OTL logfile created on: 2014-03-03 17:28:11 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Nivez\Downloads
 Professional  (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16518)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 0,95 Gb Available Physical Memory | 47,50% Memory free
3,12 Gb Paging File | 1,87 Gb Available in Paging File | 59,85% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,95 Gb Total Space | 31,44 Gb Free Space | 64,23% Space Free | Partition Type: NTFS
Drive D: | 171,87 Gb Total Space | 166,19 Gb Free Space | 96,69% Space Free | Partition Type: NTFS
 
Computer Name: NIVEZPC | User Name: Nivez | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2014-03-03 17:19:09 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Nivez\Downloads\OTL.exe
PRC - [2014-03-02 09:37:48 | 001,863,560 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_12_0_0_70.exe
PRC - [2014-02-26 19:57:30 | 001,678,672 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2014-02-26 09:50:00 | 000,375,056 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
PRC - [2014-02-19 14:00:28 | 004,028,480 | ---- | M] (GG Network S.A.) -- C:\Users\Nivez\AppData\Local\GG\Application\gghub.exe
PRC - [2014-02-19 14:00:28 | 000,132,672 | ---- | M] (GG Network S.A.) -- C:\Users\Nivez\AppData\Local\GG\Application\ggapp.exe
PRC - [2014-02-19 14:00:28 | 000,076,352 | ---- | M] (GG Network S.A.) -- C:\Users\Nivez\AppData\Local\GG\Application\xulrunner\gghub.exe
PRC - [2014-02-13 01:36:25 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2014-01-28 09:57:50 | 001,104,736 | ---- | M] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) -- C:\Users\Nivez\AppData\Local\Apps\Evernote\Evernote\EvernoteClipper.exe
PRC - [2014-01-09 16:26:41 | 000,365,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\FileManager\PhotosApp.exe
PRC - [2013-10-22 07:03:47 | 002,065,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2013-08-22 06:30:48 | 000,066,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostex.exe
PRC - [2013-08-22 06:21:42 | 000,029,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RuntimeBroker.exe
PRC - [2013-08-22 03:45:10 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2014-03-02 09:37:46 | 016,265,096 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_12_0_0_70.dll
MOD - [2014-02-19 14:00:30 | 016,166,248 | ---- | M] () -- C:\Users\Nivez\AppData\Local\GG\Application\FMSBWChecker\Adobe AIR\Versions\1.0\Resources\NPSWF32.dll
MOD - [2014-02-19 14:00:28 | 003,205,184 | ---- | M] () -- C:\Users\Nivez\AppData\Local\GG\Application\xulrunner\mozjs.dll
MOD - [2014-02-13 01:36:39 | 003,578,992 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2014-01-22 13:29:32 | 000,433,664 | ---- | M] () -- C:\Users\Nivez\AppData\Local\Apps\Evernote\Evernote\libxml2.dll
MOD - [2014-01-22 13:29:24 | 000,315,392 | ---- | M] () -- C:\Users\Nivez\AppData\Local\Apps\Evernote\Evernote\libtidy.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - [2014-02-26 19:57:30 | 001,678,672 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2014-02-26 09:50:00 | 000,375,056 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2014-02-25 22:57:46 | 000,568,512 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014-02-13 01:36:33 | 000,118,896 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014-02-06 10:47:18 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2013-11-27 15:09:45 | 002,872,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WSService.dll -- (WSService)
SRV - [2013-11-27 10:01:56 | 000,201,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure)
SRV - [2013-11-23 05:23:17 | 000,202,240 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV - [2013-11-08 04:30:03 | 001,128,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppXDeploymentServer.dll -- (AppXSvc)
SRV - [2013-10-23 08:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013-10-22 02:40:33 | 001,210,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\workfolderssvc.dll -- (workfolderssvc)
SRV - [2013-10-04 09:00:53 | 000,409,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppReadiness.dll -- (AppReadiness)
SRV - [2013-09-21 06:19:41 | 000,301,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc)
SRV - [2013-09-21 06:18:14 | 001,198,592 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc)
SRV - [2013-08-31 10:25:30 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2013-08-22 15:38:10 | 000,075,104 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\KeyboardFilterSvc.dll -- (MsKeyboardFilter)
SRV - [2013-08-22 15:38:08 | 001,778,176 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2013-08-22 15:38:04 | 000,174,080 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2013-08-22 06:18:20 | 000,278,264 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV - [2013-08-22 06:18:20 | 000,022,240 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2013-08-22 06:17:49 | 002,407,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013-08-22 05:03:29 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wephostsvc.dll -- (WEPHOSTSVC)
SRV - [2013-08-22 05:03:12 | 000,028,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\efssvc.dll -- (EFS)
SRV - [2013-08-22 04:56:08 | 000,052,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc)
SRV - [2013-08-22 04:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2013-08-22 04:54:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc)
SRV - [2013-08-22 04:50:48 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\fhsvc.dll -- (fhsvc)
SRV - [2013-08-22 04:10:39 | 000,141,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc)
SRV - [2013-08-22 04:05:56 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvss)
SRV - [2013-08-22 04:05:56 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync)
SRV - [2013-08-22 04:05:56 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown)
SRV - [2013-08-22 04:05:56 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicrdv)
SRV - [2013-08-22 04:05:56 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange)
SRV - [2013-08-22 04:05:56 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat)
SRV - [2013-08-22 04:05:56 | 000,417,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicguestinterface)
SRV - [2013-08-22 03:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\smphost.dll -- (smphost)
SRV - [2013-08-22 03:49:34 | 000,105,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV - [2013-08-22 03:48:12 | 000,044,032 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\keyiso.dll -- (KeyIso)
SRV - [2013-08-22 03:45:36 | 000,173,056 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBroker)
SRV - [2013-08-22 03:44:38 | 000,415,744 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm)
SRV - [2013-08-22 03:41:55 | 000,124,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ncbservice.dll -- (NcbService)
SRV - [2013-08-22 03:39:05 | 000,196,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc)
SRV - [2013-08-22 03:38:43 | 000,306,176 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService)
SRV - [2013-08-22 03:37:53 | 000,173,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV - [2013-08-22 03:36:04 | 000,614,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM)
SRV - [2013-08-22 03:31:45 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc)
SRV - [2013-08-22 03:21:32 | 000,064,000 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2014-03-03 17:10:29 | 000,039,464 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F7353EE9-E0CD-40EA-8F5A-054B53102C2A}\MpKsl16f0815c.sys -- (MpKsl16f0815c)
DRV - [2014-02-26 19:57:16 | 000,038,920 | -H-- | M] (LogMeIn Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\Hamdrv.sys -- (Hamachi)
DRV - [2014-01-08 01:55:08 | 000,261,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV - [2013-11-11 01:50:33 | 000,036,696 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\intelpep.sys -- (intelpep)
DRV - [2013-11-01 11:17:26 | 000,077,144 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\pdc.sys -- (pdc)
DRV - [2013-10-26 21:28:41 | 000,120,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx2.sys -- (SerCx2)
DRV - [2013-10-13 01:45:41 | 000,069,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV - [2013-10-05 13:30:03 | 000,047,960 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\stornvme.sys -- (stornvme)
DRV - [2013-10-05 13:30:02 | 000,321,368 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\spaceport.sys -- (spaceport)
DRV - [2013-09-17 08:00:52 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV - [2013-09-14 13:42:36 | 000,142,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VerifierExt.sys -- (VerifierExt)
DRV - [2013-08-22 15:38:12 | 000,019,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\kbldfltr.sys -- (kbldfltr)
DRV - [2013-08-22 15:38:10 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2013-08-22 15:37:56 | 000,030,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\terminpt.sys -- (terminpt)
DRV - [2013-08-22 07:13:53 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\condrv.sys -- (condrv)
DRV - [2013-08-22 06:35:21 | 000,053,088 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\dam.sys -- (dam)
DRV - [2013-08-22 06:35:20 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\acpiex.sys -- (acpiex)
DRV - [2013-08-22 06:34:52 | 000,133,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\tpm.sys -- (TPM)
DRV - [2013-08-22 06:33:32 | 000,058,208 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\mvumis.sys -- (mvumis)
DRV - [2013-08-22 06:33:31 | 000,033,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV - [2013-08-22 06:33:30 | 000,122,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV - [2013-08-22 06:33:30 | 000,068,960 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV - [2013-08-22 06:33:29 | 000,069,472 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV - [2013-08-22 06:33:26 | 000,086,368 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\3ware.sys -- (3ware)
DRV - [2013-08-22 06:33:25 | 000,773,472 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\adp80xx.sys -- (ADP80XX)
DRV - [2013-08-22 06:33:25 | 000,100,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV - [2013-08-22 06:33:24 | 000,073,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\EhStorClass.sys -- (EhStorClass)
DRV - [2013-08-22 06:33:01 | 000,276,832 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV - [2013-08-22 06:32:57 | 000,163,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\UCX01000.SYS -- (UCX01000)
DRV - [2013-08-22 06:32:57 | 000,090,976 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\storahci.sys -- (storahci)
DRV - [2013-08-22 06:32:57 | 000,064,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\sdstor.sys -- (sdstor)
DRV - [2013-08-22 06:32:57 | 000,059,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SpbCx.sys -- (SpbCx)
DRV - [2013-08-22 06:32:57 | 000,058,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx.sys -- (SerCx)
DRV - [2013-08-22 06:32:57 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uaspstor.sys -- (UASPStor)
DRV - [2013-08-22 06:32:38 | 000,031,584 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\Drivers\cnghwassist.sys -- (cnghwassist)
DRV - [2013-08-22 06:25:38 | 000,046,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wpcfltr.sys -- (wpcfltr)
DRV - [2013-08-22 06:25:37 | 000,284,000 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\clfs.sys -- (CLFS)
DRV - [2013-08-22 06:24:56 | 000,023,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uefi.sys -- (UEFI)
DRV - [2013-08-22 06:24:36 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV - [2013-08-22 06:20:49 | 000,093,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\WdNisDrv.sys -- (WdNisDrv)
DRV - [2013-08-22 06:20:48 | 000,214,368 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\Drivers\WdFilter.sys -- (WdFilter)
DRV - [2013-08-22 06:20:22 | 000,093,248 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmbus.sys -- (vmbus)
DRV - [2013-08-22 06:20:22 | 000,045,376 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmstorfl.sys -- (storflt)
DRV - [2013-08-22 06:20:22 | 000,042,304 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storvsc.sys -- (storvsc)
DRV - [2013-08-22 06:17:00 | 000,029,128 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\WdBoot.sys -- (WdBoot)
DRV - [2013-08-22 05:11:29 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\ahcache.sys -- (ahcache)
DRV - [2013-08-22 05:11:04 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV - [2013-08-22 05:10:58 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicRender.sys -- (BasicRender)
DRV - [2013-08-22 05:10:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\HyperVideo.sys -- (HyperVideo)
DRV - [2013-08-22 05:10:37 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mshidumdf.sys -- (mshidumdf)
DRV - [2013-08-22 05:10:28 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpitime.sys -- (acpitime)
DRV - [2013-08-22 05:10:21 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpipagr.sys -- (acpipagr)
DRV - [2013-08-22 05:10:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\npsvctrig.sys -- (npsvctrig)
DRV - [2013-08-22 05:10:01 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV - [2013-08-22 05:09:59 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\kdnic.sys -- (kdnic)
DRV - [2013-08-22 05:09:57 | 000,006,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vms3cap.sys -- (s3cap)
DRV - [2013-08-22 05:09:50 | 000,011,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vmgencounter.sys -- (gencounter)
DRV - [2013-08-22 05:09:37 | 000,023,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthhfHid.sys -- (bthhfhid)
DRV - [2013-08-22 05:09:15 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV - [2013-08-22 05:09:10 | 000,026,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2013-08-22 05:09:09 | 000,012,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hyperkbd.sys -- (hyperkbd)
DRV - [2013-08-22 05:09:03 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2013-08-22 05:09:01 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hidi2c.sys -- (hidi2c)
DRV - [2013-08-22 05:09:01 | 000,018,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2013-08-22 05:08:37 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\dmvsc.sys -- (dmvsc)
DRV - [2013-08-22 05:08:18 | 000,072,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\netvsc63.sys -- (netvsc)
DRV - [2013-08-22 05:08:06 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV - [2013-08-22 05:07:57 | 000,109,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV - [2013-08-22 05:07:55 | 000,057,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mslldp.sys -- (MsLldp)
DRV - [2013-08-22 05:07:19 | 000,091,136 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\Ndu.sys -- (Ndu)
DRV - [2013-08-22 02:58:35 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\fxppm.sys -- (FxPPM)
DRV - [2013-08-13 00:25:32 | 000,016,088 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bcmfn2.sys -- (bcmfn2)
DRV - [2013-08-10 01:39:44 | 000,524,784 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\iaStorAV.sys -- (iaStorAV)
DRV - [2013-07-23 22:18:30 | 000,061,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\iaioi2c.sys -- (iaioi2c)
DRV - [2013-07-23 22:18:30 | 000,022,016 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\iaiogpio.sys -- (GPIO)
DRV - [2013-06-18 13:35:27 | 001,068,032 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\smserial.sys -- (smserial)
DRV - [2013-06-18 13:23:13 | 000,490,496 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\Rt630x86.sys -- (RTL8168)
DRV - [2013-06-18 13:22:16 | 006,637,056 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\netwlv32.sys -- (netwlv32)
DRV - [2012-06-19 06:09:14 | 000,290,304 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\atikmpag.sys -- (amdkmdap)
DRV - [2007-10-11 23:13:16 | 003,155,456 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\atikmdag.sys -- (atikmdag)
DRV - [2007-10-11 23:13:16 | 003,155,456 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\atikmdag.sys -- (amdkmdag)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-3792242569-3376912895-2249872043-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.pl/
IE - HKU\S-1-5-21-3792242569-3376912895-2249872043-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D2 35 9E 2E F3 36 CF 01  [binary data]
IE - HKU\S-1-5-21-3792242569-3376912895-2249872043-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3792242569-3376912895-2249872043-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE - HKU\S-1-5-21-3792242569-3376912895-2249872043-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.startup.homepage: "www.google.pl"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:27.0.1
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 27.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 27.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014-03-02 16:55:10 | 000,000,000 | ---D | M]
 
[2014-03-01 23:22:57 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nivez\AppData\Roaming\mozilla\Extensions
[2014-03-01 23:24:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nivez\AppData\Roaming\mozilla\Firefox\Profiles\gikil6us.default\extensions
[2014-03-01 23:24:23 | 000,957,290 | ---- | M] () (No name found) -- C:\Users\Nivez\AppData\Roaming\mozilla\firefox\profiles\gikil6us.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014-03-01 23:22:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014-03-01 23:22:19 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2012-10-01 20:33:44 | 000,034,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll
 
O1 HOSTS File: ([2013-08-22 07:13:55 | 000,000,824 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts
O2 - BHO: (Lync Browser Helper) - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
O4 - HKLM..\Run: [AMD AVT] C:\Windows\System32\cmd.exe (Microsoft Corporation)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-21-3792242569-3376912895-2249872043-1001..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-21-3792242569-3376912895-2249872043-1001..\Run: [GG] C:\Users\Nivez\AppData\Local\GG\Application\gghub.exe (GG Network S.A.)
O4 - Startup: C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk = C:\Users\Nivez\AppData\Local\Apps\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Clip Image - C:\Users\Nivez\AppData\Local\Apps\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4 File not found
O8 - Extra context menu item: Clip selection - C:\Users\Nivez\AppData\Local\Apps\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3 File not found
O8 - Extra context menu item: Clip this page - C:\Users\Nivez\AppData\Local\Apps\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1 File not found
O8 - Extra context menu item: Clip URL - C:\Users\Nivez\AppData\Local\Apps\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0 File not found
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office15\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: New Note - C:\Users\Nivez\AppData\Local\Apps\Evernote\Evernote\\EvernoteIERes\NewNote.html ()
O8 - Extra context menu item: Wyślij &do programu OneNote - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Lync — kliknij, aby połączyć - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Lync — kliknij, aby połączyć - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
O9 - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.113.224.35 217.113.224.135
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A50D57BA-C62A-4191-A178-356D5791E15B}: DhcpNameServer = 217.113.224.35 217.113.224.135
O18 - Protocol\Handler\osf {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013-08-22 09:16:34 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{98255e21-a209-11e3-971b-00030d836da7}\Shell - "" = AutoRun
O33 - MountPoints2\{98255e21-a209-11e3-971b-00030d836da7}\Shell\AutoRun\command - "" = "F:\aoesetup.exe" 
O33 - MountPoints2\{98255e21-a209-11e3-971b-00030d836da7}\Shell\dxsetup\command - "" = F:\directx\dxsetup.exe
O33 - MountPoints2\{98255e21-a209-11e3-971b-00030d836da7}\Shell\ie30\command - "" = F:\goodies\ie30295.exe
O33 - MountPoints2\{98255e21-a209-11e3-971b-00030d836da7}\Shell\ie30nt\command - "" = F:\goodies\ie302nt.exe
O33 - MountPoints2\{98255e21-a209-11e3-971b-00030d836da7}\Shell\msinfo\command - "" = F:\goodies\msinfo\msinfo32.exe
O33 - MountPoints2\{98255e21-a209-11e3-971b-00030d836da7}\Shell\setup\command - "" = F:\aoesetup.exe
O33 - MountPoints2\{98255e24-a209-11e3-971b-00030d836da7}\Shell - "" = AutoRun
O33 - MountPoints2\{98255e24-a209-11e3-971b-00030d836da7}\Shell\AutoRun\command - "" = "G:\SETUP.EXE" 
O33 - MountPoints2\{98255e24-a209-11e3-971b-00030d836da7}\Shell\configure\command - "" = G:\SETUP.EXE
O33 - MountPoints2\{98255e24-a209-11e3-971b-00030d836da7}\Shell\install\command - "" = G:\SETUP.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2014-03-03 17:08:10 | 000,000,000 | ---D | C] -- C:\Windows\LastGood
[2014-03-03 17:08:00 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2014-03-03 17:07:07 | 001,824,000 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesGUILib.dll
[2014-03-03 17:07:07 | 001,783,056 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2014-03-03 17:07:06 | 001,379,760 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\System32\tosade.dll
[2014-03-03 17:07:06 | 000,819,648 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\System32\tadefxapo2.dll
[2014-03-03 17:07:06 | 000,345,328 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2014-03-03 17:07:06 | 000,185,584 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2014-03-03 17:07:06 | 000,173,296 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2014-03-03 17:07:06 | 000,140,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2014-03-03 17:07:06 | 000,134,584 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\System32\tadefxapo.dll
[2014-03-03 17:07:06 | 000,058,264 | ---- | C] (TOSHIBA CORPORATION.) -- C:\Windows\System32\TepeqAPO.dll
[2014-03-03 17:07:05 | 000,604,928 | ---- | C] (DTS, Inc.) -- C:\Windows\System32\sltech32.dll
[2014-03-03 17:07:05 | 000,218,368 | ---- | C] (TODO: <Company name>) -- C:\Windows\System32\slprp32.dll
[2014-03-03 17:07:04 | 000,938,752 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\slcnt32.dll
[2014-03-03 17:07:04 | 000,919,600 | ---- | C] (Sony Corporation) -- C:\Windows\System32\SFSS_APO.dll
[2014-03-03 17:07:04 | 000,823,040 | ---- | C] (DTS, Inc.) -- C:\Windows\System32\sl3apo32.dll
[2014-03-03 17:07:04 | 000,214,368 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFNHK.dll
[2014-03-03 17:07:04 | 000,074,080 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFCOM.dll
[2014-03-03 17:07:03 | 001,596,488 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl
[2014-03-03 17:07:03 | 000,068,960 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFAPO.dll
[2014-03-03 17:07:02 | 002,547,928 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll
[2014-03-03 17:07:02 | 000,124,632 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInstII.dll
[2014-03-03 17:07:02 | 000,013,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoLDR.dll
[2014-03-03 17:07:01 | 002,328,792 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll
[2014-03-03 17:07:01 | 000,782,040 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll
[2014-03-03 17:07:00 | 000,359,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll
[2014-03-03 17:06:59 | 000,170,840 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll
[2014-03-03 17:06:59 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll
[2014-03-03 17:06:59 | 000,064,856 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll
[2014-03-03 17:06:58 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2014-03-03 17:06:58 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2014-03-03 17:06:57 | 038,385,664 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RCoRes.dat
[2014-03-03 17:06:56 | 007,162,128 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEP32A.dll
[2014-03-03 17:06:56 | 005,773,592 | ---- | C] (Nahimic Inc) -- C:\Windows\System32\NAHIMICAPOlfx.dll
[2014-03-03 17:06:56 | 000,877,880 | ---- | C] (Nahimic Inc) -- C:\Windows\System32\NAHIMICAPOSettingsIPC.dll
[2014-03-03 17:06:56 | 000,852,016 | ---- | C] (Sony Corporation) -- C:\Windows\System32\MISS_APO.dll
[2014-03-03 17:06:56 | 000,352,016 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EED32A.dll
[2014-03-03 17:06:56 | 000,106,768 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEL32A.dll
[2014-03-03 17:06:56 | 000,091,920 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEA32A.dll
[2014-03-03 17:06:56 | 000,062,224 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEG32A.dll
[2014-03-03 17:06:54 | 000,926,976 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxSpeechAPO.dll
[2014-03-03 17:06:54 | 000,761,088 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxVoiceAPO20.dll
[2014-03-03 17:06:54 | 000,509,184 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxVolumeSDAPO.dll
[2014-03-03 17:06:53 | 027,369,216 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioVnA.dll
[2014-03-03 17:06:53 | 003,444,992 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioVnN.dll
[2014-03-03 17:06:52 | 013,881,088 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioRealtek.dll
[2014-03-03 17:06:52 | 001,935,104 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2014-03-03 17:06:52 | 001,677,568 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioRealtek2.dll
[2014-03-03 17:06:51 | 001,097,984 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO50.dll
[2014-03-03 17:06:51 | 000,873,728 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO40.dll
[2014-03-03 17:06:51 | 000,859,904 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPOShell.dll
[2014-03-03 17:06:51 | 000,509,184 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO30.dll
[2014-03-03 17:06:51 | 000,357,712 | ---- | C] (Knowles Acoustics ) -- C:\Windows\System32\KAAPORT.dll
[2014-03-03 17:06:51 | 000,232,792 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2014-03-03 17:06:51 | 000,132,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2014-03-03 17:06:47 | 002,395,680 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2014-03-03 17:06:46 | 001,509,480 | ---- | C] (DTS) -- C:\Windows\System32\DTSS2SpeakerDLL.dll
[2014-03-03 17:06:46 | 001,292,904 | ---- | C] (DTS) -- C:\Windows\System32\DTSS2HeadphoneDLL.dll
[2014-03-03 17:06:46 | 000,631,400 | ---- | C] (DTS) -- C:\Windows\System32\DTSSymmetryDLL.dll
[2014-03-03 17:06:46 | 000,601,704 | ---- | C] (DTS) -- C:\Windows\System32\DTSVoiceClarityDLL.dll
[2014-03-03 17:06:46 | 000,458,344 | ---- | C] (DTS) -- C:\Windows\System32\DTSNeoPCDLL.dll
[2014-03-03 17:06:46 | 000,426,944 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PLFX32.dll
[2014-03-03 17:06:46 | 000,403,392 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PGFX32.dll
[2014-03-03 17:06:46 | 000,375,400 | ---- | C] (DTS) -- C:\Windows\System32\DTSLimiterDLL.dll
[2014-03-03 17:06:46 | 000,346,048 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PREC32.dll
[2014-03-03 17:06:46 | 000,218,216 | ---- | C] (DTS) -- C:\Windows\System32\DTSLFXAPO.dll
[2014-03-03 17:06:45 | 001,220,200 | ---- | C] (DTS) -- C:\Windows\System32\DTSBoostDLL.dll
[2014-03-03 17:06:45 | 000,654,952 | ---- | C] (DTS) -- C:\Windows\System32\DTSBassEnhancementDLL.dll
[2014-03-03 17:06:45 | 000,389,736 | ---- | C] (DTS) -- C:\Windows\System32\DTSGainCompensatorDLL.dll
[2014-03-03 17:06:45 | 000,218,728 | ---- | C] (DTS) -- C:\Windows\System32\DTSGFXAPONS.dll
[2014-03-03 17:06:45 | 000,218,728 | ---- | C] (DTS) -- C:\Windows\System32\DTSGFXAPO.dll
[2014-03-03 17:06:44 | 006,176,944 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\DDPP32A.dll
[2014-03-03 17:06:44 | 001,489,072 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\DDPD32A.dll
[2014-03-03 17:06:44 | 000,272,048 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\DDPO32A.dll
[2014-03-03 17:06:44 | 000,219,312 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\DDPA32.dll
[2014-03-03 17:06:44 | 000,092,584 | ---- | C] (Real Sound Lab SIA) -- C:\Windows\System32\CONEQMSAPOGUILibrary.dll
[2014-03-03 17:06:43 | 000,182,472 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll
[2014-03-03 17:06:43 | 000,095,840 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll
[2014-03-03 17:06:43 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2014-03-03 17:06:42 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2014-03-03 17:06:41 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp
[2014-03-03 17:06:40 | 002,080,472 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2014-03-03 17:06:35 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2014-03-03 16:53:10 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\System32\CSVer.dll
[2014-03-03 16:53:10 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2014-03-03 16:51:44 | 000,000,000 | ---D | C] -- C:\Intel
[2014-03-03 09:33:34 | 000,000,000 | ---D | C] -- C:\Users\Nivez\Documents\Niestandardowe szablony pakietu Office
[2014-03-02 18:29:35 | 000,000,000 | ---D | C] -- C:\Users\Nivez\Desktop\zbot
[2014-03-02 16:57:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
[2014-03-02 16:56:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2014-03-02 16:54:53 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2014-03-02 16:54:53 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2014-03-02 16:52:37 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services
[2014-03-02 16:52:30 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\Microsoft Help
[2014-03-02 16:52:24 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2014-03-02 16:52:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2014-03-02 16:52:19 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2014-03-02 16:50:41 | 000,756,736 | ---- | C] (Intel Corporation) -- C:\Windows\System32\ir41_32.dll
[2014-03-02 16:50:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
[2014-03-02 16:36:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2014-03-02 16:36:42 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\DAEMON Tools Lite
[2014-03-02 16:36:36 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2014-03-02 16:36:12 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2014-03-02 15:45:50 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\LogMeIn Hamachi
[2014-03-02 15:45:50 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\LogMeIn
[2014-03-02 15:45:50 | 000,000,000 | ---D | C] -- C:\ProgramData\LogMeIn
[2014-03-02 15:44:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2014-03-02 15:44:11 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2014-03-02 12:57:22 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2014-03-02 12:36:45 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\Evernote
[2014-03-02 12:36:37 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Evernote
[2014-03-02 12:36:21 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\Apps
[2014-03-02 12:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2014-03-02 12:20:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2014-03-02 12:20:04 | 000,000,000 | ---D | C] -- C:\Program Files\Steam
[2014-03-02 12:06:27 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\GG
[2014-03-02 12:06:16 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\GG
[2014-03-02 11:54:04 | 003,887,104 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\System32\atiumdva.dll
[2014-03-02 11:54:04 | 003,071,488 | ---- | C] (ATI Technologies Inc. ) -- C:\Windows\System32\atiumdag.dll
[2014-03-02 11:54:04 | 000,266,240 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\System32\atipdlxx.dll
[2014-03-02 11:54:04 | 000,237,568 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\System32\Oemdspif.dll
[2014-03-02 11:54:03 | 009,158,656 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\System32\atioglxx.dll
[2014-03-02 11:54:03 | 003,155,456 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\atikmdag.sys
[2014-03-02 11:54:03 | 000,356,352 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\System32\ATIDEMGX.dll
[2014-03-02 11:54:03 | 000,245,760 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.dll
[2014-03-02 11:54:03 | 000,049,152 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\ati2erec.dll
[2014-03-02 11:54:03 | 000,048,128 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\System32\amdpcom32.dll
[2014-03-02 11:54:03 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\System32\ati2edxx.dll
[2014-03-02 11:53:47 | 000,000,000 | ---D | C] -- C:\Users\Nivez\Desktop\ati radeon
[2014-03-02 11:53:20 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\WinRAR
[2014-03-02 11:52:55 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014-03-02 11:52:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014-03-02 11:52:49 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2014-03-02 11:29:43 | 013,949,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Xaml.dll
[2014-03-02 11:29:35 | 003,489,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014-03-02 11:29:34 | 000,802,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MFMediaEngine.dll
[2014-03-02 11:29:34 | 000,770,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ReAgent.dll
[2014-03-02 11:29:34 | 000,588,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncCore.dll
[2014-03-02 11:29:34 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncHost.exe
[2014-03-02 11:29:34 | 000,381,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfsvr.dll
[2014-03-02 11:29:33 | 000,811,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\reseteng.dll
[2014-03-02 11:29:33 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.dll
[2014-03-02 11:29:33 | 000,337,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\halmacpi.dll
[2014-03-02 11:29:33 | 000,337,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hal.dll
[2014-03-02 11:29:33 | 000,336,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2014-03-02 11:29:33 | 000,320,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2014-03-02 11:29:33 | 000,261,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBXHCI.SYS
[2014-03-02 11:29:33 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSClient.dll
[2014-03-02 11:29:33 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\easwrt.dll
[2014-03-02 11:29:33 | 000,077,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\easinvoker.exe
[2014-03-02 11:29:32 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdvidcrl.dll
[2014-03-02 11:29:32 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sti.dll
[2014-03-02 11:17:05 | 000,000,000 | R--D | C] -- C:\Windows\BrowserChoice
[2014-03-02 11:05:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\MRT
[2014-03-02 10:43:49 | 000,231,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2014-03-02 10:40:46 | 001,198,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlidsvc.dll
[2014-03-02 10:40:43 | 000,796,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfsrcsnk.dll
[2014-03-02 10:40:42 | 008,712,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\glcndFilter.dll
[2014-03-02 10:40:41 | 008,875,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Data.Pdf.dll
[2014-03-02 10:40:41 | 001,455,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Immersive.dll
[2014-03-02 10:40:39 | 000,648,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfnetcore.dll
[2014-03-02 10:40:36 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
[2014-03-02 10:40:35 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlidprov.dll
[2014-03-02 10:40:34 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll
[2014-03-02 10:40:32 | 000,427,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2014-03-02 10:40:31 | 001,344,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dui70.dll
[2014-03-02 10:40:31 | 000,802,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Globalization.dll
[2014-03-02 10:40:29 | 001,741,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SRH.dll
[2014-03-02 10:40:29 | 000,552,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\twinapi.dll
[2014-03-02 10:40:26 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SettingSync.dll
[2014-03-02 10:40:26 | 000,312,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvproc.dll
[2014-03-02 10:40:26 | 000,301,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wcmsvc.dll
[2014-03-02 10:40:26 | 000,180,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mftranscode.dll
[2014-03-02 10:40:26 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BulkOperationHost.exe
[2014-03-02 10:40:25 | 000,376,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\USBHUB3.SYS
[2014-03-02 10:40:24 | 000,489,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2014-03-02 10:40:23 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapisrv.dll
[2014-03-02 10:40:22 | 000,408,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WerFault.exe
[2014-03-02 10:40:22 | 000,368,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
[2014-03-02 10:40:19 | 000,130,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dumpsd.sys
[2014-03-02 10:40:18 | 000,393,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysmon.ocx
[2014-03-02 10:40:18 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tpmvsc.dll
[2014-03-02 10:40:18 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TetheringMgr.dll
[2014-03-02 10:40:18 | 000,138,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DscCoreConfProv.dll
[2014-03-02 10:40:17 | 000,527,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msra.exe
[2014-03-02 10:40:17 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DscCore.dll
[2014-03-02 10:40:16 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Devices.HumanInterfaceDevice.dll
[2014-03-02 10:40:16 | 000,142,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\VerifierExt.sys
[2014-03-02 10:40:15 | 000,813,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WebcamUi.dll
[2014-03-02 10:40:15 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SensorsClassExtension.dll
[2014-03-02 10:40:14 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msctfuimanager.dll
[2014-03-02 10:40:14 | 000,300,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\vmrdvcore.dll
[2014-03-02 10:40:14 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.Vpn.dll
[2014-03-02 10:40:14 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CryptoWinRT.dll
[2014-03-02 10:40:14 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdsdwmdr.dll
[2014-03-02 10:40:13 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Devices.Usb.dll
[2014-03-02 10:40:13 | 000,263,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MDEServer.exe
[2014-03-02 10:40:13 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdprint.dll
[2014-03-02 10:40:13 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rascustom.dll
[2014-03-02 10:40:13 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BthRadioMedia.dll
[2014-03-02 10:40:12 | 001,160,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\usercpl.dll
[2014-03-02 10:40:12 | 000,528,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wimgapi.dll
[2014-03-02 10:40:12 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DeviceCenter.dll
[2014-03-02 10:40:12 | 000,456,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\recimg.exe
[2014-03-02 10:40:12 | 000,422,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wimserv.exe
[2014-03-02 10:40:12 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ks.sys
[2014-03-02 10:40:12 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.dll
[2014-03-02 10:40:11 | 000,300,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2014-03-02 10:40:11 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
[2014-03-02 10:40:11 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WorkFolders.exe
[2014-03-02 10:40:11 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WorkFoldersRes.dll
[2014-03-02 10:40:11 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
[2014-03-02 10:40:11 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WorkFoldersGPExt.dll
[2014-03-02 10:40:10 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\efswrt.dll
[2014-03-02 10:40:10 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Utilman.exe
[2014-03-02 10:40:09 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\GeofenceMonitorService.dll
[2014-03-02 10:40:09 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpencom.dll
[2014-03-02 10:40:09 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2014-03-02 10:38:32 | 002,065,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2014-03-02 10:38:30 | 000,883,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfasfsrcsnk.dll
[2014-03-02 10:38:28 | 001,210,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\workfolderssvc.dll
[2014-03-02 10:38:27 | 001,799,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
[2014-03-02 10:38:27 | 000,706,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iuilp.dll
[2014-03-02 10:38:26 | 000,920,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2014-03-02 10:38:24 | 000,888,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Media.dll
[2014-03-02 10:38:24 | 000,518,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WWAHost.exe
[2014-03-02 10:38:24 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Networking.BackgroundTransfer.dll
[2014-03-02 10:38:24 | 000,142,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd_02_8086.dll
[2014-03-02 10:38:23 | 000,795,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSWorkspace.dll
[2014-03-02 10:38:23 | 000,578,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2014-03-02 10:38:23 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AppReadiness.dll
[2014-03-02 10:38:23 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AppxAllUserStore.dll
[2014-03-02 10:38:22 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Web.Http.dll
[2014-03-02 10:38:22 | 000,345,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsmf.dll
[2014-03-02 10:38:22 | 000,262,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapphost.dll
[2014-03-02 10:38:22 | 000,088,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptsslp.dll
[2014-03-02 10:38:21 | 000,667,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WorkfoldersControl.dll
[2014-03-02 10:38:21 | 000,326,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2014-03-02 10:38:21 | 000,321,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\spaceport.sys
[2014-03-02 10:38:21 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\portcls.sys
[2014-03-02 10:38:20 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcsvDevice.dll
[2014-03-02 10:38:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dafBth.dll
[2014-03-02 10:38:20 | 000,079,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\embeddedapplauncher.exe
[2014-03-02 10:38:20 | 000,047,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\stornvme.sys
[2014-03-02 10:38:20 | 000,044,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wldp.dll
[2014-03-02 10:38:18 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUSettingsProvider.dll
[2014-03-02 10:38:18 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WorkFoldersShell.dll
[2014-03-02 10:38:18 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TSWbPrxy.exe
[2014-03-02 10:38:17 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eapp3hst.dll
[2014-03-02 10:38:17 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dafWfdProvider.dll
[2014-03-02 10:38:17 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msched.dll
[2014-03-02 10:38:17 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\shsetup.dll
[2014-03-02 10:38:16 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\miutils.dll
[2014-03-02 10:38:16 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\eappgnui.dll
[2014-03-02 10:38:16 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WiFiDisplay.dll
[2014-03-02 10:38:16 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2014-03-02 10:38:15 | 001,634,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2014-03-02 10:38:15 | 000,284,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpclip.exe
[2014-03-02 10:37:35 | 001,128,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AppXDeploymentServer.dll
[2014-03-02 10:37:34 | 005,753,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2014-03-02 10:37:34 | 001,765,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2014-03-02 10:37:33 | 001,765,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dwmcore.dll
[2014-03-02 10:37:33 | 000,406,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2014-03-02 10:37:33 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dcomp.dll
[2014-03-02 10:37:32 | 002,038,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SettingsHandlers.dll
[2014-03-02 10:37:30 | 001,381,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.efi
[2014-03-02 10:37:30 | 001,270,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2014-03-02 10:37:30 | 001,261,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.efi
[2014-03-02 10:37:30 | 001,159,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2014-03-02 10:37:29 | 002,266,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2014-03-02 10:37:28 | 001,391,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPDMC.exe
[2014-03-02 10:37:28 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpncore.dll
[2014-03-02 10:37:28 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AppXDeploymentClient.dll
[2014-03-02 10:37:28 | 000,120,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\SerCx2.sys
[2014-03-02 10:37:28 | 000,036,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\intelpep.sys
[2014-03-02 10:37:27 | 001,816,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Display.dll
[2014-03-02 10:37:27 | 000,734,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AppXDeploymentExtensions.dll
[2014-03-02 10:37:27 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlidcli.dll
[2014-03-02 10:37:27 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appmgr.dll
[2014-03-02 10:37:27 | 000,077,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pdc.sys
[2014-03-02 10:37:27 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CredentialMigrationHandler.dll
[2014-03-02 10:37:07 | 002,804,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2014-03-02 10:37:00 | 002,142,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfcore.dll
[2014-03-02 10:37:00 | 001,371,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\combase.dll
[2014-03-02 10:36:57 | 002,295,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2014-03-02 10:36:57 | 000,669,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmpeg2srcsnk.dll
[2014-03-02 10:36:56 | 001,204,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winmde.dll
[2014-03-02 10:36:56 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SystemEventsBrokerServer.dll
[2014-03-02 10:36:55 | 001,155,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpmde.dll
[2014-03-02 10:36:55 | 000,663,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfmp4srcsnk.dll
[2014-03-02 10:36:55 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bisrv.dll
[2014-03-02 10:36:55 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ubpm.dll
[2014-03-02 10:36:55 | 000,030,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ploptin.dll
[2014-03-02 10:36:54 | 000,433,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfds.dll
[2014-03-02 10:36:54 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Graphics.dll
[2014-03-02 10:36:54 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psmsrv.dll
[2014-03-02 10:36:53 | 000,980,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mispace.dll
[2014-03-02 10:36:53 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\deviceregistration.dll
[2014-03-02 10:36:53 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\BtaMPM.sys
[2014-03-02 10:36:52 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\bi.dll
[2014-03-02 10:36:22 | 000,515,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MrmIndexer.dll
[2014-03-02 10:36:13 | 000,869,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\twinui.appcore.dll
[2014-03-02 10:36:10 | 002,872,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSService.dll
[2014-03-02 10:36:10 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSShared.dll
[2014-03-02 10:36:09 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.ApplicationModel.Store.TestingFramework.dll
[2014-03-02 10:36:09 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSCollect.exe
[2014-03-02 10:36:01 | 000,698,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2014-03-02 10:36:01 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2014-03-02 10:35:59 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2014-03-02 10:35:59 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pcaui.exe
[2014-03-02 10:35:58 | 011,702,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\twinui.dll
[2014-03-02 10:35:56 | 004,961,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Search.dll
[2014-03-02 10:31:56 | 003,482,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SyncEngine.dll
[2014-03-02 10:31:55 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SkyDrive.exe
[2014-03-02 10:31:55 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MrmCoreR.dll
[2014-03-02 10:31:54 | 000,588,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SkyDriveTelemetry.dll
[2014-03-02 10:31:53 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SkyDriveShell.dll
[2014-03-02 10:31:53 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winbici.dll
[2014-03-02 10:31:49 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014-03-02 10:31:49 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014-03-02 10:31:49 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014-03-02 10:31:48 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014-03-02 10:31:48 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014-03-02 10:31:48 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014-03-02 10:31:48 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014-03-02 10:31:47 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014-03-02 10:31:47 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014-03-02 10:31:46 | 004,244,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014-03-02 10:31:42 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014-03-02 10:31:41 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014-03-02 10:31:40 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014-03-02 10:31:40 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014-03-02 10:31:39 | 001,964,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014-03-02 10:30:57 | 003,936,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2014-03-02 10:30:57 | 002,071,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2014-03-02 10:30:04 | 000,977,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Media.Streaming.dll
[2014-03-02 10:30:04 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Devices.Sensors.dll
[2014-03-02 10:30:02 | 000,609,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
[2014-03-02 10:29:57 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MDMAgent.exe
[2014-03-02 10:29:57 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdmregistration.dll
[2014-03-02 10:29:55 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\wfplwfs.sys
[2014-03-02 09:38:00 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\Macromedia
[2014-03-02 09:37:01 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\Adobe
[2014-03-01 23:56:31 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\Skype
[2014-03-01 23:56:24 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\Skype
[2014-03-01 23:56:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014-03-01 23:56:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2014-03-01 23:56:17 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2014-03-01 23:56:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2014-03-01 23:39:01 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\ATI
[2014-03-01 23:39:01 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\ATI
[2014-03-01 23:39:01 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2014-03-01 23:32:43 | 000,000,000 | ---D | C] -- C:\Program Files\AMD AVT
[2014-03-01 23:32:43 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2014-03-01 23:32:39 | 000,000,000 | ---D | C] -- C:\Program Files\AMD APP
[2014-03-01 23:32:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2014-03-01 23:32:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Pro Control Center
[2014-03-01 23:31:57 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2014-03-01 23:31:42 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2014-03-01 23:30:49 | 000,000,000 | ---D | C] -- C:\AMD
[2014-03-01 23:22:50 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\Mozilla
[2014-03-01 23:22:50 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\Mozilla
[2014-03-01 23:22:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2014-03-01 23:22:44 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2014-03-01 23:22:18 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014-03-01 23:19:39 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\Macromedia
[2014-03-01 23:17:30 | 000,000,000 | R--D | C] -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014-03-01 23:17:30 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Searches
[2014-03-01 23:17:30 | 000,000,000 | R--D | C] -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014-03-01 23:17:29 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Contacts
[2014-03-01 23:17:24 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\VirtualStore
[2014-03-01 23:17:23 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\Packages
[2014-03-01 23:17:23 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\Adobe
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\Ustawienia lokalne
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\AppData\Local\Temporary Internet Files
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\Szablony
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\SendTo
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\Recent
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\PrintHood
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\NetHood
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\Documents\Moje wideo
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\Documents\Moje obrazy
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\Moje dokumenty
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\Documents\Moja muzyka
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\Menu Start
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\AppData\Local\Historia
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\Dane aplikacji
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\AppData\Local\Dane aplikacji
[2014-03-01 23:17:16 | 000,000,000 | -HSD | C] -- C:\Users\Nivez\Cookies
[2014-03-01 23:17:15 | 000,000,000 | --SD | C] -- C:\Users\Nivez\AppData\Roaming\Microsoft
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Videos
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Saved Games
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Pictures
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Music
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Links
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Favorites
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Downloads
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Documents
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\Desktop
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014-03-01 23:17:15 | 000,000,000 | R--D | C] -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2014-03-01 23:17:15 | 000,000,000 | -H-D | C] -- C:\Users\Nivez\AppData
[2014-03-01 23:17:15 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\Temp
[2014-03-01 23:17:15 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Local\Microsoft
[2014-03-01 23:17:15 | 000,000,000 | ---D | C] -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014-03-01 23:17:11 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2014-03-01 23:15:16 | 000,000,000 | ---D | C] -- C:\Windows\CSC
[2014-03-01 23:12:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony
[2014-03-01 23:12:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit
[2014-03-01 23:12:31 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo
[2014-03-01 23:12:31 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy
[2014-03-01 23:12:31 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka
[2014-03-01 23:12:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start
[2014-03-01 23:12:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2014-03-01 23:12:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji
[2014-03-01 23:10:20 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2014-03-01 23:09:28 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2014-03-01 23:09:02 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2014-02-26 19:57:16 | 000,038,920 | -H-- | C] (LogMeIn Inc.) -- C:\Windows\System32\drivers\Hamdrv.sys
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2014-03-03 17:22:41 | 000,095,565 | ---- | M] () -- C:\Users\Nivez\Desktop\uruchamianie.jpg
[2014-03-03 17:14:40 | 001,735,328 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2014-03-03 17:14:40 | 000,770,530 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2014-03-03 17:14:40 | 000,687,180 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014-03-03 17:14:40 | 000,155,698 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2014-03-03 17:14:40 | 000,127,812 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014-03-03 17:12:03 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014-03-03 17:10:09 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2014-03-03 17:10:02 | 000,473,168 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014-03-03 17:09:39 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014-03-03 17:09:22 | 1716,666,368 | -HS- | M] () -- C:\hiberfil.sys
[2014-03-03 17:08:39 | 001,048,576 | -HS- | M] () -- C:\Users\Nivez\NTUSER.DAT
[2014-03-03 17:08:39 | 000,065,574 | -H-- | M] () -- C:\Users\Nivez\AppData\Local\IconCache.db
[2014-03-03 17:08:14 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl
[2014-03-03 12:45:44 | 000,005,311 | ---- | M] () -- C:\Users\Nivez\Desktop\indeks.jpg
[2014-03-03 11:58:09 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2014-03-03 09:31:41 | 000,002,893 | ---- | M] () -- C:\Users\Nivez\Desktop\Word 2013.lnk
[2014-03-02 18:27:48 | 000,000,198 | ---- | M] () -- C:\Users\Nivez\Desktop\Half-Life Dedicated Server.url
[2014-03-02 18:24:43 | 000,001,284 | ---- | M] () -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
[2014-03-02 16:53:26 | 000,000,167 | ---- | M] () -- C:\Windows\win.ini
[2014-03-02 16:36:56 | 000,001,912 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2014-03-02 15:44:12 | 000,000,908 | ---- | M] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
[2014-03-02 12:57:22 | 000,000,212 | ---- | M] () -- C:\Users\Nivez\Desktop\Counter-Strike.url
[2014-03-02 12:20:07 | 000,000,937 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk
[2014-03-02 12:06:28 | 000,001,190 | ---- | M] () -- C:\Users\Nivez\Desktop\GG.lnk
[2014-03-01 23:56:20 | 000,002,703 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014-03-01 23:35:35 | 000,524,288 | -HS- | M] () -- C:\Users\Nivez\NTUSER.DAT{fcc73ed7-0b03-11e3-9710-88353a1cbc0c}.TMContainer00000000000000000002.regtrans-ms
[2014-03-01 23:35:35 | 000,524,288 | -HS- | M] () -- C:\Users\Nivez\NTUSER.DAT{fcc73ed7-0b03-11e3-9710-88353a1cbc0c}.TMContainer00000000000000000001.regtrans-ms
[2014-03-01 23:35:35 | 000,065,536 | -HS- | M] () -- C:\Users\Nivez\NTUSER.DAT{fcc73ed7-0b03-11e3-9710-88353a1cbc0c}.TM.blf
[2014-03-01 23:22:45 | 000,001,121 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014-03-01 23:20:21 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2014-03-01 23:17:16 | 000,000,020 | -HS- | M] () -- C:\Users\Nivez\ntuser.ini
[2014-03-01 23:11:38 | 000,065,289 | ---- | M] () -- C:\Windows\System32\license.rtf
[2014-02-26 19:57:16 | 000,038,920 | -H-- | M] (LogMeIn Inc.) -- C:\Windows\System32\drivers\Hamdrv.sys
[2014-02-17 22:00:34 | 000,693,240 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014-02-17 22:00:34 | 000,105,464 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014-02-06 11:20:26 | 002,724,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014-02-06 11:19:55 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014-02-06 11:01:36 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014-02-06 11:00:46 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014-02-06 10:52:56 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014-02-06 10:52:21 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014-02-06 10:47:22 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014-02-06 10:47:18 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014-02-06 10:46:27 | 000,553,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014-02-06 10:34:32 | 000,208,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014-02-06 10:25:43 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014-02-06 10:25:36 | 004,244,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014-02-06 10:13:13 | 000,524,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014-02-06 10:09:30 | 001,964,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014-02-06 09:34:31 | 000,703,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2014-03-03 17:22:41 | 000,095,565 | ---- | C] () -- C:\Users\Nivez\Desktop\uruchamianie.jpg
[2014-03-03 17:08:14 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2014-03-03 17:07:03 | 005,681,192 | ---- | C] () -- C:\Windows\System32\drivers\rtvienna.dat
[2014-03-03 17:06:58 | 000,681,905 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2014-03-03 17:06:43 | 000,502,584 | ---- | C] () -- C:\Windows\System32\audioLibVc.dll
[2014-03-03 17:06:43 | 000,188,696 | ---- | C] () -- C:\Windows\System32\AcpiServiceVnA.dll
[2014-03-03 12:45:44 | 000,005,311 | ---- | C] () -- C:\Users\Nivez\Desktop\indeks.jpg
[2014-03-03 11:58:09 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2014-03-03 09:31:41 | 000,002,893 | ---- | C] () -- C:\Users\Nivez\Desktop\Word 2013.lnk
[2014-03-02 18:27:48 | 000,000,198 | ---- | C] () -- C:\Users\Nivez\Desktop\Half-Life Dedicated Server.url
[2014-03-02 18:24:43 | 000,001,284 | ---- | C] () -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk
[2014-03-02 16:36:56 | 000,001,912 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2014-03-02 15:44:12 | 000,000,908 | ---- | C] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
[2014-03-02 12:57:22 | 000,000,212 | ---- | C] () -- C:\Users\Nivez\Desktop\Counter-Strike.url
[2014-03-02 12:20:07 | 000,000,937 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk
[2014-03-02 12:06:28 | 000,001,190 | ---- | C] () -- C:\Users\Nivez\Desktop\GG.lnk
[2014-03-02 12:06:25 | 000,001,198 | ---- | C] () -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
[2014-03-02 11:54:04 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2014-03-02 11:54:04 | 000,328,162 | ---- | C] () -- C:\Windows\System32\drivers\ativcaxx.cpa
[2014-03-02 11:54:04 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2014-03-02 11:54:04 | 000,052,496 | ---- | C] () -- C:\Windows\System32\drivers\ativvpxx.vp
[2014-03-02 11:54:04 | 000,002,096 | ---- | C] () -- C:\Windows\System32\drivers\ativpkxx.vp
[2014-03-02 11:54:04 | 000,002,096 | ---- | C] () -- C:\Windows\System32\drivers\ativokxx.vp
[2014-03-02 11:54:04 | 000,002,096 | ---- | C] () -- C:\Windows\System32\drivers\ativdkxx.vp
[2014-03-02 11:54:04 | 000,000,929 | ---- | C] () -- C:\Windows\System32\drivers\ativcaxx.vp
[2014-03-02 11:54:03 | 000,154,206 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2014-03-02 11:54:03 | 000,010,672 | ---- | C] () -- C:\Windows\atiogl.xml
[2014-03-02 11:29:32 | 000,103,936 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll
[2014-03-02 10:36:53 | 000,385,614 | ---- | C] () -- C:\Windows\System32\ApnDatabase.xml
[2014-03-02 10:35:54 | 000,009,701 | ---- | C] () -- C:\Windows\System32\connectedsearch-results.searchconnector-ms
[2014-03-01 23:56:20 | 000,002,703 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014-03-01 23:35:34 | 000,065,574 | -H-- | C] () -- C:\Users\Nivez\AppData\Local\IconCache.db
[2014-03-01 23:22:45 | 000,001,133 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2014-03-01 23:22:45 | 000,001,121 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014-03-01 23:20:58 | 001,735,328 | ---- | C] () -- C:\Windows\System32\PerfStringBackup.INI
[2014-03-01 23:20:21 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2014-03-01 23:17:23 | 000,001,454 | ---- | C] () -- C:\Users\Nivez\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014-03-01 23:17:16 | 000,524,288 | -HS- | C] () -- C:\Users\Nivez\NTUSER.DAT{fcc73ed7-0b03-11e3-9710-88353a1cbc0c}.TMContainer00000000000000000002.regtrans-ms
[2014-03-01 23:17:16 | 000,524,288 | -HS- | C] () -- C:\Users\Nivez\NTUSER.DAT{fcc73ed7-0b03-11e3-9710-88353a1cbc0c}.TMContainer00000000000000000001.regtrans-ms
[2014-03-01 23:17:16 | 000,065,536 | -HS- | C] () -- C:\Users\Nivez\NTUSER.DAT{fcc73ed7-0b03-11e3-9710-88353a1cbc0c}.TM.blf
[2014-03-01 23:17:16 | 000,000,020 | -HS- | C] () -- C:\Users\Nivez\ntuser.ini
[2014-03-01 23:17:15 | 001,048,576 | -HS- | C] () -- C:\Users\Nivez\NTUSER.DAT
[2014-03-01 23:12:06 | 1716,666,368 | -HS- | C] () -- C:\hiberfil.sys
[2014-03-01 23:09:32 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys
[2013-08-22 15:35:43 | 000,770,530 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2013-08-22 15:35:43 | 000,342,912 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2013-08-22 15:35:43 | 000,155,698 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2013-08-22 15:35:43 | 000,041,236 | ---- | C] () -- C:\Windows\System32\perfd015.dat
[2013-08-22 09:19:09 | 000,687,180 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2013-08-22 09:19:09 | 000,296,742 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2013-08-22 09:19:09 | 000,127,812 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2013-08-22 09:19:09 | 000,033,362 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2013-08-22 09:17:31 | 000,000,389 | ---- | C] () -- C:\Windows\System32\AutoWorkplace.exe.config
[2013-08-22 09:17:30 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2013-08-22 09:17:29 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2013-08-22 08:24:03 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2013-08-22 08:22:45 | 000,473,168 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013-08-22 07:13:56 | 000,000,219 | ---- | C] () -- C:\Windows\system.ini
[2013-08-22 07:13:56 | 000,000,167 | ---- | C] () -- C:\Windows\win.ini
[2013-08-22 04:33:54 | 000,073,216 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2013-08-22 04:32:36 | 000,046,080 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2013-08-22 00:57:03 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2013-08-22 00:55:20 | 000,364,544 | ---- | C] () -- C:\Windows\System32\msjetoledb40.dll
[2013-08-22 00:52:39 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2013-08-22 00:52:35 | 001,520,828 | ---- | C] () -- C:\Windows\System32\WpcNBModel.bin
[2013-08-22 00:52:35 | 000,526,068 | ---- | C] () -- C:\Windows\System32\staticurllist.bin
[2013-08-22 00:51:23 | 000,060,124 | ---- | C] () -- C:\Windows\System32\tcpmon.ini
[2013-08-22 00:50:57 | 000,008,192 | ---- | C] () -- C:\Windows\System32\settings.dat
[2013-08-22 00:48:14 | 000,049,963 | ---- | C] () -- C:\Windows\System32\srms.dat
[2012-11-16 17:01:04 | 000,159,232 | ---- | C] () -- C:\Windows\System32\clinfo.exe
[2012-04-18 19:39:06 | 000,028,672 | ---- | C] () -- C:\Windows\System32\kdbsdk32.dll
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013-12-09 05:51:04 | 018,643,560 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013-08-22 03:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2013-08-22 03:42:12 | 000,390,144 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2014-03-02 16:47:41 | 000,000,000 | ---D | M] -- C:\Users\Nivez\AppData\Roaming\DAEMON Tools Lite
[2014-03-03 16:09:00 | 000,000,000 | ---D | M] -- C:\Users\Nivez\AppData\Roaming\GG
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >