Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:12-06-2014 02 Ran by Michał (administrator) on MICHAL-PC on 13-06-2014 10:55:06 Running from C:\Users\Michał\Desktop\Viry Platform: Microsoft Windows 8.1 Pro (X86) OS Language: Polish Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe (Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Sanford, L.P.) C:\Program Files\DYMO\DYMO Label Software\DymoPnpService.exe (Google Inc.) C:\Program Files\Google\Update\1.3.24.7\GoogleCrashHandler.exe (Firebird Project) C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe (FabulaTech) C:\Windows\System32\ftvspksrv.exe (Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe (Firebird Project) C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (Greenshot) C:\Program Files\Greenshot\Greenshot.exe (Microsoft Corporation) C:\Windows\WindowsMobile\wmdcBase.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Sanford, L.P.) C:\Program Files\DYMO\DYMO Label Software\DymoQuickPrint.exe () C:\Program Files\G10 Multi-Mode\G10-Editor.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Dropbox, Inc.) C:\Users\Michał\AppData\Roaming\Dropbox\bin\Dropbox.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe (Opera Software) C:\Program Files\Opera\opera.exe () C:\Users\Michał\Desktop\Viry\emv73jt2.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [495616 2013-12-13] (Greenshot) HKLM\...\Run: [DLSService] => "C:\Program Files\DYMO\DYMO Label Software\DLSService.exe" HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard) HKLM\...\Run: [] => [X] HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [648072 2007-05-31] (Microsoft Corporation) HKU\S-1-5-21-1283838448-4104211232-2969665015-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.) HKU\S-1-5-21-1283838448-4104211232-2969665015-1001\...\Run: [DymoQuickPrint] => C:\Program Files\DYMO\DYMO Label Software\DymoQuickPrint.exe [1867056 2014-02-03] (Sanford, L.P.) HKU\S-1-5-21-1283838448-4104211232-2969665015-1001\...\Run: [OscarEditor] => C:\Program Files\G10 Multi-Mode\G10-Editor.exe [3344384 2011-08-31] () HKU\S-1-5-21-1283838448-4104211232-2969665015-1001\...\Run: [dc2k5] => C:\Windows\SVIQ.EXE HKU\S-1-5-21-1283838448-4104211232-2969665015-1001\...\Run: [Fun] => C:\Windows\system\Fun.exe HKU\S-1-5-21-1283838448-4104211232-2969665015-1001\...\Run: [dc] => C:\Windows\dc.exe HKU\S-1-5-21-1283838448-4104211232-2969665015-1001\...\Run: [AutoScreenRecorder 3.1 Free] => [X] HKU\S-1-5-21-1283838448-4104211232-2969665015-1001\...\Run: [Wisdom-soft AutoScreenRecorder 3.1 Free] => 0 HKU\S-1-5-21-1283838448-4104211232-2969665015-1001\...\CurrentVersion\Windows: [Load] C:\Windows\inf\Other.exe <===== ATTENTION Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\Michał\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB69DDD80DD48CF01 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM - DefaultScope value is missing. BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) DPF: {ADACAA8F-3595-47FE-9C31-9C7471B9BEC7} http://192.168.0.10/ssi.cgi/cab/OCXChecker_8320.cab DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com/bin/srldetect_intel_4.5.22.0.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.11.1 FireFox: ======== FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll () FF Plugin: @dymo.com/DymoLabelFramework - C:\Program Files\DYMO\DYMO Label Software\Framework\npDYMOLabelFramework.dll ( Sanford L.P.) FF Plugin: @java.com/DTPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @lattice3d.com/XVL Player - C:\Program Files\Lattice\Player3\npxvlplay.dll (Lattice Technology Co.,Ltd.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @citrixonline.com/appdetectorplugin - C:\Users\Michał\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online) FF HKLM\...\Firefox\Extensions: [url_advisor@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com FF Extension: 卡巴斯基網址顧問 - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2014-03-03] FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com FF Extension: 虛擬鍵盤 - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-03-03] FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com FF Extension: 惡意網站攔截器 - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2014-03-03] FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com FF Extension: Chặn quảng cáo - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2014-03-03] FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2014-03-03] Chrome: ======= CHR HomePage: CHR Extension: (Dokumenty Google) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-25] CHR Extension: (Dysk Google) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-25] CHR Extension: (YouTube) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-25] CHR Extension: (Szukaj w Google) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-25] CHR Extension: (Kaspersky URL Advisor) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2014-04-25] CHR Extension: (Bezpieczne pieniądze) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2014-04-25] CHR Extension: (Blokowanie niebezpiecznych stron internetowych) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2014-04-25] CHR Extension: (Virtual Keyboard) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-04-25] CHR Extension: (Google Wallet) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-25] CHR Extension: (Gmail) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-25] CHR Extension: (Blokowanie banerów) - C:\Users\Michał\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-04-25] CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2013-10-16] CHR HKLM\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx [2013-10-16] CHR HKLM\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-10-16] CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx [2013-10-16] CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2013-10-16] ========================== Services (Whitelisted) ================= R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-16] (Kaspersky Lab ZAO) R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [1680088 2013-10-28] (Broadcom Corporation.) S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [279000 2014-01-30] (Intel Corporation) R2 DymoPnpService; C:\Program Files\DYMO\DYMO Label Software\DymoPnpService.exe [33072 2014-02-03] (Sanford, L.P.) R2 FirebirdGuardianDefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe [81920 2008-06-13] (Firebird Project) [File not signed] R3 FirebirdServerDefaultInstance; C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe [2723840 2008-06-13] (Firebird Project) [File not signed] R2 ftvspksrv; C:\Windows\system32\ftvspksrv.exe [462520 2013-07-18] (FabulaTech) R3 ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [169752 2012-04-24] (Intel Corporation) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed] S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [105472 2013-08-22] (Microsoft Corporation) S2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [977088 2014-03-02] () [File not signed] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [279784 2014-03-24] (Microsoft Corporation) S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [20992 2013-08-22] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [22224 2014-03-24] (Microsoft Corporation) S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1210368 2014-04-03] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [25600 2014-02-22] (Microsoft Corporation) R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [175320 2013-10-28] (Broadcom Corporation.) S3 btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [144600 2013-10-28] (Broadcom Corporation.) R3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [137632 2012-10-19] (Windows (R) Win 7 DDK provider) R3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [22432 2012-10-19] (Windows (R) Win 7 DDK provider) R1 eusk2par; C:\Windows\system32\Drivers\eusk2par.sys [30656 2006-12-13] (Eutron) R3 FTDIBUS; C:\Windows\system32\drivers\ftdibus.sys [77808 2014-01-31] (FTDI Ltd.) R3 ftvspenum; C:\Windows\System32\drivers\ftvspenum.sys [38456 2013-02-22] (FabulaTech) S3 ftvsport; C:\Windows\system32\drivers\ftvsport.sys [46776 2013-02-22] (FabulaTech) S3 GPIO; C:\Windows\System32\drivers\iaiogpio.sys [22016 2013-07-23] (Intel Corporation) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2014-03-03] (Kaspersky Lab ZAO) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [24672 2014-03-03] (Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [552032 2014-03-25] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [25696 2013-10-16] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [25184 2014-03-03] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [25696 2013-10-16] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [14432 2013-04-12] (Kaspersky Lab ZAO) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [54880 2014-03-25] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [144992 2014-03-03] (Kaspersky Lab ZAO) R3 MEI; C:\Windows\System32\drivers\HECI.sys [41088 2010-10-20] (Intel Corporation) R2 npdrv; C:\Windows\system32\drivers\npdrv.sys [56328 2012-11-23] (Moxa Inc. ) R2 npdrvfilter; C:\Windows\system32\drivers\npdrvfilter.sys [38680 2012-11-23] (Moxa Inc. ) S3 PciSPorts; C:\Windows\system32\DRIVERS\PciSPorts.sys [115200 2008-12-19] () R3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [92504 2014-03-24] (Microsoft Corporation) S2 WISGO; C:\Windows\System32\Drivers\wisgo.sys [98272 2003-01-20] (WIS Technologies Inc.) [File not signed] R0 Wof; C:\Windows\system32\Drivers\Wof.sys [138584 2014-03-13] (Microsoft Corporation) S3 WUDFSensorLP; C:\Windows\System32\drivers\WUDFRd.sys [187392 2013-08-22] (Microsoft Corporation) S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [187392 2013-08-22] (Microsoft Corporation) U5 klflt; C:\Windows\System32\Drivers\klflt.sys [94304 2014-03-25] (Kaspersky Lab ZAO) U3 uwdyypob; \??\C:\Users\MICHA~1\AppData\Local\Temp\uwdyypob.sys [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-06-13 10:54 - 2014-06-13 10:55 - 00000000 ____D () C:\FRST 2014-06-13 10:29 - 2014-06-13 10:29 - 00000000 ____D () C:\Users\Michał\Desktop\Waga - orange obsługa barier 2014-06-13 10:26 - 2014-06-13 10:55 - 00000000 ____D () C:\Users\Michał\Desktop\Viry 2014-06-13 09:52 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll 2014-06-13 09:21 - 2014-06-13 09:21 - 00000999 _____ () C:\Users\Public\Desktop\GSW.lnk 2014-06-12 08:50 - 2014-05-05 06:02 - 02826240 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-06-12 08:50 - 2014-05-03 08:36 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2014-06-12 08:50 - 2014-05-01 13:00 - 02257608 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe 2014-06-12 08:50 - 2014-05-01 13:00 - 00046512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wpcfltr.sys 2014-06-12 08:50 - 2014-05-01 08:51 - 02344448 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll 2014-06-12 08:50 - 2014-05-01 08:42 - 02045440 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll 2014-06-12 08:50 - 2014-05-01 07:31 - 02366976 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll 2014-06-12 08:49 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-06-12 08:49 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-06-12 08:49 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-06-12 08:49 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-06-12 08:49 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-06-12 08:49 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-06-12 08:49 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-06-12 08:49 - 2014-05-30 09:57 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-06-12 08:49 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-06-12 08:49 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-06-12 08:49 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-06-12 08:49 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-06-12 08:49 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-06-12 08:49 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-06-12 08:49 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-06-12 08:49 - 2014-05-19 07:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe 2014-06-12 08:49 - 2014-05-19 07:23 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe 2014-06-12 08:49 - 2014-05-10 05:22 - 01312256 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-06-12 08:49 - 2014-05-09 01:08 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys 2014-06-12 08:49 - 2014-05-03 08:12 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\WSReset.exe 2014-06-12 08:49 - 2014-05-03 06:07 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-06-12 08:49 - 2014-05-03 05:38 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-06-12 08:49 - 2014-04-30 12:10 - 01090296 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-06-12 08:49 - 2014-04-30 05:47 - 01509888 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2014-06-12 08:49 - 2014-04-30 05:43 - 01046016 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2014-06-12 08:49 - 2014-04-18 15:43 - 00031064 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll 2014-06-12 08:49 - 2014-04-18 15:29 - 01200288 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll 2014-06-12 08:49 - 2014-04-18 10:58 - 11792384 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-06-12 08:49 - 2014-04-18 10:51 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\energyprov.dll 2014-06-12 08:49 - 2014-04-18 10:01 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2014-06-12 08:49 - 2014-04-18 09:51 - 00836608 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll 2014-06-12 08:49 - 2014-04-18 09:49 - 05833216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll 2014-06-12 08:49 - 2014-04-14 10:01 - 00285144 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll 2014-06-12 08:49 - 2014-04-11 07:29 - 01016320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys 2014-06-12 08:49 - 2014-04-11 06:23 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll 2014-06-12 08:49 - 2014-04-11 05:27 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll 2014-06-12 08:49 - 2014-04-09 12:47 - 00294744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2014-06-12 08:49 - 2014-04-09 07:44 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2014-06-12 08:49 - 2014-04-09 06:01 - 01089536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-06-12 08:49 - 2014-04-09 05:22 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll 2014-06-12 08:49 - 2014-04-08 01:47 - 00502104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2014-06-12 08:49 - 2014-04-06 17:27 - 00311128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2014-06-12 08:49 - 2014-04-06 17:27 - 00240472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2014-06-12 08:49 - 2014-04-06 17:23 - 00098584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll 2014-06-12 08:49 - 2014-04-06 17:22 - 18755672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-06-12 08:49 - 2014-04-06 17:22 - 00178184 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll 2014-06-12 08:49 - 2014-04-06 17:18 - 00271192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys 2014-06-12 08:49 - 2014-04-06 17:16 - 02144984 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2014-06-12 08:49 - 2014-04-06 17:16 - 01209616 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll 2014-06-12 08:49 - 2014-04-06 17:16 - 01159520 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2014-06-12 08:49 - 2014-04-06 17:16 - 00707048 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2014-06-12 08:49 - 2014-04-06 17:16 - 00669856 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll 2014-06-12 08:49 - 2014-04-06 17:16 - 00518544 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-06-12 08:49 - 2014-04-06 17:16 - 00406504 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll 2014-06-12 08:49 - 2014-04-06 17:16 - 00387896 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2014-06-12 08:49 - 2014-04-06 17:16 - 00326024 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2014-06-12 08:49 - 2014-04-06 17:16 - 00305768 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll 2014-06-12 08:49 - 2014-04-06 17:16 - 00194752 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2014-06-12 08:49 - 2014-04-06 15:06 - 03497472 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-06-12 08:49 - 2014-04-06 14:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2014-06-12 08:49 - 2014-04-06 14:00 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2014-06-12 08:49 - 2014-04-06 13:54 - 12711424 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2014-06-12 08:49 - 2014-04-06 13:47 - 00264704 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe 2014-06-12 08:49 - 2014-04-06 13:40 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2014-06-12 08:49 - 2014-04-06 12:58 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll 2014-06-12 08:49 - 2014-04-06 12:55 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2014-06-12 08:49 - 2014-04-06 12:44 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-06-12 08:49 - 2014-04-06 12:37 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2014-06-12 08:49 - 2014-04-06 12:36 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2014-06-12 08:49 - 2014-04-06 11:59 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll 2014-06-12 08:49 - 2014-04-03 06:03 - 00230808 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2014-06-12 08:49 - 2014-04-03 06:03 - 00111528 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2014-06-12 08:49 - 2014-04-03 05:53 - 01797896 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2014-06-12 08:49 - 2014-04-03 05:46 - 01871704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-06-12 08:49 - 2014-04-03 05:46 - 00286040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-06-12 08:49 - 2014-04-03 04:46 - 03563008 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2014-06-12 08:49 - 2014-04-03 04:45 - 00560128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2014-06-12 08:49 - 2014-04-03 04:44 - 01210368 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll 2014-06-12 08:49 - 2014-04-03 04:24 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2014-06-12 08:49 - 2014-04-03 04:24 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2014-06-12 08:49 - 2014-04-03 04:23 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll 2014-06-12 08:49 - 2014-04-01 07:09 - 00333656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2014-06-12 08:49 - 2014-03-31 05:34 - 05786968 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2014-06-12 08:49 - 2014-03-31 02:41 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\d3d8thk.dll 2014-06-12 08:49 - 2014-03-31 01:26 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll 2014-06-12 08:49 - 2014-03-31 01:13 - 00667136 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll 2014-06-12 08:49 - 2014-03-31 00:37 - 01167360 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2014-06-12 08:49 - 2014-03-31 00:35 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll 2014-06-12 08:49 - 2014-03-31 00:09 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2014-06-12 08:49 - 2014-03-30 23:49 - 00672256 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2014-06-12 08:49 - 2014-03-28 11:04 - 00328984 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2014-06-12 08:49 - 2014-03-27 07:21 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2014-06-12 08:49 - 2014-03-27 06:48 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll 2014-06-12 08:49 - 2014-03-27 06:19 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll 2014-06-12 08:49 - 2014-03-27 05:22 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2014-06-12 08:49 - 2014-03-27 05:03 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll 2014-06-12 08:49 - 2014-03-27 04:59 - 00970240 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2014-06-12 08:49 - 2014-03-25 00:57 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2014-06-12 08:49 - 2014-03-21 05:46 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll 2014-06-12 08:49 - 2014-03-20 03:20 - 00229344 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe 2014-06-12 08:49 - 2014-03-20 01:38 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2014-06-12 08:49 - 2014-03-20 01:33 - 05774848 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2014-06-12 08:49 - 2014-03-19 09:17 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll 2014-06-12 08:49 - 2014-03-19 09:09 - 00375296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys 2014-06-12 08:49 - 2014-03-19 07:56 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll 2014-06-12 08:49 - 2014-03-19 07:00 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll 2014-06-12 08:49 - 2014-03-19 06:51 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll 2014-06-12 08:49 - 2014-03-19 06:47 - 01309184 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll 2014-06-12 08:49 - 2014-03-19 06:23 - 01631232 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll 2014-06-12 08:49 - 2014-03-19 06:14 - 02130432 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll 2014-06-12 08:49 - 2014-03-18 09:22 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys 2014-06-12 08:49 - 2014-03-18 06:52 - 05104640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2014-06-12 08:49 - 2014-03-17 06:11 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2014-06-12 08:49 - 2014-03-17 04:45 - 00370176 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2014-06-12 08:49 - 2014-03-17 04:36 - 00834560 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2014-06-12 08:49 - 2014-03-14 08:10 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll 2014-06-12 08:49 - 2014-03-06 12:37 - 00264536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2014-06-12 08:49 - 2014-02-06 12:19 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-06-12 08:49 - 2014-02-06 12:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-06-12 08:49 - 2014-02-06 11:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-06-12 08:49 - 2014-02-06 11:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-06-12 08:49 - 2014-02-06 11:47 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-06-12 08:49 - 2014-02-06 11:47 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-06-12 08:49 - 2014-02-06 11:25 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-06-12 08:45 - 2014-06-12 08:45 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-06-11 09:22 - 2014-06-11 09:25 - 00000000 ____D () C:\Users\Michał\Desktop\Velvet 2014-06-10 13:58 - 2013-07-03 17:59 - 01182140 _____ (GS Software ) C:\Users\Michał\Documents\SetupConfTrick.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00536576 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00256192 _____ (Microsoft Corporation) C:\Windows\winhelp.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00221600 _____ (Microsoft Corporation) C:\Windows\system32\lanman.drv 2014-06-10 11:10 - 2014-06-10 11:10 - 00177856 _____ (Microsoft Corporation) C:\Windows\system32\typelib.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00169520 _____ (Microsoft Corporation) C:\Windows\system32\ole2disp.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00153008 _____ (Microsoft Corporation) C:\Windows\system32\ole2nls.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00127213 _____ () C:\Windows\system32\ega.cpi 2014-06-10 11:10 - 2014-06-10 11:10 - 00108464 _____ (Microsoft Corporation) C:\Windows\system32\netapi.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00092320 _____ (Microsoft Corporation) C:\Windows\system32\krnl386.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\olecli.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00082944 _____ (Microsoft Corporation) C:\Windows\system\olecli.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00069886 _____ () C:\Windows\system32\edit.com 2014-06-10 11:10 - 2014-06-10 11:10 - 00068992 _____ (Microsoft Corporation) C:\Windows\system32\MMSYSTEM.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00068992 _____ (Microsoft Corporation) C:\Windows\system\MMSYSTEM.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\graftabl.com 2014-06-10 11:10 - 2014-06-10 11:10 - 00053600 _____ () C:\Windows\system32\dosx.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00050648 _____ () C:\Windows\system32\COMMAND.COM 2014-06-10 11:10 - 2014-06-10 11:10 - 00047840 _____ (Microsoft Corporation) C:\Windows\system32\USER.EXE 2014-06-10 11:10 - 2014-06-10 11:10 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\pmspl.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00042809 _____ () C:\Windows\system32\KEY01.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00042592 _____ (Microsoft Corporation) C:\Windows\system32\ole2.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00042537 _____ () C:\Windows\system32\KEYBOARD.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\DDEML.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00039274 _____ () C:\Windows\system32\mem.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00035776 _____ () C:\Windows\system32\NTIO411.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00035552 _____ () C:\Windows\system32\NTIO412.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00034688 _____ () C:\Windows\system32\NTIO804.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00034688 _____ () C:\Windows\system32\NTIO404.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00033968 _____ () C:\Windows\system32\NTIO.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00032816 _____ (Microsoft Corporation) C:\Windows\system32\COMMDLG.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00032816 _____ (Microsoft Corporation) C:\Windows\system\COMMDLG.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00029370 _____ () C:\Windows\system32\NTDOS411.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00029274 _____ () C:\Windows\system32\NTDOS412.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00029146 _____ () C:\Windows\system32\NTDOS804.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00029146 _____ () C:\Windows\system32\NTDOS404.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00028420 _____ () C:\Windows\system32\bios1.rom 2014-06-10 11:10 - 2014-06-10 11:10 - 00028112 _____ (Microsoft Corporation) C:\Windows\system32\DRWATSON.EXE 2014-06-10 11:10 - 2014-06-10 11:10 - 00027866 _____ () C:\Windows\system32\NTDOS.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00027792 _____ (Microsoft Corporation) C:\Windows\system32\compobj.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00027200 _____ (Microsoft Corporation) C:\Windows\system32\ctl3dv2.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00027097 _____ () C:\Windows\system32\country.sys 2014-06-10 11:10 - 2014-06-10 11:10 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\GDI.EXE 2014-06-10 11:10 - 2014-06-10 11:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\OLESVR.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system\OLESVR.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\vdmredir.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00021232 _____ () C:\Windows\system32\graphics.pro 2014-06-10 11:10 - 2014-06-10 11:10 - 00020634 _____ () C:\Windows\system32\debug.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00019694 _____ () C:\Windows\system32\GRAPHICS.COM 2014-06-10 11:10 - 2014-06-10 11:10 - 00018896 _____ (Microsoft Corporation) C:\Windows\system32\sysedit.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00018832 _____ () C:\Windows\system32\v7vga.rom 2014-06-10 11:10 - 2014-06-10 11:10 - 00014710 _____ () C:\Windows\system32\KB16.COM 2014-06-10 11:10 - 2014-06-10 11:10 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\ntvdmd.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00013888 _____ (Microsoft Corporation) C:\Windows\system32\TOOLHELP.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00013312 _____ () C:\Windows\system32\win87em.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00012704 _____ (Microsoft Corporation) C:\Windows\system32\WFWNET.DRV 2014-06-10 11:10 - 2014-06-10 11:10 - 00012704 _____ (Microsoft Corporation) C:\Windows\system\WFWNET.DRV 2014-06-10 11:10 - 2014-06-10 11:10 - 00012642 _____ () C:\Windows\system32\edlin.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00012498 _____ () C:\Windows\system32\append.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00011753 _____ () C:\Windows\system32\setver.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00010790 _____ () C:\Windows\system32\EDIT.HLP 2014-06-10 11:10 - 2014-06-10 11:10 - 00010544 _____ (Microsoft Corporation) C:\Windows\system32\COMM.drv 2014-06-10 11:10 - 2014-06-10 11:10 - 00009936 _____ (Microsoft Corporation) C:\Windows\system32\lzexpand.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00009936 _____ (Microsoft Corporation) C:\Windows\system\lzexpand.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\WIFEMAN.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00009029 _____ () C:\Windows\system32\ANSI.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00009008 _____ (Microsoft Corporation) C:\Windows\system32\ver.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00009008 _____ (Microsoft Corporation) C:\Windows\system\ver.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00008424 _____ () C:\Windows\system32\exe2bin.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\win.com 2014-06-10 11:10 - 2014-06-10 11:10 - 00008191 _____ () C:\Windows\system32\bios4.rom 2014-06-10 11:10 - 2014-06-10 11:10 - 00007052 _____ () C:\Windows\system32\nlsfunc.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00005532 _____ (Microsoft Corporation) C:\Windows\system\stdole.tlb 2014-06-10 11:10 - 2014-06-10 11:10 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\WINNLS.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\SHELL.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00005120 _____ (Microsoft Corporation) C:\Windows\system\SHELL.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00004768 _____ () C:\Windows\system32\HIMEM.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00004208 _____ (Microsoft Corporation) C:\Windows\system32\storage.dll 2014-06-10 10:43 - 2014-06-10 13:53 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DBF Viewer 2000 2014-06-10 10:15 - 2014-06-10 10:15 - 00048430 _____ () C:\Users\Michał\Desktop\48b222584a409ebc6311a4e2b7c89ef8.zip 2014-06-10 10:15 - 2014-06-10 10:15 - 00000000 ____D () C:\Users\Michał\Desktop\48b222584a409ebc6311a4e2b7c89ef8 2014-06-10 09:50 - 2014-06-13 09:47 - 00000000 ____D () C:\Users\Michał\Desktop\tipex 2014-06-09 13:20 - 2014-06-09 13:20 - 00000000 ____D () C:\Users\Michał\AppData\Local\GHISLER 2014-06-09 12:31 - 2014-06-10 11:00 - 00000000 ____D () C:\Users\Michał\Desktop\EWP 2014-06-06 11:01 - 2009-07-23 09:07 - 00082944 _____ () C:\Windows\system32\Drivers\PciPPorts.sys 2014-06-06 11:01 - 2008-12-19 04:25 - 00115200 _____ () C:\Windows\system32\Drivers\PciSPorts.sys 2014-06-06 11:01 - 2008-12-19 04:22 - 00065536 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Drivers\PciIsaSerial.sys 2014-06-06 11:01 - 2008-08-21 09:40 - 00022728 _____ () C:\Windows\system32\M65Lang.ini 2014-06-06 11:01 - 2008-04-25 08:37 - 00063488 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\system32\PciPorts.dll 2014-06-06 10:02 - 2014-06-06 10:02 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TCPIP Builder 2014-06-06 10:02 - 2014-06-06 10:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TCPIP Builder 2014-06-06 10:02 - 2014-06-06 10:02 - 00000000 ____D () C:\Program Files\TCPIP_Builder 2014-06-06 09:47 - 2014-06-06 10:43 - 00000600 _____ () C:\Users\Michał\AppData\Local\PUTTY.RND 2014-06-05 08:54 - 2014-06-05 08:54 - 00000000 ____D () C:\Users\Michał\Desktop\Rezultaty testów 2014-06-05 08:44 - 2014-06-05 08:44 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-06-02 10:59 - 2014-06-02 10:59 - 00001792 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GV IP Device Utility.lnk 2014-06-02 10:59 - 2014-06-02 10:59 - 00000000 ____D () C:\Program Files\v8600 2014-06-02 09:16 - 2014-06-02 09:16 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2014-05-30 14:58 - 2014-05-30 14:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Abyssmedia 2014-05-30 14:58 - 2014-05-30 14:58 - 00000000 ____D () C:\Program Files\Abyssmedia 2014-05-30 13:46 - 2014-05-30 13:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A4TECH Software 2014-05-30 13:46 - 2014-05-30 13:46 - 00000000 ____D () C:\Program Files\G10 Multi-Mode 2014-05-30 13:45 - 2014-05-30 13:45 - 00000000 ____D () C:\Program Files\OscarG10 2014-05-28 13:57 - 2014-05-28 13:59 - 00000180 _____ () C:\Users\Michał\Desktop\omron.txt 2014-05-28 12:32 - 2014-05-28 12:32 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MOXA 2014-05-28 12:32 - 2014-05-28 12:32 - 00000000 ____D () C:\Program Files\Moxa 2014-05-23 09:22 - 2014-05-23 09:22 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\GS-Software 2014-05-23 08:38 - 2014-06-13 10:38 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-05-22 15:00 - 2014-05-22 16:58 - 00000000 ____D () C:\Backoup CD_BURN 2014-05-22 14:46 - 2014-05-22 14:46 - 00000000 ____D () C:\ProgramData\K-PZ 2014-05-22 14:46 - 2014-05-22 14:46 - 00000000 ____D () C:\Program Files\K-PZ 2014-05-22 14:42 - 2013-10-21 15:36 - 47695304 _____ () C:\Users\Michał\Documents\Setup.zip 2014-05-21 12:57 - 2014-05-21 12:57 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rinstrum 2014-05-21 12:57 - 2014-05-21 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rinstrum 2014-05-21 12:57 - 2014-05-21 12:57 - 00000000 ____D () C:\Program Files\Rinstrum 2014-05-16 12:25 - 2014-05-16 12:25 - 00000000 ____D () C:\Users\Michał\AppData\Local\Apps\2.0 2014-05-16 11:37 - 2014-06-09 13:16 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\GHISLER 2014-05-16 11:37 - 2014-05-16 11:37 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander 2014-05-16 11:37 - 2014-05-16 11:37 - 00000000 ____D () C:\Program Files\totalcmd 2014-05-16 11:37 - 2014-04-30 08:51 - 00000545 _____ () C:\Windows\UC.PIF 2014-05-16 11:37 - 2014-04-30 08:51 - 00000545 _____ () C:\Windows\RAR.PIF 2014-05-16 11:37 - 2014-04-30 08:51 - 00000545 _____ () C:\Windows\PKZIP.PIF 2014-05-16 11:37 - 2014-04-30 08:51 - 00000545 _____ () C:\Windows\PKUNZIP.PIF 2014-05-16 11:37 - 2014-04-30 08:51 - 00000545 _____ () C:\Windows\LHA.PIF 2014-05-16 11:37 - 2014-04-30 08:51 - 00000545 _____ () C:\Windows\ARJ.PIF 2014-05-15 13:36 - 2014-05-15 13:36 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-05-15 11:13 - 2014-05-15 11:13 - 00000000 __RHD () C:\MSOCache 2014-05-15 08:47 - 2014-04-11 10:31 - 00049544 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-05-15 08:47 - 2014-04-11 10:25 - 00419928 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll 2014-05-15 08:47 - 2014-04-11 07:22 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-05-15 08:47 - 2014-04-11 05:41 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2014-05-15 08:47 - 2014-04-11 05:06 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-05-15 08:47 - 2014-04-11 05:05 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-05-15 08:47 - 2014-04-11 05:02 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2014-05-15 08:47 - 2014-04-11 05:01 - 00307712 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2014-05-15 08:47 - 2014-04-11 05:00 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-05-15 08:47 - 2014-04-11 04:59 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-05-15 08:47 - 2014-04-11 04:54 - 02818048 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-05-15 08:47 - 2014-04-11 04:47 - 01634304 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-05-15 08:47 - 2014-04-11 04:36 - 00828928 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll 2014-05-15 08:47 - 2014-04-08 20:54 - 00080032 _____ (Microsoft Corporation) C:\Windows\system32\mrt_map.dll 2014-05-15 08:47 - 2014-04-08 20:54 - 00026784 _____ (Microsoft Corporation) C:\Windows\system32\mrt100.dll 2014-05-15 08:47 - 2014-03-24 03:34 - 00219992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2014-05-15 08:47 - 2014-03-24 03:34 - 00092504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys 2014-05-15 08:47 - 2014-03-24 03:33 - 00030224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2014-05-15 08:47 - 2014-03-13 08:51 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe 2014-05-14 15:29 - 2014-05-14 15:33 - 00063964 _____ () C:\Windows\DVP.prf 2014-05-14 15:29 - 2014-05-14 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advantech DVP1410 SDK 2014-05-14 15:29 - 2014-05-14 15:29 - 00000000 ____D () C:\Program Files\ADVANTECH 2014-05-14 15:29 - 2004-12-28 15:02 - 00360448 _____ (ADVANTECH) C:\Windows\system32\DVP1410.dll 2014-05-14 15:29 - 2004-01-28 15:02 - 00147456 _____ () C:\Windows\system32\StreamRender.dll 2014-05-14 15:29 - 2003-01-22 15:22 - 00368722 _____ (WIS Technologies, Inc.) C:\Windows\system32\wismp4dec.ax 2014-05-14 15:29 - 2003-01-16 16:57 - 00013840 _____ () C:\Windows\go7007fw.bin 2014-05-14 15:29 - 2003-01-13 18:31 - 00004714 _____ () C:\Windows\DVP.bin 2014-05-14 15:29 - 2003-01-13 18:31 - 00000262 _____ () C:\Windows\tw9903.snr 2014-05-14 15:29 - 2001-11-14 10:31 - 00106496 _____ (MyCompanyName) C:\Windows\system32\WisMpeg2Dec.ax 2014-05-14 15:29 - 1998-10-02 19:00 - 00327168 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe 2014-05-14 14:29 - 2014-05-14 14:30 - 00000000 ____D () C:\Users\Michał\Desktop\Pendrive robert ==================== One Month Modified Files and Folders ======= 2014-06-13 10:55 - 2014-06-13 10:54 - 00000000 ____D () C:\FRST 2014-06-13 10:55 - 2014-06-13 10:26 - 00000000 ____D () C:\Users\Michał\Desktop\Viry 2014-06-13 10:55 - 2014-03-03 10:27 - 00000000 ____D () C:\Users\Michał\AppData\Local\Temp 2014-06-13 10:51 - 2014-03-03 10:22 - 01684583 _____ () C:\Windows\WindowsUpdate.log 2014-06-13 10:51 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-06-13 10:38 - 2014-05-23 08:38 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-06-13 10:29 - 2014-06-13 10:29 - 00000000 ____D () C:\Users\Michał\Desktop\Waga - orange obsługa barier 2014-06-13 10:18 - 2014-03-03 10:58 - 00000000 ____D () C:\ProgramData\Kaspersky Lab 2014-06-13 10:14 - 2014-04-25 14:04 - 00001056 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-06-13 10:02 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\sru 2014-06-13 10:00 - 2014-03-03 10:26 - 01825074 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-06-13 10:00 - 2013-08-22 16:35 - 00805918 _____ () C:\Windows\system32\perfh015.dat 2014-06-13 10:00 - 2013-08-22 16:35 - 00163272 _____ () C:\Windows\system32\perfc015.dat 2014-06-13 09:59 - 2014-04-14 16:54 - 00000320 _____ () C:\Windows\Tasks\AutoKMS.job 2014-06-13 09:57 - 2014-05-13 11:00 - 00000000 ___RD () C:\Users\Michał\Dropbox 2014-06-13 09:57 - 2014-05-13 10:59 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\DropboxMaster 2014-06-13 09:57 - 2014-05-13 10:58 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Dropbox 2014-06-13 09:57 - 2014-03-03 11:54 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Skype 2014-06-13 09:56 - 2014-04-25 14:04 - 00001052 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-06-13 09:56 - 2014-04-14 16:52 - 00151552 _____ () C:\Windows\KMSEmulator.exe 2014-06-13 09:56 - 2014-03-03 10:19 - 00014480 _____ () C:\Windows\PFRO.log 2014-06-13 09:56 - 2013-08-22 09:23 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-06-13 09:55 - 2014-03-03 10:27 - 00000000 ____D () C:\Users\Michał 2014-06-13 09:55 - 2013-08-22 08:13 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-06-13 09:47 - 2014-06-10 09:50 - 00000000 ____D () C:\Users\Michał\Desktop\tipex 2014-06-13 09:21 - 2014-06-13 09:21 - 00000999 _____ () C:\Users\Public\Desktop\GSW.lnk 2014-06-13 09:21 - 2013-08-22 08:13 - 00017482 _____ () C:\Windows\system32\Drivers\etc\services 2014-06-13 08:50 - 2014-05-12 09:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wisdom-soft AutoScreenRecorder 3 Free 2014-06-13 08:45 - 2014-03-03 10:30 - 00000000 ___RD () C:\Users\Michał\SkyDrive 2014-06-13 08:44 - 2013-08-22 09:22 - 00563920 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-06-13 08:43 - 2014-03-03 11:21 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-06-12 16:22 - 2013-08-22 16:35 - 00000000 ____D () C:\Windows\system32\Drivers\pl-PL 2014-06-12 16:22 - 2013-08-22 10:17 - 00000000 ___RD () C:\Windows\ToastData 2014-06-12 16:22 - 2013-08-22 10:17 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel 2014-06-12 16:22 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\WinStore 2014-06-12 16:22 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\pl-PL 2014-06-12 12:49 - 2014-03-03 16:38 - 00000000 ____D () C:\ProgramData\GS Software 2014-06-12 11:26 - 2014-03-03 12:04 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-06-12 11:26 - 2013-08-22 10:05 - 00000000 ____D () C:\Windows\CbsTemp 2014-06-12 08:54 - 2014-03-03 11:21 - 00000000 ____D () C:\Program Files\Mozilla Thunderbird 2014-06-12 08:45 - 2014-06-12 08:45 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2014-06-11 11:23 - 2014-03-21 15:22 - 00002242 ____H () C:\Users\Michał\Documents\Default.rdp 2014-06-11 11:21 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\AppReadiness 2014-06-11 09:31 - 2014-03-03 17:33 - 00000600 _____ () C:\Users\Michał\AppData\Roaming\winscp.rnd 2014-06-11 09:25 - 2014-06-11 09:22 - 00000000 ____D () C:\Users\Michał\Desktop\Velvet 2014-06-10 16:14 - 2014-05-13 10:28 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\uTorrent 2014-06-10 14:05 - 2014-03-25 14:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GS Software 2014-06-10 14:05 - 2014-03-03 16:38 - 00000000 ____D () C:\Program Files\GS Software 2014-06-10 13:53 - 2014-06-10 10:43 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DBF Viewer 2000 2014-06-10 12:22 - 2013-08-22 08:13 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-06-10 11:10 - 2014-06-10 11:10 - 00536576 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00256192 _____ (Microsoft Corporation) C:\Windows\winhelp.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00221600 _____ (Microsoft Corporation) C:\Windows\system32\lanman.drv 2014-06-10 11:10 - 2014-06-10 11:10 - 00177856 _____ (Microsoft Corporation) C:\Windows\system32\typelib.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00169520 _____ (Microsoft Corporation) C:\Windows\system32\ole2disp.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00153008 _____ (Microsoft Corporation) C:\Windows\system32\ole2nls.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00127213 _____ () C:\Windows\system32\ega.cpi 2014-06-10 11:10 - 2014-06-10 11:10 - 00108464 _____ (Microsoft Corporation) C:\Windows\system32\netapi.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00092320 _____ (Microsoft Corporation) C:\Windows\system32\krnl386.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\olecli.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00082944 _____ (Microsoft Corporation) C:\Windows\system\olecli.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00069886 _____ () C:\Windows\system32\edit.com 2014-06-10 11:10 - 2014-06-10 11:10 - 00068992 _____ (Microsoft Corporation) C:\Windows\system32\MMSYSTEM.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00068992 _____ (Microsoft Corporation) C:\Windows\system\MMSYSTEM.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\graftabl.com 2014-06-10 11:10 - 2014-06-10 11:10 - 00053600 _____ () C:\Windows\system32\dosx.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00050648 _____ () C:\Windows\system32\COMMAND.COM 2014-06-10 11:10 - 2014-06-10 11:10 - 00047840 _____ (Microsoft Corporation) C:\Windows\system32\USER.EXE 2014-06-10 11:10 - 2014-06-10 11:10 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\pmspl.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00042809 _____ () C:\Windows\system32\KEY01.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00042592 _____ (Microsoft Corporation) C:\Windows\system32\ole2.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00042537 _____ () C:\Windows\system32\KEYBOARD.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\DDEML.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00039274 _____ () C:\Windows\system32\mem.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00035776 _____ () C:\Windows\system32\NTIO411.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00035552 _____ () C:\Windows\system32\NTIO412.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00034688 _____ () C:\Windows\system32\NTIO804.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00034688 _____ () C:\Windows\system32\NTIO404.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00033968 _____ () C:\Windows\system32\NTIO.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00032816 _____ (Microsoft Corporation) C:\Windows\system32\COMMDLG.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00032816 _____ (Microsoft Corporation) C:\Windows\system\COMMDLG.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00029370 _____ () C:\Windows\system32\NTDOS411.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00029274 _____ () C:\Windows\system32\NTDOS412.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00029146 _____ () C:\Windows\system32\NTDOS804.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00029146 _____ () C:\Windows\system32\NTDOS404.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00028420 _____ () C:\Windows\system32\bios1.rom 2014-06-10 11:10 - 2014-06-10 11:10 - 00028112 _____ (Microsoft Corporation) C:\Windows\system32\DRWATSON.EXE 2014-06-10 11:10 - 2014-06-10 11:10 - 00027866 _____ () C:\Windows\system32\NTDOS.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00027792 _____ (Microsoft Corporation) C:\Windows\system32\compobj.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00027200 _____ (Microsoft Corporation) C:\Windows\system32\ctl3dv2.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00027097 _____ () C:\Windows\system32\country.sys 2014-06-10 11:10 - 2014-06-10 11:10 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\GDI.EXE 2014-06-10 11:10 - 2014-06-10 11:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\OLESVR.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00024064 _____ (Microsoft Corporation) C:\Windows\system\OLESVR.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\vdmredir.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00021232 _____ () C:\Windows\system32\graphics.pro 2014-06-10 11:10 - 2014-06-10 11:10 - 00020634 _____ () C:\Windows\system32\debug.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00019694 _____ () C:\Windows\system32\GRAPHICS.COM 2014-06-10 11:10 - 2014-06-10 11:10 - 00018896 _____ (Microsoft Corporation) C:\Windows\system32\sysedit.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00018832 _____ () C:\Windows\system32\v7vga.rom 2014-06-10 11:10 - 2014-06-10 11:10 - 00014710 _____ () C:\Windows\system32\KB16.COM 2014-06-10 11:10 - 2014-06-10 11:10 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\ntvdmd.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00013888 _____ (Microsoft Corporation) C:\Windows\system32\TOOLHELP.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00013312 _____ () C:\Windows\system32\win87em.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00012704 _____ (Microsoft Corporation) C:\Windows\system32\WFWNET.DRV 2014-06-10 11:10 - 2014-06-10 11:10 - 00012704 _____ (Microsoft Corporation) C:\Windows\system\WFWNET.DRV 2014-06-10 11:10 - 2014-06-10 11:10 - 00012642 _____ () C:\Windows\system32\edlin.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00012498 _____ () C:\Windows\system32\append.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00011753 _____ () C:\Windows\system32\setver.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00010790 _____ () C:\Windows\system32\EDIT.HLP 2014-06-10 11:10 - 2014-06-10 11:10 - 00010544 _____ (Microsoft Corporation) C:\Windows\system32\COMM.drv 2014-06-10 11:10 - 2014-06-10 11:10 - 00009936 _____ (Microsoft Corporation) C:\Windows\system32\lzexpand.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00009936 _____ (Microsoft Corporation) C:\Windows\system\lzexpand.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\WIFEMAN.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00009029 _____ () C:\Windows\system32\ANSI.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00009008 _____ (Microsoft Corporation) C:\Windows\system32\ver.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00009008 _____ (Microsoft Corporation) C:\Windows\system\ver.dll 2014-06-10 11:10 - 2014-06-10 11:10 - 00008424 _____ () C:\Windows\system32\exe2bin.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\win.com 2014-06-10 11:10 - 2014-06-10 11:10 - 00008191 _____ () C:\Windows\system32\bios4.rom 2014-06-10 11:10 - 2014-06-10 11:10 - 00007052 _____ () C:\Windows\system32\nlsfunc.exe 2014-06-10 11:10 - 2014-06-10 11:10 - 00005532 _____ (Microsoft Corporation) C:\Windows\system\stdole.tlb 2014-06-10 11:10 - 2014-06-10 11:10 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\WINNLS.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\SHELL.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00005120 _____ (Microsoft Corporation) C:\Windows\system\SHELL.DLL 2014-06-10 11:10 - 2014-06-10 11:10 - 00004768 _____ () C:\Windows\system32\HIMEM.SYS 2014-06-10 11:10 - 2014-06-10 11:10 - 00004208 _____ (Microsoft Corporation) C:\Windows\system32\storage.dll 2014-06-10 11:10 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\System 2014-06-10 11:00 - 2014-06-09 12:31 - 00000000 ____D () C:\Users\Michał\Desktop\EWP 2014-06-10 10:15 - 2014-06-10 10:15 - 00048430 _____ () C:\Users\Michał\Desktop\48b222584a409ebc6311a4e2b7c89ef8.zip 2014-06-10 10:15 - 2014-06-10 10:15 - 00000000 ____D () C:\Users\Michał\Desktop\48b222584a409ebc6311a4e2b7c89ef8 2014-06-10 10:11 - 2014-03-03 11:33 - 00000000 ____D () C:\ProgramData\firebird 2014-06-10 09:40 - 2014-05-07 16:40 - 00000000 ____D () C:\Users\Michał\Documents\Corel 2014-06-09 13:20 - 2014-06-09 13:20 - 00000000 ____D () C:\Users\Michał\AppData\Local\GHISLER 2014-06-09 13:16 - 2014-05-16 11:37 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\GHISLER 2014-06-09 11:51 - 2014-03-03 11:02 - 00000000 ___RD () C:\Users\Michał\Desktop\Programy 2014-06-06 10:43 - 2014-06-06 09:47 - 00000600 _____ () C:\Users\Michał\AppData\Local\PUTTY.RND 2014-06-06 10:02 - 2014-06-06 10:02 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TCPIP Builder 2014-06-06 10:02 - 2014-06-06 10:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TCPIP Builder 2014-06-06 10:02 - 2014-06-06 10:02 - 00000000 ____D () C:\Program Files\TCPIP_Builder 2014-06-06 09:28 - 2013-08-22 09:23 - 00038477 _____ () C:\Windows\setupact.log 2014-06-05 08:54 - 2014-06-05 08:54 - 00000000 ____D () C:\Users\Michał\Desktop\Rezultaty testów 2014-06-05 08:44 - 2014-06-05 08:44 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-06-05 08:44 - 2014-03-03 11:54 - 00000000 ___RD () C:\Program Files\Skype 2014-06-05 08:44 - 2014-03-03 11:54 - 00000000 ____D () C:\ProgramData\Skype 2014-06-02 11:12 - 2014-05-06 10:08 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\iSpy 2014-06-02 10:59 - 2014-06-02 10:59 - 00001792 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GV IP Device Utility.lnk 2014-06-02 10:59 - 2014-06-02 10:59 - 00000000 ____D () C:\Program Files\v8600 2014-06-02 10:59 - 2014-05-06 09:22 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2014-06-02 09:16 - 2014-06-02 09:16 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2014-05-31 07:13 - 2014-04-14 08:41 - 00703992 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-05-31 07:13 - 2014-04-14 08:41 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-05-30 14:58 - 2014-05-30 14:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Abyssmedia 2014-05-30 14:58 - 2014-05-30 14:58 - 00000000 ____D () C:\Program Files\Abyssmedia 2014-05-30 13:46 - 2014-05-30 13:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A4TECH Software 2014-05-30 13:46 - 2014-05-30 13:46 - 00000000 ____D () C:\Program Files\G10 Multi-Mode 2014-05-30 13:45 - 2014-05-30 13:45 - 00000000 ____D () C:\Program Files\OscarG10 2014-05-30 11:18 - 2014-06-12 08:49 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-30 10:43 - 2014-06-12 08:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-05-30 10:38 - 2014-06-12 08:49 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-05-30 10:27 - 2014-06-12 08:49 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-05-30 10:16 - 2014-06-12 08:49 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-05-30 10:04 - 2014-06-12 08:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-30 10:02 - 2014-06-12 08:49 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-05-30 09:57 - 2014-06-12 08:49 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-05-30 09:56 - 2014-06-12 08:49 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-05-30 09:54 - 2014-06-12 08:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-05-30 09:49 - 2014-06-12 08:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-05-30 09:40 - 2014-06-12 08:49 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-05-30 09:21 - 2014-06-12 08:49 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-05-30 09:15 - 2014-06-12 08:49 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-05-30 09:13 - 2014-06-12 08:49 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-05-28 13:59 - 2014-05-28 13:57 - 00000180 _____ () C:\Users\Michał\Desktop\omron.txt 2014-05-28 12:32 - 2014-05-28 12:32 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MOXA 2014-05-28 12:32 - 2014-05-28 12:32 - 00000000 ____D () C:\Program Files\Moxa 2014-05-26 09:03 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\NDF 2014-05-26 08:58 - 2014-05-13 10:59 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-05-23 09:22 - 2014-05-23 09:22 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\GS-Software 2014-05-22 16:58 - 2014-05-22 15:00 - 00000000 ____D () C:\Backoup CD_BURN 2014-05-22 14:46 - 2014-05-22 14:46 - 00000000 ____D () C:\ProgramData\K-PZ 2014-05-22 14:46 - 2014-05-22 14:46 - 00000000 ____D () C:\Program Files\K-PZ 2014-05-21 12:57 - 2014-05-21 12:57 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rinstrum 2014-05-21 12:57 - 2014-05-21 12:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rinstrum 2014-05-21 12:57 - 2014-05-21 12:57 - 00000000 ____D () C:\Program Files\Rinstrum 2014-05-19 14:51 - 2014-03-03 12:12 - 00000000 ____D () C:\4MCAD11 2014-05-19 09:37 - 2014-03-03 13:29 - 00000000 ____D () C:\Windows\system32\MRT 2014-05-19 09:37 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\rescache 2014-05-19 09:36 - 2014-03-03 13:29 - 90547776 ____N (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-05-19 07:33 - 2014-06-12 08:49 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\drvcfg.exe 2014-05-19 07:23 - 2014-06-12 08:49 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe 2014-05-16 12:25 - 2014-05-16 12:25 - 00000000 ____D () C:\Users\Michał\AppData\Local\Apps\2.0 2014-05-16 11:37 - 2014-05-16 11:37 - 00000000 ____D () C:\Users\Michał\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander 2014-05-16 11:37 - 2014-05-16 11:37 - 00000000 ____D () C:\Program Files\totalcmd 2014-05-15 17:00 - 2013-08-22 10:17 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-15 17:00 - 2013-08-22 10:17 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-05-15 16:59 - 2013-08-22 10:17 - 00000000 ____D () C:\Program Files\Windows Defender 2014-05-15 16:31 - 2014-05-12 11:03 - 00000000 ____D () C:\Users\Michał\Desktop\ekrany_HMI 2014-05-15 16:31 - 2014-03-03 15:38 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2014-05-15 13:37 - 2014-03-25 15:38 - 00000039 _____ () C:\Windows\vbaddin.ini 2014-05-15 13:36 - 2014-05-15 13:36 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-05-15 13:35 - 2013-08-22 10:17 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates 2014-05-15 11:13 - 2014-05-15 11:13 - 00000000 __RHD () C:\MSOCache 2014-05-14 15:33 - 2014-05-14 15:29 - 00063964 _____ () C:\Windows\DVP.prf 2014-05-14 15:29 - 2014-05-14 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advantech DVP1410 SDK 2014-05-14 15:29 - 2014-05-14 15:29 - 00000000 ____D () C:\Program Files\ADVANTECH 2014-05-14 14:30 - 2014-05-14 14:29 - 00000000 ____D () C:\Users\Michał\Desktop\Pendrive robert 2014-05-14 10:55 - 2014-04-22 14:49 - 00000000 ____D () C:\Users\Michał\Desktop\Pendrive Some content of TEMP: ==================== C:\Users\Michał\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpoybefr.dll ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-06-11 08:52 ==================== End Of Log ============================