Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-07-2015 Ran by Lenovo (administrator) on LENOVO-PC (25-07-2015 16:45:55) Running from C:\Users\Lenovo\Downloads Loaded Profiles: Lenovo (Available Profiles: Lenovo & Gość) Platform: Windows 8.1 (X64) Language: Polski (Polska) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe (Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (www.BitComet.com) C:\Program Files (x86)\BitComet\BitComet.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17111056 2015-04-16] (Lenovo (Beijing) Limited) HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [193008 2015-04-16] (Lenovo(beijing) Limited) HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.) HKU\S-1-5-21-4188537701-513941089-1413458238-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31280256 2015-04-17] (Skype Technologies S.A.) HKU\S-1-5-21-4188537701-513941089-1413458238-1001\...\Run: [BitComet] => C:\Program Files (x86)\BitComet\BitComet.exe [13135512 2015-03-30] (www.BitComet.com) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-4188537701-513941089-1413458238-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-4188537701-513941089-1413458238-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp URLSearchHook: HKLM-x32 - Default Value = {CCC7B151-1D8C-11E3-B2AD-F3EF3D58318D} BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-07-24] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-07-24] (Microsoft Corporation) BHO-x32: BitComet Helper -> {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -> C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll [2013-11-29] (BitComet) Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-04-27] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 171.25.182.2 171.25.182.1 Tcpip\..\Interfaces\{605655DB-DD5C-46D5-B1DD-8F4F22FABFFE}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 Tcpip\..\Interfaces\{D1C2CB7E-7102-4608-81EE-3A3FF3C6EE4B}: [DhcpNameServer] 171.25.182.2 171.25.182.1 FireFox: ======== FF ProfilePath: C:\Users\Lenovo\AppData\Roaming\Mozilla\Firefox\Profiles\7gk4lzu5.default FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-04-27] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-16] (Google Inc.) Chrome: ======= CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Default CHR Profile: C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (Google Slides) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-19] CHR Extension: (Google Docs) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-19] CHR Extension: (Google Drive) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-19] CHR Extension: (YouTube) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-19] CHR Extension: (Google Search) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-19] CHR Extension: (Google Sheets) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-19] CHR Extension: (Chrome Web Store Payments) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-19] CHR Extension: (Gmail) - C:\Users\Lenovo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-19] CHR HKLM\...\Chrome\Extension: [fcimjkehglmijlhnpbmjbpoiamjiegod] - http://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-4188537701-513941089-1413458238-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcimjkehglmijlhnpbmjbpoiamjiegod] - http://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [dhigneefebkcagnpnpbibganpmfgebnk] - https://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fcimjkehglmijlhnpbmjbpoiamjiegod] - http://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [pgaidlfgjkmeendhknafahppllbniejm] - https://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 BITCOMET_HELPER_SERVICE; C:\Program Files (x86)\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com) S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2753720 2015-07-01] (Microsoft Corporation) S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319080 2015-04-06] (Intel Corporation) R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-03-30] (LogMeIn Inc.) U5 JMCR; C:\Windows\System32\Drivers\JMCR.sys [175928 2012-07-31] () [File not signed] R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-07-25] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-25 16:31 - 2015-07-25 16:31 - 00000000 ____D C:\Users\Lenovo\Downloads\FRST-OlderVersion 2015-07-25 16:26 - 2015-07-25 16:26 - 00000000 _____ C:\Users\Lenovo\Desktop\Nowy dokument tekstowy.txt 2015-07-25 14:45 - 2015-07-25 14:45 - 00048245 _____ C:\Users\Lenovo\Downloads\FRST (1).txt 2015-07-25 14:45 - 2015-07-25 14:45 - 00027054 _____ C:\Users\Lenovo\Downloads\Addition (1).txt 2015-07-25 13:58 - 2015-07-25 13:59 - 00027054 _____ C:\Users\Lenovo\Downloads\Addition.txt 2015-07-25 13:57 - 2015-07-25 16:45 - 00010353 _____ C:\Users\Lenovo\Downloads\FRST.txt 2015-07-25 13:57 - 2015-07-25 16:45 - 00000000 ____D C:\FRST 2015-07-25 13:56 - 2015-07-25 16:31 - 02146816 _____ (Farbar) C:\Users\Lenovo\Downloads\FRST64.exe 2015-07-25 13:35 - 2015-07-25 14:36 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\38D50774.sys 2015-07-24 23:06 - 2015-07-24 23:08 - 47225760 _____ C:\Users\Lenovo\Downloads\BDPUARLauncher.exe 2015-07-24 22:10 - 2015-07-24 22:10 - 02248704 _____ C:\Users\Lenovo\Downloads\AdwCleaner.exe 2015-07-24 21:41 - 2015-07-24 21:42 - 05633622 _____ (Swearware) C:\Users\Lenovo\Downloads\ComboFix.exe 2015-07-24 21:37 - 2015-07-24 22:10 - 524288000 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Shelby_mp4.part1.rar 2015-07-24 21:37 - 2015-07-24 22:09 - 524288000 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Shelby_mp4.part2.rar 2015-07-24 20:28 - 2015-07-24 21:26 - 524288000 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part3 (1).rar 2015-07-24 20:28 - 2015-07-24 21:25 - 524288000 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part2 (1).rar 2015-07-24 20:28 - 2015-07-24 21:25 - 524288000 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part1 (1).rar 2015-07-24 20:28 - 2015-07-24 20:35 - 44624367 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part4 (1).rar 2015-07-24 20:27 - 2015-07-24 20:45 - 137299585 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Shelby_mp4.part3 (1).rar 2015-07-24 20:05 - 2015-07-24 20:25 - 108584503 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Shelby_mp4.part3.rar 2015-07-24 20:04 - 2015-07-24 20:11 - 44624367 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part4.rar 2015-07-24 19:39 - 2015-07-24 20:25 - 341751934 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part2.rar 2015-07-24 19:39 - 2015-07-24 20:25 - 335110574 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part3.rar 2015-07-24 19:39 - 2015-07-24 20:25 - 327563440 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part1.rar 2015-07-24 19:01 - 2015-07-24 19:34 - 258262014 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part1.rar.crdownload 2015-07-24 19:01 - 2015-07-24 19:34 - 251724134 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part3.rar.crdownload 2015-07-24 19:01 - 2015-07-24 19:34 - 243565654 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Mandi_mp4.part2.rar.crdownload 2015-07-24 18:02 - 2015-07-24 18:02 - 00000000 ___HD C:\$SysReset 2015-07-24 17:21 - 2015-07-24 17:21 - 00000000 ____D C:\Program Files (x86)\ESET 2015-07-24 16:20 - 2015-07-24 16:21 - 10209368 _____ C:\Users\Lenovo\Downloads\Trojan Remover 6.8.2 Software + Serial Key.rar 2015-07-24 16:18 - 2015-07-24 16:18 - 00000100 _____ C:\Users\Lenovo\Downloads\key.txt 2015-07-24 14:16 - 2015-07-24 16:12 - 00000000 ____D C:\ProgramData\TEMP 2015-07-24 14:16 - 2015-07-24 14:16 - 00000000 ____D C:\Users\Lenovo\Documents\Simply Super Software 2015-07-24 14:14 - 2015-07-24 18:42 - 00000000 ____D C:\Program Files (x86)\Trojan Remover 2015-07-24 14:14 - 2015-07-24 14:14 - 00000000 ___HD C:\Users\Lenovo\AppData\Roaming\GoldenGate 2015-07-24 14:14 - 2015-07-24 14:14 - 00000000 ____D C:\ProgramData\Simply Super Software 2015-07-24 14:13 - 2015-07-24 18:44 - 00000000 ____D C:\ProgramData\yWinManProy 2015-07-24 13:39 - 2015-07-24 13:39 - 40938989 _____ C:\Users\Lenovo\Downloads\kaspersky (1).rar.crdownload 2015-07-24 13:35 - 2015-07-24 13:35 - 00109175 _____ C:\Users\Lenovo\Downloads\kaspersky.rar.crdownload 2015-07-24 12:34 - 2015-07-24 12:34 - 01865280 _____ C:\Users\Lenovo\Downloads\Installer (Right Click and select extract).zip 2015-07-23 13:44 - 2015-07-23 13:46 - 18104425 _____ C:\Users\Lenovo\Downloads\Trojan killer + Serial + Keygen.rar 2015-07-22 19:05 - 2015-07-22 19:43 - 477102080 _____ C:\Users\Lenovo\Downloads\gagalicious-britney-beth.part1.rar 2015-07-22 19:05 - 2015-07-22 19:40 - 403665322 _____ C:\Users\Lenovo\Downloads\gagalicious-britney-beth.part2.rar 2015-07-22 17:00 - 2015-07-24 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GridinSoft Trojan Killer 2015-07-22 17:00 - 2015-07-24 18:42 - 00000000 ____D C:\Program Files\GridinSoft Trojan Killer 2015-07-22 16:56 - 2015-07-22 16:59 - 61933613 _____ C:\Users\Lenovo\Downloads\GridinSoft Trojan Killer 2.1.9.8 + patch [PL].rar 2015-07-22 16:19 - 2015-07-22 16:19 - 01798288 _____ (Malwarebytes Corporation) C:\Users\Lenovo\Downloads\Niepotwierdzony 805089.crdownload 2015-07-22 15:57 - 2015-07-22 15:57 - 183952388 _____ C:\Users\Lenovo\Downloads\gagalicious-britney-beth.part2.rar (1).crdownload 2015-07-22 15:57 - 2015-07-22 15:57 - 156981134 _____ C:\Users\Lenovo\Downloads\gagalicious-britney-beth.part1.rar (1).crdownload 2015-07-22 15:24 - 2015-07-22 15:24 - 26322294 _____ C:\Users\Lenovo\Downloads\gagalicious-britney-beth.part2.rar.crdownload 2015-07-22 15:24 - 2015-07-22 15:24 - 02159028 _____ C:\Users\Lenovo\Downloads\gagalicious-britney-beth.part1.rar.crdownload 2015-07-22 13:31 - 2015-07-24 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Start 8 2015-07-22 13:31 - 2015-07-22 13:31 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\CStart8 2015-07-22 13:30 - 2015-07-24 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Storage 2015-07-22 13:30 - 2015-07-24 18:42 - 00000000 ____D C:\Program Files (x86)\Inbox Storage 2015-07-22 13:30 - 2015-07-24 18:42 - 00000000 ____D C:\Program Files (x86)\CStart8 2015-07-22 13:30 - 2015-07-22 13:30 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Inbox Storage 2015-07-22 13:29 - 2015-07-24 18:42 - 00000000 ____D C:\ProgramData\Spyware Terminator 2015-07-22 13:29 - 2015-07-24 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2015 2015-07-22 13:29 - 2015-07-24 18:42 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator 2015-07-22 13:29 - 2015-07-22 13:29 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Spyware Terminator 2015-07-21 23:52 - 2015-07-21 23:52 - 00000000 ____D C:\Windows\SysWOW64\idx 2015-07-21 23:51 - 2015-07-22 10:55 - 00000000 ____D C:\Windows\system32\log 2015-07-19 21:26 - 2015-07-19 21:26 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\AVAST Software 2015-07-19 20:40 - 2015-07-19 20:40 - 00000000 ____D C:\Program Files\AVAST Software 2015-07-19 20:39 - 2015-07-24 18:32 - 00000000 ____D C:\ProgramData\AVAST Software 2015-07-19 20:39 - 2015-07-19 20:39 - 00447944 _____ (AVAST Software) C:\Windows\system32\Drivers\vsgwtlmk.sys 2015-07-19 20:17 - 2015-07-19 20:32 - 159230408 _____ (AVAST Software) C:\Users\Lenovo\Downloads\avast_free_antivirus_setup (1).exe 2015-07-19 20:16 - 2015-07-19 20:32 - 159230408 _____ (AVAST Software) C:\Users\Lenovo\Downloads\avast_free_antivirus_setup.exe 2015-07-19 20:09 - 2015-07-19 20:09 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Pobierz.it 2015-07-19 20:08 - 2015-07-19 20:08 - 08293344 _____ (Pobierz.it) C:\Users\Lenovo\Downloads\Avast-Free-Antivirus_setup.exe 2015-07-19 19:30 - 2015-07-19 19:30 - 00001171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-07-19 19:30 - 2015-07-19 19:30 - 00001159 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-07-19 19:30 - 2015-07-19 19:30 - 00000000 ____D C:\Users\Lenovo\AppData\Local\Mozilla 2015-07-19 19:30 - 2015-07-19 19:30 - 00000000 ____D C:\ProgramData\Mozilla 2015-07-19 19:30 - 2015-07-19 19:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-07-19 19:30 - 2015-07-19 19:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-07-19 19:27 - 2015-07-19 19:27 - 00242960 _____ C:\Users\Lenovo\Downloads\Firefox Setup Stub 39.0.exe 2015-07-19 18:09 - 2015-07-19 18:09 - 00000000 _____ C:\autoexec.bat 2015-07-19 18:03 - 2015-07-19 18:03 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\Lenovo\Downloads\sh-remover.exe 2015-07-19 17:52 - 2015-07-19 17:53 - 01187520 _____ (Adobe Systems Incorporated) C:\Users\Lenovo\Downloads\flashplayer18pp_da_install.exe 2015-07-19 17:36 - 2015-07-24 23:30 - 00000000 ____D C:\Users\Lenovo\AppData\Local\AdFender 2015-07-19 17:35 - 2015-07-19 17:36 - 02735032 _____ (AdFender, Inc.) C:\Users\Lenovo\Downloads\Setup.exe 2015-07-17 20:01 - 2015-07-17 21:50 - 524288000 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Erika_mp4.part2.rar 2015-07-17 20:01 - 2015-07-17 21:48 - 524288000 _____ C:\Users\Lenovo\Downloads\Y0ungThr_Erika_mp4.part1.rar 2015-07-17 11:36 - 2015-07-17 11:36 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\56233B04.sys 2015-07-16 21:09 - 2015-07-16 21:09 - 00776102 _____ C:\Users\Lenovo\Downloads\Rouling_Dchoan_Garri_Potter_i_uznik_Azkabana_Litmir.net_bid37514_42b2c.epub (1).zip 2015-07-16 21:08 - 2015-07-16 21:09 - 00776102 _____ C:\Users\Lenovo\Downloads\Rouling_Dchoan_Garri_Potter_i_uznik_Azkabana_Litmir.net_bid37514_42b2c.epub.zip 2015-07-16 17:43 - 2015-07-24 23:30 - 00000000 ____D C:\Users\Lenovo\AppData\Local\Unity 2015-07-16 17:43 - 2015-07-16 17:43 - 01088664 _____ (Unity Technologies ApS) C:\Users\Lenovo\Downloads\UnityWebPlayer (4).exe 2015-07-16 17:43 - 2015-07-16 17:43 - 01088664 _____ (Unity Technologies ApS) C:\Users\Lenovo\Downloads\UnityWebPlayer (3).exe 2015-07-16 17:42 - 2015-07-16 17:43 - 01088664 _____ (Unity Technologies ApS) C:\Users\Lenovo\Downloads\UnityWebPlayer (2).exe 2015-07-16 17:42 - 2015-07-16 17:42 - 01088664 _____ (Unity Technologies ApS) C:\Users\Lenovo\Downloads\UnityWebPlayer.exe 2015-07-16 17:42 - 2015-07-16 17:42 - 01088664 _____ (Unity Technologies ApS) C:\Users\Lenovo\Downloads\UnityWebPlayer (1).exe 2015-07-11 18:23 - 2015-07-11 18:23 - 00033686 _____ C:\Users\Lenovo\Downloads\The Matrix.srt.zip 2015-07-11 18:20 - 2015-07-11 18:20 - 00053045 _____ C:\Users\Lenovo\Downloads\Matrix_RUS_1999_20080228233051.rar 2015-07-11 17:50 - 2015-07-11 17:50 - 00019319 _____ C:\Users\Lenovo\Downloads\matrix-the-subtitles-de68 (1).zip 2015-07-11 17:49 - 2015-07-11 17:50 - 00019319 _____ C:\Users\Lenovo\Downloads\matrix-the-subtitles-de68.zip 2015-07-11 11:55 - 2015-07-11 11:55 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\24BD752F.sys 2015-07-10 16:41 - 2015-07-25 16:35 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-07-10 16:40 - 2015-07-24 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-07-10 16:40 - 2015-07-24 18:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-07-10 16:40 - 2015-07-24 18:32 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-07-10 16:40 - 2015-07-10 16:40 - 00001114 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-07-10 16:40 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-07-10 16:40 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-07-10 16:40 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-07-10 15:23 - 2015-07-10 15:23 - 00000398 _____ C:\Users\Lenovo\Desktop\nhl2009 — skrót.lnk 2015-07-10 00:25 - 2015-07-10 00:25 - 00000484 _____ C:\Users\Lenovo\Downloads\vv.htm 2015-07-10 00:22 - 2015-07-10 00:22 - 00000518 _____ C:\Users\Lenovo\Downloads\h.htm 2015-07-09 19:33 - 2015-07-09 19:36 - 00000000 ____D C:\Users\Lenovo\Documents\NHL09 2015-07-09 19:32 - 2015-07-09 19:32 - 00000568 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\nhl2009.lnk 2015-07-09 19:30 - 2015-07-09 19:30 - 00001110 _____ C:\Windows\SysWOW64\ealregsnapshot1.reg 2015-07-09 19:30 - 2015-07-09 19:30 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Leadertech 2015-07-09 19:30 - 2015-07-09 19:30 - 00000000 ____D C:\Users\Lenovo\AppData\Local\Downloaded Installations 2015-07-09 19:27 - 2015-07-09 19:27 - 00000000 ____D C:\Program Files (x86)\EA Sports 2015-07-09 19:27 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2015-07-09 19:27 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2015-07-09 19:27 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2015-07-09 19:27 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2015-07-09 19:27 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2015-07-09 19:27 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2015-07-09 19:27 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2015-07-09 19:27 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2015-07-09 19:27 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2015-07-09 19:27 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2015-07-09 19:27 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2015-07-09 19:27 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2015-07-09 19:27 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2015-07-09 19:27 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2015-07-09 19:27 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2015-07-09 19:27 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2015-07-09 19:27 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2015-07-09 19:27 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2015-07-09 19:27 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2015-07-09 19:27 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2015-07-09 19:27 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2015-07-09 19:27 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2015-07-09 19:27 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2015-07-09 19:27 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2015-07-09 19:27 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2015-07-09 19:27 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2015-07-09 19:27 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2015-07-09 19:27 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2015-07-09 19:27 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2015-07-09 19:27 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2015-07-09 19:27 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2015-07-09 19:27 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2015-07-09 19:27 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2015-07-09 19:27 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2015-07-09 19:27 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2015-07-09 19:27 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2015-07-09 19:27 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2015-07-09 19:27 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2015-07-09 19:27 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2015-07-09 19:27 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2015-07-09 19:27 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2015-07-09 19:27 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2015-07-09 19:26 - 2015-07-09 19:27 - 00010047 _____ C:\Windows\DirectX.log 2015-07-09 19:26 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2015-07-09 19:26 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2015-07-09 19:26 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2015-07-09 19:26 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2015-07-09 19:26 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2015-07-09 19:26 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2015-07-09 19:26 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2015-07-09 19:26 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2015-07-09 19:26 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2015-07-09 19:26 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2015-07-09 19:26 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2015-07-09 19:26 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2015-07-09 19:26 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2015-07-09 19:26 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2015-07-09 19:26 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2015-07-09 19:26 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2015-07-09 19:26 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2015-07-09 19:26 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2015-07-09 19:26 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2015-07-09 19:26 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2015-07-09 19:26 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2015-07-09 19:26 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2015-07-09 19:26 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2015-07-09 19:26 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2015-07-09 19:26 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2015-07-09 19:26 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2015-07-09 19:26 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2015-07-09 19:26 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2015-07-09 19:26 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2015-07-09 19:26 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2015-07-09 19:26 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2015-07-09 19:26 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2015-07-09 19:26 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2015-07-09 19:26 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2015-07-09 19:26 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2015-07-09 19:26 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2015-07-09 19:26 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2015-07-09 19:26 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2015-07-09 19:26 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2015-07-09 19:26 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2015-07-09 19:26 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2015-07-09 19:26 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2015-07-09 19:26 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2015-07-09 19:26 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2015-07-09 19:26 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2015-07-09 19:26 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2015-07-09 19:26 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2015-07-09 19:26 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2015-07-09 19:26 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2015-07-09 19:26 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2015-07-09 19:26 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2015-07-09 19:26 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2015-07-09 19:26 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2015-07-09 19:26 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2015-07-09 19:26 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2015-07-09 19:26 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2015-07-09 19:26 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2015-07-09 19:26 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2015-07-09 19:26 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2015-07-09 19:26 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2015-07-09 19:26 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2015-07-09 19:26 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2015-07-09 17:52 - 2015-07-25 16:34 - 00000000 ____D C:\Users\Lenovo\AppData\Local\LogMeIn Hamachi 2015-07-09 17:52 - 2015-07-09 17:52 - 00000000 ____D C:\Users\Lenovo\AppData\Local\LogMeIn 2015-07-09 17:52 - 2015-07-09 17:52 - 00000000 ____D C:\ProgramData\LogMeIn 2015-07-09 17:50 - 2015-07-09 17:50 - 00000938 _____ C:\Users\Public\Desktop\LogMeIn Hamachi.lnk 2015-07-09 17:50 - 2015-07-09 17:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi 2015-07-09 17:50 - 2015-07-09 17:50 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi 2015-07-09 17:36 - 2015-07-09 17:41 - 08552448 _____ C:\Users\Lenovo\Downloads\hamachi.msi 2015-07-07 12:02 - 2015-07-07 12:12 - 299813122 _____ C:\Users\Lenovo\Downloads\Polska - Niemcy 20.09.2014 (2.set).avi 2015-07-07 00:59 - 2015-07-07 00:59 - 10682299 _____ C:\Users\Lenovo\Downloads\Fizyka_cudow-1.zip 2015-07-05 14:58 - 2015-07-05 14:58 - 00299991 _____ C:\Users\Lenovo\Downloads\Adler Harry - Umiejętność realizowania marzeń.zip 2015-07-03 14:06 - 2015-07-24 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-07-03 14:06 - 2015-07-14 20:18 - 00002209 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-07-03 14:04 - 2015-07-25 16:34 - 00001072 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-07-03 14:04 - 2015-07-25 14:47 - 00001076 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-07-03 14:04 - 2015-07-16 10:42 - 00004048 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-07-03 14:04 - 2015-07-16 10:42 - 00003812 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-07-03 13:51 - 2015-07-03 13:51 - 00931408 _____ (Google Inc.) C:\Users\Lenovo\Downloads\ChromeSetup.exe 2015-06-27 17:49 - 2015-06-27 17:49 - 00000677 _____ C:\ProgramData\Microsoft\Windows\Start Menu\AQQ.lnk 2015-06-27 17:49 - 2015-06-27 17:49 - 00000671 _____ C:\Users\Public\Desktop\AQQ.lnk 2015-06-27 17:49 - 2015-06-27 17:49 - 00000000 ____D C:\Users\Lenovo\AppData\Local\MyPortal 2015-06-27 17:49 - 2015-06-27 17:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPortal 2015-06-27 17:49 - 2015-06-27 17:49 - 00000000 ____D C:\Program Files\MyPortal 2015-06-27 17:48 - 2015-07-14 20:08 - 00003874 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1435420101 2015-06-27 17:48 - 2015-07-14 20:08 - 00001063 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2015-06-27 17:48 - 2015-07-10 15:24 - 00001123 _____ C:\Users\Public\Desktop\Opera.lnk 2015-06-27 17:48 - 2015-06-27 17:48 - 00003258 _____ C:\Windows\System32\Tasks\Opera N Saturday 2015-06-27 17:48 - 2015-06-27 17:48 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Shortcut 2015-06-27 17:48 - 2015-06-27 17:48 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Opera Software 2015-06-27 17:48 - 2015-06-27 17:48 - 00000000 ____D C:\Users\Lenovo\AppData\Local\Opera Software 2015-06-27 17:47 - 2015-07-24 23:32 - 00000000 ____D C:\Program Files (x86)\Opera 2015-06-27 17:47 - 2015-07-24 20:01 - 00000000 ____D C:\ProgramData\f43a0a22-b5b9-43e4-9c6f-705bf4e40c7b 2015-06-27 17:47 - 2015-06-27 17:47 - 09003000 _____ C:\Users\Lenovo\Downloads\AQQ_LD_30110-x64.exe 2015-06-27 17:46 - 2015-06-27 17:46 - 01125355 _____ C:\Users\Lenovo\Downloads\AQQ(13034)-dp.jse 2015-06-26 11:34 - 2015-06-26 11:34 - 00021801 _____ C:\Users\Lenovo\Downloads\Butterfly_Effect_RUS_2004.rar 2015-06-26 11:24 - 2015-06-26 11:24 - 00018190 _____ C:\Users\Lenovo\Downloads\Fountain_RUS_2006_20070419151932.zip 2015-06-25 20:17 - 2015-06-25 20:17 - 00049821 _____ C:\Users\Lenovo\Downloads\Inception_RUS_2010_20110125160349.zip 2015-06-25 15:38 - 2015-06-25 15:38 - 00019571 _____ C:\Users\Lenovo\Downloads\Voditel_dlja_Very_RUS_2004.rar 2015-06-25 15:38 - 2004-11-01 23:04 - 00060953 _____ C:\Users\Lenovo\Desktop\Voditel_dlja_Very_RUS_2004.srt 2015-06-25 15:33 - 2015-06-25 15:33 - 00016325 _____ C:\Users\Lenovo\Downloads\Voditel_dlja_Very_Eng_2004.Srt.rar 2015-06-25 14:29 - 2015-06-25 14:34 - 00000000 ____D C:\Users\Lenovo\Desktop\dokumenty ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-25 16:44 - 2015-05-15 12:14 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\BitComet 2015-07-25 16:43 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru 2015-07-25 16:37 - 2015-04-16 16:26 - 01793144 _____ C:\Windows\WindowsUpdate.log 2015-07-25 16:33 - 2015-04-23 21:04 - 00000008 __RSH C:\ProgramData\ntuser.pol 2015-07-25 16:33 - 2015-04-16 16:21 - 00562568 _____ C:\Windows\PFRO.log 2015-07-25 16:33 - 2013-08-22 16:46 - 00052932 _____ C:\Windows\setupact.log 2015-07-25 16:33 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-07-25 16:33 - 2013-08-22 15:25 - 00524288 ___SH C:\Windows\system32\config\BBI 2015-07-25 16:31 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\system32\GroupPolicy 2015-07-25 16:31 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy 2015-07-25 16:17 - 2015-04-22 19:23 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Skype 2015-07-25 13:45 - 2015-04-24 13:06 - 00000000 ___SD C:\Windows\system32\GWX 2015-07-25 13:37 - 2015-04-17 15:43 - 00003992 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{F8CA4084-0D6C-42EF-840B-43E7D15168FE} 2015-07-25 00:24 - 2015-04-16 16:32 - 00003598 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4188537701-513941089-1413458238-1001 2015-07-24 23:39 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness 2015-07-24 22:55 - 2015-05-19 13:41 - 00000000 ____D C:\AdwCleaner 2015-07-24 22:55 - 2015-04-16 16:26 - 00000000 ____D C:\Users\Lenovo 2015-07-24 22:52 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp 2015-07-24 22:50 - 2015-04-24 13:06 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2015-07-24 22:39 - 2015-05-15 18:55 - 00000177 _____ C:\Windows\SysWOW64\SetupComponents.exe 2015-07-24 19:39 - 2015-04-27 14:05 - 00000000 ____D C:\Program Files\Microsoft Office 15 2015-07-24 18:43 - 2015-06-01 18:00 - 00000000 ____D C:\Users\Gość 2015-07-24 18:43 - 2015-04-22 19:21 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\GRETECH 2015-07-24 18:43 - 2015-04-16 16:26 - 00000000 ___RD C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-07-24 18:43 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-07-24 18:34 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\registration 2015-07-24 17:16 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF 2015-07-22 15:09 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\LiveKernelReports 2015-07-21 23:56 - 2015-04-20 11:35 - 00000000 ____D C:\Users\Lenovo\Desktop\Wykłady 2015-07-19 19:48 - 2015-05-15 12:14 - 00000000 ____D C:\Users\Lenovo\AppData\Roaming\Mozilla 2015-07-10 18:14 - 2015-05-15 12:15 - 00000000 ____D C:\Users\Lenovo\AppData\Local\SystemDir 2015-07-10 15:24 - 2015-04-16 16:26 - 00001450 _____ C:\Users\Lenovo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-07-05 12:08 - 2015-04-20 21:25 - 00300704 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2015-07-03 14:05 - 2015-04-20 21:47 - 00000000 ____D C:\Program Files (x86)\Google 2015-06-30 18:13 - 2015-04-16 16:26 - 00000000 ____D C:\Users\Lenovo\AppData\Local\Packages 2015-06-26 15:52 - 2015-04-16 16:30 - 01735328 _____ C:\Windows\system32\PerfStringBackup.INI 2015-06-26 15:52 - 2013-08-23 01:12 - 00770530 _____ C:\Windows\system32\perfh015.dat 2015-06-26 15:52 - 2013-08-23 01:12 - 00155698 _____ C:\Windows\system32\perfc015.dat ==================== Files in the root of some directories ======= 2015-05-17 14:18 - 2015-05-17 14:18 - 0000058 _____ () C:\Users\Lenovo\AppData\Local\DonationCoder_ScreenshotCaptor_InstallInfo.dat 2015-04-16 17:13 - 2015-04-16 17:13 - 0000017 _____ () C:\Users\Lenovo\AppData\Local\resmon.resmoncfg ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-07-22 18:34 ==================== End of log ============================