Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-05-2015 02 Ran by Timi (administrator) on TIMI-KOMPUTER on 16-05-2015 08:19:52 Running from C:\Users\Timi\Downloads Loaded Profiles: Timi (Available profiles: Timi) Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Polski (Polska) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (Ellora Assets Corp.) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (IObit) C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe (BitTorrent, Inc.) C:\Program Files (x86)\uTorrent\uTorrent.exe (NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Spotify Ltd) C:\Users\Timi\AppData\Roaming\Spotify\SpotifyWebHelper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13876952 2015-05-11] (Realtek Semiconductor) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2015-01-28] (ESET) HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1091568 2015-03-03] (Highresolution Enterprises) HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2009-11-20] (NEC Electronics Corporation) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Spotify] => C:\Users\Timi\AppData\Roaming\Spotify\Spotify.exe [7320120 2015-05-14] (Spotify Ltd) HKU\S-1-5-21-3934150517-3547192412-1892143362-1000\...\Run: [GoogleChromeAutoLaunch_24F17D4C8688C0B567572AC182A39570] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-05-05] (Google Inc.) HKU\S-1-5-21-3934150517-3547192412-1892143362-1000\...\Run: [Advanced SystemCare 8] => C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728 2015-04-08] (IObit) HKU\S-1-5-21-3934150517-3547192412-1892143362-1000\...\Run: [uTorrent] => C:\Program Files (x86)\uTorrent\uTorrent.exe [328568 2015-03-14] (BitTorrent, Inc.) HKU\S-1-5-21-3934150517-3547192412-1892143362-1000\...\Run: [GG] => C:\Users\Timi\AppData\Local\GG\Application\gghub.exe [4078144 2015-04-21] (GG Network S.A.) HKU\S-1-5-21-3934150517-3547192412-1892143362-1000\...\Run: [Spotify Web Helper] => C:\Users\Timi\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2022968 2015-05-14] (Spotify Ltd) HKU\S-1-5-21-3934150517-3547192412-1892143362-1000\...\MountPoints2: G - G:\setup.exe HKU\S-1-5-21-3934150517-3547192412-1892143362-1000\...\MountPoints2: I - I:\setup.exe IFEO\ALLFixAVI.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\ALLPlayer.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\ALLPlayerRemoteControl.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\ALLSkinCreator.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\ALLSubSearcher.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\ALLUpdate.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\CNQMACNF.EXE: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\CNQMINST.EXE: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\CNQMLNCR.EXE: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\CNQMMAIN.EXE: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\CNQMSWCS.EXE: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\CNQMULNC.EXE: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\CNQMUPDT.EXE: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\CNSEMAIN.EXE: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\DivXMux.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\GameOverlayUI.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\igoproxy64.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\ijplmsvc.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\ijplmui.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\mbam.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\mbamdor.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\mbampt.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\mbamscheduler.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\mbamservice.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\Napisy24.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\Napisy24Update.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\nvSCPAPISvr.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\NvStereoUtilityOGL.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\nvStInst.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\nvstlink.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\nvstreg.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\nvsttest.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\nvstview.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\NVStWiz.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\OriginCrashReporter.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\OriginER.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\piso.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\PowerISO.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\PWRISOVM.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\setup64.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\softinfo.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\Steam.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\steamerrorreporter.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\steamerrorreporter64.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\streaming_client.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\SysSettings32.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\SysSettings64.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\UpdateTool.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\WriteMiniDump.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe IFEO\WTFast.exe: [Debugger] C:\Program Files (x86)\IObit\Advanced SystemCare 8\AutoReactivator.exe Startup: C:\Users\Timi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\windefonder.vbs [2015-04-17] () Startup: C:\Users\Timi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\windows.vbs [2015-04-17] () ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll [2013-01-17] (GG Network S.A.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-3934150517-3547192412-1892143362-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp URLSearchHook: HKU\S-1-5-21-3934150517-3547192412-1892143362-1000 - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll (DeviceVM, Inc.) SearchScopes: HKU\S-1-5-21-3934150517-3547192412-1892143362-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?FORM=U270DF&PC=U270&q={searchTerms}&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-3934150517-3547192412-1892143362-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?FORM=U270DF&PC=U270&q={searchTerms}&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-3934150517-3547192412-1892143362-1000 -> {3C9DE23F-D5EC-4426-81C1-EF5B06B95AED} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD SearchScopes: HKU\S-1-5-21-3934150517-3547192412-1892143362-1000 -> {9AAC9A63-9B44-47e5-8E3C-5BE5B7A05B87} URL = http://www.google.com/custom?client=pub-3794288947762788&forid=1&channel=1975384696&ie=UTF-8&oe=UTF-8&safe=active&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGFNT%3A0000FF%3BGIMP%3A0000FF%3BFORID%3A1&hl=pl&q={searchTerms} BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll [2015-04-17] (IObit) BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-07-07] (CANON INC.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Advanced SystemCare Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll [2014-10-17] (IObit) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: IplexToALLPlayer -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> C:\Program Files (x86)\ALLPlayer\Iplex\IplexToALLPlayer.dll [2011-02-09] (ALLCinema Ltd.) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.) Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-07-07] (CANON INC.) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation) Winsock: Catalog9 01 C:\Windows\SysWOW64\WTFastDrv.dll [72296 2015-03-14] (Initex) Winsock: Catalog9 02 C:\Windows\SysWOW64\WTFastDrv.dll [72296 2015-03-14] (Initex) Winsock: Catalog9 03 C:\Windows\SysWOW64\WTFastDrv.dll [72296 2015-03-14] (Initex) Winsock: Catalog9 04 C:\Windows\SysWOW64\WTFastDrv.dll [72296 2015-03-14] (Initex) Winsock: Catalog9 15 C:\Windows\SysWOW64\WTFastDrv.dll [72296 2015-03-14] (Initex) Winsock: Catalog9-x64 01 C:\Windows\system32\WTFastDrv.dll [79464 2015-03-14] (Initex) Winsock: Catalog9-x64 02 C:\Windows\system32\WTFastDrv.dll [79464 2015-03-14] (Initex) Winsock: Catalog9-x64 03 C:\Windows\system32\WTFastDrv.dll [79464 2015-03-14] (Initex) Winsock: Catalog9-x64 04 C:\Windows\system32\WTFastDrv.dll [79464 2015-03-14] (Initex) Winsock: Catalog9-x64 15 C:\Windows\system32\WTFastDrv.dll [79464 2015-03-14] (Initex) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 62.179.1.60 62.179.1.61 FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-15] () FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] () FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.) FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-03-14] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-03-14] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3934150517-3547192412-1892143362-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Timi\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-27] (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation) Chrome: ======= CHR HomePage: Default -> CHR StartupUrls: Default -> "www.pcworld.pl/start", "hxxp://start.qone8.com/?type=hp&ts=1400883582&from=mp3&uid=SAMSUNGXHD080HJ_S08EJ1OL637582", "hxxp://www.gazeta.pl/0,0.html?p=180&d=20140616", "hxxp://www.mystartsearch.com/?type=hp&ts=1422634316&from=smt&uid=SAMSUNGXHD080HJ_S08EJ1OL637582" CHR Profile: C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-14] CHR Extension: (Angry Birds) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-03-14] CHR Extension: (Google Docs) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-14] CHR Extension: (Google Drive) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-14] CHR Extension: (Hello Kitty Dress-up) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgkmcdegoikomgajhachefmmbpjjgjfm [2015-03-14] CHR Extension: (YouTube) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-14] CHR Extension: (Adblock Plus) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-14] CHR Extension: (Google Search) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-14] CHR Extension: (Fire Theme [FVD]) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcoddccpkfbamigkbaaehdnnjccbgipe [2015-03-14] CHR Extension: (Google Sheets) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-14] CHR Extension: (Red Ball 4) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmdikcnnaopmkjmlgedcakfngeclbodn [2015-03-14] CHR Extension: (Bookmark Manager) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21] CHR Extension: (Adblock Pro) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\haghkgjmpfjklfnncplnmkekbmodknlg [2015-03-14] CHR Extension: (ACGB) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcgjhdockcefgidbflngihkakglojicj [2015-05-08] CHR Extension: (Clock) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmmcglicchencbeakaefdeeanikfdke [2015-03-14] CHR Extension: (New Tab Page by Speed Dial Team) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\idgeoanibcknhniccgaoaiolihidecjn [2015-03-14] CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2015-03-26] CHR Extension: (Google Wallet) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-14] CHR Extension: (Adblock Pro) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2015-03-14] CHR Extension: (Gmail) - C:\Users\Timi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-14] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AdvancedSystemCareService8; C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [814880 2015-04-03] (IObit) R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2015-01-28] (ESET) S4 ES lite Service; C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] () R2 FreemakeVideoCapture; C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe [9216 2015-04-24] (Ellora Assets Corp.) [File not signed] S3 fussvc; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [139776 2012-07-25] (Microsoft Corporation) [File not signed] S3 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation) S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] () R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.EXE [344864 2015-01-27] (IObit) S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2724128 2015-01-16] (IObit) S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation) S4 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation) S3 Mezzmo; C:\Program Files (x86)\Conceiva\Mezzmo\MezzmoMediaServer.exe [5645056 2015-04-19] (Conceiva Pty. Ltd.) [File not signed] R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation) S3 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation) S3 Origin Client Service; D:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-11] (Electronic Arts) S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [126976 2012-07-25] (Microsoft Corporation) [File not signed] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-01-12] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R0 amdide64; C:\Windows\System32\DRIVERS\amdide64.sys [11944 2015-04-17] (Advanced Micro Devices Inc.) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [246000 2015-02-23] (ESET) U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241880 2015-02-23] (ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169792 2015-02-23] (ESET) R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [159480 2015-02-23] (ESET) S4 FileMonitor; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [23048 2014-11-10] (IObit) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-04-17] (REALiX(tm)) R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.) S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation) S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-05-06] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation) R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-11] (CACE Technologies, Inc.) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2014-11-10] (IObit.com) S3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [926824 2012-05-14] (Realtek Semiconductor Corporation ) R3 RtlWlanu; C:\Windows\System32\DRIVERS\RTWlanU.sys [2990808 2015-04-17] (Realtek Semiconductor Corporation ) R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit) S3 UrlFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [23016 2014-11-10] (IObit.com) S3 VGPU; System32\drivers\rdvgkmd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-16 08:14 - 2015-05-16 08:15 - 00041561 _____ () C:\Users\Timi\Downloads\Addition.txt 2015-05-16 08:13 - 2015-05-16 08:19 - 00000000 ____D () C:\FRST 2015-05-16 08:12 - 2015-05-16 08:12 - 02106368 _____ (Farbar) C:\Users\Timi\Downloads\FRST64.exe 2015-05-16 08:11 - 2015-05-16 08:19 - 00027382 _____ () C:\Users\Timi\Downloads\FRST.txt 2015-05-16 08:11 - 2015-05-16 08:12 - 01145856 _____ (Farbar) C:\Users\Timi\Downloads\FRST.exe 2015-05-16 08:06 - 2015-05-16 08:06 - 00000000 ____D () C:\Program Files (x86)\ESET 2015-05-16 08:05 - 2015-05-16 08:06 - 02347384 _____ (ESET) C:\Users\Timi\Downloads\esetsmartinstaller_plk.exe 2015-05-15 20:07 - 2015-05-15 20:07 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf 2015-05-15 19:58 - 2015-05-15 19:58 - 00000000 ____D () C:\Users\Timi\Downloads\SuperOneClickv2.2-ShortFuse 2015-05-15 19:48 - 2015-05-15 19:48 - 01920683 _____ () C:\Users\Timi\Downloads\SuperOneClickv2.2-ShortFuse.zip 2015-05-15 10:20 - 2015-05-15 10:20 - 00019171 _____ () C:\Users\Timi\Downloads\Serce lwa - Heart of a lion - Leijonasydän 2013 PL 480p BRRip AC3 XviD CiNEMAET - AS.torrent 2015-05-13 20:19 - 2015-05-13 20:19 - 00014284 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Kopciuszek II - Spełnione marzenia -2002- [1080p mini HD x264 AC3 J-23stan] [Dubbing PL].torrent 2015-05-13 20:02 - 2015-05-13 20:03 - 00017632 _____ () C:\Users\Timi\Downloads\Wkreceni.2 2014 PL HQDVDRip AC3 XviD CiNEMAET-SAVED .torrent 2015-05-13 08:25 - 2015-05-13 08:25 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab 2015-05-13 08:23 - 2015-05-13 08:23 - 00638976 _____ () C:\Users\Timi\Downloads\Detection.msi 2015-05-12 20:03 - 2015-05-12 20:03 - 00019152 _____ () C:\Users\Timi\Downloads\Haker - Blackhat 2015 PL 480p BRRip AC3 XviD CiNEMAET-SAVED.torrent 2015-05-12 20:02 - 2015-05-12 20:02 - 00014408 _____ () C:\Users\Timi\Downloads\Krwawy biznes - Pound of Flesh 2015 PL 480p PDTV AC3 XviD CiNEMAET - AS.torrent 2015-05-12 20:01 - 2015-05-12 20:01 - 00012601 _____ () C:\Users\Timi\Downloads\Dzwoneczek i bestia z Nibylandii - Tinker Bell and the Legend of the NeverBeast 2014 PLDUB 480p BRRip AC3 XviD CiNEMAET - AS.torrent 2015-05-11 08:43 - 2015-05-11 08:43 - 04664792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2015-05-11 08:43 - 2015-05-11 08:43 - 02907864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2015-05-11 08:43 - 2015-05-11 08:43 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2015-05-11 08:43 - 2015-05-11 08:43 - 00168816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2015-05-11 08:42 - 2015-05-11 08:42 - 02846936 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2015-05-11 08:42 - 2015-05-11 08:42 - 01990874 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2015-05-11 08:42 - 2015-05-11 08:42 - 01736408 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2015-05-11 08:42 - 2015-05-11 08:42 - 01303256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2015-05-11 08:41 - 2015-05-11 08:41 - 03182104 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2015-05-11 08:31 - 2015-05-11 08:31 - 00001538 _____ () C:\Windows\PFRO.log 2015-05-10 20:51 - 2015-05-10 20:51 - 00014233 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Car Mechanic Simulator 2015 Update v1 0 3 4 incl DLC -2015- [MULTI7-PL] [CODEX] [EXE] (1).torrent 2015-05-10 20:42 - 2015-05-10 20:42 - 00003234 _____ () C:\Windows\System32\Tasks\MdmUpdateTaskMachineCore 2015-05-10 20:38 - 2015-05-10 20:38 - 00000833 _____ () C:\Users\Timi\Desktop\Car Mechanic Simulator 2015.lnk 2015-05-10 20:38 - 2015-05-10 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Car Mechanic Simulator 2015 2015-05-10 20:00 - 2015-05-10 20:00 - 00028700 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Car Mechanic Simulator 2015-CODEX.torrent 2015-05-10 20:00 - 2015-05-10 20:00 - 00014233 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Car Mechanic Simulator 2015 Update v1 0 3 4 incl DLC -2015- [MULTI7-PL] [CODEX] [EXE].torrent 2015-05-10 19:58 - 2015-05-10 19:58 - 00015097 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Róża -2012- [DVDRip] [XviD-KiT] [PL] [Ekipa D-T].torrent 2015-05-10 19:57 - 2015-05-10 19:57 - 00002056 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Róża (2011) [DVDRip XviD AC3-LWC] [PL].torrent 2015-05-10 17:51 - 2015-05-10 17:51 - 00009021 _____ () C:\Users\Timi\Downloads\JesterMietpark.zip 2015-05-10 13:40 - 2015-05-10 13:40 - 00588273 _____ () C:\Users\Timi\Downloads\Miet_Mod_LS15.zip 2015-05-10 13:36 - 2015-05-10 13:36 - 00099528 _____ () C:\Users\Timi\Downloads\Abschleppstange.zip 2015-05-10 11:39 - 2015-05-10 11:39 - 00011761 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Wszystko za życie - Into the Wild -2007- [DVD Xvid][Lektor PL].torrent 2015-05-10 11:38 - 2015-05-10 11:38 - 00039045 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Wszystko za życie - Into the Wild -2007- [DVDRip] [RMVB] [Lektor PL].torrent 2015-05-10 11:31 - 2015-05-10 11:31 - 00015020 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Zabójcy- Oko za oko - Den som draeber- Øje for øje (2011) [DVBRIP.XVID-MRT][Lektor PL].torrent 2015-05-10 11:31 - 2015-05-10 11:31 - 00015012 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Zabójcy- Utopia - Den som draeber- Utopia (2011) [DVBRIP.XVID-MRT][Lektor PL] (1).torrent 2015-05-10 11:29 - 2015-05-10 11:29 - 00015012 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Zabójcy- Utopia - Den som draeber- Utopia (2011) [DVBRIP.XVID-MRT][Lektor PL].torrent 2015-05-10 11:24 - 2015-05-10 11:24 - 00015032 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Zabójcy- Cień przeszłości - Fortidens Skygge (2012) [BDRip.XviD-BiDA][Lektor PL].torrent 2015-05-10 11:17 - 2015-05-10 11:17 - 00014952 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Człowiek śmiechu - L'Homme qui rit -2012- [BRRip] [XviD- Shadow] [LEKTOR PL].torrent 2015-05-10 11:15 - 2015-05-10 11:15 - 00014929 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Son of a Gun -2014- [BRRip] [XviD-KiT] [Lektor PL] [marcinc33].torrent 2015-05-10 11:10 - 2015-05-10 11:10 - 00015235 _____ () C:\Users\Timi\Downloads\[torrenty.pl] No Good Deed (2014) [BRRip] [XviD-KiT] [Lektor PL].torrent 2015-05-10 11:08 - 2015-05-10 11:08 - 00015014 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Fotograf -2014- [DVDRip] [XviD-K12] [Film PL] [AgusiQ].torrent 2015-05-10 11:04 - 2015-05-10 11:04 - 00014672 _____ () C:\Users\Timi\Downloads\[torrenty.pl] Jupiter- Intronizacja - Jupiter Ascending (2015) [BRRip] [XviD-KiT] [Lektor PL].torrent 2015-05-10 08:27 - 2015-05-16 07:53 - 00003693 _____ () C:\Windows\setupact.log 2015-05-10 08:27 - 2015-05-10 08:27 - 00000000 _____ () C:\Windows\setuperr.log 2015-05-09 22:57 - 2015-05-09 22:57 - 04676306 _____ () C:\Users\Timi\Downloads\Tibia Flash Maps (1).zip 2015-05-09 15:12 - 2015-05-09 15:12 - 00016661 _____ () C:\Users\Timi\Downloads\showtime15.zip 2015-05-09 15:04 - 2015-05-09 15:04 - 00044591 _____ () C:\Users\Timi\Downloads\FollowMe.zip 2015-05-09 15:03 - 2015-05-09 15:03 - 00064401 _____ () C:\Users\Timi\Downloads\zzzAutoCombine.zip 2015-05-09 14:59 - 2015-05-09 14:59 - 00127862 _____ () C:\Users\Timi\Downloads\zzzAutoTractor.zip 2015-05-08 08:40 - 2015-05-08 08:40 - 07327328 _____ () C:\Users\Timi\Downloads\REMIX PACK Hazel & Damien - BITCH! (Original Mix).zip 2015-05-07 10:50 - 2015-05-07 10:50 - 00001190 _____ () C:\Users\Timi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenFM.lnk 2015-05-07 10:50 - 2015-05-07 10:50 - 00001182 _____ () C:\Users\Timi\Desktop\OpenFM.lnk 2015-05-07 10:50 - 2015-05-07 10:50 - 00001143 _____ () C:\Users\Timi\Desktop\GG.lnk 2015-05-07 10:49 - 2015-05-07 10:49 - 00000000 ____D () C:\Users\Timi\AppData\Local\OpenFM 2015-05-07 10:46 - 2015-05-07 10:46 - 00395056 _____ () C:\Users\Timi\Downloads\gg-install.exe 2015-05-06 17:09 - 2015-05-06 17:09 - 75231232 _____ () C:\Windows\system32\config\SOFTWARE.iobit 2015-05-06 17:09 - 2015-05-06 17:09 - 25989120 _____ () C:\Windows\system32\config\COMPONENTS.iobit 2015-05-06 17:09 - 2015-05-06 17:09 - 00249856 _____ () C:\Windows\system32\config\DEFAULT.iobit 2015-05-06 17:09 - 2015-05-06 17:09 - 00028672 _____ () C:\Windows\system32\config\SAM.iobit 2015-05-06 17:09 - 2015-05-06 17:09 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iobit 2015-05-06 16:33 - 2015-05-06 16:33 - 00000011 ____R () C:\Windows\amunres.lsl 2015-05-06 16:15 - 2015-05-06 16:16 - 48173680 _____ () C:\Users\Timi\Downloads\Advanced SystemCare Pro 8.2.0.795 PL Serial.7z 2015-05-05 10:55 - 2015-05-15 22:01 - 00000000 ____D () C:\Users\Timi\AppData\Local\CrashDumps 2015-05-05 10:49 - 2015-05-05 10:49 - 00000000 ____D () C:\ProgramData\Windows App Certification Kit 2015-05-05 10:48 - 2015-05-05 10:48 - 00000000 ____D () C:\Program Files\Application Verifier 2015-05-05 10:48 - 2015-05-05 10:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft SDKs 2015-05-05 10:48 - 2015-05-05 10:48 - 00000000 ____D () C:\Program Files (x86)\Application Verifier 2015-05-05 10:47 - 2015-05-05 10:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits 2015-05-05 10:46 - 2015-05-05 10:46 - 00000000 ____D () C:\Program Files (x86)\Windows Kits 2015-05-05 10:45 - 2015-05-06 16:33 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\Software Informer 2015-05-05 10:45 - 2015-05-06 16:33 - 00000000 ____D () C:\Program Files\Software Informer 2015-05-05 10:45 - 2015-05-05 10:45 - 00000000 ____D () C:\ProgramData\Informer Technologies, Inc 2015-05-03 20:51 - 2015-05-03 20:51 - 00000936 _____ () C:\Users\Public\Desktop\FIFA 14.lnk 2015-05-03 20:51 - 2015-05-03 20:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 14 2015-05-03 19:49 - 2015-04-01 11:22 - 125832184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MRT.exe 2015-05-02 21:50 - 2015-05-02 21:50 - 00003118 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe 2015-05-02 21:50 - 2015-05-02 21:50 - 00003092 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe 2015-05-02 21:49 - 2015-05-02 21:49 - 00003062 _____ () C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe 2015-05-02 21:49 - 2015-05-02 21:49 - 00003060 _____ () C:\Windows\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe 2015-05-02 21:49 - 2015-05-02 21:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Mouse and Keyboard Center 2015-05-02 21:49 - 2015-05-02 21:49 - 00000000 ____D () C:\Program Files\Microsoft Mouse and Keyboard Center 2015-05-02 21:45 - 2015-05-02 21:45 - 02276560 _____ (Microsoft Corporation) C:\Windows\system32\coin95itp.dll 2015-04-30 08:56 - 2015-04-30 08:57 - 00000000 ____D () C:\Users\Timi\Documents\Freemake 2015-04-30 08:56 - 2015-04-30 08:56 - 00001346 _____ () C:\Users\Public\Desktop\Freemake Video Downloader.lnk 2015-04-30 08:56 - 2015-04-30 08:56 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake 2015-04-30 08:56 - 2015-04-30 08:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake 2015-04-30 08:56 - 2015-04-30 08:56 - 00000000 ____D () C:\ProgramData\Freemake 2015-04-30 08:56 - 2015-04-30 08:56 - 00000000 ____D () C:\Program Files\WinPcap 2015-04-30 08:55 - 2015-04-30 08:56 - 00000000 ____D () C:\Program Files (x86)\Freemake 2015-04-28 13:50 - 2015-04-28 13:50 - 00000919 _____ () C:\Users\Public\Desktop\AIMP3.lnk 2015-04-28 13:50 - 2015-04-28 13:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3 2015-04-26 22:55 - 2015-04-26 22:55 - 00000597 _____ () C:\Users\Timi\Desktop\Launcher — skrót.lnk 2015-04-26 21:48 - 2015-04-26 21:48 - 00001297 _____ () C:\Users\Public\Desktop\Assassins Creed Chronicles China.lnk 2015-04-26 10:42 - 2015-04-26 10:51 - 00000000 ____D () C:\Users\Timi\Downloads\Nowy folder 2015-04-26 10:00 - 2015-05-05 10:46 - 00000000 ____D () C:\ProgramData\Package Cache 2015-04-25 17:59 - 2015-04-25 17:59 - 00001002 _____ () C:\Users\Public\Desktop\Need for Speed(TM) The Run.lnk 2015-04-25 17:59 - 2015-04-25 17:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Need for Speed(TM) The Run 2015-04-25 13:50 - 2015-04-26 21:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Assassins Creed Chronicles China 2015-04-25 13:50 - 2015-04-25 13:50 - 00001184 _____ () C:\Users\Timi\Desktop\Assassins Creed Chronicles China.lnk 2015-04-25 11:41 - 2015-04-25 11:41 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\Highresolution Enterprises 2015-04-25 11:41 - 2015-04-25 11:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Highresolution Enterprises 2015-04-25 11:41 - 2015-04-25 11:41 - 00000000 ____D () C:\Program Files\Highresolution Enterprises 2015-04-25 11:40 - 2015-04-25 11:40 - 04249936 _____ () C:\Users\Timi\Downloads\XMouseButtonControlSetup.2.10.2.exe 2015-04-25 11:13 - 2015-04-25 11:14 - 00144496 _____ () C:\Users\Timi\Downloads\Tibia Map Installer.exe 2015-04-25 11:13 - 2015-04-25 11:13 - 03191504 _____ () C:\Users\Timi\Downloads\Tibia C Maps.zip 2015-04-25 11:12 - 2015-04-25 11:12 - 04676306 _____ () C:\Users\Timi\Downloads\Tibia Flash Maps.zip 2015-04-24 19:10 - 2015-05-06 16:27 - 00002912 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Timi 2015-04-24 18:09 - 2015-04-25 11:03 - 00000000 ____D () C:\ProgramData\TEMP 2015-04-24 18:09 - 2015-04-24 18:09 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\ClickyMouse 2015-04-24 18:09 - 2015-04-24 18:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClickyMouse 2015-04-24 18:09 - 2015-04-24 18:09 - 00000000 ____D () C:\ProgramData\Licenses 2015-04-24 17:12 - 2015-05-06 16:39 - 00000000 ____D () C:\Users\Timi\Documents\i68Fifa14 2015-04-24 14:13 - 2015-05-03 22:18 - 00000000 ____D () C:\Users\Timi\Documents\FIFA 14 2015-04-23 12:05 - 2015-04-23 12:10 - 274974758 _____ () C:\Users\Timi\Downloads\Tapety Mega-Mix HD.rar 2015-04-22 20:34 - 2015-04-22 20:37 - 250818531 _____ () C:\Users\Timi\Downloads\03-07-2015 Update.7z 2015-04-22 20:34 - 2015-04-22 20:35 - 53775985 _____ () C:\Users\Timi\Downloads\14-03-2015 UPDATE PLP.rar 2015-04-22 20:34 - 2015-04-22 20:34 - 27125557 _____ () C:\Users\Timi\Downloads\05-04-2015 FIFA 14 PLP 15.rar 2015-04-22 19:48 - 2015-04-22 19:49 - 17870231 _____ () C:\Users\Timi\Downloads\pliki językowe.7z 2015-04-22 19:02 - 2015-04-22 19:18 - 1038942447 _____ () C:\Users\Timi\Downloads\POLISH LEAGUE PATCH 15 v 4.0 ALL IN ONE CHRISTMAS EDITION.7z 2015-04-21 21:52 - 2015-05-06 14:52 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-04-21 21:52 - 2015-04-23 09:15 - 00001116 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-04-21 21:52 - 2015-04-23 09:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-04-21 21:52 - 2015-04-23 09:15 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-04-21 21:52 - 2015-04-21 21:52 - 00000000 ____D () C:\ProgramData\Malwarebytes 2015-04-21 21:52 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-04-21 21:52 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-04-21 21:52 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-04-21 20:38 - 2015-04-21 20:38 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7 2015-04-21 18:39 - 2015-04-21 18:39 - 00000000 ____D () C:\Program Files (x86)\5e944107-315a-4662-83c6-05d2dd072768 2015-04-21 18:38 - 2015-04-21 22:08 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\systweak 2015-04-21 18:38 - 2015-04-21 18:38 - 00000000 ____D () C:\Users\Timi\AppData\Local\globalUpdate 2015-04-21 18:38 - 2015-02-19 13:09 - 00020248 _____ () C:\Windows\system32\roboot64.exe 2015-04-21 18:37 - 2015-05-06 16:18 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\Spotydl 2015-04-21 17:13 - 2015-04-21 17:13 - 00085219 _____ () C:\Users\Timi\Downloads\Dawnport - 1 to 20 by Dehan v1.0.0.xml 2015-04-21 17:11 - 2015-04-21 17:11 - 00064911 _____ () C:\Users\Timi\Downloads\Dawnport 2 ao 8 by Luis v1.2.xml 2015-04-21 17:10 - 2015-04-21 17:10 - 00043627 _____ () C:\Users\Timi\Downloads\[Dawnport] 1 to 20 , 100% AFK 2.0.0.xml 2015-04-21 08:53 - 2015-04-21 08:53 - 00000000 ____D () C:\Users\Timi\AppData\Local\ESET 2015-04-21 08:38 - 2015-04-21 08:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2015-04-21 08:38 - 2015-04-21 08:38 - 00000000 ____D () C:\ProgramData\ESET 2015-04-21 08:38 - 2015-04-21 08:38 - 00000000 ____D () C:\Program Files\ESET 2015-04-20 22:59 - 2015-04-20 22:59 - 00001074 _____ () C:\Users\Public\Desktop\Car Mechanic Simulator 2014 - Complete Edition.lnk 2015-04-20 22:59 - 2015-04-20 22:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Red Dot Games 2015-04-19 09:26 - 2015-04-19 09:28 - 39115547 _____ () C:\Users\Timi\Downloads\rsload.net.Mezzmo.4.1.3.0.zip 2015-04-17 22:37 - 2015-04-17 22:37 - 00000194 _____ () C:\Windows\SysWOW64\_WKERNEL.SYL 2015-04-17 22:36 - 2015-04-17 22:37 - 00000000 ____D () C:\Program Files (x86)\WinUtilities 2015-04-17 22:36 - 2015-04-17 22:36 - 00001042 _____ () C:\Users\Public\Desktop\WinUtilities.lnk 2015-04-17 22:36 - 2015-04-17 22:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinUtilities 2015-04-17 22:36 - 2010-07-25 22:23 - 01706800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdiplus.dll 2015-04-17 22:36 - 2010-07-25 22:23 - 00544768 _____ (Stardock Corporation) C:\Windows\SysWOW64\wbocx.ocx 2015-04-17 22:36 - 2010-07-25 22:23 - 00258352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unicows.dll 2015-04-17 22:36 - 2010-07-25 22:23 - 00056496 _____ (Stardock.Net, Inc) C:\Windows\SysWOW64\wbhelp2.dll 2015-04-17 22:36 - 2010-07-25 22:23 - 00033968 _____ (Neil Banfield) C:\Windows\SysWOW64\anim.dll 2015-04-17 22:36 - 2010-07-25 22:23 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\W95INF32.DLL 2015-04-17 22:36 - 2010-07-25 22:23 - 00002272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\W95INF16.DLL 2015-04-17 22:35 - 2015-04-17 22:35 - 00684083 _____ () C:\Users\Timi\AppData\Roaming\windefonder.vbs 2015-04-17 21:43 - 2015-04-17 21:43 - 00717575 _____ () C:\Users\Timi\Downloads\GTAV_Crack_Only_v2-3DM.rar 2015-04-17 21:24 - 2015-04-17 21:26 - 00000000 ____D () C:\Users\Timi\Documents\Rockstar Games 2015-04-17 14:40 - 2015-04-21 22:08 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\Imminent 2015-04-17 14:40 - 2015-04-17 14:40 - 00000000 ____D () C:\Windows\System32\Tasks\Update 2015-04-17 14:29 - 2015-04-17 14:29 - 00000000 ____D () C:\Users\Timi\AppData\Local\Rockstar Games 2015-04-17 13:56 - 2015-05-04 15:35 - 00000000 ____D () C:\Program Files\Rockstar Games 2015-04-17 13:56 - 2015-05-04 15:35 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games 2015-04-17 13:53 - 2015-05-04 21:19 - 00000080 _____ () C:\Users\Timi\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦 2015-04-17 09:56 - 2015-05-02 21:50 - 00003090 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_itype_exe 2015-04-17 09:56 - 2015-04-17 09:56 - 00181760 _____ (Renesas Electronics Corporation) C:\Windows\system32\Drivers\nusb3xhc.sys 2015-04-17 09:54 - 2015-04-17 09:54 - 00470888 _____ (Microsoft Corporation) C:\Windows\system32\itpcoin82.dll 2015-04-17 09:52 - 2015-04-17 09:52 - 02990808 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\RTWlanU.sys 2015-04-17 09:52 - 2015-04-17 09:52 - 00011944 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\Drivers\amdide64.sys 2015-04-17 09:50 - 2015-04-17 09:50 - 00977624 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys 2015-04-17 09:50 - 2015-04-17 09:50 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2015-04-17 09:48 - 2015-04-17 09:48 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2015-04-17 09:48 - 2015-04-17 09:48 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2015-04-17 09:48 - 2015-04-17 09:48 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2015-04-17 09:47 - 2015-04-17 09:47 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2015-04-17 09:47 - 2015-04-17 09:47 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2015-04-17 09:47 - 2015-04-17 09:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2015-04-17 09:42 - 2015-04-17 22:51 - 00003164 _____ () C:\Windows\System32\Tasks\ASC8_PerformanceMonitor 2015-04-17 09:41 - 2015-04-24 19:02 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\ProductData 2015-04-17 09:41 - 2015-04-17 22:51 - 00002852 _____ () C:\Windows\System32\Tasks\ASC8_SkipUac_Timi 2015-04-17 09:41 - 2015-04-17 09:41 - 00003192 _____ () C:\Windows\System32\Tasks\SmartDefrag4_Startup 2015-04-17 09:41 - 2015-04-17 09:41 - 00000000 ____D () C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} 2015-04-17 09:40 - 2015-05-13 09:07 - 00002195 _____ () C:\Users\Public\Desktop\Advanced SystemCare 8.lnk 2015-04-17 09:40 - 2015-04-17 22:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8 2015-04-17 09:40 - 2015-04-17 09:40 - 00003190 _____ () C:\Windows\System32\Tasks\SmartDefrag4_Update 2015-04-17 09:40 - 2015-04-17 09:40 - 00001242 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk 2015-04-17 09:40 - 2015-04-17 09:40 - 00001184 _____ () C:\Users\Public\Desktop\Smart Defrag 4.lnk 2015-04-17 09:40 - 2015-04-17 09:40 - 00000000 ____D () C:\Windows\Tasks\ImCleanDisabled 2015-04-17 09:40 - 2015-04-17 09:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4 2015-04-17 09:40 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll 2015-04-17 09:40 - 2014-06-04 15:17 - 00034080 _____ (IObit) C:\Windows\system32\SmartDefragBootTime.exe 2015-04-17 09:40 - 2014-06-04 15:17 - 00021184 _____ (IObit) C:\Windows\system32\Drivers\SmartDefragDriver.sys 2015-04-17 09:39 - 2015-05-16 08:03 - 00002882 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Timi) 2015-04-17 09:39 - 2015-05-11 08:33 - 00000000 ____D () C:\ProgramData\ProductData 2015-04-17 09:39 - 2015-04-17 22:35 - 00003240 _____ () C:\Windows\System32\Tasks\Driver Booster Scan 2015-04-17 09:38 - 2015-05-11 08:47 - 00002160 _____ () C:\Users\Public\Desktop\Driver Booster 2.lnk 2015-04-17 09:38 - 2015-04-17 22:35 - 00003184 _____ () C:\Windows\System32\Tasks\Driver Booster Update 2015-04-17 09:38 - 2015-04-17 22:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2 2015-04-17 09:38 - 2015-04-17 09:38 - 00026528 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS 2015-04-17 09:33 - 2015-04-17 22:51 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\IObit 2015-04-17 09:33 - 2015-04-17 22:42 - 00000000 ____D () C:\Program Files (x86)\IObit 2015-04-17 09:33 - 2015-04-17 09:41 - 00000000 ____D () C:\ProgramData\IObit 2015-04-17 09:33 - 2015-04-17 09:33 - 00001187 _____ () C:\Users\Public\Desktop\IObit Malware Fighter.lnk 2015-04-17 09:33 - 2015-04-17 09:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter 2015-04-17 08:57 - 2015-04-17 08:57 - 98520598 _____ () C:\Users\Timi\Documents\Wizyta piłkarzy Legii w Centrum Weterana.16.04.2015.mp4 ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-05-16 08:19 - 2015-03-14 00:20 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\uTorrent 2015-05-16 08:15 - 2015-03-14 00:10 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-16 08:03 - 2015-03-17 09:36 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\GG 2015-05-16 08:03 - 2015-03-13 23:38 - 01754730 _____ () C:\Windows\WindowsUpdate.log 2015-05-16 08:01 - 2009-07-14 06:45 - 00026576 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-05-16 08:01 - 2009-07-14 06:45 - 00026576 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-05-16 08:00 - 2015-03-14 00:10 - 00001040 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-16 07:58 - 2015-03-14 09:31 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-05-16 07:53 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-05-15 23:04 - 2015-03-14 23:42 - 00000000 ____D () C:\ProgramData\Origin 2015-05-15 21:39 - 2009-07-14 07:08 - 00014566 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2015-05-15 21:38 - 2015-04-15 11:40 - 00000000 ____D () C:\Users\Timi\AppData\Local\Spotify 2015-05-15 21:34 - 2015-04-15 11:39 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\Spotify 2015-05-15 21:01 - 2015-03-14 01:18 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\Tibia 2015-05-15 20:04 - 2011-04-12 15:21 - 00742978 _____ () C:\Windows\system32\perfh015.dat 2015-05-15 20:04 - 2011-04-12 15:21 - 00156578 _____ () C:\Windows\system32\perfc015.dat 2015-05-15 20:04 - 2009-07-14 07:13 - 01676964 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-05-14 10:52 - 2015-03-23 18:24 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-05-13 23:56 - 2015-03-14 01:18 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\NVIDIA 2015-05-13 21:27 - 2015-03-14 14:25 - 00000043 _____ () C:\Windows\MezzmoMediaServer.INI 2015-05-11 08:46 - 2015-03-14 09:15 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2015-05-07 10:50 - 2015-03-17 09:37 - 00001620 _____ () C:\Users\Timi\Desktop\GG dysk.lnk 2015-05-07 10:50 - 2015-03-17 09:36 - 00001151 _____ () C:\Users\Timi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk 2015-05-07 10:50 - 2015-03-17 09:36 - 00000000 ____D () C:\Users\Timi\AppData\Local\GG 2015-05-06 16:44 - 2015-04-07 11:53 - 00000000 ____D () C:\Windows\Minidump 2015-05-06 16:39 - 2015-03-28 14:42 - 00000000 ____D () C:\Users\Timi\Documents\ETS2MP 2015-05-06 16:39 - 2015-03-26 10:00 - 00000000 ____D () C:\Users\Timi\Documents\Euro Truck Simulator 2 2015-05-06 16:39 - 2015-03-21 15:22 - 00000000 ____D () C:\Users\Timi\AppData\OICE_15_974FA576_32C1D314_3E0E 2015-05-06 16:39 - 2015-03-14 00:24 - 00000000 ____D () C:\ProgramData\NVIDIA 2015-05-06 16:39 - 2015-03-14 00:23 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2015-05-06 16:39 - 2015-03-14 00:05 - 00000000 ____D () C:\ProgramData\TP-LINK 2015-05-06 16:39 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default 2015-05-06 16:34 - 2015-03-21 18:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fifa Master 2015-05-06 16:34 - 2015-03-21 18:14 - 00000000 ____D () C:\Program Files (x86)\Fifa Master 2015-05-06 16:32 - 2015-03-28 11:57 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\Opera Software 2015-05-06 16:32 - 2015-03-28 11:57 - 00000000 ____D () C:\Users\Timi\AppData\Local\Opera Software 2015-05-06 16:32 - 2015-03-28 11:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com 2015-05-06 16:28 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-05-06 10:40 - 2015-03-14 09:30 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\AIMP3 2015-05-03 21:20 - 2015-03-14 23:42 - 00000000 ____D () C:\ProgramData\Electronic Arts 2015-05-03 17:55 - 2015-03-21 18:17 - 00000000 ____D () C:\Users\Timi\Documents\FM_temp 2015-05-01 08:48 - 2015-04-07 13:31 - 00000000 ____D () C:\ProgramData\CanonIJPLM 2015-04-28 13:49 - 2015-03-14 09:30 - 00000000 ____D () C:\Program Files (x86)\AIMP3 2015-04-26 19:10 - 2015-03-23 20:01 - 00000000 ____D () C:\Users\Timi\AppData\Local\Unity 2015-04-26 19:10 - 2015-03-13 23:43 - 00000000 ____D () C:\Users\Timi 2015-04-25 13:57 - 2015-03-28 15:43 - 00000000 ____D () C:\Users\Timi\Documents\My Games 2015-04-24 19:48 - 2015-03-14 00:24 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2015-04-24 13:01 - 2015-03-14 23:43 - 00000000 ____D () C:\Users\Timi\AppData\Local\Origin 2015-04-21 22:08 - 2015-03-14 14:21 - 00000000 ____D () C:\Program Files\WinRAR 2015-04-17 23:15 - 2015-03-14 00:10 - 00000000 ____D () C:\Program Files (x86)\Google 2015-04-17 22:46 - 2015-03-15 13:15 - 00000000 ____D () C:\Program Files (x86)\QuickTime 2015-04-17 22:46 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar 2015-04-17 22:46 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar 2015-04-17 22:46 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System 2015-04-17 22:46 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2015-04-17 22:14 - 2015-04-07 13:32 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\Canon 2015-04-17 22:10 - 2015-03-14 00:26 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys 2015-04-17 22:10 - 2015-03-13 23:35 - 00435376 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-04-17 20:23 - 2015-03-14 00:09 - 00111912 _____ () C:\Users\Timi\AppData\Local\GDIPFONTCACHEV1.DAT 2015-04-17 09:50 - 2015-03-14 00:02 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll 2015-04-17 09:49 - 2015-02-13 00:14 - 00000000 ____D () C:\Windows\Panther 2015-04-17 09:33 - 2015-03-15 15:07 - 00000000 ____D () C:\Users\Timi\AppData\Roaming\Apple Computer ==================== Files in the root of some directories ======= 2015-04-17 22:35 - 2015-04-17 22:35 - 0684083 _____ () C:\Users\Timi\AppData\Roaming\windefonder.vbs 2015-03-21 16:23 - 2015-03-21 16:23 - 0000000 ___SH () C:\Users\Timi\AppData\Local\LumaEmu Some content of TEMP: ==================== C:\Users\Timi\AppData\Local\Temp\FreemakeVideoDownloaderFull.exe C:\Users\Timi\AppData\Local\Temp\MouseKeyboardCenterx64_1033.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-05-14 02:01 ==================== End Of Log ============================