2014-09-08 17:20 - 00000000 ____D () C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\INFO-TECH
2014-09-08 08:59 - 2014-09-08 08:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Cleaner 3
2014-09-07 22:32 - 2014-01-01 19:26 - 00000000 ____D () C:\Program Files (x86)\Epson Software
2014-09-07 22:30 - 2014-09-07 20:08 - 00000000 ____D () C:\Program Files (x86)\SSC Service Utility
2014-09-03 15:56 - 2014-01-01 22:20 - 00000000 ____D () C:\Users\Adam\AppData\Roaming\uTorrent
2014-08-28 11:39 - 2009-07-14 06:45 - 00388224 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-25 14:44 - 2014-07-13 18:10 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-08-25 14:42 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-25 10:59 - 2014-08-25 10:59 - 00000000 ____D () C:\Program Files (x86)\CrystalDiskInfo
2014-08-25 06:53 - 2013-12-31 20:07 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-08-24 21:49 - 2014-02-08 13:32 - 00000000 ____D () C:\ProgramData\temp
2014-08-24 21:48 - 2014-02-16 14:27 - 00000000 ____D () C:\Users\Adam\AppData\Roaming\VideoReDo-TVSuite4
2014-08-24 20:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-08-23 04:07 - 2014-08-28 11:35 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 03:45 - 2014-08-28 11:35 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-23 02:59 - 2014-08-28 11:35 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 16:20 - 2014-08-22 16:20 - 00000000 ____D () C:\Users\Adam\Desktop\autocad
2014-08-21 20:50 - 2014-06-10 20:33 - 00001048 _____ () C:\Users\Adam\Documents\plot.log
2014-08-21 18:57 - 2014-08-21 18:57 - 00000000 ____D () C:\Users\Adam\AppData\Roaming\Softland
2014-08-21 18:57 - 2014-08-21 18:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\doPDF 7
2014-08-21 18:57 - 2014-08-21 18:57 - 00000000 ____D () C:\Program Files\Softland
2014-08-21 18:10 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-21 18:07 - 2009-07-14 20:09 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-21 18:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-08-21 18:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-08-21 17:15 - 2014-01-03 12:12 - 00000000 ____D () C:\Program Files\Common Files\Autodesk Shared
2014-08-21 17:11 - 2014-08-21 16:35 - 00000356 _____ () C:\Users\Adam\Documents\acad.err
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe = & gt; File is digitally signed
C:\Windows\System32\wininit.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\wininit.exe = & gt; File is digitally signed
C:\Windows\explorer.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\explorer.exe = & gt; File is digitally signed
C:\Windows\System32\svchost.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\svchost.exe = & gt; File is digitally signed
C:\Windows\System32\services.exe = & gt; File is digitally signed
C:\Windows\System32\User32.dll = & gt; MD5 is legit
C:\Windows\SysWOW64\User32.dll = & gt; MD5 is legit
C:\Windows\System32\userinit.exe = & gt; File is digitally signed
C:\Windows\SysWOW64\userinit.exe = & gt; File is digitally signed
C:\Windows\System32\rpcss.dll = & gt; File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys = & gt; File is digitally signed
==================== BCD ================================
Menedľer rozruchu systemu Windows
---------------------------------
Identyfikator {bootmgr}
device partition=D:
description Windows Boot Manager
locale pl-PL
inherit {globalsettings}
default {current}
resumeobject {a07f4ad3-7221-11e3-b0a9-99c1f4626919}
displayorder {ntldr}
{current}
toolsdisplayorder {memdiag}
timeout 15
Modu adujĄcy rozruchu systemu Windows
---------------------------------------
Identyfikator {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale pl-PL
inherit {bootloadersettings}
recoverysequence {a07f4ad5-7221-11e3-b0a9-99c1f4626919}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {a07f4ad3-7221-11e3-b0a9-99c1f4626919}
nx OptIn
Modu adujĄcy rozruchu systemu Windows
---------------------------------------
Identyfikator {a07f4ad5-7221-11e3-b0a9-99c1f4626919}
device ramdisk=[C:]\Recovery\a07f4ad5-7221-11e3-b0a9-99c1f4626919\Winre.wim,{a07f4ad6-7221-11e3-b0a9-99c1f4626919}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\a07f4ad5-7221-11e3-b0a9-99c1f4626919\Winre.wim,{a07f4ad6-7221-11e3-b0a9-99c1f4626919}
systemroot \windows
nx OptIn
winpe Yes
Wznawianie ze stanu hibernacji
------------------------------
Identyfikator {a07f4ad3-7221-11e3-b0a9-99c1f4626919}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale pl-PL
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
debugoptionenabled No
Modu testujĄcy pami©† systemu Windows
--------------------------------------
Identyfikator {memdiag}
device partition=D:
path \boot\memtest.exe
description Diagnostyka pami©ci systemu Windows
locale pl-PL
inherit {globalsettings}
badmemoryaccess Yes
Modu adujĄcy starszĄ wersj© systemu Windows
---------------------------------------------
Identyfikator {ntldr}
device partition=D:
path \ntldr
description Wczeniejsza wersja systemu Windows
Ustawienia usug EMS
--------------------
Identyfikator {emssettings}
bootems Yes
Ustawienia debugera
-------------------
Identyfikator {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200
Uszkodzenia pami©ci RAM
-----------------------
Identyfikator {badmemory}
Ustawienia globalne
-------------------
Identyfikator {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Ustawienia moduu adujĄcego rozruchu
-------------------------------------
Identyfikator {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Ustawienia funkcji hypervisor
-----------------------------
Identyfikator {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Ustawienia moduu adujĄcego wznawiania
---------------------------------------
Identyfikator {resumeloadersettings}
inherit {globalsettings}
Opcje urzĄdzenia
----------------
Identyfikator {a07f4ad6-7221-11e3-b0a9-99c1f4626919}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\a07f4ad5-7221-11e3-b0a9-99c1f4626919\boot.sdi
LastRegBack: 2014-09-16 15:37
==================== End Of Log ============================