Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-07-2013 01
Ran by Shearer (administrator) on 13-07-2013 21:41:51
Running from C:\Users\Shearer\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polish
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\Rezip.exe
(Malwarebytes Corporation) D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Dropbox, Inc.) C:\Users\Shearer\AppData\Roaming\Dropbox\bin\Dropbox.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe
(OldTimer Tools) C:\Users\Shearer\Downloads\OTL.exe
(Google Inc.) C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s [10144288 2010-04-07] (Realtek Semiconductor)
HKLM\...\Run: [ETDWare] - %ProgramFiles%\Elantech\ETDCtrl.exe [2703752 2010-03-25] (ELAN Microelectronics Corp.)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - KHALMNPR.EXE [x]
HKCU\...\Run: [swg] - "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2010-06-01] (Google Inc.)
HKCU\...\Run: [Google Update] - "C:\Users\Shearer\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2010-10-02] (Google Inc.)
HKCU\...\Run: [DAEMON Tools Lite] - "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [3672640 2013-03-14] (Disc Soft Ltd)
HKCU\...\Run: [tsiVideo] - C:\Windows\SysWOW64\rundll32.exe C:\Users\Shearer\AppData\Local\Temp\\tsiVi132.dll,start [x] <===== ATTENTION
HKCU\...\Run: [Facebook Update] - "C:\Users\Shearer\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [138096 2013-07-12] (Facebook Inc.)
MountPoints2: H - H:\AutoRun.exe
MountPoints2: {0f7fda78-0312-11e2-8466-001bb114aeca} - H:\AutoRun.exe
MountPoints2: {63ed2da0-a792-11e2-bd37-001bb114aeca} - H:\AutoRun.exe
MountPoints2: {63ed2dae-a792-11e2-bd37-001bb114aeca} - H:\AutoRun.exe
MountPoints2: {92aa4e27-f856-11e1-ae98-001bb114aeca} - H:\AutoRun.exe
MountPoints2: {92aa4e36-f856-11e1-ae98-001bb114aeca} - H:\AutoRun.exe
MountPoints2: {92aa4e69-f856-11e1-ae98-001bb114aeca} - H:\AutoRun.exe
MountPoints2: {d70ebe40-b676-11e2-a91f-806e6f6e6963} - F:\autorun.exe
HKLM-x32\...\Run: [UCam_Menu] - "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [avast5] - "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2009-11-18] (Hewlett-Packard)
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [343168 2011-09-08] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [QuickTime Task] - "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [946352 2012-12-18] (Adobe Systems Incorporated)
Startup: C:\Users\Shearer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Shearer\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

URLSearchHook: (No Name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} -  No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Windows Live Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO-x32: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} -  No File
DPF: HKLM-x32 {149E45D8-163E-4189-86FC-45022AB2B6C9} file:///C:/Program%20Files%20(x86)/Monopoly/Images/stg_drm.ocx
DPF: HKLM-x32 {CC450D71-CC90-424C-8638-1F2DBAC87A54} file:///C:/Program%20Files%20(x86)/Monopoly/Images/armhelper.ocx
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 213.46.228.196 62.179.104.196

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
CHR RestoreOnStartup: "hxxp://www.google.pl/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Shearer\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Shearer\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\Shearer\AppData\Local\Google\Chrome\Application\28.0.1500.72\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.260.3) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U26) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.8) - C:\Program Files (x86)\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Coupons Inc., Coupon Printer Manager ) - C:\Users\Shearer\AppData\Local\Google\Chrome\Application\plugins\npMozCouponPrinter.dll (Coupons, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\3.0.40624.0\npctrl.dll No File
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - D:\Programy\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (YouTube) - C:\Users\Shearer\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\Shearer\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (AT_ChuckAnderson) - C:\Users\Shearer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegkoiakifeoejnjkbnnojkkdoegeofp\3_0
CHR Extension: (Dilandau) - C:\Users\Shearer\AppData\Local\Google\Chrome\User Data\Default\Extensions\peacmkenjjcaifjckopphcofncigpnlp\1.1.2_0
CHR Extension: (Gmail) - C:\Users\Shearer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR StartMenuInternet: Google Chrome - "C:\Users\Shearer\AppData\Local\Google\Chrome\Application\chrome.exe"

==================== Services (Whitelisted) =================

S3 Autodesk Licensing Service; C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe [85096 2013-05-06] (Autodesk)
R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 MBAMScheduler; D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Rezip; C:\Windows\SysWOW64\Rezip.exe [311296 2009-03-05] ()

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-07-12] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-07-12] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-07-12] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [118272 2009-02-23] (QUALCOMM Incorporated)
S3 rtport; C:\Windows\SysWOW64\drivers\rtport.sys [15144 2010-08-04] (Windows (R) 2003 DDK 3790 provider)
S3 rtport; C:\Windows\SysWOW64\drivers\rtport.sys [15144 2010-08-04] (Windows (R) 2003 DDK 3790 provider)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-05-06] (Duplex Secure Ltd.)
R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x64.sys [395264 2009-09-28] ()
U3 a2hb94vk; C:\Windows\System32\Drivers\a2hb94vk.sys [0 ] (Intel Corporation)
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [x]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [x]
S3 ew_usbenumfilter; system32\DRIVERS\ew_usbenumfilter.sys [x]
S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [x]
S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-13 21:41 - 2013-07-13 21:41 - 01777829 _____ (Farbar) C:\Users\Shearer\Downloads\FRST64.exe
2013-07-13 21:41 - 2013-07-13 21:41 - 00000000 ____D C:\FRST
2013-07-13 21:39 - 2013-07-13 21:39 - 01218190 _____ (Farbar) C:\Users\Shearer\Downloads\FRST.exe
2013-07-13 21:20 - 2013-07-13 21:20 - 00165376 _____ C:\Users\Shearer\Downloads\SystemLook_x64.exe
2013-07-13 20:39 - 2013-07-13 20:39 - 00000196 _____ C:\Users\Shearer\Downloads\131f3a38-b9a4-439d-a86e-6b15880c6fb2.htm
2013-07-13 20:38 - 2013-07-13 20:38 - 00000000 ____D C:\_OTL
2013-07-13 19:59 - 2013-07-13 20:38 - 120341856 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part7.rar.crdownload
2013-07-13 19:59 - 2013-07-13 20:38 - 114501816 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part8.rar.crdownload
2013-07-13 15:27 - 2013-07-13 15:57 - 1072693290 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part5.rar
2013-07-13 15:21 - 2013-07-13 15:21 - 00602112 _____ (OldTimer Tools) C:\Users\Shearer\Downloads\OTL.exe
2013-07-13 13:31 - 2013-07-13 13:31 - 00000786 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-07-13 13:31 - 2013-07-13 13:31 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Malwarebytes
2013-07-13 13:31 - 2013-07-13 13:31 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-13 13:31 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-07-13 13:29 - 2013-07-13 13:30 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Shearer\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-13 11:03 - 2013-07-13 17:01 - 1072693248 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part6.rar
2013-07-13 11:02 - 2013-07-13 16:51 - 1072693284 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part4.rar
2013-07-12 23:23 - 2013-07-13 05:12 - 1072693276 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part3.rar
2013-07-12 23:19 - 2013-07-13 05:21 - 1072693248 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part2.rar
2013-07-12 23:17 - 2013-07-13 00:00 - 1072693290 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part1.rar
2013-07-12 17:09 - 2013-07-12 17:09 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-07-12 17:09 - 2013-07-12 17:09 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-07-12 17:09 - 2013-07-12 17:09 - 00003926 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-07-12 17:09 - 2013-07-12 17:09 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-07-12 17:09 - 2013-07-12 17:09 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-07-12 17:09 - 2013-07-12 17:09 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-07-12 17:09 - 2013-05-09 10:59 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-07-12 17:09 - 2013-05-09 10:59 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-07-12 17:09 - 2013-05-09 10:58 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-07-12 14:39 - 2013-07-13 20:44 - 00000936 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000UA.job
2013-07-12 14:39 - 2013-07-13 14:44 - 00000914 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000Core.job
2013-07-12 14:39 - 2013-07-12 14:39 - 00003916 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000UA
2013-07-12 14:39 - 2013-07-12 14:39 - 00003548 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000Core
2013-07-12 14:39 - 2013-07-12 14:39 - 00000000 ____D C:\Users\Shearer\AppData\Local\Facebook
2013-07-12 14:38 - 2013-07-12 14:38 - 00501248 _____ (Facebook Inc.) C:\Users\Shearer\Downloads\FacebookVideoCallSetup_v1.2.205.0.exe
2013-07-12 13:48 - 2013-07-12 13:48 - 00000749 _____ C:\Users\Shearer\Downloads\19F101AD4A8247F4B021542222920C05406EEDDF.torrent
2013-07-12 13:42 - 2013-07-12 13:42 - 01649090 _____ C:\Users\Shearer\Downloads\The.Settlers.7.1.04.serial.number.maker.by.TSRh.zip
2013-07-12 13:41 - 2013-01-22 23:26 - 00000057 _____ C:\Users\Shearer\Downloads\FILE_ID.DIZ
2013-07-12 13:41 - 2013-01-21 16:20 - 00010535 _____ C:\Users\Shearer\Downloads\TSRh.nfo
2013-07-12 13:40 - 2013-07-12 13:40 - 01649057 _____ C:\Users\Shearer\Downloads\The.Settlers.7.1.11.serial.maker.by.TSRh.zip
2013-07-12 13:34 - 2013-07-12 13:34 - 03018926 _____ C:\Users\Shearer\Downloads\KeyGenLite1x.zip
2013-07-12 13:33 - 2013-07-12 13:33 - 00000868 _____ C:\Users\Shearer\Downloads\[isoHunt] The settlers 7 key generator.rar.torrent
2013-07-12 13:26 - 2010-04-27 04:14 - 00000000 ____D C:\Users\Shearer\Downloads\Data
2013-07-12 13:25 - 2013-07-12 13:25 - 00848378 _____ C:\Users\Shearer\Downloads\Settlers-7-Crack-Razor1911-.rar
2013-07-12 13:25 - 2013-07-12 13:25 - 00000629 _____ C:\Users\Shearer\Downloads\[isoHunt] The.Settlers.7.CRACK.ONLY.Razor1911.zip.torrent
2013-07-12 12:37 - 2013-07-12 13:13 - 00000000 ____D C:\Users\Shearer\AppData\Local\Ubisoft Game Launcher
2013-07-12 12:10 - 2013-07-12 12:10 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-07-12 02:56 - 2013-07-12 02:56 - 00036242 _____ C:\Users\Shearer\Downloads\[isoHunt] AD86835C2125F4E50C9401A3B214EE9BE3A85C16.torrent
2013-07-12 02:39 - 2013-07-12 02:39 - 00013869 _____ C:\Users\Shearer\Downloads\[isoHunt] SID MEIERS CIVILIZATION V BRAVE NEW WORLD-CRACKED.torrent
2013-07-12 02:38 - 2013-07-12 02:38 - 00015728 _____ C:\Users\Shearer\Downloads\[isoHunt] 6F3F07CF8687D1A33960993A0A5ED0966A2F7113 (1).torrent
2013-07-12 02:35 - 2013-07-12 02:35 - 00059396 _____ C:\Users\Shearer\Downloads\[isoHunt] The_Settlers_7-Razor1911.5517867.TPB.torrent
2013-07-12 02:34 - 2013-07-12 02:34 - 00013737 _____ C:\Users\Shearer\Downloads\[isoHunt] The Settlers 7  Paths to a Kingdom (DEMO) - The Settlers 7  Право на трон (DEMO) (2010) PC {russian}.torrent
2013-07-11 22:47 - 2013-07-11 22:47 - 00166664 _____ () C:\Users\Shearer\Downloads\Adlock4_downloader_by_Adlock4.exe
2013-07-11 22:34 - 2013-07-11 22:34 - 00015730 _____ C:\Users\Shearer\Downloads\[isoHunt] 6F3F07CF8687D1A33960993A0A5ED0966A2F7113.torrent
2013-07-11 22:30 - 2013-07-11 22:30 - 00019036 _____ C:\Users\Shearer\Downloads\[isoHunt] download (1).torrent
2013-07-11 22:18 - 2013-07-11 22:18 - 00005038 _____ C:\Users\Shearer\Documents\Uninstall Mass Effect 2.log
2013-07-11 19:39 - 2013-07-11 19:39 - 00016301 _____ C:\Users\Shearer\Downloads\week 29.xlsx
2013-07-11 14:09 - 2013-07-11 14:09 - 00013222 _____ C:\Users\Shearer\Downloads\[isoHunt] Leftfield 1995-1999 [320kbps MP3].torrent
2013-07-09 21:18 - 2013-07-09 21:18 - 00013464 _____ C:\Users\Shearer\Downloads\[isoHunt] download.torrent
2013-07-09 00:50 - 2013-07-11 13:29 - 00000000 ____D C:\ProgramData\Norton
2013-07-08 22:49 - 2013-07-08 22:49 - 07872648 _____ (Adobe Systems Inc.) C:\Users\Shearer\Downloads\Shockwave_Installer_Slim.exe
2013-07-08 22:49 - 2013-07-08 22:49 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2013-07-08 14:40 - 2013-07-08 14:40 - 00001979 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-07-08 14:38 - 2013-07-08 14:38 - 50363976 _____ (Adobe Systems Incorporated) C:\Users\Shearer\Downloads\AdbeRdr11002_en_US.exe
2013-07-07 18:41 - 2013-07-07 18:41 - 00006872 _____ C:\Users\Shearer\Downloads\eMAX EUR nr _01994524 za 2013-06.htm
2013-07-07 11:24 - 2013-07-07 11:24 - 01700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdiplus.dll
2013-07-07 11:24 - 2013-07-07 11:24 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2013-07-07 11:24 - 2013-07-07 11:24 - 00000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2013-07-07 11:23 - 2013-07-07 11:23 - 00001102 _____ C:\Users\Shearer\Desktop\FL Studio 10.lnk
2013-07-07 11:23 - 2013-07-07 11:23 - 00000000 ____D C:\Users\Shearer\Documents\Image-Line
2013-07-07 11:23 - 2013-07-07 11:23 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2013-07-07 11:23 - 2013-07-07 11:23 - 00000000 ____D C:\Program Files (x86)\VstPlugins
2013-07-07 11:23 - 2013-07-07 11:23 - 00000000 ____D C:\Program Files (x86)\Outsim
2013-07-07 11:23 - 2009-09-15 11:14 - 01554944 _____ (HMS http://hp.vector.co.jp/authors/VA012897/) C:\Windows\SysWOW64\vorbis.acm
2013-07-07 11:23 - 2006-06-20 10:56 - 00225280 _____ (Propellerhead Software AB) C:\Windows\SysWOW64\rewire.dll
2013-07-07 11:21 - 2013-07-07 11:23 - 00000000 ____D C:\Program Files (x86)\Image-Line
2013-07-05 19:08 - 2013-07-05 19:08 - 00016365 _____ C:\Users\Shearer\Downloads\week 28 xlsx.xlsx
2013-06-27 23:56 - 2013-06-27 23:56 - 00016272 _____ C:\Users\Shearer\Downloads\week 27 xlsx.xlsx
2013-06-27 23:56 - 2013-06-27 23:56 - 00000165 ____H C:\Users\Shearer\Downloads\~$week 27 xlsx.xlsx
2013-06-24 00:22 - 2013-06-24 00:22 - 00012001 _____ C:\Users\Shearer\Downloads\Oleje+Przemysłowe.xlsx
2013-06-19 00:48 - 2013-06-19 00:48 - 00001045 _____ C:\Users\Shearer\Desktop\Dropbox.lnk
2013-06-19 00:42 - 2013-07-13 20:56 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Dropbox
2013-06-19 00:42 - 2013-06-19 00:45 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-06-19 00:41 - 2013-06-19 00:42 - 34935760 _____ (Dropbox, Inc.) C:\Users\Shearer\Downloads\Dropbox 2.2.3.exe

==================== One Month Modified Files and Folders =======

2013-07-13 21:41 - 2013-07-13 21:41 - 01777829 _____ (Farbar) C:\Users\Shearer\Downloads\FRST64.exe
2013-07-13 21:41 - 2013-07-13 21:41 - 00000000 ____D C:\FRST
2013-07-13 21:39 - 2013-07-13 21:39 - 01218190 _____ (Farbar) C:\Users\Shearer\Downloads\FRST.exe
2013-07-13 21:20 - 2013-07-13 21:20 - 00165376 _____ C:\Users\Shearer\Downloads\SystemLook_x64.exe
2013-07-13 21:02 - 2010-10-02 20:45 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-13 21:02 - 2010-10-02 20:45 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-13 21:02 - 2009-07-14 06:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-13 21:02 - 2009-07-14 06:45 - 00014144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-13 20:59 - 2010-06-01 23:05 - 01840547 _____ C:\Windows\WindowsUpdate.log
2013-07-13 20:56 - 2013-06-19 00:42 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Dropbox
2013-07-13 20:56 - 2010-10-02 20:26 - 00001066 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000UA.job
2013-07-13 20:55 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-13 20:55 - 2009-07-14 06:51 - 00020507 _____ C:\Windows\setupact.log
2013-07-13 20:44 - 2013-07-12 14:39 - 00000936 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000UA.job
2013-07-13 20:39 - 2013-07-13 20:39 - 00000196 _____ C:\Users\Shearer\Downloads\131f3a38-b9a4-439d-a86e-6b15880c6fb2.htm
2013-07-13 20:38 - 2013-07-13 20:38 - 00000000 ____D C:\_OTL
2013-07-13 20:38 - 2013-07-13 19:59 - 120341856 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part7.rar.crdownload
2013-07-13 20:38 - 2013-07-13 19:59 - 114501816 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part8.rar.crdownload
2013-07-13 20:38 - 2010-10-05 20:15 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Skype
2013-07-13 19:33 - 2011-04-28 23:51 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\skypePM
2013-07-13 19:25 - 2010-06-01 08:05 - 00693584 _____ C:\Windows\PFRO.log
2013-07-13 17:01 - 2013-07-13 11:03 - 1072693248 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part6.rar
2013-07-13 16:51 - 2013-07-13 11:02 - 1072693284 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part4.rar
2013-07-13 15:57 - 2013-07-13 15:27 - 1072693290 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part5.rar
2013-07-13 15:21 - 2013-07-13 15:21 - 00602112 _____ (OldTimer Tools) C:\Users\Shearer\Downloads\OTL.exe
2013-07-13 14:44 - 2013-07-12 14:39 - 00000914 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000Core.job
2013-07-13 13:31 - 2013-07-13 13:31 - 00000786 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-07-13 13:31 - 2013-07-13 13:31 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Malwarebytes
2013-07-13 13:31 - 2013-07-13 13:31 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-07-13 13:30 - 2013-07-13 13:29 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Shearer\Downloads\mbam-setup-1.75.0.1300.exe
2013-07-13 10:56 - 2010-10-02 20:26 - 00001014 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000Core.job
2013-07-13 06:58 - 2010-10-02 20:26 - 00002374 _____ C:\Users\Shearer\Desktop\Google Chrome.lnk
2013-07-13 05:21 - 2013-07-12 23:19 - 1072693248 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part2.rar
2013-07-13 05:12 - 2013-07-12 23:23 - 1072693276 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part3.rar
2013-07-13 00:00 - 2013-07-12 23:17 - 1072693290 _____ C:\Users\Shearer\Downloads\M2aft4iaIIDLCs-elamigos.part1.rar
2013-07-12 20:57 - 2010-10-02 20:45 - 00004044 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-07-12 20:57 - 2010-10-02 20:45 - 00003792 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-07-12 17:27 - 2012-02-01 11:56 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\BitTorrent
2013-07-12 17:09 - 2013-07-12 17:09 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-07-12 17:09 - 2013-07-12 17:09 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-07-12 17:09 - 2013-07-12 17:09 - 00003926 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-07-12 17:09 - 2013-07-12 17:09 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum
2013-07-12 17:09 - 2013-07-12 17:09 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum
2013-07-12 17:09 - 2013-07-12 17:09 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum
2013-07-12 17:09 - 2011-02-22 17:17 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-07-12 17:09 - 2011-02-22 17:17 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2013-07-12 14:39 - 2013-07-12 14:39 - 00003916 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000UA
2013-07-12 14:39 - 2013-07-12 14:39 - 00003548 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000Core
2013-07-12 14:39 - 2013-07-12 14:39 - 00000000 ____D C:\Users\Shearer\AppData\Local\Facebook
2013-07-12 14:38 - 2013-07-12 14:38 - 00501248 _____ (Facebook Inc.) C:\Users\Shearer\Downloads\FacebookVideoCallSetup_v1.2.205.0.exe
2013-07-12 13:55 - 2010-06-01 07:09 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-07-12 13:48 - 2013-07-12 13:48 - 00000749 _____ C:\Users\Shearer\Downloads\19F101AD4A8247F4B021542222920C05406EEDDF.torrent
2013-07-12 13:42 - 2013-07-12 13:42 - 01649090 _____ C:\Users\Shearer\Downloads\The.Settlers.7.1.04.serial.number.maker.by.TSRh.zip
2013-07-12 13:40 - 2013-07-12 13:40 - 01649057 _____ C:\Users\Shearer\Downloads\The.Settlers.7.1.11.serial.maker.by.TSRh.zip
2013-07-12 13:40 - 2010-06-01 23:43 - 04159926 _____ C:\Windows\system32\perfh015.dat
2013-07-12 13:40 - 2010-06-01 23:43 - 01342532 _____ C:\Windows\system32\perfc015.dat
2013-07-12 13:40 - 2009-07-14 07:13 - 00005180 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-12 13:34 - 2013-07-12 13:34 - 03018926 _____ C:\Users\Shearer\Downloads\KeyGenLite1x.zip
2013-07-12 13:33 - 2013-07-12 13:33 - 00000868 _____ C:\Users\Shearer\Downloads\[isoHunt] The settlers 7 key generator.rar.torrent
2013-07-12 13:25 - 2013-07-12 13:25 - 00848378 _____ C:\Users\Shearer\Downloads\Settlers-7-Crack-Razor1911-.rar
2013-07-12 13:25 - 2013-07-12 13:25 - 00000629 _____ C:\Users\Shearer\Downloads\[isoHunt] The.Settlers.7.CRACK.ONLY.Razor1911.zip.torrent
2013-07-12 13:13 - 2013-07-12 12:37 - 00000000 ____D C:\Users\Shearer\AppData\Local\Ubisoft Game Launcher
2013-07-12 12:12 - 2010-09-30 11:07 - 00161366 _____ C:\Windows\DirectX.log
2013-07-12 12:10 - 2013-07-12 12:10 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-07-12 10:51 - 2010-10-02 20:26 - 00004040 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000UA
2013-07-12 10:51 - 2010-10-02 20:26 - 00003644 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-233006258-18527085-3623643150-1000Core
2013-07-12 02:56 - 2013-07-12 02:56 - 00036242 _____ C:\Users\Shearer\Downloads\[isoHunt] AD86835C2125F4E50C9401A3B214EE9BE3A85C16.torrent
2013-07-12 02:39 - 2013-07-12 02:39 - 00013869 _____ C:\Users\Shearer\Downloads\[isoHunt] SID MEIERS CIVILIZATION V BRAVE NEW WORLD-CRACKED.torrent
2013-07-12 02:38 - 2013-07-12 02:38 - 00015728 _____ C:\Users\Shearer\Downloads\[isoHunt] 6F3F07CF8687D1A33960993A0A5ED0966A2F7113 (1).torrent
2013-07-12 02:35 - 2013-07-12 02:35 - 00059396 _____ C:\Users\Shearer\Downloads\[isoHunt] The_Settlers_7-Razor1911.5517867.TPB.torrent
2013-07-12 02:34 - 2013-07-12 02:34 - 00013737 _____ C:\Users\Shearer\Downloads\[isoHunt] The Settlers 7  Paths to a Kingdom (DEMO) - The Settlers 7  Право на трон (DEMO) (2010) PC {russian}.torrent
2013-07-11 22:47 - 2013-07-11 22:47 - 00166664 _____ () C:\Users\Shearer\Downloads\Adlock4_downloader_by_Adlock4.exe
2013-07-11 22:34 - 2013-07-11 22:34 - 00015730 _____ C:\Users\Shearer\Downloads\[isoHunt] 6F3F07CF8687D1A33960993A0A5ED0966A2F7113.torrent
2013-07-11 22:30 - 2013-07-11 22:30 - 00019036 _____ C:\Users\Shearer\Downloads\[isoHunt] download (1).torrent
2013-07-11 22:18 - 2013-07-11 22:18 - 00005038 _____ C:\Users\Shearer\Documents\Uninstall Mass Effect 2.log
2013-07-11 22:09 - 2010-10-01 00:23 - 00000000 ____D C:\Windows\System32\Tasks\Games
2013-07-11 19:39 - 2013-07-11 19:39 - 00016301 _____ C:\Users\Shearer\Downloads\week 29.xlsx
2013-07-11 14:09 - 2013-07-11 14:09 - 00013222 _____ C:\Users\Shearer\Downloads\[isoHunt] Leftfield 1995-1999 [320kbps MP3].torrent
2013-07-11 13:37 - 2011-12-08 10:28 - 00000000 ____D C:\Program Files (x86)\MoorHunt
2013-07-11 13:32 - 2010-09-30 10:51 - 00000000 ____D C:\Program Files (x86)\Game Pack
2013-07-11 13:29 - 2013-07-09 00:50 - 00000000 ____D C:\ProgramData\Norton
2013-07-11 12:48 - 2011-03-03 02:09 - 00000000 ____D C:\Users\Shearer\Documents\Youcam
2013-07-09 21:18 - 2013-07-09 21:18 - 00013464 _____ C:\Users\Shearer\Downloads\[isoHunt] download.torrent
2013-07-09 00:50 - 2010-06-01 07:41 - 00000000 ____D C:\ProgramData\Symantec
2013-07-08 22:49 - 2013-07-08 22:49 - 07872648 _____ (Adobe Systems Inc.) C:\Users\Shearer\Downloads\Shockwave_Installer_Slim.exe
2013-07-08 22:49 - 2013-07-08 22:49 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2013-07-08 14:40 - 2013-07-08 14:40 - 00001979 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-07-08 14:40 - 2010-09-30 10:51 - 00000000 ____D C:\ProgramData\Adobe
2013-07-08 14:40 - 2010-09-30 10:51 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-07-08 14:38 - 2013-07-08 14:38 - 50363976 _____ (Adobe Systems Incorporated) C:\Users\Shearer\Downloads\AdbeRdr11002_en_US.exe
2013-07-07 18:41 - 2013-07-07 18:41 - 00006872 _____ C:\Users\Shearer\Downloads\eMAX EUR nr _01994524 za 2013-06.htm
2013-07-07 11:24 - 2013-07-07 11:24 - 01700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdiplus.dll
2013-07-07 11:24 - 2013-07-07 11:24 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
2013-07-07 11:24 - 2013-07-07 11:24 - 00000000 ____D C:\Program Files (x86)\ASIO4ALL v2
2013-07-07 11:23 - 2013-07-07 11:23 - 00001102 _____ C:\Users\Shearer\Desktop\FL Studio 10.lnk
2013-07-07 11:23 - 2013-07-07 11:23 - 00000000 ____D C:\Users\Shearer\Documents\Image-Line
2013-07-07 11:23 - 2013-07-07 11:23 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2013-07-07 11:23 - 2013-07-07 11:23 - 00000000 ____D C:\Program Files (x86)\VstPlugins
2013-07-07 11:23 - 2013-07-07 11:23 - 00000000 ____D C:\Program Files (x86)\Outsim
2013-07-07 11:23 - 2013-07-07 11:21 - 00000000 ____D C:\Program Files (x86)\Image-Line
2013-07-05 19:08 - 2013-07-05 19:08 - 00016365 _____ C:\Users\Shearer\Downloads\week 28 xlsx.xlsx
2013-07-01 16:36 - 2011-05-18 16:42 - 00183112 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-06-27 23:56 - 2013-06-27 23:56 - 00016272 _____ C:\Users\Shearer\Downloads\week 27 xlsx.xlsx
2013-06-27 23:56 - 2013-06-27 23:56 - 00000165 ____H C:\Users\Shearer\Downloads\~$week 27 xlsx.xlsx
2013-06-27 02:02 - 2010-12-23 17:39 - 00000000 ____D C:\Users\Shearer\Documents\STUDIA
2013-06-24 00:22 - 2013-06-24 00:22 - 00012001 _____ C:\Users\Shearer\Downloads\Oleje+Przemysłowe.xlsx
2013-06-19 00:48 - 2013-06-19 00:48 - 00001045 _____ C:\Users\Shearer\Desktop\Dropbox.lnk
2013-06-19 00:45 - 2013-06-19 00:42 - 00000000 ____D C:\Users\Shearer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-06-19 00:45 - 2010-09-30 11:22 - 00000000 ___RD C:\Users\Shearer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-06-19 00:42 - 2013-06-19 00:41 - 34935760 _____ (Dropbox, Inc.) C:\Users\Shearer\Downloads\Dropbox 2.2.3.exe

Files to move or delete:
====================
C:\ProgramData\FullRemove.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-07-13 02:19

==================== End Of Log ============================