Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-10-2013 Ran by Portitor (administrator) on PORTITOR-PC on 20-10-2013 18:38:09 Running from C:\Users\Portitor\Downloads Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US) Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (Microsoft Corporation) C:\Windows\system32\WLANExt.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe () C:\Windows\SysWOW64\srvany.exe () C:\Windows\KMService.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2899216 2012-03-26] (Synaptics Incorporated) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) MountPoints2: {008c5ae7-3662-11e3-8d6f-689423fef07a} - G:\SETUP.EXE HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3567800 2013-10-18] (AVAST Software) HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB91E80DD71CACE01 BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Tcpip\Parameters: [DhcpNameServer] 62.179.1.62 62.179.1.63 Chrome: ======= CHR Extension: (Google Docs) - C:\Users\Portitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\Portitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\Portitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\Portitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (AdBlock) - C:\Users\Portitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.10_0 CHR Extension: (Chrome In-App Payments service) - C:\Users\Portitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0 CHR Extension: (Gmail) - C:\Users\Portitor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx ==================== Services (Whitelisted) ================= R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-16] (AVAST Software) R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [1005944 2012-07-02] (Broadcom Corporation.) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-29] (Intel Corporation) R2 KMService; C:\Windows\SysWow64\srvany.exe [8192 2013-10-16] () ==================== Drivers (Whitelisted) ==================== R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-10-16] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-10-16] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-16] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-16] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-10-16] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-10-16] (AVAST Software) R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-10-16] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-16] () S3 b06diag; C:\Windows\system32\drivers\bxdiaga.sys [88104 2012-03-08] (Broadcom Corporation) R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [163368 2012-04-01] (Broadcom Corporation.) S3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2012-02-22] (Bigfoot Networks, Inc.) S3 bxfcoe; C:\Windows\system32\drivers\bxfcoe.sys [178216 2012-02-22] (Broadcom Corporation) S3 bxois; C:\Windows\system32\drivers\bxois.sys [539176 2012-02-22] (Broadcom Corporation) S3 EtronSTOR; C:\Windows\System32\Drivers\EtronSTOR.sys [32512 2012-07-24] (Etron Technology Inc) R3 L1C; C:\Windows\System32\DRIVERS\L1C62x64.sys [104048 2012-03-02] (Qualcomm Atheros Co., Ltd.) S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) R3 SmbDrvIntel; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [27408 2012-03-26] (Synaptics Incorporated) S3 VGPU; System32\drivers\rdvgkmd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-10-20 18:37 - 2013-10-20 18:37 - 01954548 _____ (Farbar) C:\Users\Portitor\Downloads\FRST64.exe 2013-10-20 18:37 - 2013-10-20 18:37 - 00000000 ____D C:\FRST 2013-10-20 13:45 - 2013-10-20 13:45 - 00280808 _____ C:\Windows\Minidump\102013-14929-01.dmp 2013-10-19 11:48 - 2013-10-19 11:48 - 00280808 _____ C:\Windows\Minidump\101913-15631-01.dmp 2013-10-19 10:57 - 2013-10-19 10:57 - 00280808 _____ C:\Windows\Minidump\101913-14336-01.dmp 2013-10-18 16:32 - 2013-10-18 16:33 - 00000000 ____D C:\Users\Portitor\Desktop\konf. ERC 2013-10-17 11:25 - 2013-10-17 11:25 - 00280808 _____ C:\Windows\Minidump\101713-24850-01.dmp 2013-10-17 05:58 - 2013-10-17 05:58 - 00280808 _____ C:\Windows\Minidump\101713-27534-01.dmp 2013-10-17 00:12 - 2013-10-16 14:20 - 00000000 ____D C:\Windows\Panther 2013-10-16 22:09 - 2013-10-16 22:09 - 00000040 _____ C:\Windows\SynInst.log 2013-10-16 22:09 - 2013-10-16 22:09 - 00000000 ____D C:\ProgramData\Synaptics 2013-10-16 20:12 - 2013-10-16 20:23 - 00002820 _____ C:\Users\Portitor\Documents\stopka z logo.htm 2013-10-16 19:57 - 2013-10-16 19:59 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\XnView 2013-10-16 19:57 - 2013-10-16 19:57 - 00000000 ____D C:\Program Files (x86)\XnView 2013-10-16 19:56 - 2013-10-16 19:56 - 15211760 _____ (Gougelet Pierre-e ) C:\Users\Portitor\Downloads\XnView-win-full.exe 2013-10-16 19:56 - 2013-10-16 19:56 - 00685248 _____ C:\Users\Portitor\Downloads\XnView(12934).exe 2013-10-16 19:49 - 2013-10-18 19:59 - 00000000 ____D C:\Users\Portitor\Desktop\noble i kieres 2013-10-16 19:43 - 2013-10-17 18:50 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-10-16 19:43 - 2013-10-17 18:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-10-16 19:25 - 2013-10-16 19:25 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2013-10-16 19:25 - 2013-10-16 19:25 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2013-10-16 19:21 - 2013-10-11 11:33 - 00034304 _____ C:\Users\Portitor\Desktop\Delegates Transport - Regional Career Development Workshop 2013.xls 2013-10-16 19:21 - 2011-07-15 11:16 - 00059904 _____ C:\Users\Portitor\Desktop\2009_Portitor Cennik + opłaty.xls 2013-10-16 19:20 - 2013-10-20 18:33 - 00000000 ____D C:\Users\Portitor\Desktop\zarządzanie 2013-10-16 19:20 - 2013-10-16 19:20 - 00000000 ____D C:\Users\Portitor\Desktop\priv 2013-10-16 19:16 - 2013-10-16 19:16 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\PDF Architect 2013-10-16 19:15 - 2013-10-16 19:16 - 00000000 ____D C:\Program Files (x86)\PDFCreator 2013-10-16 19:15 - 2013-10-16 19:15 - 17810632 _____ (pdfforge GmbH) C:\Users\Portitor\Downloads\PDFCreator-1_7_1_setup.exe 2013-10-16 19:15 - 2013-10-16 19:15 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\pdfforge 2013-10-16 19:15 - 2013-04-09 15:13 - 00110264 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll 2013-10-16 19:15 - 2013-01-09 15:52 - 01070152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX 2013-10-16 19:15 - 2012-05-05 11:54 - 00662288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCT2.OCX 2013-10-16 19:15 - 2012-05-05 11:54 - 00137000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMAPI32.OCX 2013-10-16 19:15 - 2012-05-05 11:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPIDE.DLL 2013-10-16 19:14 - 2013-10-16 19:14 - 00685248 _____ C:\Users\Portitor\Downloads\PDFCreator(12691).exe 2013-10-16 19:07 - 2013-10-16 19:07 - 00000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdate 2013-10-16 19:07 - 2011-01-27 10:32 - 00027648 _____ () C:\Windows\system32\ssb7mlm.dll 2013-10-16 19:07 - 2011-01-27 10:32 - 00000359 _____ C:\Windows\system32\ssb7mlm.smt 2013-10-16 19:07 - 2011-01-27 10:31 - 00151552 _____ (SS) C:\Windows\system32\ssb7mci.exe 2013-10-16 19:07 - 2011-01-27 10:31 - 00089600 _____ (SS) C:\Windows\system32\ssb7mci.dll 2013-10-16 19:07 - 2011-01-27 05:18 - 00181231 ____N C:\Windows\ssb7mA4.prn 2013-10-16 19:07 - 2011-01-27 05:18 - 00162955 ____N C:\Windows\ssb7mLTR.prn 2013-10-16 19:06 - 2013-10-20 18:32 - 00000072 _____ C:\Users\Public\LMDebug.log 2013-10-16 19:05 - 2011-01-24 08:13 - 00011576 ____N (Samsung Electronics) C:\Windows\system32\Drivers\SSPORT.SYS 2013-10-16 19:04 - 2013-10-16 19:04 - 17735680 _____ C:\Users\Portitor\Downloads\ML-1670_PrinD.exe 2013-10-16 19:04 - 2013-10-16 19:04 - 00000000 ____D C:\Users\Portitor\Documents\ML-1670_PrinD 2013-10-16 18:52 - 2013-10-16 19:07 - 00000040 _____ C:\Autoconfig.ini 2013-10-16 18:52 - 2013-10-16 19:07 - 00000000 ____D C:\Program Files (x86)\Samsung 2013-10-16 18:52 - 2013-10-16 18:52 - 00000000 ____D C:\ProgramData\Samsung 2013-10-16 18:52 - 2013-06-01 07:13 - 01571160 ____N C:\Windows\TotalUninstaller.exe 2013-10-16 18:51 - 2013-10-16 18:51 - 21335600 _____ C:\Users\Portitor\Downloads\SamsungUniversalPrintDriver2.exe 2013-10-16 18:51 - 2013-05-10 11:48 - 00162136 _____ C:\Windows\system32\spe__ci.exe 2013-10-16 18:51 - 2012-11-17 10:28 - 00000357 _____ C:\Windows\system32\spe__l.smt 2013-10-16 18:51 - 2011-04-11 07:26 - 00034304 _____ () C:\Windows\system32\spe__l.dll 2013-10-16 18:51 - 2010-10-20 10:46 - 00089600 _____ (SS) C:\Windows\system32\spe__ci.dll 2013-10-16 18:50 - 2013-10-16 18:50 - 08926536 _____ (Hamrick Software) C:\Users\Portitor\Downloads\vuex6493.exe 2013-10-16 18:49 - 2013-10-16 18:49 - 00000097 _____ C:\Windows\SCNDRVU.INI 2013-10-16 18:49 - 2013-10-16 18:49 - 00000000 ____D C:\Program Files (x86)\ScannerU 2013-10-16 18:49 - 1997-01-22 20:26 - 00565760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVCP50.DLL 2013-10-16 18:47 - 2013-10-16 18:47 - 00003262 _____ C:\Windows\System32\Tasks\{6B09EEF0-EAD9-4261-A72F-A8517FECC9BB} 2013-10-16 18:47 - 2013-10-16 18:47 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\WinRAR 2013-10-16 18:47 - 2013-10-16 18:47 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-10-16 18:47 - 2007-05-14 12:02 - 00000000 ____D C:\Users\Portitor\Downloads\OpticPro ST12 ST24 V3.4.0.1 2013-10-16 18:46 - 2013-10-16 18:47 - 00000000 ____D C:\Program Files\WinRAR 2013-10-16 18:46 - 2013-10-16 18:46 - 13645151 _____ C:\Users\Portitor\Downloads\st12_24driver_v3401.zip 2013-10-16 18:46 - 2013-10-16 18:46 - 02046232 _____ C:\Users\Portitor\Downloads\winrar-x64-500pl.exe 2013-10-16 18:42 - 2013-10-16 18:42 - 01650657 _____ (http://www.arduosoft.com ) C:\Users\Portitor\Downloads\ArduoPdfMerger_1.0.exe 2013-10-16 18:42 - 2013-10-16 18:42 - 00000984 _____ C:\Users\Public\Desktop\ArduoPdfMerger.lnk 2013-10-16 18:42 - 2013-10-16 18:42 - 00000000 ____D C:\Windows\SysWOW64\no 2013-10-16 18:42 - 2013-10-16 18:42 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\PdfMerger 2013-10-16 18:42 - 2013-10-16 18:42 - 00000000 ____D C:\Program Files (x86)\ArduoPdfMerger 2013-10-16 18:36 - 2013-10-16 19:34 - 00000000 ____D C:\Windows\pss 2013-10-16 18:31 - 2013-10-16 18:31 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2013-10-16 18:31 - 2013-10-16 18:31 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2013-10-16 18:31 - 2013-10-16 18:31 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\AVAST Software 2013-10-16 18:30 - 2013-10-16 18:30 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-16 18:30 - 2013-10-16 18:30 - 00000000 ____D C:\Program Files\AVAST Software 2013-10-16 16:34 - 2013-10-16 20:11 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\Windows Live Writer 2013-10-16 16:34 - 2013-10-16 16:34 - 00000000 ____D C:\Users\Portitor\AppData\Local\Windows Live Writer 2013-10-16 16:32 - 2013-10-16 16:33 - 00000000 ____D C:\Program Files (x86)\Windows Live 2013-10-16 16:32 - 2013-10-16 16:32 - 00000000 ____D C:\Program Files\Windows Live 2013-10-16 16:30 - 2013-10-19 12:52 - 00000000 ____D C:\Users\Portitor\AppData\Local\Windows Live 2013-10-16 16:30 - 2013-10-16 16:30 - 01245680 _____ (Microsoft Corporation) C:\Users\Portitor\Downloads\wlsetup-web (1).exe 2013-10-16 16:27 - 2013-10-16 16:27 - 01245680 _____ (Microsoft Corporation) C:\Users\Portitor\Downloads\wlsetup-web.exe 2013-10-16 16:09 - 2013-10-16 16:09 - 00151552 _____ C:\Windows\KMService.exe 2013-10-16 16:09 - 2013-10-16 16:09 - 00008192 _____ C:\Windows\SysWOW64\srvany.exe 2013-10-16 16:07 - 2013-10-16 16:07 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2013-10-16 16:06 - 2013-10-16 16:06 - 00000000 ____D C:\Windows\PCHEALTH 2013-10-16 16:06 - 2013-10-16 16:06 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services 2013-10-16 16:06 - 2013-10-16 16:06 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-10-16 16:05 - 2013-10-16 16:06 - 00000000 ____D C:\Program Files\Microsoft Office 2013-10-16 16:05 - 2013-10-16 16:05 - 00000000 __RHD C:\MSOCache 2013-10-16 16:05 - 2013-10-16 16:05 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2013-10-16 16:05 - 2013-10-16 16:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2013-10-16 16:04 - 2013-10-16 16:04 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-10-16 16:03 - 2013-10-16 16:26 - 85269544 _____ (AVAST Software) C:\Users\Portitor\Downloads\avast_free_antivirus_setup.exe 2013-10-16 16:00 - 2013-10-20 18:22 - 00737964 _____ C:\Windows\system32\perfh015.dat 2013-10-16 16:00 - 2013-10-20 18:22 - 00154620 _____ C:\Windows\system32\perfc015.dat 2013-10-16 16:00 - 2013-10-16 15:46 - 00337158 _____ C:\Windows\system32\perfi015.dat 2013-10-16 16:00 - 2013-10-16 15:46 - 00038710 _____ C:\Windows\system32\perfd015.dat 2013-10-16 15:57 - 2013-10-16 15:57 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2013-10-16 15:57 - 2013-10-16 15:57 - 00000000 ____D C:\Windows\SysWOW64\pl 2013-10-16 15:57 - 2013-10-16 15:57 - 00000000 ____D C:\Windows\system32\pl 2013-10-16 15:41 - 2013-09-23 01:28 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-10-16 15:41 - 2013-09-23 01:28 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-10-16 15:41 - 2013-09-23 01:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-10-16 15:41 - 2013-09-23 00:55 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-10-16 15:41 - 2013-09-23 00:55 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-10-16 15:41 - 2013-09-23 00:55 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-10-16 15:41 - 2013-09-23 00:54 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-10-16 15:41 - 2013-09-23 00:54 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-10-16 15:41 - 2013-09-23 00:54 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-10-16 15:41 - 2013-09-23 00:54 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-10-16 15:41 - 2013-09-23 00:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-10-16 15:41 - 2013-09-23 00:54 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-10-16 15:41 - 2013-09-23 00:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-10-16 15:41 - 2013-09-23 00:54 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-10-16 15:41 - 2013-09-23 00:54 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-10-16 15:41 - 2013-09-23 00:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-10-16 15:41 - 2013-09-23 00:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-10-16 15:41 - 2013-09-21 05:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-10-16 15:41 - 2013-09-21 05:30 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-10-16 15:41 - 2013-09-21 04:48 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-16 15:41 - 2013-09-21 04:39 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-10-16 15:39 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe 2013-10-16 15:28 - 2013-10-16 15:29 - 00000000 ____D C:\Windows\system32\MRT 2013-10-16 15:28 - 2013-09-26 01:46 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-10-16 15:19 - 2013-10-20 10:38 - 00000000 ____D C:\ProgramData\Adobe 2013-10-16 15:18 - 2013-10-16 18:01 - 00000000 ____D C:\Users\Portitor\AppData\Local\Adobe 2013-10-16 15:17 - 2013-10-20 18:35 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-16 15:17 - 2013-10-20 18:27 - 00001052 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-16 15:17 - 2013-10-16 20:22 - 00004048 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-10-16 15:17 - 2013-10-16 20:22 - 00003796 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-10-16 15:17 - 2013-10-16 15:18 - 00000000 ____D C:\Users\Portitor\AppData\Local\Google 2013-10-16 15:17 - 2013-10-16 15:17 - 00000000 ____D C:\Users\Portitor\AppData\Local\Apps\2.0 2013-10-16 15:17 - 2013-10-16 15:17 - 00000000 ____D C:\Program Files (x86)\Google 2013-10-16 15:16 - 2013-10-16 15:17 - 00000000 ____D C:\Users\Portitor\AppData\Local\Deployment 2013-10-16 15:16 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2013-10-16 15:16 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-10-16 15:16 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll 2013-10-16 15:16 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll 2013-10-16 15:16 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-10-16 15:16 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-10-16 15:16 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2013-10-16 15:16 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2013-10-16 15:16 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2013-10-16 15:16 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2013-10-16 15:16 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2013-10-16 15:16 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2013-10-16 15:16 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2013-10-16 15:16 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2013-10-16 15:16 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2013-10-16 15:16 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2013-10-16 15:16 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2013-10-16 15:16 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2013-10-16 15:16 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2013-10-16 15:16 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-10-16 15:16 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll 2013-10-16 15:16 - 2013-07-12 12:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys 2013-10-16 15:16 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys 2013-10-16 15:16 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2013-10-16 15:16 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2013-10-16 15:16 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll 2013-10-16 15:16 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2013-10-16 15:16 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll 2013-10-16 15:16 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2013-10-16 15:16 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2013-10-16 15:16 - 2013-07-03 06:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys 2013-10-16 15:16 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2013-10-16 15:16 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys 2013-10-16 15:16 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2013-10-16 15:16 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2013-10-16 15:16 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2013-10-16 15:16 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2013-10-16 15:16 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2013-10-16 15:16 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2013-10-16 15:16 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2013-10-16 15:16 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2013-10-16 15:16 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2013-10-16 15:16 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2013-10-16 15:16 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2013-10-16 15:15 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2013-10-16 15:15 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2013-10-16 15:15 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2013-10-16 15:14 - 2013-09-04 14:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2013-10-16 15:14 - 2013-09-04 14:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2013-10-16 15:14 - 2013-09-04 14:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2013-10-16 15:14 - 2013-09-04 14:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2013-10-16 15:14 - 2013-09-04 14:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys 2013-10-16 15:14 - 2013-09-04 14:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys 2013-10-16 15:14 - 2013-09-04 14:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys 2013-10-16 15:09 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2013-10-16 15:09 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2013-10-16 15:09 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2013-10-16 15:09 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2013-10-16 15:09 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2013-10-16 15:09 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2013-10-16 15:09 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2013-10-16 15:09 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2013-10-16 15:09 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2013-10-16 15:08 - 2013-10-16 16:27 - 00000000 ____D C:\Users\Portitor\Documents\Outlook Files 2013-10-16 14:59 - 2013-10-16 14:59 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2013-10-16 14:58 - 2013-10-17 14:27 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-10-16 14:58 - 2013-10-16 16:12 - 00000000 ____D C:\Users\Portitor\AppData\Local\Microsoft Help 2013-10-16 14:58 - 2013-10-16 15:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2013-10-16 14:56 - 2013-10-16 14:56 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes 2013-10-16 14:54 - 2013-10-16 14:54 - 00280784 _____ C:\Windows\Minidump\101613-34959-01.dmp 2013-10-16 14:46 - 2013-10-16 16:27 - 00084504 _____ C:\Users\Portitor\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-16 14:46 - 2013-10-16 14:46 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\Intel Corporation 2013-10-16 14:43 - 2011-11-15 12:24 - 00313960 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUVStor.sys 2013-10-16 14:42 - 2013-10-16 14:42 - 00000000 ____D C:\ProgramData\Intel 2013-10-16 14:42 - 2013-10-16 14:42 - 00000000 ____D C:\Program Files\Intel 2013-10-16 14:42 - 2012-02-21 22:10 - 00015128 ____R C:\Windows\system32\Drivers\IntelMEFWVer.dll 2013-10-16 14:41 - 2013-10-16 15:55 - 00764746 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-10-16 14:39 - 2013-10-16 14:39 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\InstallShield 2013-10-16 14:39 - 2011-11-29 19:40 - 00568600 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys 2013-10-16 14:37 - 2013-10-16 14:37 - 00000000 ____D C:\Users\Portitor\Documents\Bluetooth Exchange Folder 2013-10-16 14:37 - 2013-10-16 14:37 - 00000000 ____D C:\Users\Portitor\AppData\Local\Broadcom 2013-10-16 14:37 - 2012-07-02 22:05 - 00598328 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwampfl.sys 2013-10-16 14:36 - 2012-05-02 00:18 - 00184144 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys 2013-10-16 14:36 - 2012-04-01 22:27 - 00163368 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\bcbtums.sys 2013-10-16 14:36 - 2012-03-06 05:29 - 00210984 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys 2013-10-16 14:36 - 2012-03-06 05:29 - 00021544 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys 2013-10-16 14:36 - 2011-09-17 18:38 - 00039976 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwl2cap.sys 2013-10-16 14:36 - 2011-07-21 00:28 - 00043633 _____ C:\Windows\system32\Drivers\BCM20702A1_001.002.014.0187.0194.hex 2013-10-16 14:35 - 2013-10-16 14:35 - 00000000 ____D C:\Program Files\Lenovo 2013-10-16 14:34 - 2013-10-16 14:34 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf 2013-10-16 14:34 - 2013-10-16 14:34 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf 2013-10-16 14:34 - 2013-10-16 14:34 - 00000000 ____D C:\Program Files\Synaptics 2013-10-16 14:34 - 2012-03-26 12:31 - 00727312 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll 2013-10-16 14:34 - 2012-03-26 12:31 - 00428304 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys 2013-10-16 14:34 - 2012-03-26 12:31 - 00396560 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll 2013-10-16 14:34 - 2012-03-26 12:31 - 00282896 _____ (Synaptics Incorporated) C:\Windows\system32\SynCtrl.dll 2013-10-16 14:34 - 2012-03-26 12:31 - 00229648 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll 2013-10-16 14:34 - 2012-03-26 12:31 - 00228624 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCtrl.dll 2013-10-16 14:34 - 2012-03-26 12:31 - 00113936 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll 2013-10-16 14:34 - 2012-03-26 12:31 - 00068880 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPEnhPS.dll 2013-10-16 14:34 - 2011-09-14 12:11 - 01048576 _____ C:\Windows\system32\syndata.bin 2013-10-16 14:33 - 2013-10-16 19:13 - 00014080 _____ C:\Windows\DPINST.LOG 2013-10-16 14:33 - 2013-10-16 14:33 - 00001318 _____ C:\Windows\Synaptics.log 2013-10-16 14:33 - 2012-03-26 12:31 - 00027408 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys 2013-10-16 14:33 - 2009-08-07 03:49 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll 2013-10-16 14:32 - 2013-10-16 18:49 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-10-16 14:32 - 2013-10-16 14:32 - 00000000 ____D C:\Windows\SysWOW64\Atheros_L1e 2013-10-16 14:32 - 2012-03-02 12:49 - 00104048 _____ (Qualcomm Atheros Co., Ltd.) C:\Windows\system32\Drivers\L1C62x64.sys 2013-10-16 14:31 - 2013-10-16 14:31 - 00000000 ____D C:\Program Files (x86)\Dolby Advanced Audio v2 2013-10-16 14:30 - 2013-10-16 14:30 - 00000000 ____D C:\Program Files\CONEXANT 2013-10-16 14:30 - 2012-02-20 10:28 - 01575552 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64AP58.dll 2013-10-16 14:30 - 2012-02-07 04:23 - 00567936 _____ (Conexant Systems, Inc.) C:\Windows\system32\UCI64A87.dll 2013-10-16 14:30 - 2012-01-31 07:17 - 01601152 _____ (Conexant Systems Inc.) C:\Windows\system32\Drivers\CHDRT64.sys 2013-10-16 14:30 - 2011-12-15 07:16 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\EEP64A.dll 2013-10-16 14:30 - 2011-12-15 07:16 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\EED64A.dll 2013-10-16 14:30 - 2011-12-15 07:16 - 00137056 _____ (Dolby Laboratories) C:\Windows\system32\EEL64A.dll 2013-10-16 14:30 - 2011-12-15 07:16 - 00120160 _____ (Dolby Laboratories) C:\Windows\system32\EEA64A.dll 2013-10-16 14:30 - 2011-12-15 07:16 - 00075104 _____ (Dolby Laboratories) C:\Windows\system32\EEG64A.dll 2013-10-16 14:30 - 2011-01-18 05:35 - 00030893 _____ C:\Windows\system32\Drivers\Mixer.ini 2013-10-16 14:30 - 2010-11-23 09:30 - 00050304 _____ (Conexant Systems Inc.) C:\Windows\system32\CxPageMaster64.dll 2013-10-16 14:30 - 2010-07-13 04:08 - 00024704 _____ (Conexant Systems, Inc.) C:\Windows\system32\CXHDMI64.dll 2013-10-16 14:29 - 2013-10-16 14:29 - 00000000 ____D C:\Program Files\Common Files\Intel 2013-10-16 14:29 - 2012-12-14 02:42 - 11049472 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumd32.dll 2013-10-16 14:29 - 2012-12-14 02:42 - 09007616 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll 2013-10-16 14:29 - 2012-12-14 02:42 - 00110592 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll 2013-10-16 14:29 - 2012-12-14 02:42 - 00064000 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll 2013-10-16 14:29 - 2012-02-17 19:35 - 00090112 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v2656.dll 2013-10-16 14:29 - 2012-02-17 19:27 - 00963912 _____ C:\Windows\SysWOW64\igkrng600.bin 2013-10-16 14:29 - 2012-02-17 19:27 - 00963912 _____ C:\Windows\system32\igkrng600.bin 2013-10-16 14:29 - 2012-02-17 19:27 - 00261208 _____ C:\Windows\SysWOW64\igfcg600m.bin 2013-10-16 14:29 - 2012-02-17 19:27 - 00261208 _____ C:\Windows\system32\igfcg600m.bin 2013-10-16 14:29 - 2012-02-17 19:27 - 00145804 _____ C:\Windows\SysWOW64\igcompkrng600.bin 2013-10-16 14:29 - 2012-02-17 19:27 - 00145804 _____ C:\Windows\system32\igcompkrng600.bin 2013-10-16 14:29 - 2012-02-17 18:21 - 01981696 _____ C:\Windows\system32\iglhxa64.cpa 2013-10-16 14:29 - 2012-02-17 18:21 - 00524800 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll 2013-10-16 14:29 - 2012-02-17 18:21 - 00519680 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll 2013-10-16 14:29 - 2012-02-17 18:21 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll 2013-10-16 14:29 - 2012-02-17 18:21 - 00059425 _____ C:\Windows\system32\iglhxo64.vp 2013-10-16 14:29 - 2012-02-17 18:21 - 00059398 _____ C:\Windows\system32\iglhxg64.vp 2013-10-16 14:29 - 2012-02-17 18:21 - 00059230 _____ C:\Windows\system32\iglhxc64.vp 2013-10-16 14:29 - 2012-02-17 18:21 - 00059104 _____ C:\Windows\system32\iglhxc64_dev.vp 2013-10-16 14:29 - 2012-02-17 18:21 - 00058796 _____ C:\Windows\system32\iglhxg64_dev.vp 2013-10-16 14:29 - 2012-02-17 18:21 - 00058109 _____ C:\Windows\system32\iglhxo64_dev.vp 2013-10-16 14:29 - 2011-12-26 04:07 - 00086016 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll 2013-10-16 14:29 - 2011-12-26 04:06 - 00017920 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2013-10-16 14:29 - 2011-12-26 04:02 - 00120832 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll 2013-10-16 14:29 - 2011-12-26 04:02 - 00020992 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2013-10-16 14:29 - 2011-12-06 13:23 - 00331264 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2013-10-16 14:29 - 2011-12-06 13:22 - 00014848 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll 2013-10-16 14:27 - 2013-10-20 13:45 - 00000000 ____D C:\Windows\Minidump 2013-10-16 14:27 - 2013-10-20 13:44 - 436101362 _____ C:\Windows\MEMORY.DMP 2013-10-16 14:27 - 2013-10-16 14:27 - 00272248 _____ C:\Windows\Minidump\101613-18782-01.dmp 2013-10-16 14:26 - 2012-05-21 09:25 - 00789824 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys 2013-10-16 14:24 - 2013-10-16 15:27 - 00000000 ____D C:\Program Files (x86)\Intel 2013-10-16 14:24 - 2013-10-16 14:28 - 00000000 ____D C:\Intel 2013-10-16 14:24 - 2011-12-06 09:55 - 00053248 ____R (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2013-10-16 14:22 - 2013-10-16 19:11 - 00000000 ____D C:\Users\Portitor\AppData\Local\VirtualStore 2013-10-16 14:22 - 2013-10-16 18:01 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\Adobe 2013-10-16 14:22 - 2013-10-16 14:22 - 00001413 _____ C:\Users\Portitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-16 14:22 - 2013-10-16 14:22 - 00000000 ___RD C:\Users\Portitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-10-16 14:22 - 2013-10-16 14:22 - 00000000 ___RD C:\Users\Portitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-10-16 14:20 - 2013-10-16 19:10 - 00000000 ____D C:\Users\Portitor 2013-10-16 14:20 - 2013-10-16 14:20 - 00000020 ___SH C:\Users\Portitor\ntuser.ini 2013-10-16 14:20 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\Portitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-10-16 14:20 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\Portitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-10-16 14:19 - 2013-10-16 14:19 - 00000000 __SHD C:\Recovery 2013-10-16 14:19 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2013-10-16 14:19 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2013-10-16 14:16 - 2013-10-20 18:21 - 01174649 _____ C:\Windows\WindowsUpdate.log 2013-10-16 14:16 - 2013-10-16 14:16 - 00001355 _____ C:\Windows\TSSysprep.log 2013-10-16 14:15 - 2013-10-16 14:15 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf ==================== One Month Modified Files and Folders ======= 2013-10-20 18:37 - 2013-10-20 18:37 - 01954548 _____ (Farbar) C:\Users\Portitor\Downloads\FRST64.exe 2013-10-20 18:37 - 2013-10-20 18:37 - 00000000 ____D C:\FRST 2013-10-20 18:35 - 2013-10-16 15:17 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-20 18:35 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-10-20 18:35 - 2009-07-14 06:51 - 00026968 _____ C:\Windows\setupact.log 2013-10-20 18:33 - 2013-10-16 19:20 - 00000000 ____D C:\Users\Portitor\Desktop\zarządzanie 2013-10-20 18:32 - 2013-10-16 19:06 - 00000072 _____ C:\Users\Public\LMDebug.log 2013-10-20 18:27 - 2013-10-16 15:17 - 00001052 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-20 18:25 - 2009-07-14 06:45 - 00026768 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-10-20 18:25 - 2009-07-14 06:45 - 00026768 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-10-20 18:22 - 2013-10-16 16:00 - 00737964 _____ C:\Windows\system32\perfh015.dat 2013-10-20 18:22 - 2013-10-16 16:00 - 00154620 _____ C:\Windows\system32\perfc015.dat 2013-10-20 18:22 - 2009-07-14 07:13 - 01662556 _____ C:\Windows\system32\PerfStringBackup.INI 2013-10-20 18:21 - 2013-10-16 14:16 - 01174649 _____ C:\Windows\WindowsUpdate.log 2013-10-20 13:45 - 2013-10-20 13:45 - 00280808 _____ C:\Windows\Minidump\102013-14929-01.dmp 2013-10-20 13:45 - 2013-10-16 14:27 - 00000000 ____D C:\Windows\Minidump 2013-10-20 13:44 - 2013-10-16 14:27 - 436101362 _____ C:\Windows\MEMORY.DMP 2013-10-20 10:38 - 2013-10-16 15:19 - 00000000 ____D C:\ProgramData\Adobe 2013-10-19 12:52 - 2013-10-16 16:30 - 00000000 ____D C:\Users\Portitor\AppData\Local\Windows Live 2013-10-19 11:48 - 2013-10-19 11:48 - 00280808 _____ C:\Windows\Minidump\101913-15631-01.dmp 2013-10-19 10:57 - 2013-10-19 10:57 - 00280808 _____ C:\Windows\Minidump\101913-14336-01.dmp 2013-10-18 19:59 - 2013-10-16 19:49 - 00000000 ____D C:\Users\Portitor\Desktop\noble i kieres 2013-10-18 16:33 - 2013-10-18 16:32 - 00000000 ____D C:\Users\Portitor\Desktop\konf. ERC 2013-10-17 20:44 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-10-17 18:50 - 2013-10-16 19:43 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-10-17 18:50 - 2013-10-16 19:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-10-17 14:27 - 2013-10-16 14:58 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-10-17 14:23 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System 2013-10-17 14:23 - 2009-07-14 04:34 - 00000478 _____ C:\Windows\win.ini 2013-10-17 11:25 - 2013-10-17 11:25 - 00280808 _____ C:\Windows\Minidump\101713-24850-01.dmp 2013-10-17 05:58 - 2013-10-17 05:58 - 00280808 _____ C:\Windows\Minidump\101713-27534-01.dmp 2013-10-17 00:12 - 2009-07-14 07:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2013-10-17 00:12 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2013-10-16 22:09 - 2013-10-16 22:09 - 00000040 _____ C:\Windows\SynInst.log 2013-10-16 22:09 - 2013-10-16 22:09 - 00000000 ____D C:\ProgramData\Synaptics 2013-10-16 20:23 - 2013-10-16 20:12 - 00002820 _____ C:\Users\Portitor\Documents\stopka z logo.htm 2013-10-16 20:22 - 2013-10-16 15:17 - 00004048 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-10-16 20:22 - 2013-10-16 15:17 - 00003796 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-10-16 20:11 - 2013-10-16 16:34 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\Windows Live Writer 2013-10-16 19:59 - 2013-10-16 19:57 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\XnView 2013-10-16 19:57 - 2013-10-16 19:57 - 00000000 ____D C:\Program Files (x86)\XnView 2013-10-16 19:56 - 2013-10-16 19:56 - 15211760 _____ (Gougelet Pierre-e ) C:\Users\Portitor\Downloads\XnView-win-full.exe 2013-10-16 19:56 - 2013-10-16 19:56 - 00685248 _____ C:\Users\Portitor\Downloads\XnView(12934).exe 2013-10-16 19:34 - 2013-10-16 18:36 - 00000000 ____D C:\Windows\pss 2013-10-16 19:32 - 2010-11-21 05:47 - 00017366 _____ C:\Windows\PFRO.log 2013-10-16 19:25 - 2013-10-16 19:25 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2013-10-16 19:25 - 2013-10-16 19:25 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2013-10-16 19:20 - 2013-10-16 19:20 - 00000000 ____D C:\Users\Portitor\Desktop\priv 2013-10-16 19:17 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp 2013-10-16 19:16 - 2013-10-16 19:16 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\PDF Architect 2013-10-16 19:16 - 2013-10-16 19:15 - 00000000 ____D C:\Program Files (x86)\PDFCreator 2013-10-16 19:15 - 2013-10-16 19:15 - 17810632 _____ (pdfforge GmbH) C:\Users\Portitor\Downloads\PDFCreator-1_7_1_setup.exe 2013-10-16 19:15 - 2013-10-16 19:15 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\pdfforge 2013-10-16 19:14 - 2013-10-16 19:14 - 00685248 _____ C:\Users\Portitor\Downloads\PDFCreator(12691).exe 2013-10-16 19:13 - 2013-10-16 14:33 - 00014080 _____ C:\Windows\DPINST.LOG 2013-10-16 19:11 - 2013-10-16 14:22 - 00000000 ____D C:\Users\Portitor\AppData\Local\VirtualStore 2013-10-16 19:10 - 2013-10-16 14:20 - 00000000 ____D C:\Users\Portitor 2013-10-16 19:07 - 2013-10-16 19:07 - 00000000 ____D C:\Program Files (x86)\SamsungPrinterLiveUpdate 2013-10-16 19:07 - 2013-10-16 18:52 - 00000040 _____ C:\Autoconfig.ini 2013-10-16 19:07 - 2013-10-16 18:52 - 00000000 ____D C:\Program Files (x86)\Samsung 2013-10-16 19:04 - 2013-10-16 19:04 - 17735680 _____ C:\Users\Portitor\Downloads\ML-1670_PrinD.exe 2013-10-16 19:04 - 2013-10-16 19:04 - 00000000 ____D C:\Users\Portitor\Documents\ML-1670_PrinD 2013-10-16 18:52 - 2013-10-16 18:52 - 00000000 ____D C:\ProgramData\Samsung 2013-10-16 18:51 - 2013-10-16 18:51 - 21335600 _____ C:\Users\Portitor\Downloads\SamsungUniversalPrintDriver2.exe 2013-10-16 18:50 - 2013-10-16 18:50 - 08926536 _____ (Hamrick Software) C:\Users\Portitor\Downloads\vuex6493.exe 2013-10-16 18:49 - 2013-10-16 18:49 - 00000097 _____ C:\Windows\SCNDRVU.INI 2013-10-16 18:49 - 2013-10-16 18:49 - 00000000 ____D C:\Program Files (x86)\ScannerU 2013-10-16 18:49 - 2013-10-16 14:32 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-10-16 18:47 - 2013-10-16 18:47 - 00003262 _____ C:\Windows\System32\Tasks\{6B09EEF0-EAD9-4261-A72F-A8517FECC9BB} 2013-10-16 18:47 - 2013-10-16 18:47 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\WinRAR 2013-10-16 18:47 - 2013-10-16 18:47 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-10-16 18:47 - 2013-10-16 18:46 - 00000000 ____D C:\Program Files\WinRAR 2013-10-16 18:46 - 2013-10-16 18:46 - 13645151 _____ C:\Users\Portitor\Downloads\st12_24driver_v3401.zip 2013-10-16 18:46 - 2013-10-16 18:46 - 02046232 _____ C:\Users\Portitor\Downloads\winrar-x64-500pl.exe 2013-10-16 18:42 - 2013-10-16 18:42 - 01650657 _____ (http://www.arduosoft.com ) C:\Users\Portitor\Downloads\ArduoPdfMerger_1.0.exe 2013-10-16 18:42 - 2013-10-16 18:42 - 00000984 _____ C:\Users\Public\Desktop\ArduoPdfMerger.lnk 2013-10-16 18:42 - 2013-10-16 18:42 - 00000000 ____D C:\Windows\SysWOW64\no 2013-10-16 18:42 - 2013-10-16 18:42 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\PdfMerger 2013-10-16 18:42 - 2013-10-16 18:42 - 00000000 ____D C:\Program Files (x86)\ArduoPdfMerger 2013-10-16 18:31 - 2013-10-16 18:31 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2013-10-16 18:31 - 2013-10-16 18:31 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2013-10-16 18:31 - 2013-10-16 18:31 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys 2013-10-16 18:31 - 2013-10-16 18:31 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\AVAST Software 2013-10-16 18:30 - 2013-10-16 18:30 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-16 18:30 - 2013-10-16 18:30 - 00000000 ____D C:\Program Files\AVAST Software 2013-10-16 18:01 - 2013-10-16 15:18 - 00000000 ____D C:\Users\Portitor\AppData\Local\Adobe 2013-10-16 18:01 - 2013-10-16 14:22 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\Adobe 2013-10-16 16:34 - 2013-10-16 16:34 - 00000000 ____D C:\Users\Portitor\AppData\Local\Windows Live Writer 2013-10-16 16:33 - 2013-10-16 16:32 - 00000000 ____D C:\Program Files (x86)\Windows Live 2013-10-16 16:32 - 2013-10-16 16:32 - 00000000 ____D C:\Program Files\Windows Live 2013-10-16 16:32 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2013-10-16 16:30 - 2013-10-16 16:30 - 01245680 _____ (Microsoft Corporation) C:\Users\Portitor\Downloads\wlsetup-web (1).exe 2013-10-16 16:29 - 2009-07-14 06:45 - 00347624 _____ C:\Windows\system32\FNTCACHE.DAT 2013-10-16 16:27 - 2013-10-16 16:27 - 01245680 _____ (Microsoft Corporation) C:\Users\Portitor\Downloads\wlsetup-web.exe 2013-10-16 16:27 - 2013-10-16 15:08 - 00000000 ____D C:\Users\Portitor\Documents\Outlook Files 2013-10-16 16:27 - 2013-10-16 14:46 - 00084504 _____ C:\Users\Portitor\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-16 16:26 - 2013-10-16 16:03 - 85269544 _____ (AVAST Software) C:\Users\Portitor\Downloads\avast_free_antivirus_setup.exe 2013-10-16 16:12 - 2013-10-16 14:58 - 00000000 ____D C:\Users\Portitor\AppData\Local\Microsoft Help 2013-10-16 16:09 - 2013-10-16 16:09 - 00151552 _____ C:\Windows\KMService.exe 2013-10-16 16:09 - 2013-10-16 16:09 - 00008192 _____ C:\Windows\SysWOW64\srvany.exe 2013-10-16 16:07 - 2013-10-16 16:07 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2013-10-16 16:06 - 2013-10-16 16:06 - 00000000 ____D C:\Windows\PCHEALTH 2013-10-16 16:06 - 2013-10-16 16:06 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services 2013-10-16 16:06 - 2013-10-16 16:06 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-10-16 16:06 - 2013-10-16 16:05 - 00000000 ____D C:\Program Files\Microsoft Office 2013-10-16 16:05 - 2013-10-16 16:05 - 00000000 __RHD C:\MSOCache 2013-10-16 16:05 - 2013-10-16 16:05 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2013-10-16 16:05 - 2013-10-16 16:05 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2013-10-16 16:05 - 2011-04-12 10:28 - 00000000 ____D C:\Windows\ShellNew 2013-10-16 16:04 - 2013-10-16 16:04 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-10-16 15:57 - 2013-10-16 15:57 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2013-10-16 15:57 - 2013-10-16 15:57 - 00000000 ____D C:\Windows\SysWOW64\pl 2013-10-16 15:57 - 2013-10-16 15:57 - 00000000 ____D C:\Windows\system32\pl 2013-10-16 15:57 - 2011-04-12 10:28 - 00000000 ____D C:\Program Files\Windows Journal 2013-10-16 15:57 - 2011-04-12 10:17 - 00000000 ____D C:\Windows\SysWOW64\winrm 2013-10-16 15:57 - 2011-04-12 10:17 - 00000000 ____D C:\Windows\SysWOW64\WCN 2013-10-16 15:57 - 2011-04-12 10:17 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2013-10-16 15:57 - 2011-04-12 10:17 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2013-10-16 15:57 - 2011-04-12 10:17 - 00000000 ____D C:\Windows\system32\winrm 2013-10-16 15:57 - 2011-04-12 10:17 - 00000000 ____D C:\Windows\system32\WCN 2013-10-16 15:57 - 2011-04-12 10:17 - 00000000 ____D C:\Windows\system32\slmgr 2013-10-16 15:57 - 2011-04-12 10:17 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2013-10-16 15:57 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar 2013-10-16 15:57 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2013-10-16 15:57 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender 2013-10-16 15:57 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker 2013-10-16 15:57 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar 2013-10-16 15:57 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2013-10-16 15:57 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\MUI 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\com 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\MUI 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\migwiz 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\com 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-10-16 15:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\IME 2013-10-16 15:55 - 2013-10-16 14:41 - 00764746 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-10-16 15:46 - 2013-10-16 16:00 - 00337158 _____ C:\Windows\system32\perfi015.dat 2013-10-16 15:46 - 2013-10-16 16:00 - 00038710 _____ C:\Windows\system32\perfd015.dat 2013-10-16 15:29 - 2013-10-16 15:28 - 00000000 ____D C:\Windows\system32\MRT 2013-10-16 15:27 - 2013-10-16 14:24 - 00000000 ____D C:\Program Files (x86)\Intel 2013-10-16 15:18 - 2013-10-16 15:17 - 00000000 ____D C:\Users\Portitor\AppData\Local\Google 2013-10-16 15:17 - 2013-10-16 15:17 - 00000000 ____D C:\Users\Portitor\AppData\Local\Apps\2.0 2013-10-16 15:17 - 2013-10-16 15:17 - 00000000 ____D C:\Program Files (x86)\Google 2013-10-16 15:17 - 2013-10-16 15:16 - 00000000 ____D C:\Users\Portitor\AppData\Local\Deployment 2013-10-16 15:13 - 2013-10-16 14:58 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2013-10-16 15:07 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2013-10-16 14:59 - 2013-10-16 14:59 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2013-10-16 14:56 - 2013-10-16 14:56 - 00000000 ____D C:\Program Files (x86)\Elaborate Bytes 2013-10-16 14:54 - 2013-10-16 14:54 - 00280784 _____ C:\Windows\Minidump\101613-34959-01.dmp 2013-10-16 14:46 - 2013-10-16 14:46 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\Intel Corporation 2013-10-16 14:42 - 2013-10-16 14:42 - 00000000 ____D C:\ProgramData\Intel 2013-10-16 14:42 - 2013-10-16 14:42 - 00000000 ____D C:\Program Files\Intel 2013-10-16 14:39 - 2013-10-16 14:39 - 00000000 ____D C:\Users\Portitor\AppData\Roaming\InstallShield 2013-10-16 14:37 - 2013-10-16 14:37 - 00000000 ____D C:\Users\Portitor\Documents\Bluetooth Exchange Folder 2013-10-16 14:37 - 2013-10-16 14:37 - 00000000 ____D C:\Users\Portitor\AppData\Local\Broadcom 2013-10-16 14:35 - 2013-10-16 14:35 - 00000000 ____D C:\Program Files\Lenovo 2013-10-16 14:34 - 2013-10-16 14:34 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf 2013-10-16 14:34 - 2013-10-16 14:34 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf 2013-10-16 14:34 - 2013-10-16 14:34 - 00000000 ____D C:\Program Files\Synaptics 2013-10-16 14:33 - 2013-10-16 14:33 - 00001318 _____ C:\Windows\Synaptics.log 2013-10-16 14:32 - 2013-10-16 14:32 - 00000000 ____D C:\Windows\SysWOW64\Atheros_L1e 2013-10-16 14:31 - 2013-10-16 14:31 - 00000000 ____D C:\Program Files (x86)\Dolby Advanced Audio v2 2013-10-16 14:30 - 2013-10-16 14:30 - 00000000 ____D C:\Program Files\CONEXANT 2013-10-16 14:29 - 2013-10-16 14:29 - 00000000 ____D C:\Program Files\Common Files\Intel 2013-10-16 14:28 - 2013-10-16 14:24 - 00000000 ____D C:\Intel 2013-10-16 14:27 - 2013-10-16 14:27 - 00272248 _____ C:\Windows\Minidump\101613-18782-01.dmp 2013-10-16 14:22 - 2013-10-16 14:22 - 00001413 _____ C:\Users\Portitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-16 14:22 - 2013-10-16 14:22 - 00000000 ___RD C:\Users\Portitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-10-16 14:22 - 2013-10-16 14:22 - 00000000 ___RD C:\Users\Portitor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-10-16 14:20 - 2013-10-17 00:12 - 00000000 ____D C:\Windows\Panther 2013-10-16 14:20 - 2013-10-16 14:20 - 00000020 ___SH C:\Users\Portitor\ntuser.ini 2013-10-16 14:20 - 2009-07-14 06:45 - 00000000 ____D C:\Windows\Setup 2013-10-16 14:19 - 2013-10-16 14:19 - 00000000 __SHD C:\Recovery 2013-10-16 14:19 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore 2013-10-16 14:16 - 2013-10-16 14:16 - 00001355 _____ C:\Windows\TSSysprep.log 2013-10-16 14:16 - 2009-07-14 06:46 - 00002790 _____ C:\Windows\DtcInstall.log 2013-10-16 14:15 - 2013-10-16 14:15 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-10-16 14:13 - 2011-04-12 10:28 - 00000000 ____D C:\Windows\CSC 2013-10-11 11:33 - 2013-10-16 19:21 - 00034304 _____ C:\Users\Portitor\Desktop\Delegates Transport - Regional Career Development Workshop 2013.xls 2013-09-26 01:46 - 2013-10-16 15:28 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-09-23 01:28 - 2013-10-16 15:41 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-09-23 01:28 - 2013-10-16 15:41 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-09-23 01:27 - 2013-10-16 15:41 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-09-23 00:55 - 2013-10-16 15:41 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-09-23 00:55 - 2013-10-16 15:41 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-09-23 00:55 - 2013-10-16 15:41 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-09-23 00:54 - 2013-10-16 15:41 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-09-23 00:54 - 2013-10-16 15:41 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-09-23 00:54 - 2013-10-16 15:41 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-09-23 00:54 - 2013-10-16 15:41 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-09-23 00:54 - 2013-10-16 15:41 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-09-23 00:54 - 2013-10-16 15:41 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-09-23 00:54 - 2013-10-16 15:41 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-09-23 00:54 - 2013-10-16 15:41 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-09-23 00:54 - 2013-10-16 15:41 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-09-23 00:54 - 2013-10-16 15:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-09-23 00:54 - 2013-10-16 15:41 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-09-21 05:38 - 2013-10-16 15:41 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-09-21 05:30 - 2013-10-16 15:41 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-09-21 04:48 - 2013-10-16 15:41 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-09-21 04:39 - 2013-10-16 15:41 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe Some content of TEMP: ==================== C:\Users\Portitor\AppData\Local\Temp\ose00000.exe C:\Users\Portitor\AppData\Local\Temp\ose00001.exe C:\Users\Portitor\AppData\Local\Temp\vsdel.exe C:\Users\Portitor\AppData\Local\Temp\_isBEFA.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-10-17 20:31 ==================== End Of Log ============================