Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-10-2014 01 Ran by user (administrator) on PAWEL on 09-10-2014 01:22:40 Running from C:\Users\user\Desktop\fixitpc.pl\FRST Loaded Profile: user (Available profiles: user) Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polski (Polska) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Webroot) C:\Program Files (x86)\Webroot\WRSA.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (AMD) C:\Windows\System32\atiesrxx.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (AMD) C:\Windows\System32\atieclxx.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe () C:\Program Files (x86)\AMD\RAIDXpert\jetty\extra\win32\Wrapper.exe (Sun Microsystems, Inc.) C:\Program Files (x86)\AMD\RAIDXpert\_jvm\bin\java.exe (Webroot) C:\Program Files (x86)\Webroot\WRSA.exe (AddGadgets) C:\Users\user\Downloads\PCMeter\PCMeter\PCMeterV0.3.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (2BrightSparks Pte Ltd) C:\Program Files (x86)\2BrightSparks\SyncBackFree\SyncBackFree.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe () C:\Program Files (x86)\Lexmark 4900 Series\lxdrmon.exe (Lexmark International Inc.) C:\Program Files (x86)\Lexmark 4900 Series\ezprint.exe (PixArt Imaging Incorporation) C:\Windows\PixArt\Pac207\Monitor.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe (Kadu Team) C:\Program Files (x86)\Kadu\kadu.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe () C:\Program Files (x86)\IObit\Game Assistant\GameAssistantMain.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Volume Panel\VolPanlu.exe () C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe () C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe ( ) C:\Windows\System32\lxdrcoms.exe () C:\Program Files (x86)\Gaming Keyboard\OSD.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Realtek) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe (Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe () C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe (Akamai Technologies, Inc.) C:\Users\user\AppData\Local\Akamai\netsession_win.exe (Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe (OldTimer Tools) C:\Users\user\Desktop\fixitpc.pl\OTL\OTL.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe () C:\Users\user\Desktop\fixitpc.pl\aa\FRST64.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [lxdrmon.exe] => C:\Program Files (x86)\Lexmark 4900 Series\lxdrmon.exe [676520 2010-02-04] () HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark 4900 Series\ezprint.exe [131752 2010-02-04] (Lexmark International Inc.) HKLM\...\Run: [Monitor] => C:\Windows\PixArt\PAC207\Monitor.exe [319488 2006-11-03] (PixArt Imaging Incorporation) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-20] (NVIDIA Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [6847008 2008-10-31] (Realtek Semiconductor) HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2008-10-31] (Realtek Semiconductor Corp.) HKLM-x32\...\Run: [Adobe_ID0EZEHM] => C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe [1884160 2007-04-27] (Adobe Systems Incorporated) HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\Volume Panel\VolPanlu.exe [241757 2010-12-08] (Creative Technology Ltd) HKLM-x32\...\Run: [OscarEditor] => C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe [2647040 2009-12-22] () HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [85160 2009-06-17] (Elaborate Bytes AG) HKLM-x32\...\Run: [Gaming Keyboard] => C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE [184320 2012-02-14] () HKLM-x32\...\Run: [WRSVC] => C:\Program Files (x86)\Webroot\WRSA.exe [767600 2014-09-28] (Webroot) HKLM-x32\...\Run: [P17RunE] => RunDll32 P17RunE.dll,RunDLLEntry HKLM-x32\...\Run: [Akamai NetSession Interface] => C:\Users\user\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.) HKLM-x32\...\Run: [mcpltui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey HKLM\...\Policies\Explorer: [NoViewOnDrive] 0 HKLM\...\Policies\Explorer: [NoControlPanel] 0 HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 0 HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0 HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 0 HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0 HKLM\...\Policies\Explorer: [NoViewContextMenu] 0 HKLM\...\Policies\Explorer: [NoShellSearchButton] 0 HKLM\...\Policies\Explorer: [NoFind] 0 HKLM\...\Policies\Explorer: [NoFile] 0 HKLM\...\Policies\Explorer: [HideClock] 0 HKLM\...\Policies\Explorer: [NoTrayContextMenu] 0 HKLM\...\Policies\Explorer: [NoTrayItemsDisplay] 0 HKLM\...\Policies\Explorer: [NoSetFolders] 0 HKLM\...\Policies\Explorer: [NoDevMgrUpdate] 0 HKLM\...\Policies\Explorer: [NoSetTaskbar] 0 HKLM\...\Policies\Explorer: [NoDeletePrinter] 0 HKLM\...\Policies\Explorer: [NoDFSTab] 0 HKLM\...\Policies\Explorer: [NoChangeStartMenu] 0 HKLM\...\Policies\Explorer: [NoLogoff] 0 HKLM\...\Policies\Explorer: [NoWindowsUpdate] 0 HKLM\...\Policies\Explorer: [NoEncryptOnMove] 0 HKLM\...\Policies\Explorer: [NoRunasInstallPrompt] 0 HKLM\...\Policies\Explorer: [NoResolveSearch] 0 HKLM\...\Policies\Explorer: [NoSaveSettings] 0 HKLM\...\Policies\Explorer: [NoHardwareTab] 0 HKLM\...\Policies\Explorer: [NoStartMenuSubFolders] 0 HKLM\...\Policies\Explorer: [NoDesktop] 0 HKU\S-1-5-19\...\Policies\system: [DisableCMD] 0 HKU\S-1-5-19\...\Policies\system: [NoDispAppearancePage] 0 HKU\S-1-5-19\...\Policies\system: [NoDispBackgroundPage] 0 HKU\S-1-5-19\...\Policies\system: [NoDispSettingsPage] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoFolderOptions] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoViewOnDrive] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoControlPanel] 0 HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRun] 0 HKU\S-1-5-19\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0 HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRun] 0 HKU\S-1-5-19\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoViewContextMenu] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoShellSearchButton] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoFind] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoFile] 0 HKU\S-1-5-19\...\Policies\Explorer: [HideClock] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoTrayContextMenu] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoTrayItemsDisplay] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoSetFolders] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoDevMgrUpdate] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoSetTaskbar] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoDeletePrinter] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoDFSTab] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoChangeStartMenu] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoLogoff] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoWindowsUpdate] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoEncryptOnMove] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoRunasInstallPrompt] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoResolveSearch] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoSaveSettings] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoHardwareTab] 0 HKU\S-1-5-19\...\Policies\Explorer: [NoStartMenuSubFolders] 0 HKU\S-1-5-20\...\Policies\system: [DisableCMD] 0 HKU\S-1-5-20\...\Policies\system: [NoDispAppearancePage] 0 HKU\S-1-5-20\...\Policies\system: [NoDispBackgroundPage] 0 HKU\S-1-5-20\...\Policies\system: [NoDispSettingsPage] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoFolderOptions] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoViewOnDrive] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoControlPanel] 0 HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRun] 0 HKU\S-1-5-20\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0 HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRun] 0 HKU\S-1-5-20\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoViewContextMenu] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoShellSearchButton] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoFind] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoFile] 0 HKU\S-1-5-20\...\Policies\Explorer: [HideClock] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoTrayContextMenu] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoTrayItemsDisplay] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoSetFolders] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoDevMgrUpdate] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoSetTaskbar] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoDeletePrinter] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoDFSTab] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoChangeStartMenu] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoLogoff] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoWindowsUpdate] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoEncryptOnMove] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoRunasInstallPrompt] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoResolveSearch] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoSaveSettings] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoHardwareTab] 0 HKU\S-1-5-20\...\Policies\Explorer: [NoStartMenuSubFolders] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Run: [Google Update] => C:\Users\user\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2010-12-16] (Google Inc.) HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2014-09-29] (Glarysoft Ltd) HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Run: [Kadu] => C:\Program Files (x86)\Kadu\kadu.exe [270941 2014-09-28] (Kadu Team) HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Run: [OscarEditor] => C:\Program Files (x86)\Anti-Vibrate Oscar Editor\OscarEditor.exe [2647040 2009-12-22] () HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22734160 2014-08-08] (Google) HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Run: [PeerBlock] => C:\Program Files\PeerBlock\peerblock.exe [2513992 2014-01-14] (PeerBlock, LLC) HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\system: [DisableCMD] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\system: [NoDispAppearancePage] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\system: [NoDispBackgroundPage] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\system: [NoDispSettingsPage] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoViewOnDrive] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoControlPanel] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [DisableLocalMachineRun] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [DisableCurrentUserRun] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoViewContextMenu] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoShellSearchButton] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoFind] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoFile] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [HideClock] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoTrayContextMenu] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoTrayItemsDisplay] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoSetFolders] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoSetTaskbar] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoDeletePrinter] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoDFSTab] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoChangeStartMenu] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoLogoff] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoWindowsUpdate] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoEncryptOnMove] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoRunasInstallPrompt] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoResolveSearch] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoSaveSettings] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoHardwareTab] 0 HKU\S-1-5-21-2130650989-848459207-2900068595-1000\...\Policies\Explorer: [NoStartMenuSubFolders] 0 HKU\S-1-5-18\...\Policies\system: [DisableCMD] 0 HKU\S-1-5-18\...\Policies\system: [NoDispAppearancePage] 0 HKU\S-1-5-18\...\Policies\system: [NoDispBackgroundPage] 0 HKU\S-1-5-18\...\Policies\system: [NoDispSettingsPage] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoViewOnDrive] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoControlPanel] 0 HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRun] 0 HKU\S-1-5-18\...\Policies\Explorer: [DisableLocalMachineRunOnce] 0 HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRun] 0 HKU\S-1-5-18\...\Policies\Explorer: [DisableCurrentUserRunOnce] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoViewContextMenu] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoShellSearchButton] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoFind] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoFile] 0 HKU\S-1-5-18\...\Policies\Explorer: [HideClock] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoTrayContextMenu] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoTrayItemsDisplay] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoSetFolders] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoSetTaskbar] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoDeletePrinter] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoDFSTab] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoChangeStartMenu] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoLogoff] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoWindowsUpdate] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoEncryptOnMove] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoRunasInstallPrompt] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoResolveSearch] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoSaveSettings] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoHardwareTab] 0 HKU\S-1-5-18\...\Policies\Explorer: [NoStartMenuSubFolders] 0 Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Game Assistant.lnk ShortcutTarget: Game Assistant.lnk -> C:\Program Files (x86)\IObit\Game Assistant\GameAssistant.exe (VTools) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File ShellIconOverlayIdentifiers: [01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\user\AppData\Local\CloudStation\iconoverlay_v7\IconOverlayDLLs_x64\iconOverlay.dll (TODO: ) ShellIconOverlayIdentifiers: [02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\user\AppData\Local\CloudStation\iconoverlay_v7\IconOverlayDLLs_x64\iconOverlay.dll (TODO: ) ShellIconOverlayIdentifiers: [03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\user\AppData\Local\CloudStation\iconoverlay_v7\IconOverlayDLLs_x64\iconOverlay.dll (TODO: ) ShellIconOverlayIdentifiers: [04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\user\AppData\Local\CloudStation\iconoverlay_v7\IconOverlayDLLs_x64\iconOverlay.dll (TODO: ) ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => No File ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => No File ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => No File ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => No File ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} BHO: No Name -> {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -> No File BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: No Name -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> No File BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) BHO-x32: Lexmark Pasek narzędzi -> {1017A80C-6F09-4548-A84D-EDD6AC9525F0} -> C:\Program Files\Lexmark Toolbar\toolband.dll () BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: No Name -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> No File BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO-x32: No Name -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> No File BHO-x32: Lexmark -> {D2C5E510-BE6D-42CC-9F61-E4F939078474} -> C:\Program Files\Lexmark Printable Web\bho.dll () BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: IplexToALLPlayer -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.) Toolbar: HKLM - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File Toolbar: HKLM - No Name - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File Toolbar: HKLM-x32 - Lexmark Pasek narzędzi - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll () Toolbar: HKLM-x32 - No Name - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File Toolbar: HKCU - No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File Toolbar: HKCU - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} - No File Toolbar: HKCU - No Name - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No File Toolbar: HKCU - No Name - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - No File Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - No File ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ] ShellExecuteHooks-x32: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ] Tcpip\..\Interfaces\{D048BC41-615F-4D96-A263-E7A8837ABFB4}: [NameServer] 194.204.159.1,217.98.63.164 FireFox: ======== FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll () FF Plugin: @java.com/DTPlugin,version=10.40.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.40.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL No File FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin-x32: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll No File FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL No File FF Plugin-x32: @mcafee.com/MVT -> C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll No File FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\user\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\user\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF user.js: detected! => C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\user.js FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npBitCometAgent.dll (BitComet) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.) FF SearchPlugin: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\searchplugins\morelenet.xml FF Extension: FireShot - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2014-07-27] FF Extension: SeoQuake - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{317B5128-0B0B-49b2-B2DB-1E7560E16C74} [2014-09-04] FF Extension: Html Validator - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e} [2013-10-22] FF Extension: FT DeepDark - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2014-09-21] FF Extension: WOT - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-01-02] FF Extension: Bitdefender QuickScan - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{e001c731-5e37-4538-a5cb-8168736a2360} [2014-07-26] FF Extension: Firebug - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\firebug@software.joehewitt.com.xpi [2013-09-27] FF Extension: FireGestures - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\firegestures@xuldev.org.xpi [2013-09-26] FF Extension: IE NetRenderer - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\ienetrenderer-nico@nc.xpi [2013-09-27] FF Extension: Iplex to ALLPlayer - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\IplextoALL@ALLPlayer.org.xpi [2013-09-27] FF Extension: Translate This! - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\jid0-k75TfRGfOXPHfEZmJ9cKu5eCgLc@jetpack.xpi [2013-09-27] FF Extension: PageRank Client - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\pagerank-client@koeniglich.ch.xpi [2013-09-27] FF Extension: Personas Plus - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\personas@christopher.beard.xpi [2013-09-27] FF Extension: TrafficLight - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\trafficlight@bitdefender.com.xpi [2014-01-07] FF Extension: Copy As Plain Text - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{1a5dabbd-0e74-41da-b532-a364bb552cab}.xpi [2013-09-26] FF Extension: Sage - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596}.xpi [2013-09-27] FF Extension: Heartbleed-Ext - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{CB454AEB-2F60-4441-ADEB-2CB43BB33B20}.xpi [2014-04-15] FF Extension: Adblock Plus - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-09-26] FF Extension: Download Statusbar - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi [2013-09-26] FF Extension: DownThemAll! - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\w2e3iotr.default-1380203269472\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2013-09-27] FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-09-25] FF HKLM\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\TrustChecker FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox [2012-03-07] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor Chrome: ======= CHR HomePage: Default -> 54F8893294F898B3DB93670F62BFDBD7D4BA0687370407146AFB11A6E3368215 CHR DefaultSearchKeyword: Default -> yahoo.com CHR DefaultSearchProvider: Default -> Yahoo! CHR DefaultSearchURL: Default -> http://search.yahoo.com/search?fr=chr-greentree_gc&ei=utf-8&ilc=12&type=902615&p={searchTerms} CHR DefaultSuggestURL: Default -> http://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms} CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Dysk Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-25] CHR Extension: (Freemake Video Converter) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2014-08-25] CHR Extension: (Google Wallet) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-20] CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\user\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2014-07-30] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2014-07-30] CHR HKLM-x32\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2012-03-07] CHR StartMenuInternet: Google Chrome - C:\Users\user\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AMDRAIDXpert; C:\Program Files (x86)\AMD\RAIDXpert\jetty\extra\win32\Wrapper.exe [110592 2003-09-29] () [File not signed] S2 AODService; C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [137256 2013-05-24] () S3 cbVSCService11; C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe [67584 2013-03-07] (CobianSoft, Luis Cobian) [File not signed] S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2013-09-27] (Creative Labs) [File not signed] S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2013-08-31] (Creative Labs) [File not signed] R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2011-10-19] (Creative Technology Ltd) [File not signed] S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-07-15] (Freemake) [File not signed] S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200 2013-12-03] (IObit) R2 lxdr_device; C:\Windows\system32\lxdrcoms.exe [1039360 2009-10-16] ( ) R2 lxdr_device; C:\Windows\SysWOW64\lxdrcoms.exe [589824 2009-10-16] ( ) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-02-15] () R2 Realtek11nSU; C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [File not signed] R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [245760 2011-02-18] () [File not signed] R2 WRSVC; C:\Program Files (x86)\Webroot\WRSA.exe [767600 2014-09-28] (Webroot) S2 0017631412718110mcinstcleanup; C:\Users\user\AppData\Local\Temp\001763~1.EXE -cleanup -nolog [X] S2 McAPExe; "C:\Program Files\McAfee\MSC\McAPExe.exe" [X] S2 mcpltsvc; "C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R0 ahcix64s; C:\Windows\System32\DRIVERS\ahcix64s.sys [209424 2007-12-19] (AMD Technologies Inc.) S3 AndnetBus; C:\Windows\System32\DRIVERS\lgandnetbus64.sys [20992 2014-05-27] (LG Electronics Inc.) S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2014-05-27] (LG Electronics Inc.) S3 AndNetDiag2; C:\Windows\System32\DRIVERS\lgandnetdiag264.sys [29696 2014-05-27] (LG Electronics Inc.) S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2014-05-27] (LG Electronics Inc.) R2 AODDriver4.2.0; C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [58088 2013-05-24] (Advanced Micro Devices) U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2011-03-24] () R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-06-16] (Glarysoft Ltd) R0 BootDefragDriver; C:\Windows\SysWOW64\drivers\BootDefragDriver.sys [16640 2013-07-06] () S2 CXIR; C:\Windows\System32\drivers\cxcir64.sys [44544 2009-04-23] (Conexant Systems, Inc.) S3 CXPOLARIS; C:\Windows\System32\drivers\cxpolar64.sys [349824 2009-09-21] (Conexant Systems, Inc.) S3 FlashUSB; C:\Windows\System32\DRIVERS\FlashUSB_x64.sys [20480 2009-05-12] (Danish Wireless Design A/S) [File not signed] S3 FlashUSB; C:\Windows\SysWOW64\DRIVERS\FlashUSB_x64.sys [20480 2009-05-12] (Danish Wireless Design A/S) [File not signed] S3 FreshIO; C:\Program Files (x86)\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] () [File not signed] R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20160 2014-10-04] (Glarysoft Ltd) S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.) S3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [17920 2010-06-19] (Siliten) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2011-03-24] () S3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [444720 2014-07-24] (McAfee, Inc.) S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [96592 2014-07-24] (McAfee, Inc.) S3 PAC207; C:\Windows\System32\DRIVERS\PFC027.SYS [572416 2006-12-05] (PixArt Imaging Inc.) R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2008-01-09] (Sony Ericsson Mobile Communications) R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) R3 SgamingkbFltr; C:\Windows\System32\drivers\GKS16Fltr.sys [14848 2011-12-20] (LXD Development, Inc.) R0 speedfan; C:\Windows\SysWow64\speedfan.sys [14104 2007-02-07] (Windows (R) Server 2003 DDK provider) S0 sptd; C:\Windows\System32\Drivers\sptd.sys [502256 2010-08-12] (Duplex Secure Ltd.) S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv_AMD64.sys [17280 2012-05-15] (Scott) R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex) R0 WRkrn; C:\Windows\System32\drivers\WRkrn.sys [115680 2014-09-28] (Webroot) S3 atillk64; \??\C:\Program Files (x86)\AMD\System Monitor\atillk64.sys [X] S3 LgBttPort; system32\DRIVERS\lgbtpt64.sys [X] S3 lgbusenum; system32\DRIVERS\lgbtbs64.sys [X] S3 LGVMODEM; system32\DRIVERS\lgvmdm64.sys [X] S3 PROCEXP151; \??\C:\Windows\system32\Drivers\PROCEXP151.SYS [X] U0 SR; No ImagePath U2 srservice; No ImagePath S3 usbbus; system32\DRIVERS\lgx64bus.sys [X] S3 UsbDiag; system32\DRIVERS\lgx64diag.sys [X] S3 USBModem; system32\DRIVERS\lgx64modem.sys [X] R3 WinRing0_1_2_0; \??\C:\Users\user\AppData\Local\Temp\tmp41B8.tmp [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-10-09 00:53 - 2014-10-09 00:53 - 00000000 ____D () C:\Users\user\Desktop\fixitpc.pl 2014-10-08 15:04 - 2014-10-08 15:04 - 03894696 _____ (solvusoft Corporation ) C:\Users\user\Downloads\Narzędzie-naprawy-programu-Jscript.dll-WinThruster.exe 2014-10-08 15:04 - 2014-10-08 15:04 - 00003106 _____ () C:\Windows\System32\Tasks\WinThruster 2014-10-08 15:04 - 2014-10-08 15:04 - 00003014 _____ () C:\Windows\System32\Tasks\WinThruster_UPDATES 2014-10-08 15:04 - 2014-10-08 15:04 - 00002858 _____ () C:\Windows\System32\Tasks\WinThruster_DEFAULT 2014-10-08 15:04 - 2014-10-08 15:04 - 00001049 _____ () C:\Users\Public\Desktop\WinThruster.lnk 2014-10-08 15:04 - 2014-10-08 15:04 - 00000280 _____ () C:\Windows\Tasks\WinThruster_UPDATES.job 2014-10-08 15:04 - 2014-10-08 15:04 - 00000272 _____ () C:\Windows\Tasks\WinThruster_DEFAULT.job 2014-10-08 15:04 - 2014-10-08 15:04 - 00000000 ____D () C:\Users\user\AppData\Roaming\Solvusoft 2014-10-08 15:04 - 2014-10-08 15:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinThruster 2014-10-08 15:04 - 2014-10-08 15:04 - 00000000 ____D () C:\Program Files (x86)\WinThruster 2014-10-08 15:04 - 2012-10-15 17:02 - 00019888 _____ (solvusoft) C:\Windows\system32\roboot64.exe 2014-10-08 11:03 - 2014-10-08 11:03 - 05344984 _____ (Dll-Files.com ) C:\Users\user\Downloads\dffsetup-msvcp71.exe 2014-10-08 02:07 - 2014-10-08 02:07 - 00000215 _____ () C:\Users\user\Downloads\Search.txt 2014-10-08 02:03 - 2014-10-08 02:03 - 00078520 _____ () C:\Users\user\Downloads\Addition.txt 2014-10-08 02:01 - 2014-10-09 01:22 - 00000000 ____D () C:\FRST 2014-10-08 02:01 - 2014-10-08 02:07 - 00065160 _____ () C:\Users\user\Downloads\FRST.txt 2014-10-08 01:34 - 2014-10-08 01:34 - 00002982 _____ () C:\Users\user\Desktop\fix.reg 2014-10-08 00:51 - 2013-09-24 12:13 - 00503808 _____ (Microsoft Corporation) C:\Users\user\Desktop\msvcp71.dll 2014-10-08 00:46 - 2014-10-08 00:46 - 00415707 _____ () C:\Users\user\Downloads\Fix IE.zip 2014-10-08 00:43 - 2014-10-08 00:43 - 02077392 _____ (Microsoft Corporation) C:\Users\user\Downloads\IE11-Windows6.1.exe 2014-10-08 00:43 - 2014-10-08 00:43 - 00001331 _____ () C:\Windows\IE11_main.log 2014-10-07 23:42 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\HipShieldK.sys 2014-10-07 23:41 - 2014-10-07 23:41 - 00000000 ____D () C:\Users\user\AppData\Local\McAfee File Lock 2014-10-05 20:26 - 2014-10-05 20:26 - 00000000 ____D () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kadu 2014-10-05 20:24 - 2014-10-05 20:24 - 26892664 _____ () C:\Users\user\Downloads\Kadu-1.0.exe 2014-10-04 10:06 - 2014-10-08 13:02 - 00330803 _____ () C:\Windows\setupact.log 2014-10-04 10:06 - 2014-10-08 01:46 - 00070160 _____ () C:\Windows\PFRO.log 2014-10-04 10:06 - 2014-10-04 10:06 - 00000000 _____ () C:\Windows\setuperr.log 2014-10-02 01:22 - 2014-10-02 01:23 - 00000000 ____D () C:\Users\user\Documents\aaa 2014-10-02 01:20 - 2014-10-02 01:20 - 00002140 _____ () C:\Users\Public\Desktop\Google Web Designer.lnk 2014-10-02 01:20 - 2014-10-02 01:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Web Designer 2014-10-02 01:18 - 2014-10-02 01:18 - 00895120 _____ (Google Inc.) C:\Users\user\Downloads\googlewebdesigner_win.exe 2014-10-01 13:32 - 2014-10-01 13:32 - 00767600 _____ (Webroot) C:\Users\user\Downloads\SA4EWRSM85AFCB54E548.exe 2014-10-01 10:19 - 2014-09-25 04:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2014-10-01 10:19 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2014-09-26 00:07 - 2014-09-26 00:07 - 00001742 _____ () C:\Users\user\Desktop\PeerBlock.lnk 2014-09-26 00:06 - 2014-09-26 00:06 - 02374320 _____ (PeerBlock, LLC ) C:\Users\user\Downloads\PeerBlock-Setup_v1.2_r693.exe 2014-09-25 13:17 - 2014-09-25 13:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird 2014-09-25 11:39 - 2014-09-25 11:39 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-09-24 13:59 - 2014-09-24 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-09-24 13:40 - 2014-07-02 19:44 - 00609240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2014-09-24 12:54 - 2014-09-14 01:48 - 01876296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434411.dll 2014-09-24 12:54 - 2014-09-14 01:48 - 01539272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434411.dll 2014-09-24 12:47 - 2014-09-24 12:51 - 319671744 _____ (NVIDIA Corporation) C:\Users\user\Downloads\344.11-desktop-win8-win7-winvista-64bit-international-whql.exe 2014-09-24 12:45 - 2014-09-24 12:45 - 00941272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys 2014-09-24 12:45 - 2014-09-24 12:45 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2014-09-24 12:42 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-09-24 12:42 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2014-09-24 12:38 - 2014-09-24 12:38 - 01890080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434052.dll 2014-09-24 12:38 - 2014-09-24 12:38 - 01539928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434052.dll 2014-09-22 23:07 - 2014-09-22 23:08 - 00000000 ____D () C:\Users\user\Documents\puregreen 2014-09-22 00:23 - 2014-09-22 00:25 - 145977397 _____ () C:\Users\user\Downloads\bitdefender_ts_18_64b_INSTALKI_pl.exe 2014-09-13 16:23 - 2014-09-13 16:23 - 00000000 ____D () C:\Users\user\AppData\Local\Shutdown8 2014-09-13 16:22 - 2014-09-13 16:22 - 00316472 _____ () C:\Users\user\Downloads\SHUTDOWN8-SETUP.EXE 2014-09-13 16:18 - 2014-09-13 16:18 - 06537840 _____ () C:\Users\user\Downloads\HONEYVIEW-SETUP.EXE 2014-09-13 16:18 - 2014-09-13 16:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Honeyview 2014-09-13 16:18 - 2014-09-13 16:18 - 00000000 ____D () C:\Program Files\Honeyview 2014-09-13 16:13 - 2014-09-13 16:13 - 04537376 _____ () C:\Users\user\Downloads\BANDIZIP-SETUP.EXE 2014-09-11 17:41 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-09-11 17:41 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2014-09-11 17:41 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-09-11 17:41 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-09-11 17:41 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-09-11 17:41 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2014-09-11 17:41 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-09-11 17:41 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-09-11 17:41 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-09-11 17:41 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-09-11 17:41 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2014-09-11 17:41 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-09-11 17:41 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2014-09-11 17:41 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-09-11 17:41 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-09-11 17:41 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-09-11 17:41 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-09-11 17:41 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-09-11 17:41 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-09-11 17:41 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2014-09-11 17:41 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-09-11 17:41 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-09-11 17:41 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2014-09-11 17:41 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-09-11 17:41 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2014-09-11 17:41 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2014-09-11 17:41 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2014-09-11 17:41 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2014-09-11 17:41 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-09-11 17:41 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-09-11 17:41 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2014-09-11 17:41 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2014-09-11 17:41 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-09-11 17:41 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2014-09-11 17:41 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2014-09-11 17:41 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2014-09-11 17:41 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2014-09-11 17:41 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-09-11 17:41 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-09-11 17:41 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-09-11 17:41 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-09-11 17:41 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2014-09-11 17:41 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2014-09-11 17:41 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2014-09-11 17:41 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2014-09-11 17:41 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-09-11 17:41 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2014-09-11 17:41 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-09-11 17:41 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2014-09-11 17:41 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2014-09-11 17:41 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2014-09-11 17:41 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-09-11 17:41 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2014-09-11 17:41 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2014-09-11 17:41 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-09-11 17:41 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2014-09-11 17:14 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2014-09-11 17:14 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2014-09-11 13:12 - 2014-10-08 16:36 - 00000000 ____D () C:\Users\user\Documents\Hostlab 2014-09-11 11:52 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-09-11 11:52 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-09-11 11:52 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll 2014-09-11 11:52 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll 2014-09-11 11:52 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-09-11 11:52 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-09-11 11:52 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2014-09-11 11:52 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2014-09-11 11:52 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2014-09-11 11:52 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2014-09-11 11:52 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2014-09-10 00:04 - 2014-09-10 00:04 - 04901352 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup417.exe ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-10-09 01:22 - 2010-12-16 13:17 - 00001054 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2130650989-848459207-2900068595-1000UA.job 2014-10-09 01:20 - 2014-05-29 17:23 - 00000000 ____D () C:\Users\user\AppData\Roaming\Kadu 2014-10-09 01:20 - 2014-05-21 16:54 - 00000000 ____D () C:\Users\user\AppData\Roaming\EditPlus 3 2014-10-09 01:18 - 2011-02-21 19:29 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-10-09 00:54 - 2009-08-07 18:38 - 00000000 ____D () C:\Users\user\AppData\Roaming\FileZilla 2014-10-09 00:51 - 2009-08-07 18:57 - 00000000 ____D () C:\Users\user\Desktop\Często używane 2014-10-09 00:49 - 2012-02-26 17:57 - 00000000 ____D () C:\Users\user\AppData\Roaming\vlc 2014-10-09 00:39 - 2012-04-03 20:21 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-10-09 00:36 - 2014-03-23 18:06 - 00000000 ____D () C:\ProgramData\WRData 2014-10-09 00:20 - 2013-03-03 20:12 - 00000000 ____D () C:\FFOutput 2014-10-08 22:29 - 2009-11-09 22:13 - 00003950 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{BEABE57B-3BF0-4A6C-A350-9A1C95024B89} 2014-10-08 21:39 - 2012-06-10 22:57 - 01369270 _____ () C:\Windows\WindowsUpdate.log 2014-10-08 19:56 - 2009-11-09 19:41 - 00019664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-10-08 19:56 - 2009-11-09 19:41 - 00019664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-10-08 15:22 - 2012-10-21 22:01 - 00000000 ____D () C:\Users\user\AppData\Local\CrashDumps 2014-10-08 11:18 - 2011-02-21 19:29 - 00001040 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-10-08 10:43 - 2010-12-16 13:17 - 00001002 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2130650989-848459207-2900068595-1000Core.job 2014-10-08 01:53 - 2014-04-02 13:48 - 00000258 _____ () C:\Users\user\Desktop\zonefix.reg 2014-10-08 01:50 - 2014-05-21 10:15 - 00000328 _____ () C:\Windows\Tasks\GlaryInitialize 5.job 2014-10-08 01:50 - 2014-05-21 10:15 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5 2014-10-08 01:50 - 2013-07-20 13:37 - 00000320 _____ () C:\Windows\Tasks\GlaryInitialize.job 2014-10-08 01:49 - 2014-07-30 16:41 - 00000000 ___RD () C:\Users\user\Dysk Google 2014-10-08 01:49 - 2005-03-10 17:22 - 00014577 _____ () C:\Windows\SysWOW64\NapaSet.txt 2014-10-08 01:47 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-10-08 01:46 - 2013-08-31 15:10 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-10-08 01:37 - 2012-10-08 13:39 - 00006068 _____ () C:\Users\user\Downloads\SystemLook.txt 2014-10-08 01:31 - 2012-10-08 13:39 - 00165376 _____ () C:\Users\user\Downloads\SystemLook_x64.exe 2014-10-08 01:27 - 2014-04-01 13:06 - 00654336 _____ () C:\Users\user\Downloads\MicrosoftFixit50181.msi 2014-10-08 00:32 - 2014-01-12 20:36 - 00000000 __RSD () C:\Users\user\Documents\Magazyny firmy McAfee 2014-10-08 00:03 - 2009-07-14 19:55 - 00740438 _____ () C:\Windows\system32\perfh015.dat 2014-10-08 00:03 - 2009-07-14 19:55 - 00156012 _____ () C:\Windows\system32\perfc015.dat 2014-10-08 00:03 - 2009-07-14 07:13 - 01670590 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-10-07 23:57 - 2014-02-04 12:07 - 00000000 ____D () C:\ProgramData\ProductData 2014-10-07 23:48 - 2010-01-24 03:01 - 00000000 ____D () C:\Program Files\PeerBlock 2014-10-07 23:32 - 2014-01-12 20:10 - 00000000 ____D () C:\Program Files\stinger 2014-10-07 21:24 - 2009-08-05 03:38 - 00000000 ____D () C:\ProgramData\FLEXnet 2014-10-06 13:40 - 2012-09-11 14:17 - 00214528 ___SH () C:\Users\user\Documents\Thumbs.db 2014-10-06 12:53 - 2009-08-04 20:04 - 00000000 ____D () C:\Users\user\Documents\zss41 2014-10-06 12:04 - 2011-05-06 16:11 - 00000000 ____D () C:\Users\user\Documents\muzyczny 2014-10-05 20:26 - 2014-05-29 17:23 - 00000000 ____D () C:\Program Files (x86)\Kadu 2014-10-04 10:09 - 2014-05-21 10:16 - 00001098 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk 2014-10-04 10:09 - 2014-05-21 10:15 - 00020160 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys 2014-10-04 10:09 - 2014-05-21 10:15 - 00002964 _____ () C:\Windows\System32\Tasks\GU5SkipUAC 2014-10-04 10:09 - 2014-05-21 10:15 - 00002616 _____ () C:\Windows\System32\Tasks\GlaryInitialize 5 2014-10-04 10:06 - 2013-07-21 01:09 - 00000000 ____D () C:\Users\user\AppData\Roaming\DiskDefrag 2014-10-04 10:06 - 2009-07-14 06:45 - 05493216 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-10-04 02:39 - 2012-01-15 19:07 - 00000000 ____D () C:\Users\user\AppData\Roaming\AIMP3 2014-10-03 22:33 - 2014-01-21 22:03 - 00000000 ____D () C:\Users\user\Documents\kabinyprysznicowe.pl 2014-10-02 15:39 - 2009-09-29 17:12 - 00000000 ____D () C:\Users\user\Documents\Home service 2014-10-02 14:29 - 2009-08-04 19:52 - 00000000 ____D () C:\Users\user\Documents\hotmedia 2014-10-02 13:19 - 2014-03-27 16:24 - 00000000 ____D () C:\Users\user\Documents\tompol 2014-10-02 13:14 - 2009-08-04 19:29 - 00000000 ____D () C:\Users\user\Documents\! przydatne dodatki 2014-10-02 01:20 - 2011-02-21 19:29 - 00000000 ____D () C:\Program Files (x86)\Google 2014-10-02 01:20 - 2010-12-16 13:17 - 00000000 ____D () C:\Users\user\AppData\Local\Google 2014-10-01 14:26 - 2013-07-24 11:59 - 00000000 ____D () C:\Users\user\Documents\geocad katowice 2014-09-30 11:42 - 2009-11-09 20:34 - 00380264 _____ () C:\Users\user\AppData\Local\GDIPFONTCACHEV1.DAT 2014-09-28 22:21 - 2014-04-02 13:51 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-09-28 21:11 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache 2014-09-28 14:28 - 2014-03-23 18:06 - 00154760 _____ (Webroot) C:\Windows\SysWOW64\WRusr.dll 2014-09-28 14:28 - 2014-03-23 18:06 - 00115680 _____ (Webroot) C:\Windows\system32\Drivers\WRkrn.sys 2014-09-28 14:28 - 2014-03-23 18:06 - 00105320 _____ (Webroot) C:\Windows\system32\WRusr.dll 2014-09-28 11:30 - 2011-10-14 01:06 - 00000000 ____D () C:\Program Files (x86)\Steam 2014-09-27 22:30 - 2014-06-05 16:32 - 00003866 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1401093884 2014-09-27 22:30 - 2009-09-01 23:43 - 00000000 ____D () C:\Program Files (x86)\Opera 2014-09-27 22:21 - 2012-04-26 22:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-09-26 01:21 - 2009-08-08 16:50 - 00000000 ____D () C:\!Dysk D 2014-09-26 00:07 - 2010-01-24 03:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock 2014-09-26 00:02 - 2011-09-27 10:01 - 00000000 ____D () C:\Users\user\AppData\Roaming\Skype 2014-09-26 00:01 - 2010-12-14 01:04 - 00000000 ____D () C:\Program Files (x86)\JDownloader 2014-09-25 12:57 - 2009-11-28 20:44 - 00000000 ____D () C:\ProgramData\Lx_cats 2014-09-24 16:23 - 2009-11-04 01:54 - 00000000 ____D () C:\Users\user\Documents\stopwirusom 2014-09-24 15:23 - 2011-05-06 16:13 - 00000000 ____D () C:\Users\user\Documents\przelewy 24 2014-09-24 13:57 - 2012-09-21 10:02 - 00032608 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-09-24 13:40 - 2012-05-01 23:42 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2014-09-24 13:39 - 2012-04-03 20:21 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2014-09-24 13:39 - 2012-04-03 20:21 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2014-09-24 13:39 - 2011-05-18 09:00 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2014-09-24 12:49 - 2012-08-12 23:34 - 00000000 ____D () C:\Program Files (x86)\IObit 2014-09-24 12:45 - 2011-08-11 12:18 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll 2014-09-24 12:39 - 2013-08-31 14:41 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-09-24 12:11 - 2014-04-03 02:28 - 00002852 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (user) 2014-09-24 12:10 - 2014-05-24 16:06 - 20071520 _____ (IObit ) C:\Users\user\Downloads\driver_booster_setup.exe 2014-09-22 09:30 - 2011-11-21 02:16 - 00000296 _____ () C:\Windows\Tasks\Synology Data Replicator 3-PAWEL-user.job 2014-09-19 12:06 - 2014-07-31 14:10 - 00000000 ____D () C:\Users\user\Documents\Degre 2014-09-15 09:06 - 2009-10-03 20:38 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-09-13 16:17 - 2012-08-24 13:41 - 00000000 ____D () C:\Users\user\AppData\Local\Bandizip 2014-09-13 15:41 - 2009-08-04 19:42 - 00000000 ____D () C:\Users\user\Documents\! contao 2014-09-11 17:40 - 2012-08-14 01:29 - 01642260 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2014-09-11 17:39 - 2013-08-14 03:03 - 00000000 ____D () C:\Windows\system32\MRT 2014-09-11 17:15 - 2009-11-12 22:11 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-09-11 17:14 - 2014-04-30 01:30 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-09-10 00:05 - 2009-08-06 21:01 - 00000000 ____D () C:\Program Files (x86)\CCleaner 2014-09-09 13:29 - 2014-01-17 12:08 - 00000000 ____D () C:\Users\user\Documents\Zofia Czechlewska Files to move or delete: ==================== C:\Users\user\Network_Meter_Data.js ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-10-08 15:57 ==================== End Of Log ============================