Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-11-2014 01 Ran by Marek (administrator) on LAPTOP on 10-11-2014 12:12:26 Running from K:\ANTYVIR Loaded Profile: Marek (Available profiles: Marek & DefaultAppPool) Platform: Windows 8.1 Enterprise (X64) OS Language: Polski (Polska) Internet Explorer Version 11 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchService.exe (Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\LVPrS64H.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Logitech Inc.) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\OrderReminder\OrderReminder.exe () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe () C:\Program Files (x86)\Common Files\logishrd\LQCVFX\COCIManager.exe () C:\Advanced Wheel Mouse\wh_exec.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-05-09] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-02-05] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [OrderReminder] => C:\Program Files (x86)\Hewlett-Packard\OrderReminder\OrderReminder.exe [98304 2006-07-30] (Hewlett-Packard) HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] () HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [488328 2014-06-21] (Autodesk Inc.) HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285680 2013-03-05] (Intel Corporation) HKLM-x32\...\Run: [WheelMouse] => C:\Advanced Wheel Mouse\wh_exec.exe [147456 2010-05-26] () HKU\S-1-5-21-1945458797-3222738139-3082091542-1001\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Logitech Vid\vid.exe [5458704 2009-07-16] (Logitech Inc.) HKU\S-1-5-21-1945458797-3222738139-3082091542-1001\...\Run: [Ubrmedia] => regsvr32.exe C:\Users\Marek\AppData\Local\Ubrmedia\uspDevNetM24.dll <===== ATTENTION HKU\S-1-5-21-1945458797-3222738139-3082091542-1001\...\Run: [ALLUpdate] => C:\Program Files (x86)\ALLPlayer\ALLUpdate.exe [3510704 2014-07-23] (ALLPlayer Group Ltd.) HKU\S-1-5-21-1945458797-3222738139-3082091542-1001\...\MountPoints2: {5f59cc13-1fc6-11e3-be7a-001377aee53f} - "G:\LaunchU3.exe" -a HKU\S-1-5-21-1945458797-3222738139-3082091542-1001\...\Command Processor: "C:\Users\Marek\AppData\Roaming\Microsoft\Windows\IEUpdate\FlashPlayerApp.exe" <===== ATTENTION! Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) ShellIconOverlayIdentifiers: [1SecureIconsProvider] -> {FC9D8189-520A-4417-AED7-9EAC810C6FBA} => C:\ProgramData\Microsoft\Secure\Icons\SecureIconsProvider.dll () ShellIconOverlayIdentifiers: [StorageProviderError] -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\System32\shell32.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [StorageProviderSyncing] -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\System32\shell32.dll (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [StorageProviderError] -> {0CA2640D-5B9C-4c59-A5FB-2DA61A7437CF} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [StorageProviderSyncing] -> {0A30F902-8398-4ee8-86F7-4CFB589F04D1} => C:\Windows\SysWOW64\shell32.dll (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=166 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x282BC4EC019CCE01 HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-1945458797-3222738139-3082091542-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = Toolbar: HKCU - No Name - {A13C2648-91D4-4BF3-BC6D-0079707C4389} - No File Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - No File Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\eni535lz.default FF Homepage: hxxp://www.gazeta.pl/0,0.html?p=166 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.10 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.) FF Plugin-x32: @wacom.com/wacom-plugin,version=1.1.0.5 -> C:\Program Files (x86)\TabletPlugins\npwacom.dll (Wacom, Inc.) FF Plugin-x32: @wacom.com/wtPlugin,version=2.0.0.1 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll No File FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1945458797-3222738139-3082091542-1001: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll No File FF user.js: detected! => C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\eni535lz.default\user.js FF Extension: Flash Video Downloader - YouTube Full HD Download - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\eni535lz.default\Extensions\artur.dubovoy@gmail.com [2014-08-10] FF Extension: Youtube Downloader - Media Downloader - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\eni535lz.default\Extensions\paulsaintuzb@gmail.com.xpi [2013-08-18] FF Extension: YoutubeVideoDownload - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\eni535lz.default\Extensions\YoutubeVideoDownload@pluginator.xpi [2013-08-18] FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird FF Extension: No Name - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\eni535lz.default\extensions\a338c5448f724f94af2f11@cc4cdd6788a64e7ca7d83cb2cd.com [Not Found] FF Extension: No Name - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\eni535lz.default\extensions\randlphtim@hotmail.com [Not Found] FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found] Chrome: ======= CHR HomePage: Default -> hxxp://google.pl/ CHR StartupUrls: Default -> "hxxp://www.sweet-page.com/?type=hp&ts=1414270443&from=cor&uid=WDCXWD2500BEVT-35ZCT0_WD-WXE908CJ8860J8860" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\Marek\AppData\Local\Google\Chrome\User Data\Default ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [596360 2014-06-21] (Autodesk Inc.) R2 ftpsvc; C:\Windows\system32\inetsrv\ftpsvc.dll [372224 2014-11-08] (Microsoft Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation) S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2013-09-30] (Microsoft Corporation) S4 McNeelUpdate; c:\Program Files (x86)\McNeelUpdate\5.0\McNeelUpdateService.exe [68192 2013-10-09] (Robert McNeel & Associates) R2 MSSQL$KBMSS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29263712 2008-11-24] (Microsoft Corporation) S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2013-08-22] (Microsoft Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-02-05] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16941856 2014-02-05] (NVIDIA Corporation) S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation) S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation) S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-11-08] (Microsoft Corporation) R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [546304 2014-11-08] (Microsoft Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R3 athr; C:\Windows\system32\DRIVERS\athwnx.sys [3680256 2013-06-18] (Qualcomm Atheros Communications, Inc.) R3 BlueletAudio; C:\Windows\system32\DRIVERS\blueletaudio.sys [38160 2007-05-11] (IVT Corporation.) R3 BlueletSCOAudio; C:\Windows\system32\DRIVERS\BlueletSCOAudio.sys [37648 2007-03-05] (IVT Corporation.) R3 BT; C:\Windows\system32\DRIVERS\btnetdrv.sys [25360 2007-03-05] (IVT Corporation.) S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [131584 2013-08-22] (Microsoft Corporation) R0 BTHidEnum; C:\Windows\System32\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.) R0 BTHidEnum; C:\Windows\SysWOW64\Drivers\vbtenum.sys [24976 2007-03-05] (IVT Corporation.) R0 BTHidMgr; C:\Windows\System32\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.) R0 BTHidMgr; C:\Windows\SysWOW64\Drivers\BTHidMgr.sys [49680 2007-03-05] (IVT Corporation.) R0 firedrv; C:\Windows\System32\drivers\firedrv.sys [136136 2014-08-19] (intek (Darmstadt)) R3 LVPr2M64; C:\Windows\system32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-27] (NVIDIA Corporation) S3 PPortJoystick; C:\Windows\System32\drivers\PPortJoy64.sys [39992 2010-02-20] (Deon van der Westhuysen) [File not signed] S2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc.) R3 VComm; C:\Windows\system32\DRIVERS\VComm.sys [47120 2007-03-05] (IVT Corporation.) R3 VcommMgr; C:\Windows\System32\Drivers\VcommMgr.sys [63248 2007-03-05] (IVT Corporation.) R3 VMC302; C:\Windows\System32\Drivers\VMC302.sys [186880 2009-01-23] (Vimicro Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation) R3 whfltr2k; C:\Windows\System32\drivers\whfltr2k.sys [10368 2009-09-16] () R3 yukonw8; C:\Windows\system32\DRIVERS\yk63x64.sys [295216 2013-06-18] (Marvell) U3 uxldapow; \??\C:\Users\Marek\AppData\Local\Temp\uxldapow.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-10 12:05 - 2014-11-10 12:12 - 00000000 ____D () C:\FRST 2014-11-10 11:31 - 2014-10-30 12:25 - 00275080 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2014-11-10 10:55 - 2014-11-10 10:55 - 00000000 ____D () C:\Users\Marek\AppData\Local\MFAData 2014-11-10 10:55 - 2014-11-10 10:55 - 00000000 ____D () C:\Users\Marek\AppData\Local\Avg2015 2014-11-10 10:55 - 2014-11-10 10:55 - 00000000 ____D () C:\ProgramData\MFAData 2014-11-10 10:13 - 2014-11-10 10:16 - 00018432 _____ () C:\WINDOWS\system32\umstartup.etl 2014-11-09 14:15 - 2014-11-09 14:15 - 00001149 _____ () C:\Users\Public\Desktop\ALLPlayer Pilot.lnk 2014-11-09 14:15 - 2014-11-09 14:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer Pilot 2014-11-09 14:15 - 2014-11-09 14:15 - 00000000 ____D () C:\Program Files (x86)\ALLPlayer Remote 2014-11-09 14:14 - 2014-11-09 14:15 - 00004411 _____ () C:\WINDOWS\unins000.dat 2014-11-09 14:14 - 2014-11-09 14:15 - 00000000 ____D () C:\Program Files (x86)\ALLPlayer 2014-11-09 14:14 - 2014-11-09 14:14 - 00719827 _____ () C:\WINDOWS\unins000.exe 2014-11-09 14:14 - 2014-11-09 14:14 - 00002417 _____ () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ALLPlayer.TV.lnk 2014-11-09 14:14 - 2014-11-09 14:14 - 00002387 _____ () C:\Users\Marek\Desktop\ALLPlayer.TV.lnk 2014-11-09 14:14 - 2014-11-09 14:14 - 00001147 _____ () C:\Users\Marek\Desktop\ALLPlayer.Radio.lnk 2014-11-09 14:14 - 2014-11-09 14:14 - 00001139 _____ () C:\Users\Marek\Desktop\ALLPlayer.VOD.lnk 2014-11-09 14:14 - 2014-11-09 14:14 - 00001035 _____ () C:\Users\Marek\Desktop\ALLPlayer.lnk 2014-11-09 14:14 - 2014-11-09 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer 2014-11-09 14:14 - 2014-11-09 14:14 - 00000000 ____D () C:\ProgramData\ALLPlayer 2014-11-09 14:14 - 2013-04-05 21:26 - 02106368 _____ () C:\WINDOWS\SysWOW64\ac3filter.ax 2014-11-09 14:14 - 2013-04-05 21:26 - 00276992 _____ (IntelleSoft) C:\WINDOWS\SysWOW64\BugTrap.dll 2014-11-09 14:14 - 2011-06-02 02:10 - 00644608 _____ () C:\WINDOWS\SysWOW64\xvidcore.dll 2014-11-09 14:14 - 2007-10-07 15:36 - 00258048 _____ () C:\WINDOWS\SysWOW64\libFLAC.dll 2014-11-08 18:57 - 2014-11-10 10:51 - 00003976 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{59EA117E-F2EA-4A5D-9441-126900358734} 2014-11-08 18:49 - 2014-11-08 18:52 - 00000000 ____D () C:\Users\Marek\Downloads\Cakewalk.Sonar.Producer.Edition.v6.0.READ.NFO-BEAT 2014-11-08 17:57 - 2014-11-08 17:57 - 00001454 _____ () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-11-08 17:57 - 2014-11-08 17:57 - 00000020 ___SH () C:\Users\Marek\ntuser.ini 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\Ustawienia lokalne 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\Szablony 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\Moje dokumenty 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\Menu Start 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\Documents\Moje wideo 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\Documents\Moje obrazy 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\Documents\Moja muzyka 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\Dane aplikacji 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historia 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Dane aplikacji 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Moje wideo 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Moje obrazy 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default User\Documents\Moja muzyka 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historia 2014-11-08 17:29 - 2014-11-08 17:29 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Dane aplikacji 2014-11-08 17:27 - 2014-11-08 17:27 - 00023044 _____ () C:\WINDOWS\system32\emptyregdb.dat 2014-11-08 17:14 - 2014-11-08 17:14 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2014-11-08 17:14 - 2014-11-08 17:14 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia 2014-11-08 17:14 - 2014-11-08 17:14 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia 2014-11-08 17:07 - 2014-11-08 17:07 - 00000000 ____D () C:\WINDOWS\system32\config\bbimigrate 2014-11-08 17:05 - 2014-11-10 10:25 - 00000000 ____D () C:\Users\Marek 2014-11-08 17:05 - 2014-11-08 17:28 - 00032388 _____ () C:\WINDOWS\diagwrn.xml 2014-11-08 17:05 - 2014-11-08 17:28 - 00032388 _____ () C:\WINDOWS\diagerr.xml 2014-11-08 17:05 - 2014-11-08 17:06 - 00000000 ___RD () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\Ustawienia lokalne 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\Szablony 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\Moje dokumenty 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\Menu Start 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\Documents\Moje wideo 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\Documents\Moje obrazy 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\Documents\Moja muzyka 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\Dane aplikacji 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\AppData\Local\Historia 2014-11-08 17:05 - 2014-11-08 17:05 - 00000000 _SHDL () C:\Users\Marek\AppData\Local\Dane aplikacji 2014-11-08 17:05 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-11-08 17:05 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2014-11-08 17:05 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-11-08 17:04 - 2014-11-08 17:22 - 00000000 ____D () C:\Users\DefaultAppPool 2014-11-08 17:04 - 2014-11-08 17:05 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-11-08 17:04 - 2014-11-08 17:05 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\Ustawienia lokalne 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\Szablony 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\Moje dokumenty 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\Menu Start 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\Documents\Moje wideo 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\Documents\Moje obrazy 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\Documents\Moja muzyka 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\Dane aplikacji 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\AppData\Local\Historia 2014-11-08 17:04 - 2014-11-08 17:04 - 00000000 _SHDL () C:\Users\DefaultAppPool\AppData\Local\Dane aplikacji 2014-11-08 17:04 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2014-11-08 17:04 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2014-11-08 16:59 - 2014-11-08 17:23 - 02130600 _____ () C:\WINDOWS\SysWOW64\PerfStringBackup.INI 2014-11-08 16:58 - 2014-11-08 17:07 - 00044951 _____ () C:\WINDOWS\iis.log 2014-11-08 16:56 - 2014-11-10 12:01 - 01477465 _____ () C:\WINDOWS\WindowsUpdate.log 2014-11-08 16:56 - 2014-11-08 17:12 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2014-11-08 16:56 - 2014-11-08 17:12 - 00000000 ____D () C:\ProgramData\NVIDIA 2014-11-08 16:56 - 2014-07-02 19:55 - 06783776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2014-11-08 16:56 - 2014-07-02 19:55 - 03522392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2014-11-08 16:56 - 2014-07-02 19:55 - 02559960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2014-11-08 16:56 - 2014-07-02 19:55 - 00935368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe 2014-11-08 16:56 - 2014-07-02 19:55 - 00386520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2014-11-08 16:56 - 2014-07-02 19:55 - 00062808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2014-11-08 16:56 - 2014-07-02 11:14 - 03826628 _____ () C:\WINDOWS\system32\nvcoproc.bin 2014-11-08 16:55 - 2014-11-08 17:12 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2014-11-08 16:55 - 2014-11-08 16:55 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2014-11-08 16:55 - 2014-11-08 16:55 - 00000000 ____D () C:\WINDOWS\VMC302 2014-11-08 16:55 - 2014-11-08 16:55 - 00000000 ____D () C:\WINDOWS\SysWOW64\RTCOM 2014-11-08 16:55 - 2014-11-08 16:55 - 00000000 ____D () C:\Program Files\Realtek 2014-11-08 16:52 - 2014-11-09 14:11 - 00000000 ___DC () C:\WINDOWS\Panther 2014-11-08 16:50 - 2014-11-10 10:05 - 00000000 ____D () C:\Windows.old 2014-11-08 16:49 - 2014-11-08 16:49 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff 2014-11-08 16:42 - 2014-11-08 17:11 - 00000000 ____D () C:\inetpub 2014-11-08 16:42 - 2014-11-08 16:42 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll 2014-11-08 16:42 - 2014-11-08 16:42 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll 2014-11-08 16:42 - 2014-11-08 16:42 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll 2014-11-08 16:42 - 2014-11-08 16:42 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll 2014-11-08 16:42 - 2014-11-08 16:42 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll 2014-11-08 16:42 - 2014-11-08 16:42 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll 2014-11-08 16:42 - 2014-11-08 16:42 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\TFTP.EXE 2014-11-08 16:42 - 2014-11-08 16:42 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe 2014-11-08 16:42 - 2014-11-08 16:42 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe 2014-11-08 16:42 - 2014-11-08 16:42 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll 2014-11-08 16:42 - 2014-11-08 16:42 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll 2014-11-08 16:42 - 2014-11-08 16:42 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll 2014-11-08 16:42 - 2014-11-08 16:42 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll 2014-11-08 16:42 - 2014-11-08 16:42 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IIS 2014-11-08 16:42 - 2014-11-08 16:42 - 00000000 ____D () C:\WINDOWS\SysWOW64\XPSViewer 2014-11-08 16:42 - 2014-11-08 16:42 - 00000000 ____D () C:\WINDOWS\SysWOW64\BestPractices 2014-11-08 16:42 - 2014-11-08 16:42 - 00000000 ____D () C:\WINDOWS\system32\BestPractices 2014-11-08 16:42 - 2014-11-08 16:42 - 00000000 ____D () C:\Program Files\Reference Assemblies 2014-11-08 16:42 - 2014-11-08 16:42 - 00000000 ____D () C:\Program Files\MSBuild 2014-11-08 16:42 - 2014-11-08 16:42 - 00000000 ____D () C:\Program Files (x86)\Reference Assemblies 2014-11-08 16:42 - 2014-11-08 16:42 - 00000000 ____D () C:\Program Files (x86)\MSBuild 2014-11-08 16:41 - 2014-11-08 16:41 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys 2014-11-08 16:41 - 2013-09-30 05:51 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2014-11-08 16:41 - 2013-09-30 05:51 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2014-11-08 16:41 - 2013-09-30 05:51 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2014-11-08 16:41 - 2013-09-30 05:51 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2014-11-08 16:41 - 2013-09-30 05:51 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2014-11-08 16:41 - 2013-09-30 05:51 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2014-11-08 15:35 - 2014-11-08 17:28 - 00006602 _____ () C:\WINDOWS\comsetup.log 2014-11-07 19:05 - 2014-11-07 19:05 - 02283520 _____ () C:\Users\Marek\Desktop\Yamaha742_install.iso 2014-11-05 21:40 - 2014-11-05 21:40 - 00347891 _____ () C:\WINDOWS\system32\ScanResults.xml 2014-11-05 21:33 - 2014-11-05 21:33 - 00000464 _____ () C:\WINDOWS\system32\ScannerSettings 2014-11-04 15:58 - 2014-11-04 15:58 - 00000000 ____D () C:\Users\Marek\AppData\Local\CrashDumps 2014-11-04 15:54 - 2014-11-07 20:34 - 00000000 ____D () C:\Users\Marek\AppData\Local\NPE 2014-11-04 02:35 - 2014-11-04 03:22 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Norton Identity Safe 2014-11-03 16:14 - 2014-11-07 22:38 - 00000000 ____D () C:\ProgramData\NCOTEMP 2014-11-03 16:13 - 2014-11-07 22:47 - 00000000 ____D () C:\ProgramData\Norton 2014-11-03 15:48 - 2014-04-23 17:51 - 02117424 _____ () C:\WINDOWS\system32\SStudio.dll 2014-11-03 15:48 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll 2014-11-03 15:48 - 2014-03-05 05:11 - 01048824 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\slcnt64.dll 2014-11-03 15:48 - 2014-03-05 05:11 - 00889592 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll 2014-11-03 15:48 - 2014-03-05 05:11 - 00724728 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll 2014-11-03 15:48 - 2014-03-05 05:11 - 00246008 _____ (TODO: ) C:\WINDOWS\system32\slprp64.dll 2014-11-03 15:48 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll 2014-11-03 15:48 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tossaeapo64.dll 2014-11-03 15:48 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\toseaeapo64.dll 2014-11-03 15:48 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosasfapo64.dll 2014-11-03 15:48 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll 2014-11-03 15:48 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll 2014-11-03 15:48 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll 2014-11-03 15:48 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll 2014-11-03 15:48 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2014-11-03 15:48 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2014-11-03 15:48 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2014-11-03 15:48 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2014-11-03 15:47 - 2014-05-14 18:37 - 03962840 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2014-11-03 15:47 - 2014-04-25 13:51 - 02834648 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2014-11-03 15:47 - 2014-04-25 13:23 - 01022168 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2014-11-03 15:47 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2014-11-03 15:47 - 2014-02-06 11:28 - 05804772 _____ () C:\WINDOWS\system32\Drivers\rtvienna.dat 2014-11-03 15:47 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll 2014-11-03 15:47 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2014-11-03 15:47 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2014-11-03 15:47 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll 2014-11-03 15:47 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll 2014-11-03 15:47 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll 2014-11-03 15:47 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2014-11-03 15:47 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll 2014-11-03 15:46 - 2014-05-14 16:00 - 01099203 _____ () C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2014-11-03 15:46 - 2014-05-12 20:11 - 60636160 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat 2014-11-03 15:46 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll 2014-11-03 15:46 - 2014-04-30 11:34 - 00948952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2014-11-03 15:46 - 2014-04-28 15:48 - 02800344 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll 2014-11-03 15:46 - 2014-04-09 16:39 - 00942384 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOSettingsIPC.dll 2014-11-03 15:46 - 2014-04-09 16:38 - 05751048 _____ (Nahimic Inc) C:\WINDOWS\system32\NAHIMICAPOlfx.dll 2014-11-03 15:46 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2014-11-03 15:46 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\WINDOWS\system32\MISS_APO.dll 2014-11-03 15:46 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll 2014-11-03 15:46 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll 2014-11-03 15:46 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll 2014-11-03 15:46 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll 2014-11-03 15:46 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll 2014-11-03 15:46 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2014-11-03 15:46 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2014-11-03 15:46 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2014-11-03 15:46 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2014-11-03 15:46 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2014-11-03 15:46 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2014-11-03 15:45 - 2014-11-03 15:45 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Intel Corporation 2014-11-03 15:45 - 2014-04-17 17:42 - 01317976 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO6064.dll 2014-11-03 15:45 - 2014-04-17 17:42 - 01168472 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO5064.dll 2014-11-03 15:45 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll 2014-11-03 15:45 - 2014-04-10 12:20 - 12894808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO3064.dll 2014-11-03 15:45 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll 2014-11-03 15:45 - 2014-04-10 12:19 - 28343384 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioVnA64.dll 2014-11-03 15:45 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll 2014-11-03 15:45 - 2014-04-10 12:19 - 03959384 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioVnN64.dll 2014-11-03 15:45 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2014-11-03 15:45 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll 2014-11-03 15:45 - 2014-04-10 12:19 - 00900696 _____ (Waves Audio Ltd.) C:\WINDOWS\SysWOW64\MaxxAudioAPOShell.dll 2014-11-03 15:45 - 2014-03-19 19:19 - 00956504 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVoiceAPO2064.dll 2014-11-03 15:45 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxSpeechAPO64.dll 2014-11-03 15:45 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll 2014-11-03 15:45 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll 2014-11-03 15:44 - 2014-03-21 14:17 - 00291488 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll 2014-11-03 15:44 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll 2014-11-03 15:44 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2014-11-03 15:43 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll 2014-11-03 15:43 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll 2014-11-03 15:43 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll 2014-11-03 15:43 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll 2014-11-03 15:43 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2014-11-03 15:43 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2014-11-03 15:43 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll 2014-11-03 15:43 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll 2014-11-03 15:43 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll 2014-11-03 15:43 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll 2014-11-03 15:42 - 2014-05-02 11:19 - 00033592 _____ () C:\WINDOWS\system32\audioLibVc.dll 2014-11-03 15:42 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2014-11-03 15:42 - 2013-06-21 11:01 - 00109848 _____ () C:\WINDOWS\system32\AcpiServiceVnA64.dll 2014-11-03 15:42 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2014-11-02 18:01 - 2014-11-02 18:01 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\InstallShield 2014-11-02 18:01 - 2014-11-02 18:01 - 00000000 ____D () C:\Program Files (x86)\Vimicro Corporation 2014-11-02 18:01 - 2009-01-23 13:32 - 00186880 _____ (Vimicro Corporation) C:\WINDOWS\system32\Drivers\VMC302.sys 2014-11-02 18:01 - 2008-02-27 16:51 - 00011776 _____ (Vimicro Corporation) C:\WINDOWS\system32\VMC302.dll 2014-11-02 18:01 - 2007-07-26 16:56 - 00816128 _____ (vimicro) C:\WINDOWS\system32\VMC302.ax 2014-11-02 18:01 - 2007-07-26 16:17 - 00503808 _____ (vimicro) C:\WINDOWS\SysWOW64\VMC302.ax 2014-11-02 18:01 - 2007-04-16 15:14 - 00745472 _____ (Vimicro Corporation) C:\WINDOWS\system32\vmctrl.ax 2014-11-02 18:01 - 2007-04-16 15:12 - 00098304 _____ (Vimicro Corporation) C:\WINDOWS\SysWOW64\VMCtrl.ax 2014-11-02 18:01 - 2007-04-12 22:59 - 00073728 _____ (Vimicro Corporation) C:\WINDOWS\SysWOW64\exvmuvc.ax 2014-11-02 18:00 - 2014-11-08 17:17 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Advanced Wheel Mouse 2014-11-02 18:00 - 2014-11-02 18:00 - 00000000 ____D () C:\Advanced Wheel Mouse 2014-11-02 17:53 - 2014-11-08 17:17 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2014-11-02 17:52 - 2013-03-05 23:49 - 00653296 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys 2014-11-02 17:43 - 2014-11-02 17:43 - 00000000 ____D () C:\Program Files (x86)\Realtek 2014-11-02 17:39 - 2014-11-02 17:39 - 00008344 _____ () C:\WINDOWS\ykinstutil.log 2014-11-02 17:38 - 2014-11-02 17:39 - 00000371 ____R () C:\WINDOWS\YukonInstall.log 2014-11-02 17:38 - 2014-11-02 17:38 - 00000000 ____D () C:\Program Files (x86)\Marvell 2014-11-02 16:27 - 2014-11-02 16:47 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Guitar Pro 6 2014-11-02 16:27 - 2014-11-02 16:27 - 00000000 ____D () C:\ProgramData\Guitar Pro 6 2014-11-02 15:40 - 2014-11-02 15:48 - 00000000 ____D () C:\Users\Marek\Downloads\Guitar Pro 6 2014-11-01 23:09 - 2014-11-01 23:11 - 00000165 _____ () C:\WINDOWS\Reimage.ini 2014-11-01 15:41 - 2014-11-08 17:17 - 00000000 ____D () C:\WINDOWS\system32\AutoUpdateLicense 2014-10-29 21:45 - 2014-11-08 17:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoModeler Scanner 2014-10-29 21:45 - 2014-10-29 21:45 - 00003120 _____ () C:\WINDOWS\swkpms7lic.lf 2014-10-29 21:45 - 2014-10-29 21:45 - 00001240 _____ () C:\Users\Public\Desktop\PhotoModeler Scanner [64-bit].lnk 2014-10-29 21:45 - 2014-10-29 21:45 - 00000000 ____D () C:\Users\Public\Documents\PhotoModeler Scanner 2014-10-29 21:45 - 2014-10-29 21:45 - 00000000 ____D () C:\Program Files\Common Files\PhotoModeler Scanner 2014-10-29 21:16 - 2014-10-29 21:16 - 00000000 ____D () C:\Users\Marek\AppData\Local\PhotoModeler Scanner 2014-10-29 21:14 - 2014-10-29 21:45 - 00000000 ____D () C:\Program Files\PhotoModeler Scanner Application [64-bit] 2014-10-29 21:13 - 2014-11-10 10:51 - 00000000 __HDC () C:\ProgramData\{ED53FDBA-DE41-495D-A2FE-6E2F8AC94B9C} 2014-10-29 21:06 - 2014-10-29 21:06 - 00000000 ____D () C:\Users\Marek\AppData\Local\PackageAware 2014-10-29 20:58 - 2014-10-22 04:34 - 00010777 _____ () C:\WINDOWS\system32\AutoconfigV2.cab 2014-10-29 20:58 - 2014-10-22 04:33 - 00581016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AutoUpdate.exe 2014-10-27 20:03 - 2014-10-27 20:03 - 00000049 _____ () C:\Users\Marek\Desktop\AnviSoft.url 2014-10-26 11:24 - 2014-10-26 11:41 - 00000400 _____ () C:\Users\Marek\Documents\ax_files.xml 2014-10-26 11:21 - 2014-10-26 11:40 - 00000000 ____D () C:\Users\Marek\Documents\Alcohol 120% 2014-10-26 11:00 - 2014-10-26 11:00 - 00386680 _____ (Duplex Secure Ltd.) C:\WINDOWS\system32\Drivers\sptd.sys 2014-10-25 22:40 - 2014-10-25 22:40 - 00022619 _____ () C:\ComboFix.txt 2014-10-25 22:10 - 2014-11-10 10:49 - 00000000 ____D () C:\Program Files\GridinSoft Trojan Killer 2014-10-25 22:10 - 2014-10-25 22:10 - 00000000 ____D () C:\ProgramData\GridinSoft 2014-10-25 22:00 - 2014-10-28 11:42 - 00000000 ____D () C:\Users\Marek\AppData\Local\Ihsoft 2014-10-25 21:43 - 2014-10-25 21:44 - 00000000 ____D () C:\Users\Marek\Downloads\Alcohol 120% 2014-10-23 16:59 - 2014-10-23 16:59 - 00000000 ____D () C:\Program Files\3D3Solutions 2014-10-23 16:42 - 2014-11-08 17:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2014-10-23 16:42 - 2014-10-23 16:42 - 00000000 ____D () C:\Program Files\7-Zip 2014-10-11 15:36 - 2014-10-11 17:06 - 00000000 ____D () C:\Users\Marek\Documents\FlexScan3D ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-10 12:06 - 2013-10-15 17:33 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-11-10 12:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru 2014-11-10 11:54 - 2012-07-26 08:59 - 00000000 ____D () C:\WINDOWS\CbsTemp 2014-11-10 11:45 - 2014-09-08 21:35 - 00001070 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-10 11:14 - 2013-09-30 05:15 - 02108934 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-11-10 11:14 - 2013-09-30 04:56 - 00911788 _____ () C:\WINDOWS\system32\perfh015.dat 2014-11-10 11:14 - 2013-09-30 04:56 - 00209542 _____ () C:\WINDOWS\system32\perfc015.dat 2014-11-10 11:14 - 2013-08-17 23:24 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1945458797-3222738139-3082091542-1001 2014-11-10 11:10 - 2014-09-08 21:36 - 00002209 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-11-10 11:10 - 2014-09-08 21:35 - 00001066 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-10 11:10 - 2013-11-23 13:07 - 00000000 ____D () C:\Program Files\PowerISO 2014-11-10 11:09 - 2014-09-08 20:05 - 00001352 _____ () C:\WINDOWS\Tasks\LVOSUX.job 2014-11-10 11:09 - 2014-09-08 19:59 - 00001698 _____ () C:\WINDOWS\Tasks\BDKKXJM.job 2014-11-10 11:08 - 2013-08-22 15:46 - 00357354 _____ () C:\WINDOWS\setupact.log 2014-11-10 11:08 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-11-10 11:07 - 2013-09-29 20:05 - 00003192 _____ () C:\WINDOWS\PFRO.log 2014-11-10 10:47 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\restore 2014-11-10 10:47 - 2013-08-18 18:19 - 00000000 ____D () C:\WINDOWS\4941BFEB62C047A2801E998FC469CC2C.TMP 2014-11-10 10:16 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI 2014-11-10 10:02 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness 2014-11-09 15:10 - 2014-09-08 19:59 - 00000928 _____ () C:\WINDOWS\Tasks\globalUpdateUpdateTaskMachineUA.job 2014-11-09 14:22 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF 2014-11-08 19:01 - 2013-08-17 23:23 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\uTorrent 2014-11-08 17:59 - 2013-08-17 23:17 - 00000000 ____D () C:\Users\Marek\AppData\Local\Packages 2014-11-08 17:58 - 2013-08-17 23:18 - 00000000 ____D () C:\WINDOWS\System32\Tasks\WPD 2014-11-08 17:43 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache 2014-11-08 17:29 - 2013-08-22 14:36 - 00000000 __RHD () C:\Users\Default 2014-11-08 17:28 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Registration 2014-11-08 17:24 - 2013-08-22 16:36 - 00000000 __RSD () C:\WINDOWS\Media 2014-11-08 17:24 - 2013-08-22 16:36 - 00000000 __RHD () C:\Users\Public\Libraries 2014-11-08 17:18 - 2013-08-22 15:44 - 00359752 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-11-08 17:17 - 2014-10-10 19:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Point Grey FlyCapture2 SDK (64bit) 2014-11-08 17:17 - 2014-10-07 17:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EOS Camera Movie Record 2014-11-08 17:17 - 2014-09-09 21:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhoenixRC 2014-11-08 17:17 - 2014-09-08 21:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-11-08 17:17 - 2014-09-06 22:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IVT BlueSoleil 2014-11-08 17:17 - 2014-08-19 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoVCarve 2014-11-08 17:17 - 2014-08-18 20:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk Maya 2015 2014-11-08 17:17 - 2014-08-18 20:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk 2014-11-08 17:17 - 2014-08-02 20:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy 2014-11-08 17:17 - 2014-07-30 16:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArtCAM 2011 (64-bit) 2014-11-08 17:17 - 2014-06-27 16:56 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander 2014-11-08 17:17 - 2014-05-18 14:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2014-11-08 17:17 - 2014-05-18 13:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-11-08 17:17 - 2014-04-09 16:22 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bamboo 2014-11-08 17:17 - 2014-02-28 19:21 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RhinoResurf for Rhino 2014-11-08 17:17 - 2014-02-27 17:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geomagic 2014-11-08 17:17 - 2014-02-26 18:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RhinoCAM 2012 for Rhino 4.0 2014-11-08 17:17 - 2014-02-15 19:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-11-08 17:17 - 2014-01-31 23:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RhinoCAM 2.0 for Rhino 4.0 2014-11-08 17:17 - 2014-01-14 18:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VisualMILL 6.0 2014-11-08 17:17 - 2014-01-14 16:27 - 00000000 ____D () C:\WINDOWS\SysWOW64\{3B74FE60-433B-4771-8D3F-7CEC1E59057B} 2014-11-08 17:17 - 2013-11-30 10:40 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhoenixRC 2014-11-08 17:17 - 2013-11-28 18:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BMI Flight Simulator 2014-11-08 17:17 - 2013-09-17 16:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2014-11-08 17:17 - 2013-08-22 14:25 - 00008192 ___SH () C:\WINDOWS\system32\config\ELAM 2014-11-08 17:17 - 2013-08-18 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-11-08 17:17 - 2013-08-18 12:38 - 00000000 ____D () C:\Program Files\Common Files\logishrd 2014-11-08 17:17 - 2013-08-18 12:34 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-11-08 17:17 - 2013-08-18 12:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2014-11-08 17:14 - 2013-09-30 04:56 - 00000000 ____D () C:\WINDOWS\SysWOW64\WCN 2014-11-08 17:14 - 2013-09-30 04:56 - 00000000 ____D () C:\WINDOWS\SysWOW64\sysprep 2014-11-08 17:14 - 2013-08-22 16:37 - 00004893 _____ () C:\WINDOWS\DtcInstall.log 2014-11-08 17:14 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\SMI 2014-11-08 17:14 - 2012-07-26 06:37 - 00000000 ____D () C:\Users\Default.migrated 2014-11-08 17:13 - 2014-01-30 20:39 - 00000000 __SHD () C:\WINDOWS\SysWOW64\AI_RecycleBin 2014-11-08 17:13 - 2013-09-30 04:56 - 00000000 ____D () C:\WINDOWS\system32\WCN 2014-11-08 17:13 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI 2014-11-08 17:13 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz 2014-11-08 17:13 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\IME 2014-11-08 17:13 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\spool 2014-11-08 17:13 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\MUI 2014-11-08 17:13 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\IME 2014-11-08 17:13 - 2013-08-18 18:13 - 00000000 ____D () C:\WINDOWS\system32\appmgmt 2014-11-08 17:12 - 2014-10-04 16:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2014-11-08 17:12 - 2014-09-11 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAVID-LASERSCANNER 3 2014-11-08 17:12 - 2014-01-14 16:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft SQL Server 2005 2014-11-08 17:12 - 2014-01-04 18:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAZ 3D 2014-11-08 17:12 - 2013-11-19 21:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk Backburner 2014 2014-11-08 17:12 - 2013-10-15 16:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Delcam 2014-11-08 17:12 - 2013-09-30 05:00 - 00000000 ____D () C:\WINDOWS\ShellNew 2014-11-08 17:12 - 2013-08-22 16:43 - 00000000 ____D () C:\WINDOWS\DigitalLocker 2014-11-08 17:12 - 2013-08-22 16:36 - 00000000 __SHD () C:\Program Files\Windows Sidebar 2014-11-08 17:12 - 2013-08-22 16:36 - 00000000 __SHD () C:\Program Files (x86)\Windows Sidebar 2014-11-08 17:12 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\IME 2014-11-08 17:12 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Help 2014-11-08 17:12 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-11-08 17:12 - 2013-08-18 12:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2014-11-08 17:12 - 2013-08-18 12:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2014-11-08 17:12 - 2013-08-18 12:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hewlett-Packard 2014-11-08 17:12 - 2013-08-17 23:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pixologic 2014-11-08 17:12 - 2013-08-17 23:17 - 00000000 ____D () C:\ProgramData\PRICache 2014-11-08 17:07 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\Recovery 2014-11-08 17:06 - 2014-08-10 17:08 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\R3DS 2014-11-08 17:06 - 2014-01-04 18:46 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DAZ 3D 2014-11-08 16:58 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep 2014-11-08 16:58 - 2013-08-17 23:10 - 00000000 ____D () C:\Recovery 2014-11-08 16:56 - 2013-08-17 23:43 - 00000000 ____D () C:\Temp 2014-11-08 16:50 - 2013-08-22 16:36 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template 2014-11-08 16:42 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\inetsrv 2014-11-08 16:42 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\inetsrv 2014-11-08 16:42 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions 2014-11-08 15:44 - 2013-08-17 23:17 - 01247450 _____ () C:\WINDOWS\WindowsUpdate (1).log 2014-11-08 15:41 - 2013-08-18 00:02 - 00008192 __RSH () C:\BOOTSECT.BAK 2014-11-08 15:31 - 2013-08-18 12:38 - 00009916 _____ () C:\WINDOWS\system32\lvcoinst.log 2014-11-08 00:32 - 2013-08-18 11:46 - 00000000 ____D () C:\Users\Marek\AppData\Local\ESET 2014-11-07 22:45 - 2012-07-26 09:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP 2014-11-07 20:17 - 2014-01-31 23:06 - 00000000 ____D () C:\Program Files (x86)\Rhinoceros 5 2014-11-07 20:16 - 2014-08-10 17:08 - 00000000 ____D () C:\Program Files (x86)\R3DS 2014-11-07 20:16 - 2013-08-17 23:38 - 00000000 ____D () C:\Program Files (x86)\Pixologic 2014-11-07 18:29 - 2013-08-17 23:18 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Adobe 2014-11-06 17:41 - 2013-08-19 16:27 - 00123392 ___SH () C:\Users\Marek\Desktop\Thumbs.db 2014-11-04 16:02 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent 2014-11-04 02:52 - 2014-10-04 16:00 - 00000000 ____D () C:\Users\Marek\Desktop\DAVID_3.10.5.4811_beta1 2014-11-03 18:31 - 2013-11-28 21:52 - 00000000 ____D () C:\Program Files (x86)\VLC Player GPU+ 2014-11-03 15:51 - 2013-10-16 16:30 - 00000000 ___HD () C:\Program Files (x86)\Temp 2014-11-03 15:42 - 2013-08-19 15:31 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-11-02 17:52 - 2013-10-16 16:23 - 00000000 ____D () C:\Program Files (x86)\Intel 2014-11-02 15:23 - 2014-08-19 20:24 - 00000000 ____D () C:\Program Files (x86)\PhotoVCarve 2014-10-29 23:10 - 2014-02-16 14:18 - 00000000 ____D () C:\ProgramData\TEMP 2014-10-28 15:11 - 2013-08-18 22:22 - 00002274 ____N () C:\spyhunter.log 2014-10-28 14:12 - 2013-08-18 20:23 - 00001315 _____ () C:\sh4_service.log 2014-10-28 14:10 - 2014-10-10 20:28 - 00003234 _____ () C:\WINDOWS\System32\Tasks\{261C1857-D0A0-446A-8B5C-0F27765634CE} 2014-10-28 13:53 - 2013-08-18 19:05 - 00008192 _____ () C:\shldr.mbr 2014-10-26 12:49 - 2012-07-26 06:26 - 00000194 _____ () C:\WINDOWS\win.ini 2014-10-26 11:26 - 2013-11-14 21:11 - 00000000 ____D () C:\Users\Marek\AppData\Roaming\Autodesk 2014-10-26 11:25 - 2013-07-11 15:31 - 00000000 ____D () C:\Qoobox 2014-10-24 22:18 - 2013-08-18 12:39 - 00000000 _____ () C:\WINDOWS\system32\Drivers\lvuvc.hs 2014-10-20 17:40 - 2014-09-08 21:35 - 00004042 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2014-10-20 17:40 - 2014-09-08 21:35 - 00003806 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2014-10-15 20:02 - 2013-11-14 21:29 - 00359925 _____ () C:\WINDOWS\DirectX.log 2014-10-15 17:23 - 2013-08-19 18:12 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-10-15 17:18 - 2013-08-19 18:12 - 103265616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-10-11 15:04 - 2013-10-16 16:28 - 00061134 _____ () C:\WINDOWS\DPINST.LOG ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-08 16:53 ==================== End Of Log ============================