Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 08-08-2014
Ran by User (administrator) on USER-NTT on 08-08-2014 20:03:48
Running from C:\Users\User\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 9
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\ProgramData\QuickSet\Sk-Enhancer\Sk-Enhancer.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Dropbox, Inc.) C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
() C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
(Hi-Rez Studios) D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(DeviceVM, Inc.) C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(InstallShield Software Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachiii\hamachi-2-ui.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachiii\LMIGuardianSvc.exe
() C:\Windows\SysWOW64\XSrvSetup.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe
(Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\smart6\timelock\AlarmClock.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachiii\hamachi-2.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachiii\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(InstallShield Software Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
(InstallShield Software Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe
(TeamSpeak Systems GmbH) C:\Users\User\AppData\Local\TeamSpeak 3 Client\ts3client_win64.exe
() C:\Users\User\AppData\Local\TeamSpeak 3 Client\plugins\ts3overlay\InstallHook.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginClientService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(OldTimer Tools) C:\Users\User\Downloads\OTL.exe
(Electronic Arts) C:\Program Files (x86)\Origin Games\FIFA World\fifaworld.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10135584 2010-03-26] (Realtek Semiconductor)
HKLM\...\Run: [Nvtmru] => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-07-27] (NVIDIA Corporation)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [248040 2010-02-18] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [BCU] => C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCU.exe [375000 2009-10-15] (DeviceVM, Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-11-20] (NEC Electronics Corporation)
HKLM-x32\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-17] (InstallShield Software Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [fst_pl_31] => [X]
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachiii\hamachi-2-ui.exe [3814736 2014-05-13] (LogMeIn Inc.)
HKU\S-1-5-21-2496199684-987935729-1689624564-1000\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-17] (InstallShield Software Corporation)
HKU\S-1-5-21-2496199684-987935729-1689624564-1000\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-11-19] (Google Inc.)
AppInit_DLLs: c:\progra~1\nvidia~1\nvstre~1\rxinput.dll => c:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll [653600 2013-07-27] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\progra~2\nvidia~1\nvstre~1\rxinput.dll => c:\Program Files (x86)\NVIDIA Corporation\NvStreamSrv\rxinput.dll [593696 2013-07-27] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\LOLRecorder.lnk
ShortcutTarget: LOLRecorder.lnk -> C:\Program Files (x86)\LOLReplay\LOLRecorder.exe (LOL Replay)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://onet.pl/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.ntt.pl
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://search.gboxapp.com/
URLSearchHook: HKCU - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch64.dll (DeviceVM, Inc.)
URLSearchHook: HKCU - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://start.qone8.com/web/?type=ds&ts=1382701688&from=cor&uid=_&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://start.qone8.com/web/?type=ds&ts=1382701688&from=cor&uid=_&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://start.qone8.com/web/?type=ds&ts=1382701688&from=cor&uid=_&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://start.qone8.com/web/?type=ds&ts=1382701688&from=cor&uid=_&q={searchTerms}
SearchScopes: HKLM-x32 - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.pur-esult.info/?l=1&q={searchTerms}&pid=724&r=2013/11/19&hid=1511377463245664931&lg=EN&cc=PL
SearchScopes: HKCU - DefaultScope {0490FAD2-0AF4-4a9b-A26D-5061D4E4ED6B} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD
SearchScopes: HKCU - {0490FAD2-0AF4-4a9b-A26D-5061D4E4ED6B} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD
SearchScopes: HKCU - {53BCB2A7-15DE-47b6-B1A4-F7955F762B2A} URL = http://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=1975384696&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=pl&q={searchTerms}
SearchScopes: HKCU - {BB74DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.pur-esult.info/?l=1&q={searchTerms}&pid=724&r=2013/11/19&hid=1511377463245664931&lg=EN&cc=PL
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\Gry\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\User\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\User\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\User\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\User\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\User\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin ProgramFiles/Appdata: C:\Users\User\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\User\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin ProgramFiles/Appdata: C:\Users\User\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)

Chrome: 
=======
CHR HomePage: hxxp://google.com/
CHR RestoreOnStartup: "hxxp://search.gboxapp.com/"
CHR StartupUrls: "hxxp://search.gboxapp.com/"
CHR Extension: (YouTuAdBlockker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdhkbebpdcohjeldbebgbefmomeadhkl [2014-01-31]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-15]
CHR HKLM-x32\...\Chrome\Extension: [cekcjpgehmohobmdiikfnopibipmgnml] - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ [2014-01-15]
CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx [2014-01-15]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 appdrvrem01; C:\Windows\System32\appdrvrem01.exe [551896 2013-11-06] (Protection Technology)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S3 ArcService; D:\Gry\Perfect World Entertainment\Arc\ArcService.exe [88424 2013-06-26] (Perfect World Entertainment Inc)
R2 DES2 Service; C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [68136 2009-06-17] ()
R2 DokanMounter; C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe [14848 2011-01-10] () [File not signed]
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [93048 2014-05-22] (EasyAntiCheat Ltd)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachiii\hamachi-2.exe [2228048 2014-05-13] (LogMeIn Inc.)
R2 HiPatchService; D:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9216 2014-07-18] (Hi-Rez Studios) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 JMB36X; C:\Windows\SysWOW64\XSrvSetup.exe [72304 2010-01-19] ()
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2013-11-16] () [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14984480 2013-07-27] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-10-30] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [105448 2014-02-25] (Razer Inc.)
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [114688 2009-10-13] (Gigabyte Technology CO., LTD.) [File not signed]
S2 LMIGuardianSvc; "C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 appdrv01; C:\Windows\System32\Drivers\appdrv01.sys [3854000 2013-11-06] (Protection Technology)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21544 2010-04-22] ()
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [303616 2013-07-01] () [File not signed]
R2 Dokan; C:\Windows\system32\drivers\dokan.sys [120408 2011-01-10] (Windows (R) Win 7 DDK provider)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2014-02-03] ()
S3 IFCoEMP; C:\Windows\system32\DRIVERS\ifM52x64.sys [352528 2010-05-24] (Intel(R) Corporation)
S3 IFCoEVB; C:\Windows\system32\DRIVERS\ifP52X64.sys [65808 2010-05-24] (Intel(R) Corporation)
R0 ioatdma; C:\Windows\System32\Drivers\ioatdma.sys [46792 2009-11-16] (Intel Corporation)
S3 iSSetup; C:\Windows\system32\DRIVERS\iSSetup.sys [179936 2010-01-21] (Intel Corporation)
S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [35328 2013-07-01] () [File not signed]
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39712 2013-05-14] (NVIDIA Corporation)
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [62656 2003-09-06] (Protection Technology) [File not signed]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [File not signed]
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-09-06] (Protection Technology) [File not signed]
S3 wbondir; C:\Windows\system32\DRIVERS\wbondir.sys [56320 2007-03-20] (Winbond Electronics Corporation)
S3 ATP; system32\DRIVERS\cmdatp.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-08 20:03 - 2014-08-08 20:04 - 00021978 _____ () C:\Users\User\Downloads\FRST.txt
2014-08-08 20:03 - 2014-08-08 20:03 - 02094080 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-08-08 20:03 - 2014-08-08 20:03 - 00000000 ____D () C:\FRST
2014-08-08 19:51 - 2014-08-08 19:51 - 00000000 ____D () C:\Users\User\Desktop\skany
2014-08-08 19:22 - 2014-08-08 19:22 - 00602112 _____ (OldTimer Tools) C:\Users\User\Downloads\OTL.exe
2014-08-08 18:22 - 2014-08-08 18:22 - 00000000 ____D () C:\Program Files (x86)\AllSaver
2014-08-07 21:19 - 2014-08-07 21:19 - 07436840 _____ () C:\Users\User\Downloads\ts3_overlay-v3.8.23.ts3_plugin
2014-08-06 11:10 - 2014-08-06 11:10 - 02555904 _____ (Microsoft Corporation) C:\Users\User\Downloads\empires2.exe
2014-08-06 11:07 - 2014-08-06 11:07 - 03559161 _____ () C:\Users\User\Downloads\FINAL-aoc-1.0e-Patch (1).zip
2014-08-06 10:40 - 2014-08-06 10:40 - 00060070 _____ () C:\Users\User\Downloads\4f1b30b86ab02.age conq spolszczenie.rar
2014-08-06 10:37 - 2014-08-06 10:37 - 02209792 _____ () C:\Users\User\Downloads\Age_of_Empires_II-_Conquerors_Spolszczenie_Sciagnij.pl.exe
2014-08-05 19:34 - 2014-08-05 19:34 - 03559161 _____ () C:\Users\User\Downloads\FINAL-aoc-1.0e-Patch.zip
2014-08-05 19:34 - 2014-08-05 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AoC 1.0e Patch
2014-08-05 19:33 - 2014-08-05 19:33 - 01359610 _____ () C:\Users\User\Downloads\SuperPatch_NoCD.zip
2014-08-05 19:33 - 2014-08-05 19:33 - 00002058 _____ () C:\Users\Public\Desktop\The Conquerors.lnk
2014-08-05 19:31 - 2014-08-05 19:31 - 04200896 _____ (Microsoft Corp.) C:\Users\User\Downloads\Age2XPatch.exe
2014-08-05 19:29 - 2014-08-05 19:29 - 00002178 _____ () C:\Users\Public\Desktop\Age of Empires II.lnk
2014-08-05 19:17 - 2014-08-05 19:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-08-04 09:29 - 2014-08-04 09:37 - 64667320 _____ (Aslain ) C:\Users\User\Downloads\Aslains_XVM_Mod_Installer_v.3.8.3_92.exe
2014-08-04 08:28 - 2014-08-08 18:22 - 00000000 ____D () C:\ProgramData\AllSaver
2014-07-31 10:40 - 2014-08-04 19:02 - 00000000 ____D () C:\Program Files (x86)\RivaTuner Statistics Server
2014-07-31 10:40 - 2014-07-31 10:40 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2014-07-31 10:36 - 2014-07-31 10:39 - 00001086 _____ () C:\Users\User\Desktop\MSI Afterburner.lnk
2014-07-31 10:36 - 2014-07-31 10:36 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2014-07-31 10:35 - 2014-08-04 09:22 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner
2014-07-31 10:35 - 2014-06-10 08:05 - 29444696 _____ () C:\Users\User\Desktop\MSIAfterburnerSetup301.exe
2014-07-31 10:34 - 2014-07-31 10:34 - 29239096 _____ () C:\Users\User\Downloads\MSIAfterburnerSetup301.zip
2014-07-30 20:12 - 2014-08-04 19:03 - 00000000 ____D () C:\Users\User\Documents\ArcheAge
2014-07-30 20:12 - 2014-07-30 20:12 - 00000000 ____D () C:\ArcheAge
2014-07-30 10:26 - 2014-07-30 10:26 - 29611712 _____ (Microsoft Corporation) C:\Users\User\Downloads\Windows-KB890830-x64-V5.14.exe
2014-07-28 20:52 - 2014-07-28 20:52 - 04136233 _____ () C:\Users\User\Downloads\permanentChannels__1_3_0.zip
2014-07-25 13:26 - 2014-07-25 13:26 - 00000716 _____ () C:\Users\User\Desktop\Archeage Beta.lnk
2014-07-25 13:23 - 2014-07-25 13:23 - 31303792 _____ (Trion Worlds Inc.) C:\Users\User\Downloads\GlyphInstall.exe
2014-07-25 13:23 - 2014-07-25 13:23 - 00000590 _____ () C:\Users\User\Desktop\Glyph.lnk
2014-07-25 13:23 - 2014-07-25 13:23 - 00000000 ____D () C:\Users\User\AppData\Local\Glyph
2014-07-25 13:23 - 2014-07-25 13:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glyph
2014-07-25 13:23 - 2014-07-25 13:23 - 00000000 ____D () C:\ProgramData\Glyph
2014-07-25 13:05 - 2014-07-25 13:05 - 00000000 ____D () C:\Users\User\Documents\Razer
2014-07-25 13:05 - 2014-07-25 13:05 - 00000000 ____D () C:\Users\User\AppData\Local\Razer_Inc
2014-07-25 13:04 - 2014-07-25 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-07-25 13:00 - 2014-07-25 13:01 - 41954352 _____ (Razer Inc. ) C:\Users\User\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-07-19 10:57 - 2014-07-19 10:57 - 00000003 _____ () C:\Windows\system32\HRUPPROG.TXT
2014-07-19 10:57 - 2014-07-19 10:57 - 00000003 _____ () C:\Windows\system32\HRUPPROG.EXIT
2014-07-16 16:02 - 2014-07-16 16:02 - 00000000 ____D () C:\ProgramData\Riot Games
2014-07-16 11:43 - 2014-07-16 11:43 - 00000222 _____ () C:\Users\User\Desktop\Unturned.url
2014-07-16 08:26 - 2014-08-08 18:53 - 00001185 _____ () C:\Users\Public\Desktop\EA Sports FIFA World.lnk
2014-07-16 08:18 - 2014-07-16 08:18 - 00000000 ____D () C:\Users\User\AppData\Local\Origin
2014-07-16 08:15 - 2014-08-08 18:48 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-07-16 08:15 - 2014-07-16 08:15 - 17089296 _____ (Electronic Arts, Inc.) C:\Users\User\Downloads\OriginThinSetup (1).exe
2014-07-16 08:15 - 2014-07-16 08:15 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-07-12 20:48 - 2014-07-12 11:34 - 00461824 _____ () C:\Windows\SysWOW64\libfreetype-6.dll
2014-07-12 20:48 - 2014-07-12 11:34 - 00100352 _____ () C:\Windows\SysWOW64\zlib1.dll
2014-07-12 20:48 - 2014-07-12 11:34 - 00027136 _____ () C:\Windows\SysWOW64\SDL_ttf.dll
2014-07-12 20:48 - 2014-07-12 11:28 - 00328192 _____ () C:\Windows\SysWOW64\libFLAC-8.dll
2014-07-12 20:48 - 2014-07-12 11:28 - 00263168 _____ () C:\Windows\SysWOW64\libmikmod-2.dll
2014-07-12 20:48 - 2014-07-12 11:28 - 00209408 _____ () C:\Windows\SysWOW64\smpeg.dll
2014-07-12 20:48 - 2014-07-12 11:28 - 00163840 _____ () C:\Windows\SysWOW64\libvorbis-0.dll
2014-07-12 20:48 - 2014-07-12 11:28 - 00160256 _____ () C:\Windows\SysWOW64\SDL_mixer.dll
2014-07-12 20:48 - 2014-07-12 11:28 - 00036352 _____ () C:\Windows\SysWOW64\libvorbisfile-3.dll
2014-07-12 20:48 - 2014-07-12 11:28 - 00024064 _____ () C:\Windows\SysWOW64\libogg-0.dll
2014-07-12 20:48 - 2014-07-12 11:26 - 00408064 _____ () C:\Windows\SysWOW64\libtiff-5.dll
2014-07-12 20:48 - 2014-07-12 11:26 - 00204288 _____ () C:\Windows\SysWOW64\libjpeg-8.dll
2014-07-12 20:48 - 2014-07-12 11:26 - 00180224 _____ () C:\Windows\SysWOW64\libwebp-2.dll
2014-07-12 20:48 - 2014-07-12 11:26 - 00151552 _____ () C:\Windows\SysWOW64\libpng15-15.dll
2014-07-12 20:48 - 2014-07-12 11:26 - 00051200 _____ () C:\Windows\SysWOW64\SDL_image.dll
2014-07-12 14:35 - 2014-07-12 14:35 - 01741466 _____ () C:\Users\User\Downloads\Llama z jeszcze wieksza iloscia dll.rar
2014-07-12 13:49 - 2014-07-18 14:27 - 00000000 ____D () C:\Users\User\Desktop\egzek
2014-07-12 13:49 - 2014-07-12 13:49 - 00608553 _____ () C:\Users\User\Downloads\Llama.rar
2014-07-12 13:47 - 2014-07-12 13:47 - 00053399 _____ () C:\Users\User\Downloads\bagjuicellama.exe
2014-07-12 12:05 - 2014-07-12 12:06 - 134724029 _____ () C:\Users\User\Downloads\EK014b.zip
2014-07-11 21:19 - 2014-07-11 21:19 - 00431687 _____ () C:\Users\User\Downloads\MiddleEarthProject_0.2.2.1b_Fix_Patch.rar
2014-07-11 21:18 - 2014-07-11 21:21 - 172286675 _____ () C:\Users\User\Downloads\Middle-Earth_Project_0.2.2b_FULL_RELEASE.rar
2014-07-11 21:10 - 2014-07-11 21:10 - 01511775 _____ () C:\Users\User\Downloads\AKC_0.1_preview_hotfix.zip
2014-07-11 21:09 - 2014-07-11 21:12 - 216597284 _____ () C:\Users\User\Downloads\AKC_0.1_preview.zip
2014-07-11 21:02 - 2014-07-11 21:03 - 36020679 _____ () C:\Users\User\Downloads\Saeculum Obscurum 0.22a.zip
2014-07-11 16:54 - 2014-07-11 16:54 - 00001568 _____ () C:\Users\User\Desktop\KSP.exe — skrót.lnk
2014-07-11 15:36 - 2014-07-11 15:36 - 01107687 _____ () C:\Users\User\Downloads\SDL_image-devel-1.2.12-VC (1).zip
2014-07-11 15:31 - 2012-01-09 13:10 - 00303616 _____ () C:\Windows\SysWOW64\SDL.dll
2014-07-11 15:26 - 2014-07-11 15:26 - 00800817 _____ () C:\Users\User\Downloads\SDL-devel-1.2.15-mingw32 (5).tar.gz
2014-07-11 15:25 - 2014-07-11 15:25 - 08196779 _____ () C:\Users\User\Downloads\SDL2-devel-2.0.3-mingw (1).tar.gz
2014-07-11 15:11 - 2014-07-11 15:11 - 00466130 _____ () C:\Users\User\Downloads\BTSM1-57.zip
2014-07-11 15:05 - 2014-07-11 15:05 - 00000915 _____ () C:\Users\Public\Desktop\Smite.lnk
2014-07-11 15:05 - 2014-07-11 15:05 - 00000906 _____ () C:\Users\Public\Desktop\Hi-Rez Diagnostics and Support.lnk
2014-07-11 15:05 - 2014-07-11 15:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2014-07-11 09:48 - 2014-07-11 15:05 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios
2014-07-11 09:48 - 2014-07-11 09:48 - 00000000 ____D () C:\Users\User\AppData\Roaming\Awesomium
2014-07-11 09:47 - 2014-07-11 09:47 - 39967251 _____ (Hi-Rez Studios) C:\Users\User\Downloads\InstallHiRezGamesEnglish.exe
2014-07-09 16:18 - 2014-06-30 04:09 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-09 16:18 - 2014-06-30 04:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-09 16:18 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-09 16:18 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-09 16:18 - 2014-06-18 03:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-09 16:18 - 2014-06-07 04:59 - 02339328 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-09 16:18 - 2014-06-07 04:51 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-09 16:18 - 2014-06-07 04:47 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-09 16:18 - 2014-06-07 04:45 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-09 16:18 - 2014-06-07 04:42 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-09 16:18 - 2014-06-07 04:42 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-09 16:18 - 2014-06-07 04:40 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-09 16:18 - 2014-06-07 02:05 - 12353024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-09 16:18 - 2014-06-07 01:12 - 01810432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-09 16:18 - 2014-06-07 01:02 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-09 16:18 - 2014-06-07 00:56 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-07-09 16:18 - 2014-06-07 00:56 - 00421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-09 16:18 - 2014-06-07 00:54 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-09 16:18 - 2014-06-07 00:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-09 16:18 - 2014-06-07 00:53 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-09 16:18 - 2014-06-07 00:52 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-09 16:18 - 2014-06-07 00:47 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-09 16:18 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-09 16:18 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-09 16:18 - 2014-05-30 10:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-07-09 16:18 - 2014-05-30 10:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-07-09 16:18 - 2014-05-30 10:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-07-09 16:18 - 2014-05-30 10:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-07-09 16:18 - 2014-05-30 10:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-07-09 16:18 - 2014-05-30 10:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-07-09 16:18 - 2014-05-30 10:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-07-09 16:18 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-07-09 16:18 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-07-09 16:18 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-07-09 16:18 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-07-09 16:18 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-07-09 16:18 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-07-09 16:18 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-07-09 16:18 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-09 16:17 - 2014-06-07 06:02 - 17854464 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-09 16:17 - 2014-06-07 05:13 - 10890752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-09 16:17 - 2014-06-07 04:52 - 01348608 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-09 16:17 - 2014-06-07 04:51 - 01494016 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-09 16:17 - 2014-06-07 04:50 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-07-09 16:17 - 2014-06-07 04:45 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-07-09 16:17 - 2014-06-07 04:45 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-09 16:17 - 2014-06-07 04:42 - 02148352 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-09 16:17 - 2014-06-07 04:42 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-09 16:17 - 2014-06-07 04:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-09 16:17 - 2014-06-07 04:41 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-07-09 16:17 - 2014-06-07 04:41 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-07-09 16:17 - 2014-06-07 04:39 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-07-09 16:17 - 2014-06-07 04:35 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-09 16:17 - 2014-06-07 01:25 - 09711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-09 16:17 - 2014-06-07 01:04 - 01106432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-09 16:17 - 2014-06-07 01:03 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-09 16:17 - 2014-06-07 01:00 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-07-09 16:17 - 2014-06-07 00:58 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-09 16:17 - 2014-06-07 00:57 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-09 16:17 - 2014-06-07 00:54 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-09 16:17 - 2014-06-07 00:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-07-09 16:17 - 2014-06-07 00:53 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-09 16:17 - 2014-06-07 00:53 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-07-09 16:17 - 2014-06-07 00:51 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-07-09 16:17 - 2014-06-05 16:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-09 16:17 - 2014-06-05 16:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-07-09 16:17 - 2014-06-05 16:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-08 20:04 - 2014-08-08 20:03 - 00021978 _____ () C:\Users\User\Downloads\FRST.txt
2014-08-08 20:03 - 2014-08-08 20:03 - 02094080 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-08-08 20:03 - 2014-08-08 20:03 - 00000000 ____D () C:\FRST
2014-08-08 20:02 - 2013-08-29 11:15 - 00000000 ____D () C:\Users\User\AppData\Roaming\TS3Client
2014-08-08 19:51 - 2014-08-08 19:51 - 00000000 ____D () C:\Users\User\Desktop\skany
2014-08-08 19:43 - 2014-06-13 21:28 - 00000000 ____D () C:\Users\User\Documents\FIFA World
2014-08-08 19:40 - 2013-11-19 21:30 - 00001054 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2496199684-987935729-1689624564-1000UA.job
2014-08-08 19:35 - 2013-11-19 19:25 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-08 19:22 - 2014-08-08 19:22 - 00602112 _____ (OldTimer Tools) C:\Users\User\Downloads\OTL.exe
2014-08-08 18:58 - 2013-06-28 20:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\Skype
2014-08-08 18:56 - 2013-10-29 20:37 - 00000000 ____D () C:\Users\User\AppData\Roaming\Origin
2014-08-08 18:56 - 2013-10-29 20:36 - 00000000 ____D () C:\ProgramData\Origin
2014-08-08 18:53 - 2014-07-16 08:26 - 00001185 _____ () C:\Users\Public\Desktop\EA Sports FIFA World.lnk
2014-08-08 18:53 - 2013-06-29 18:58 - 00522231 _____ () C:\Windows\DirectX.log
2014-08-08 18:48 - 2014-07-16 08:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-08-08 18:41 - 2009-07-14 06:45 - 00015152 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-08 18:41 - 2009-07-14 06:45 - 00015152 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-08 18:23 - 2014-04-09 21:04 - 00000000 ____D () C:\ProgramData\HaPPy2Saavei
2014-08-08 18:23 - 2013-11-19 17:27 - 00000000 ____D () C:\ProgramData\e3e1e0c40f694456
2014-08-08 18:22 - 2014-08-08 18:22 - 00000000 ____D () C:\Program Files (x86)\AllSaver
2014-08-08 18:22 - 2014-08-04 08:28 - 00000000 ____D () C:\ProgramData\AllSaver
2014-08-08 18:22 - 2014-07-04 18:50 - 00000000 ____D () C:\ProgramData\RRoboSaveR
2014-08-08 18:22 - 2014-06-11 21:44 - 00000000 ____D () C:\ProgramData\EnjooyCooupon
2014-08-08 18:22 - 2014-05-22 07:16 - 00000000 ____D () C:\ProgramData\ShopDrop
2014-08-08 18:22 - 2014-05-21 13:51 - 00000000 ____D () C:\ProgramData\Isaver
2014-08-08 18:18 - 2013-06-26 13:01 - 01591008 _____ () C:\Windows\WindowsUpdate.log
2014-08-08 18:16 - 2014-01-17 22:51 - 00000286 _____ () C:\Windows\Tasks\bench-Updater removing.job
2014-08-08 18:08 - 2014-02-11 12:41 - 00000000 ___RD () C:\Users\User\Dropbox
2014-08-08 18:08 - 2014-02-11 12:39 - 00000000 ____D () C:\Users\User\AppData\Roaming\Dropbox
2014-08-08 18:07 - 2014-04-13 20:06 - 00000000 ____D () C:\Users\User\AppData\Local\LogMeIn Hamachi
2014-08-08 18:07 - 2013-06-26 13:39 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2014-08-08 18:07 - 2009-07-14 06:51 - 00258996 _____ () C:\Windows\setupact.log
2014-08-08 18:06 - 2013-11-19 19:25 - 00001040 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-08 18:06 - 2013-11-19 17:27 - 00000450 ____H () C:\Windows\Tasks\Sk-Enhancer-S-5902107913.job
2014-08-08 18:06 - 2013-06-26 13:01 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-08-08 18:06 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-08 11:16 - 2013-08-13 17:48 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mumble
2014-08-07 21:51 - 2014-01-15 21:13 - 00000342 _____ () C:\Windows\Tasks\bench-sys.job
2014-08-07 21:19 - 2014-08-07 21:19 - 07436840 _____ () C:\Users\User\Downloads\ts3_overlay-v3.8.23.ts3_plugin
2014-08-07 20:14 - 2013-06-28 21:19 - 00000000 ____D () C:\Users\User\AppData\Local\PMB Files
2014-08-06 19:56 - 2013-06-28 21:19 - 00000000 ____D () C:\ProgramData\PMB Files
2014-08-06 11:10 - 2014-08-06 11:10 - 02555904 _____ (Microsoft Corporation) C:\Users\User\Downloads\empires2.exe
2014-08-06 11:07 - 2014-08-06 11:07 - 03559161 _____ () C:\Users\User\Downloads\FINAL-aoc-1.0e-Patch (1).zip
2014-08-06 10:40 - 2014-08-06 10:40 - 00060070 _____ () C:\Users\User\Downloads\4f1b30b86ab02.age conq spolszczenie.rar
2014-08-06 10:37 - 2014-08-06 10:37 - 02209792 _____ () C:\Users\User\Downloads\Age_of_Empires_II-_Conquerors_Spolszczenie_Sciagnij.pl.exe
2014-08-06 10:24 - 2009-07-14 06:45 - 00428816 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-05 21:14 - 2013-06-29 15:33 - 00000000 ____D () C:\Users\User\AppData\Roaming\uTorrent
2014-08-05 19:34 - 2014-08-05 19:34 - 03559161 _____ () C:\Users\User\Downloads\FINAL-aoc-1.0e-Patch.zip
2014-08-05 19:34 - 2014-08-05 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AoC 1.0e Patch
2014-08-05 19:33 - 2014-08-05 19:33 - 01359610 _____ () C:\Users\User\Downloads\SuperPatch_NoCD.zip
2014-08-05 19:33 - 2014-08-05 19:33 - 00002058 _____ () C:\Users\Public\Desktop\The Conquerors.lnk
2014-08-05 19:33 - 2013-07-10 11:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2014-08-05 19:32 - 2013-06-26 13:39 - 00113504 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-08-05 19:31 - 2014-08-05 19:31 - 04200896 _____ (Microsoft Corp.) C:\Users\User\Downloads\Age2XPatch.exe
2014-08-05 19:29 - 2014-08-05 19:29 - 00002178 _____ () C:\Users\Public\Desktop\Age of Empires II.lnk
2014-08-05 19:23 - 2013-07-01 12:55 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-08-05 19:17 - 2014-08-05 19:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games
2014-08-05 17:49 - 2014-03-31 21:21 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2014-08-05 17:35 - 2013-06-30 11:45 - 00000000 ____D () C:\Users\User\Desktop\Jarek
2014-08-05 15:40 - 2013-11-19 21:30 - 00001002 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2496199684-987935729-1689624564-1000Core.job
2014-08-04 19:03 - 2014-07-30 20:12 - 00000000 ____D () C:\Users\User\Documents\ArcheAge
2014-08-04 19:02 - 2014-07-31 10:40 - 00000000 ____D () C:\Program Files (x86)\RivaTuner Statistics Server
2014-08-04 15:15 - 2013-06-26 12:59 - 00194142 _____ () C:\Windows\PFRO.log
2014-08-04 09:37 - 2014-08-04 09:29 - 64667320 _____ (Aslain ) C:\Users\User\Downloads\Aslains_XVM_Mod_Installer_v.3.8.3_92.exe
2014-08-04 09:22 - 2014-07-31 10:35 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner
2014-07-31 10:40 - 2014-07-31 10:40 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2014-07-31 10:40 - 2013-07-08 17:08 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-07-31 10:40 - 2013-07-08 17:08 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-07-31 10:39 - 2014-07-31 10:36 - 00001086 _____ () C:\Users\User\Desktop\MSI Afterburner.lnk
2014-07-31 10:36 - 2014-07-31 10:36 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2014-07-31 10:34 - 2014-07-31 10:34 - 29239096 _____ () C:\Users\User\Downloads\MSIAfterburnerSetup301.zip
2014-07-30 20:12 - 2014-07-30 20:12 - 00000000 ____D () C:\ArcheAge
2014-07-30 10:26 - 2014-07-30 10:26 - 29611712 _____ (Microsoft Corporation) C:\Users\User\Downloads\Windows-KB890830-x64-V5.14.exe
2014-07-29 13:55 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-28 20:52 - 2014-07-28 20:52 - 04136233 _____ () C:\Users\User\Downloads\permanentChannels__1_3_0.zip
2014-07-26 20:55 - 2013-06-28 20:55 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-07-26 12:25 - 2009-07-14 19:55 - 00741800 _____ () C:\Windows\system32\perfh015.dat
2014-07-26 12:25 - 2009-07-14 19:55 - 00156414 _____ () C:\Windows\system32\perfc015.dat
2014-07-26 12:25 - 2009-07-14 07:13 - 01669190 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-25 13:26 - 2014-07-25 13:26 - 00000716 _____ () C:\Users\User\Desktop\Archeage Beta.lnk
2014-07-25 13:23 - 2014-07-25 13:23 - 31303792 _____ (Trion Worlds Inc.) C:\Users\User\Downloads\GlyphInstall.exe
2014-07-25 13:23 - 2014-07-25 13:23 - 00000590 _____ () C:\Users\User\Desktop\Glyph.lnk
2014-07-25 13:23 - 2014-07-25 13:23 - 00000000 ____D () C:\Users\User\AppData\Local\Glyph
2014-07-25 13:23 - 2014-07-25 13:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glyph
2014-07-25 13:23 - 2014-07-25 13:23 - 00000000 ____D () C:\ProgramData\Glyph
2014-07-25 13:17 - 2014-04-20 20:24 - 00000061 _____ () C:\Users\User\Desktop\s.txt
2014-07-25 13:05 - 2014-07-25 13:05 - 00000000 ____D () C:\Users\User\Documents\Razer
2014-07-25 13:05 - 2014-07-25 13:05 - 00000000 ____D () C:\Users\User\AppData\Local\Razer_Inc
2014-07-25 13:04 - 2014-07-25 13:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-07-25 13:04 - 2014-03-28 16:26 - 00000000 ____D () C:\Users\User\AppData\Local\Razer
2014-07-25 13:04 - 2014-03-28 16:21 - 00000000 ____D () C:\ProgramData\Razer
2014-07-25 13:04 - 2014-03-28 16:21 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-07-25 13:01 - 2014-07-25 13:00 - 41954352 _____ (Razer Inc. ) C:\Users\User\Downloads\RazerGameBoosterSetup_4.2.45.0.exe
2014-07-25 11:26 - 2014-02-11 12:40 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-07-24 15:18 - 2013-06-29 13:15 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-24 15:18 - 2013-06-29 13:15 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-24 13:01 - 2013-06-29 13:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-20 11:17 - 2009-07-14 07:08 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-19 10:57 - 2014-07-19 10:57 - 00000003 _____ () C:\Windows\system32\HRUPPROG.TXT
2014-07-19 10:57 - 2014-07-19 10:57 - 00000003 _____ () C:\Windows\system32\HRUPPROG.EXIT
2014-07-18 17:39 - 2013-07-09 20:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\.minecraft
2014-07-18 14:27 - 2014-07-12 13:49 - 00000000 ____D () C:\Users\User\Desktop\egzek
2014-07-16 16:02 - 2014-07-16 16:02 - 00000000 ____D () C:\ProgramData\Riot Games
2014-07-16 11:43 - 2014-07-16 11:43 - 00000222 _____ () C:\Users\User\Desktop\Unturned.url
2014-07-16 08:26 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-07-16 08:18 - 2014-07-16 08:18 - 00000000 ____D () C:\Users\User\AppData\Local\Origin
2014-07-16 08:15 - 2014-07-16 08:15 - 17089296 _____ (Electronic Arts, Inc.) C:\Users\User\Downloads\OriginThinSetup (1).exe
2014-07-16 08:15 - 2014-07-16 08:15 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk
2014-07-12 20:49 - 2014-07-06 11:18 - 00000000 ____D () C:\Users\User\Desktop\Gra
2014-07-12 20:49 - 2013-09-26 19:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\codeblocks
2014-07-12 14:35 - 2014-07-12 14:35 - 01741466 _____ () C:\Users\User\Downloads\Llama z jeszcze wieksza iloscia dll.rar
2014-07-12 13:49 - 2014-07-12 13:49 - 00608553 _____ () C:\Users\User\Downloads\Llama.rar
2014-07-12 13:47 - 2014-07-12 13:47 - 00053399 _____ () C:\Users\User\Downloads\bagjuicellama.exe
2014-07-12 12:06 - 2014-07-12 12:05 - 134724029 _____ () C:\Users\User\Downloads\EK014b.zip
2014-07-12 11:34 - 2014-07-12 20:48 - 00461824 _____ () C:\Windows\SysWOW64\libfreetype-6.dll
2014-07-12 11:34 - 2014-07-12 20:48 - 00100352 _____ () C:\Windows\SysWOW64\zlib1.dll
2014-07-12 11:34 - 2014-07-12 20:48 - 00027136 _____ () C:\Windows\SysWOW64\SDL_ttf.dll
2014-07-12 11:28 - 2014-07-12 20:48 - 00328192 _____ () C:\Windows\SysWOW64\libFLAC-8.dll
2014-07-12 11:28 - 2014-07-12 20:48 - 00263168 _____ () C:\Windows\SysWOW64\libmikmod-2.dll
2014-07-12 11:28 - 2014-07-12 20:48 - 00209408 _____ () C:\Windows\SysWOW64\smpeg.dll
2014-07-12 11:28 - 2014-07-12 20:48 - 00163840 _____ () C:\Windows\SysWOW64\libvorbis-0.dll
2014-07-12 11:28 - 2014-07-12 20:48 - 00160256 _____ () C:\Windows\SysWOW64\SDL_mixer.dll
2014-07-12 11:28 - 2014-07-12 20:48 - 00036352 _____ () C:\Windows\SysWOW64\libvorbisfile-3.dll
2014-07-12 11:28 - 2014-07-12 20:48 - 00024064 _____ () C:\Windows\SysWOW64\libogg-0.dll
2014-07-12 11:26 - 2014-07-12 20:48 - 00408064 _____ () C:\Windows\SysWOW64\libtiff-5.dll
2014-07-12 11:26 - 2014-07-12 20:48 - 00204288 _____ () C:\Windows\SysWOW64\libjpeg-8.dll
2014-07-12 11:26 - 2014-07-12 20:48 - 00180224 _____ () C:\Windows\SysWOW64\libwebp-2.dll
2014-07-12 11:26 - 2014-07-12 20:48 - 00151552 _____ () C:\Windows\SysWOW64\libpng15-15.dll
2014-07-12 11:26 - 2014-07-12 20:48 - 00051200 _____ () C:\Windows\SysWOW64\SDL_image.dll
2014-07-11 21:32 - 2013-07-02 14:33 - 00000000 ____D () C:\Users\User\Documents\My Games
2014-07-11 21:21 - 2014-07-11 21:18 - 172286675 _____ () C:\Users\User\Downloads\Middle-Earth_Project_0.2.2b_FULL_RELEASE.rar
2014-07-11 21:19 - 2014-07-11 21:19 - 00431687 _____ () C:\Users\User\Downloads\MiddleEarthProject_0.2.2.1b_Fix_Patch.rar
2014-07-11 21:12 - 2014-07-11 21:09 - 216597284 _____ () C:\Users\User\Downloads\AKC_0.1_preview.zip
2014-07-11 21:10 - 2014-07-11 21:10 - 01511775 _____ () C:\Users\User\Downloads\AKC_0.1_preview_hotfix.zip
2014-07-11 21:03 - 2014-07-11 21:02 - 36020679 _____ () C:\Users\User\Downloads\Saeculum Obscurum 0.22a.zip
2014-07-11 16:54 - 2014-07-11 16:54 - 00001568 _____ () C:\Users\User\Desktop\KSP.exe — skrót.lnk
2014-07-11 15:36 - 2014-07-11 15:36 - 01107687 _____ () C:\Users\User\Downloads\SDL_image-devel-1.2.12-VC (1).zip
2014-07-11 15:33 - 2014-02-21 19:57 - 00000000 ____D () C:\Users\User\Desktop\Kólko
2014-07-11 15:26 - 2014-07-11 15:26 - 00800817 _____ () C:\Users\User\Downloads\SDL-devel-1.2.15-mingw32 (5).tar.gz
2014-07-11 15:25 - 2014-07-11 15:25 - 08196779 _____ () C:\Users\User\Downloads\SDL2-devel-2.0.3-mingw (1).tar.gz
2014-07-11 15:11 - 2014-07-11 15:11 - 00466130 _____ () C:\Users\User\Downloads\BTSM1-57.zip
2014-07-11 15:05 - 2014-07-11 15:05 - 00000915 _____ () C:\Users\Public\Desktop\Smite.lnk
2014-07-11 15:05 - 2014-07-11 15:05 - 00000906 _____ () C:\Users\Public\Desktop\Hi-Rez Diagnostics and Support.lnk
2014-07-11 15:05 - 2014-07-11 15:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2014-07-11 15:05 - 2014-07-11 09:48 - 00000000 ____D () C:\ProgramData\Hi-Rez Studios
2014-07-11 15:04 - 2013-06-26 13:23 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-07-11 09:48 - 2014-07-11 09:48 - 00000000 ____D () C:\Users\User\AppData\Roaming\Awesomium
2014-07-11 09:47 - 2014-07-11 09:47 - 39967251 _____ (Hi-Rez Studios) C:\Users\User\Downloads\InstallHiRezGamesEnglish.exe
2014-07-10 10:51 - 2014-03-31 21:22 - 00000000 ____D () C:\Users\User\AppData\Local\Mail.Ru
2014-07-09 20:29 - 2014-05-06 19:27 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-09 20:29 - 2009-07-14 20:09 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-09 20:29 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-07-09 20:29 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-07-09 19:11 - 2013-11-16 12:20 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-09 19:10 - 2013-07-21 22:03 - 00000000 ____D () C:\Windows\system32\MRT

Files to move or delete:
====================
C:\Users\User\AppData\Roaming\cache.ini


Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\AskPIP_FF_.exe
C:\Users\User\AppData\Local\Temp\Caramava_bs.exe
C:\Users\User\AppData\Local\Temp\drm_dialogs.dll
C:\Users\User\AppData\Local\Temp\drm_dyndata_7400008.dll
C:\Users\User\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpbkav6g.dll
C:\Users\User\AppData\Local\Temp\FileZilla_3.7.3_win32-setup.exe
C:\Users\User\AppData\Local\Temp\ICReinstall_WinZip175_mfse_fah.exe
C:\Users\User\AppData\Local\Temp\msxml6-KB927977-enu-amd64.exe
C:\Users\User\AppData\Local\Temp\msxml6-KB927977-enu-x86.exe
C:\Users\User\AppData\Local\Temp\ose00000.exe
C:\Users\User\AppData\Local\Temp\setup_fst_pl.exe
C:\Users\User\AppData\Local\Temp\SkypeSetup.exe
C:\Users\User\AppData\Local\Temp\sonarinst.exe
C:\Users\User\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\User\AppData\Local\Temp\_is5E08.exe
C:\Users\User\AppData\Local\Temp\_is6430.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-30 14:19

==================== End Of Log ============================