Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-01-2014 01 Ran by Grażyna (administrator) on KOMPUTERMORUSEK on 02-01-2014 19:54:45 Running from C:\Users\Grażyna\Desktop Windows 8.1 (X64) OS Language: Polish Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe () C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\livecomm.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Microsoft Corporation) C:\Windows\WinStore\WSHost.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Samsung Electronics CO., LTD.) C:\ProgramData\SAMSUNG\SW Update Service\SWMAgent.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Support Center\GuaranaAgent.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2894152 2013-09-13] (ELAN Microelectronics Corp.) HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation) HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-14] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation) HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe [40312 2013-09-03] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [CLMLServer_For_P2G8] - C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink) HKLM-x32\...\Run: [CLVirtualDrive] - C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-12] (CyberLink Corp.) HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [97392 2012-08-15] (CyberLink Corp.) HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2013-12-17] (AVAST Software) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-09-25] ( (Atheros Communications)) HKCU\...\Run: [SkyDrive] - C:\Users\Grażyna\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136 2013-08-14] (Microsoft Corporation) AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-11-14] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-11-14] (NVIDIA Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com SearchScopes: HKLM - {51BCC7B1-3642-4753-9589-1AB5C0C58671} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS SearchScopes: HKLM-x32 - {51BCC7B1-3642-4753-9589-1AB5C0C58671} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASMJS BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) BHO: avast! Ad Blocker - {FFCB3198-32F3-4E8B-9539-4324694ED663} - C:\Program Files (x86)\AVAST Software\avast! Ad Blocker IE\Adblocker64.dll (AVAST Software) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO-x32: avast! Ad Blocker - {FFCB3198-32F3-4E8B-9539-4324694ED663} - C:\Program Files (x86)\AVAST Software\avast! Ad Blocker IE\Adblocker32.dll (AVAST Software) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 ==================== Services (Whitelisted) ================= R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-09-25] (Windows (R) Win 7 DDK provider) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-17] (AVAST Software) R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1593976 2012-08-24] (Samsung Electronics CO., LTD.) R2 ETDService; C:\Program Files\Elantech\ETDService.exe [100104 2013-09-06] (ELAN Microelectronics Corp.) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation) R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3018800 2013-10-21] (Samsung Electronics CO., LTD.) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation) R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-25] (Atheros) ==================== Drivers (Whitelisted) ==================== S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [78648 2013-12-17] (AVAST Software) R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [92544 2013-10-15] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-15] () R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [1034464 2013-12-17] (AVAST Software) R1 aswSP; C:\windows\system32\drivers\aswSP.sys [422216 2013-12-17] (AVAST Software) R3 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [79672 2013-12-20] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2013-12-17] () R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.) S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider) S3 BTATH_HID; C:\Windows\system32\DRIVERS\btath_hid.sys [223432 2013-09-25] (Qualcomm Atheros) S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-25] (Qualcomm Atheros) S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation) R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink) S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation) S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation) R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation) R3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider) S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation) S3 rtport; C:\windows\SysWOW64\drivers\rtport.sys [15144 2012-09-13] (Windows (R) 2003 DDK 3790 provider) S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation) S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation) S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-01-02 18:37 - 2014-01-02 19:54 - 00014112 _____ C:\Users\Grażyna\Desktop\FRST.txt 2014-01-02 18:23 - 2014-01-02 18:23 - 01931426 _____ (Farbar) C:\Users\Grażyna\Downloads\FRST64 (1).exe 2014-01-02 18:17 - 2014-01-02 18:17 - 01931426 _____ (Farbar) C:\Users\Grażyna\Desktop\FRST64.exe 2014-01-01 16:08 - 2014-01-01 16:10 - 00001835 _____ C:\Users\Grażyna\Documents\fixlist.txt 2014-01-01 15:52 - 2014-01-02 19:10 - 00000000 ____D C:\AdwCleaner 2013-12-30 20:07 - 2013-12-30 20:07 - 00038168 _____ C:\Users\Grażyna\Documents\FRST.txt 2013-12-30 20:02 - 2013-12-30 20:02 - 00027492 _____ C:\Users\Grażyna\Documents\Addition.txt 2013-12-30 19:59 - 2014-01-01 16:12 - 00000000 ____D C:\FRST 2013-12-28 20:14 - 2013-12-28 20:14 - 00069652 _____ C:\Users\Grażyna\Documents\Extras.Txt 2013-12-28 19:51 - 2014-01-02 19:31 - 00231014 _____ C:\WINDOWS\WindowsUpdate.log 2013-12-28 19:51 - 2013-12-28 19:51 - 00000000 _____ C:\WINDOWS\setuperr.log 2013-12-28 19:51 - 2013-12-28 19:51 - 00000000 _____ C:\WINDOWS\setupact.log 2013-12-28 18:12 - 2013-12-28 20:16 - 00137206 _____ C:\Users\Grażyna\Documents\OTL.Txt 2013-12-28 18:12 - 2013-12-28 18:12 - 00137206 _____ C:\Users\Grażyna\Documents\ot.Txt 2013-12-17 17:56 - 2013-12-20 19:35 - 00079672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys 2013-12-10 19:16 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2013-12-10 19:16 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2013-12-10 19:16 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2013-12-10 19:16 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2013-12-10 19:16 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2013-12-10 19:16 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2013-12-10 19:16 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2013-12-10 19:16 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2013-12-10 19:16 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2013-12-10 19:16 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2013-12-10 19:16 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2013-12-10 19:16 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2013-12-10 19:16 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2013-12-10 19:16 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2013-12-10 19:16 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2013-12-10 19:16 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2013-12-10 19:16 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2013-12-10 19:16 - 2013-11-23 05:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll 2013-12-10 19:16 - 2013-11-23 05:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll 2013-12-10 19:16 - 2013-11-23 04:32 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll 2013-12-10 19:16 - 2013-11-23 04:10 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe 2013-12-10 19:16 - 2013-11-12 00:41 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2013-12-10 19:16 - 2013-11-12 00:40 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2013-12-10 19:16 - 2013-11-12 00:27 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll 2013-12-10 19:16 - 2013-11-12 00:24 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll 2013-12-10 19:16 - 2013-11-11 03:48 - 00039768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys 2013-12-10 19:16 - 2013-11-09 12:55 - 00325464 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2013-12-10 19:16 - 2013-11-09 07:37 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe 2013-12-10 19:16 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe 2013-12-10 19:16 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2013-12-10 19:16 - 2013-11-09 06:56 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe 2013-12-10 19:16 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2013-12-10 19:16 - 2013-11-08 11:26 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll 2013-12-10 19:16 - 2013-11-08 05:43 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2013-12-10 19:16 - 2013-11-08 05:28 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2013-12-10 19:16 - 2013-11-08 05:26 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2013-12-10 19:16 - 2013-11-08 05:16 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll 2013-12-10 19:16 - 2013-11-08 05:15 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2013-12-10 19:16 - 2013-11-08 05:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll 2013-12-10 19:16 - 2013-11-08 04:41 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2013-12-10 19:16 - 2013-11-08 04:14 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2013-12-10 19:16 - 2013-11-05 15:19 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2013-12-10 19:16 - 2013-11-05 15:03 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2013-12-10 19:16 - 2013-11-05 14:57 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2013-12-10 19:16 - 2013-11-05 14:33 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2013-12-10 19:16 - 2013-11-05 14:32 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2013-12-10 19:16 - 2013-11-04 18:13 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2013-12-10 19:16 - 2013-11-04 18:13 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2013-12-10 19:16 - 2013-11-04 14:07 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll 2013-12-10 19:16 - 2013-11-04 12:50 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2013-12-10 19:16 - 2013-11-04 11:32 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll 2013-12-10 19:16 - 2013-11-04 03:28 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll 2013-12-10 19:16 - 2013-11-04 02:30 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2013-12-10 19:16 - 2013-11-01 12:39 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys 2013-12-10 19:16 - 2013-11-01 07:08 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll 2013-12-10 19:16 - 2013-11-01 06:57 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll 2013-12-10 19:16 - 2013-10-31 01:58 - 00372568 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2013-12-10 19:16 - 2013-10-31 01:42 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2013-12-10 19:16 - 2013-10-31 01:33 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2013-12-10 19:16 - 2013-10-31 01:33 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2013-12-10 19:16 - 2013-10-31 01:33 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2013-12-10 19:16 - 2013-10-31 01:33 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2013-12-10 19:16 - 2013-10-26 02:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys 2013-12-10 19:16 - 2013-10-24 10:31 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll 2013-12-10 19:16 - 2013-10-24 10:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll 2013-12-10 19:16 - 2013-10-17 12:21 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2013-12-10 19:16 - 2013-10-17 11:36 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2013-12-10 19:16 - 2013-10-05 15:21 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll 2013-12-10 19:16 - 2013-10-05 15:21 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2013-12-10 19:16 - 2013-10-05 13:05 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll 2013-12-10 19:16 - 2013-10-05 13:05 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2013-12-10 19:14 - 2013-11-08 08:21 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2013-12-10 19:14 - 2013-10-19 09:53 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll 2013-12-10 19:14 - 2013-10-19 08:14 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll 2013-12-10 19:14 - 2013-10-15 09:54 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll 2013-12-10 19:14 - 2013-10-15 09:03 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll 2013-12-10 19:12 - 2013-12-10 19:12 - 00000000 ____D C:\Users\Grażyna\AppData\Local\NVIDIA Corporation 2013-12-10 19:10 - 2013-10-30 18:03 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys 2013-12-10 19:10 - 2013-10-30 18:02 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll 2013-12-10 19:07 - 2013-12-10 19:13 - 00000000 ____D C:\Users\Grażyna\AppData\Local\NVIDIA 2013-12-10 19:05 - 2013-12-10 19:05 - 00001367 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2013-12-10 19:03 - 2013-11-29 17:56 - 01096480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll 2013-12-10 19:03 - 2013-11-29 17:56 - 00979744 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll 2013-12-10 18:59 - 2013-12-10 19:12 - 00000000 ____D C:\ProgramData\NVIDIA 2013-12-10 18:59 - 2013-12-10 18:59 - 00000000 ____D C:\WINDOWS\SysWOW64\NV 2013-12-10 18:59 - 2013-12-10 18:59 - 00000000 ____D C:\WINDOWS\system32\NV 2013-12-10 18:59 - 2013-12-10 18:59 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies 2013-12-10 18:59 - 2013-11-11 16:02 - 06674208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2013-12-10 18:59 - 2013-11-11 16:02 - 03490080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2013-12-10 18:59 - 2013-11-11 16:01 - 03467927 _____ C:\WINDOWS\system32\nvcoproc.bin 2013-12-10 18:59 - 2013-11-11 16:01 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2013-12-10 18:59 - 2013-11-11 16:01 - 01065248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2013-12-10 18:59 - 2013-11-11 16:01 - 00922912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe 2013-12-10 18:59 - 2013-11-11 16:01 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2013-12-10 18:59 - 2013-11-11 16:01 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2013-12-10 18:59 - 2013-11-11 16:01 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2013-12-10 18:57 - 2013-12-10 19:12 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2013-12-10 18:50 - 2013-11-14 12:58 - 30361888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 25257248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 22951200 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 18293608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 18208624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 15862272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 15218504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 12613408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys 2013-12-10 18:50 - 2013-11-14 12:58 - 11600432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 11514624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 09691888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 09619872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 03132704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 03125024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 03069608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 02947872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 02747680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 02697248 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433182.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433182.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 01436528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 01242400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 00707360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 00657184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 00609568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 00562464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 00266984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 00168616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 00141336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll 2013-12-10 18:50 - 2013-11-14 12:58 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys 2013-12-10 18:50 - 2013-11-14 12:58 - 00023754 _____ C:\WINDOWS\system32\nvinfo.pb 2013-12-10 18:50 - 2013-10-30 18:02 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll 2013-12-07 08:27 - 2013-12-07 08:27 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf ==================== One Month Modified Files and Folders ======= 2014-01-02 19:54 - 2014-01-02 18:37 - 00014112 _____ C:\Users\Grażyna\Desktop\FRST.txt 2014-01-02 19:46 - 2012-11-10 20:10 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2568246086-2447926606-4193830083-1002 2014-01-02 19:37 - 2013-07-03 20:35 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-01-02 19:31 - 2013-12-28 19:51 - 00231014 _____ C:\WINDOWS\WindowsUpdate.log 2014-01-02 19:18 - 2012-08-22 09:45 - 00000000 ____D C:\ProgramData\WinClon 2014-01-02 19:15 - 2013-06-27 20:20 - 00000000 __RDO C:\Users\Grażyna\SkyDrive 2014-01-02 19:14 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2014-01-02 19:14 - 2012-11-16 20:20 - 00001078 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-01-02 19:13 - 2013-08-22 14:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2014-01-02 19:10 - 2014-01-01 15:52 - 00000000 ____D C:\AdwCleaner 2014-01-02 19:10 - 2013-10-17 21:59 - 00001013 _____ C:\Users\Grażyna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-01-02 19:01 - 2012-11-16 20:20 - 00001082 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-01-02 19:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru 2014-01-02 18:56 - 2013-01-09 17:52 - 00000000 ____D C:\WINDOWS\System32\Tasks\Norton Management 2014-01-02 18:23 - 2014-01-02 18:23 - 01931426 _____ (Farbar) C:\Users\Grażyna\Downloads\FRST64 (1).exe 2014-01-02 18:17 - 2014-01-02 18:17 - 01931426 _____ (Farbar) C:\Users\Grażyna\Desktop\FRST64.exe 2014-01-02 17:32 - 2013-10-17 22:07 - 00004020 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{E43C327B-8090-4FBD-BE5E-5A81C25FF159} 2014-01-01 16:12 - 2013-12-30 19:59 - 00000000 ____D C:\FRST 2014-01-01 16:10 - 2014-01-01 16:08 - 00001835 _____ C:\Users\Grażyna\Documents\fixlist.txt 2014-01-01 15:34 - 2013-10-15 18:54 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2013-12-30 20:07 - 2013-12-30 20:07 - 00038168 _____ C:\Users\Grażyna\Documents\FRST.txt 2013-12-30 20:02 - 2013-12-30 20:02 - 00027492 _____ C:\Users\Grażyna\Documents\Addition.txt 2013-12-28 20:16 - 2013-12-28 18:12 - 00137206 _____ C:\Users\Grażyna\Documents\OTL.Txt 2013-12-28 20:14 - 2013-12-28 20:14 - 00069652 _____ C:\Users\Grażyna\Documents\Extras.Txt 2013-12-28 19:51 - 2013-12-28 19:51 - 00000000 _____ C:\WINDOWS\setuperr.log 2013-12-28 19:51 - 2013-12-28 19:51 - 00000000 _____ C:\WINDOWS\setupact.log 2013-12-28 19:51 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2013-12-28 18:12 - 2013-12-28 18:12 - 00137206 _____ C:\Users\Grażyna\Documents\ot.Txt 2013-12-27 20:40 - 2013-04-21 16:08 - 00005120 _____ C:\Users\Grażyna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-12-23 18:20 - 2012-11-10 20:05 - 00000000 ____D C:\Users\Grażyna\Documents\Bluetooth Folder 2013-12-22 21:47 - 2012-11-10 20:02 - 00000000 ____D C:\Users\Grażyna\AppData\Local\Packages 2013-12-21 17:43 - 2012-11-16 20:20 - 00000000 ____D C:\Users\Grażyna\AppData\Local\Google 2013-12-21 17:43 - 2012-11-16 20:20 - 00000000 ____D C:\Program Files (x86)\Google 2013-12-20 19:35 - 2013-12-17 17:56 - 00079672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys 2013-12-19 20:32 - 2012-11-16 20:20 - 00000836 _____ C:\Users\Public\Desktop\CCleaner.lnk 2013-12-19 20:32 - 2012-11-16 20:20 - 00000000 ____D C:\Program Files\CCleaner 2013-12-17 17:56 - 2013-10-15 19:03 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2013-12-17 17:56 - 2013-10-15 19:03 - 00001988 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-12-17 17:56 - 2013-03-14 19:06 - 00207904 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys 2013-12-17 17:56 - 2013-01-12 19:47 - 01034464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2013-12-17 17:56 - 2013-01-12 19:47 - 00422216 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys 2013-12-17 17:56 - 2013-01-12 19:47 - 00334136 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2013-12-17 17:56 - 2013-01-12 19:47 - 00078648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2013-12-16 19:49 - 2013-11-17 20:56 - 00000100 _____ C:\index.ini 2013-12-12 15:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache 2013-12-10 21:37 - 2013-07-03 20:35 - 00003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2013-12-10 19:24 - 2013-08-22 15:44 - 00508576 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2013-12-10 19:23 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData 2013-12-10 19:23 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore 2013-12-10 19:23 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer 2013-12-10 19:23 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager 2013-12-10 19:23 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera 2013-12-10 19:21 - 2013-07-20 17:24 - 00000000 ____D C:\WINDOWS\system32\MRT 2013-12-10 19:19 - 2012-12-14 10:10 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2013-12-10 19:13 - 2013-12-10 19:07 - 00000000 ____D C:\Users\Grażyna\AppData\Local\NVIDIA 2013-12-10 19:12 - 2013-12-10 19:12 - 00000000 ____D C:\Users\Grażyna\AppData\Local\NVIDIA Corporation 2013-12-10 19:12 - 2013-12-10 18:59 - 00000000 ____D C:\ProgramData\NVIDIA 2013-12-10 19:12 - 2013-12-10 18:57 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2013-12-10 19:11 - 2013-10-17 21:07 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2013-12-10 19:11 - 2013-10-17 21:07 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-12-10 19:05 - 2013-12-10 19:05 - 00001367 _____ C:\Users\Public\Desktop\GeForce Experience.lnk 2013-12-10 18:59 - 2013-12-10 18:59 - 00000000 ____D C:\WINDOWS\SysWOW64\NV 2013-12-10 18:59 - 2013-12-10 18:59 - 00000000 ____D C:\WINDOWS\system32\NV 2013-12-10 18:59 - 2013-12-10 18:59 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies 2013-12-10 18:59 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help 2013-12-08 19:21 - 2012-12-06 21:47 - 00000000 ____D C:\Users\Grażyna\AppData\Local\CrashDumps 2013-12-08 16:56 - 2012-11-16 20:20 - 00004054 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2013-12-08 16:56 - 2012-11-16 20:20 - 00003818 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2013-12-07 08:27 - 2013-12-07 08:27 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2013-12-04 01:05 - 2013-11-13 17:33 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2013-12-04 01:05 - 2013-11-13 17:33 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl Files to move or delete: ==================== C:\ProgramData\MakeMarkerFile.exe Some content of TEMP: ==================== C:\Users\Grażyna\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-02 19:46 ==================== End Of Log ============================