Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-01-2014 01 Ran by Dominik (administrator) on XXX on 02-01-2014 13:25:42 Running from C:\Users\Dominik\Downloads Microsoft Windows 7 Professional (X86) OS Language: Polish Internet Explorer Version 9 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (AMD) C:\Windows\System32\atiesrxx.exe (SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SbieSvc.exe (SurfRight B.V.) C:\Program Files\HitmanPro.Alert\hmpalert.exe (ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUS) C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe (CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe (CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe () C:\ProgramData\DatacardService\HWDeviceService.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe () C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe (Secunia) C:\Program Files\Secunia\PSI\psia.exe () C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe (CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe (Microsoft Corporation) C:\Windows\System32\vds.exe (AMD) C:\Windows\System32\atieclxx.exe (Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe (ASUS) C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUS) C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (ASUS) C:\Program Files\ASUS\Wireless Console 3\wcourier.exe (Microsoft Corporation) C:\Program Files\EMET\EMET_notifier.exe (CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe (CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe (Ashampoo Development GmbH & Co. KG) C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTuner.exe (ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe (QFX Software Corporation) C:\Program Files\KeyScrambler\KeyScrambler.exe (SANDBOXIE L.T.D) C:\Program Files\Sandboxie\SbieCtrl.exe (ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (Secunia) C:\Program Files\Secunia\PSI\psi_tray.exe (ASUS) C:\Program Files\ASUS\ATK Package\ATK Hotkey\WDC.exe (Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe (Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe (Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe (Microsoft Corporation) C:\Windows\System32\wuauclt.exe (OldTimer Tools) C:\Users\Dominik\Downloads\OTL.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [ATKOSD2] - C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5716608 2011-07-21] (ASUS) HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS) HKLM\...\Run: [HControlUser] - C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM\...\Run: [Wireless Console 3] - C:\Program Files\ASUS\Wireless Console 3\wcourier.exe [2317312 2011-09-13] (ASUS) HKLM\...\Run: [EMET Notifier] - C:\Program Files\EMET\EMET_notifier.exe [152152 2012-05-09] (Microsoft Corporation) HKLM\...\Run: [EaseUs Watch] - C:\Program Files\EaseUS\Todo Backup\bin\EuWatch.exe [70728 2013-09-04] (CHENGDU YIWO Tech Development Co., Ltd) HKLM\...\Run: [EaseUs Tray] - C:\Program Files\EaseUS\Todo Backup\bin\TrayNotify.exe [1372232 2013-09-04] (CHENGDU YIWO Tech Development Co., Ltd) HKLM\...\Run: [Ashampoo WinOptimizer Live-Tuner] - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTuner.exe [2949480 2013-10-08] (Ashampoo Development GmbH & Co. KG) HKLM\...\Run: [KeyScrambler] - C:\Program Files\KeyScrambler\KeyScrambler.exe [508144 2013-11-14] (QFX Software Corporation) HKLM\...\Policies\Explorer: [NoViewContextMenu] 0 HKCU\...\Run: [CCleaner] - C:\Program Files\CCleaner\CCleaner.exe [4324120 2013-11-22] (Piriform Ltd) HKCU\...\Run: [SandboxieControl] - C:\Program Files\Sandboxie\SbieCtrl.exe [545552 2012-12-16] (SANDBOXIE L.T.D) HKCU\...\Policies\Explorer: [NoCDBurning] 0 HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 MountPoints2: {82d485ff-730a-11e3-8915-806e6f6e6963} - E:\AutoRun.exe MountPoints2: {f8ec5f9a-7069-11e3-bec5-5404a6e4bb64} - G:\setup.exe HKU\Default\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun HKU\Default User\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO) BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO) BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO) BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.0.254 Tcpip\..\Interfaces\{1454D182-8CC2-40D7-8C46-36CD3963F9C4}: [NameServer]212.2.96.51 212.2.96.52 FireFox: ======== FF ProfilePath: C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\C:\ProgramData\Kaspersky Lab\SafeBrowser\S-1-5-21-272118755-3066965611-1656959378-1000\FireFox FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll () FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.) FF Plugin: @microsoft.com/GENUINE - disabled No File FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\wolnelektury-pl.xml FF HKLM\...\Firefox\Extensions: [url_advisor@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com FF Extension: Dangerous Websites Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com ========================== Services (Whitelisted) ================= R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [291840 2011-11-01] (Advanced Micro Devices, Inc.) R2 ASLDRService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [84536 2009-06-15] (ASUS) R2 ATKGFNEXSrv; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2009-12-15] (ASUS) R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-16] (Kaspersky Lab ZAO) R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [63600 2013-12-17] (CyberGhost S.R.L) R2 EaseUS Agent; C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe [69192 2013-10-11] (CHENGDU YIWO Tech Development Co., Ltd) R2 Guard Agent; C:\Program Files\EaseUS\Todo Backup\bin\GuardAgent.exe [23624 2013-09-04] (CHENGDU YIWO Tech Development Co., Ltd) R2 hmpalertsvc; C:\Program Files\HitmanPro.Alert\hmpalert.exe [1830768 2013-11-28] (SurfRight B.V.) R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] () R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) S2 Mobile Partner. RunOuc; C:\Program Files\Mobile Partner\UpdateDog\ouc.exe [655712 2012-07-25] () R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [85776 2012-12-16] (SANDBOXIE L.T.D) R2 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1228504 2013-11-04] (Secunia) S2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [660184 2013-11-04] (Secunia) S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) R2 WO_LiveService; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerService.exe [885096 2013-10-08] () U3 楗敳潂瑯獁楳瑳湡tĴ"; 㩃停潲牧浡䘠汩獥坜獩履楗敳䌠牡⁥㘳尵潂瑯楔敭攮數 [x] ==================== Drivers (Whitelisted) ==================== R3 AiCharger; C:\Windows\System32\DRIVERS\AiCharger.sys [14720 2011-10-14] (ASUSTek Computer Inc.) R3 amdhub30; C:\Windows\System32\DRIVERS\amdhub30.sys [76928 2011-07-15] (Advanced Micro Devices, INC.) R3 amdxhc; C:\Windows\System32\DRIVERS\amdxhc.sys [168576 2011-07-15] (Advanced Micro Devices, INC.) R2 ASMMAP; C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [13880 2009-07-02] (ASUS) R1 ATKWMIACPIIO; C:\Program Files\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi.sys [14464 2011-09-07] (ASUS) R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG) R0 EUBAKUP; C:\Windows\System32\drivers\eubakup.sys [51784 2013-09-04] (CHENGDU YIWO Tech Development Co., Ltd) R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [41544 2013-09-04] () R1 EUDSKACS; C:\Windows\system32\drivers\eudskacs.sys [15944 2013-09-04] (CHENGDU YIWO Tech Development Co., Ltd) R1 EUFDDISK; C:\Windows\system32\drivers\EuFdDisk.sys [186952 2013-09-04] (CHENGDU YIWO Tech Development Co., Ltd) R2 hmpalert; C:\Windows\system32\drivers\hmpalert.sys [14376 2013-12-29] () R3 KeyScrambler; C:\Windows\System32\drivers\keyscrambler.sys [209016 2013-05-31] (QFX Software Corporation) R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2014-01-01] (Kaspersky Lab ZAO) S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [94304 2013-06-08] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [574560 2014-01-01] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2013-10-16] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [25696 2013-10-16] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [25696 2013-10-16] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [14432 2013-04-12] (Kaspersky Lab ZAO) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [45024 2013-05-14] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [144992 2014-01-01] (Kaspersky Lab ZAO) R2 LiveTunerPM; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 10\LiveTunerProcessMonitor32.sys [12696 2011-03-08] () R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation) S3 MBAMSwissArmy; C:\Windows\system32\drivers\mbamswissarmy.sys [40776 2014-01-02] (Malwarebytes Corporation) R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-11-04] (Secunia) R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [157776 2012-12-16] (SANDBOXIE L.T.D) S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [182680 2013-10-28] (DEVGURU Co., LTD.(www.devguru.co.kr)) R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project) U3 DfSdkS; ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-01-02 13:25 - 2014-01-02 13:26 - 00013579 ____C C:\Users\Dominik\Downloads\FRST.txt 2014-01-02 13:24 - 2014-01-02 13:24 - 00000000 ___DC C:\FRST 2014-01-02 13:21 - 2014-01-02 13:22 - 01064481 ____C (Farbar) C:\Users\Dominik\Downloads\FRST.exe 2014-01-02 13:21 - 2014-01-02 13:21 - 00602112 ____C (OldTimer Tools) C:\Users\Dominik\Downloads\OTL.exe 2014-01-02 13:12 - 2014-01-02 13:12 - 00280204 ____C C:\Users\Dominik\Downloads\WindowsUpdateDiagnostic.diagcab 2014-01-02 13:00 - 2014-01-02 13:15 - 00134898 ____C C:\Windows\WindowsUpdate.log 2014-01-02 13:00 - 2014-01-02 13:00 - 00084120 ____C C:\Users\Dominik\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-02 09:51 - 2014-01-02 09:51 - 00000000 ___DC C:\Windows\system32\SPReview 2014-01-02 08:46 - 2014-01-02 08:46 - 00040776 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys 2014-01-02 08:27 - 2014-01-02 08:27 - 00689664 ____C C:\Users\Dominik\Downloads\MicrosoftFixit50202.msi 2014-01-02 08:05 - 2014-01-02 08:09 - 183244764 ____C C:\Users\Dominik\Downloads\Windows6.1-KB947821-v31-x86.msu 2014-01-02 06:17 - 2014-01-02 06:33 - 563934504 ____C (Microsoft Corporation) C:\Users\Dominik\Downloads\windows6.1-KB976932-X86.exe 2014-01-02 06:04 - 2014-01-02 06:04 - 01233962 ____C C:\Users\Dominik\Downloads\AdwCleaner.exe 2014-01-01 21:33 - 2014-01-01 21:33 - 00000000 ___DC C:\Windows\system32\%Report% 2014-01-01 20:40 - 2014-01-01 20:40 - 00000000 __RDC C:\Sandbox 2014-01-01 20:25 - 2014-01-01 20:25 - 00002770 ____C C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-01 18:33 - 2014-01-01 18:33 - 00000000 ___DC C:\Windows\system32\%DataRoot% 2014-01-01 17:35 - 2014-01-01 17:35 - 00000000 ___HC C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf 2014-01-01 17:35 - 2014-01-01 17:35 - 00000000 ___DC C:\Users\Public\Documents\NativeFus_Log 2014-01-01 17:35 - 2014-01-01 17:35 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Samsung 2014-01-01 17:34 - 2014-01-01 17:34 - 00000000 ___DC C:\Users\Dominik\Documents\samsung 2014-01-01 17:34 - 2014-01-01 17:34 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Samsung 2014-01-01 17:32 - 2013-08-21 05:31 - 00581192 ____C (Microsoft Corporation) C:\Windows\system32\WinUSBCoInstaller.dll 2014-01-01 17:32 - 2013-08-21 05:31 - 00182680 ____C (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys 2014-01-01 17:32 - 2013-08-21 05:31 - 00084248 ____C (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys 2014-01-01 17:31 - 2009-08-24 21:08 - 00028160 ____C (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe 2014-01-01 17:30 - 2013-10-30 12:13 - 04659712 ____C (Dmitry Streblechenko) C:\Windows\system32\Redemption.dll 2014-01-01 17:29 - 2013-10-30 12:06 - 00821824 ____C (Devguru Co., Ltd.) C:\Windows\system32\dgderapi.dll 2014-01-01 17:28 - 2014-01-01 17:32 - 00000000 ___DC C:\Program Files\Samsung 2014-01-01 17:28 - 2014-01-01 17:31 - 00000000 ___DC C:\ProgramData\Samsung 2014-01-01 17:16 - 2014-01-01 17:16 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Downloaded Installations 2014-01-01 16:47 - 2014-01-01 16:54 - 00000000 ___DC C:\Windows\system32\MRT 2014-01-01 16:46 - 2013-12-01 14:42 - 88123800 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-01-01 15:50 - 2014-01-01 15:50 - 00001421 ____C C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-01-01 12:53 - 2014-01-01 12:53 - 12344320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2014-01-01 12:53 - 2014-01-01 12:53 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-01-01 12:53 - 2014-01-01 12:53 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-01-01 12:53 - 2014-01-01 12:53 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2014-01-01 12:53 - 2014-01-01 12:53 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2014-01-01 12:53 - 2014-01-01 12:53 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2014-01-01 12:50 - 2014-01-01 12:50 - 03181568 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 01619456 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2014-01-01 12:50 - 2014-01-01 12:50 - 01495040 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 01170944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 01074176 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00801792 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00739840 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00728448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-01-01 12:50 - 2014-01-01 12:50 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00219008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2014-01-01 12:50 - 2014-01-01 12:50 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2014-01-01 12:47 - 2014-01-01 12:47 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe 2014-01-01 08:51 - 2014-01-01 16:34 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2014-01-01 08:44 - 2013-09-04 11:23 - 00186952 ____C (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\EuFdDisk.sys 2014-01-01 08:44 - 2013-09-04 11:23 - 00051784 ____C (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eubakup.sys 2014-01-01 08:44 - 2013-09-04 11:23 - 00015944 ____C (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\Drivers\eudskacs.sys 2014-01-01 08:43 - 2013-09-04 11:23 - 00041544 ____C C:\Windows\system32\Drivers\EUBKMON.sys 2014-01-01 08:38 - 2014-01-01 08:39 - 00000000 ___DC C:\Program Files\EaseUS 2014-01-01 08:38 - 2014-01-01 08:38 - 00000000 ___DC C:\My Backups 2014-01-01 08:38 - 2013-09-04 11:33 - 00019528 ____C (CHENGDU YIWO Tech Development Co., Ltd) C:\Windows\system32\fbnative.exe 2014-01-01 08:14 - 2014-01-01 08:23 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Skype 2014-01-01 08:13 - 2014-01-01 08:14 - 00000000 ___DC C:\ProgramData\Skype 2014-01-01 08:13 - 2014-01-01 08:13 - 00000000 __RDC C:\Program Files\Skype 2014-01-01 08:13 - 2014-01-01 08:13 - 00000000 ___DC C:\Program Files\Common Files\Skype 2014-01-01 08:03 - 2014-01-01 08:03 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Macromedia 2014-01-01 08:01 - 2014-01-01 08:01 - 00000000 ___DC C:\Windows\system32\Adobe 2014-01-01 07:58 - 2014-01-01 18:29 - 00000930 ____C C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-01-01 07:57 - 2014-01-01 07:57 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-01-01 07:57 - 2014-01-01 07:57 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-01-01 07:57 - 2014-01-01 07:57 - 00000000 ___DC C:\Windows\system32\Macromed 2014-01-01 07:50 - 2014-01-01 07:50 - 00000000 ___DC C:\ProgramData\Adobe 2014-01-01 07:49 - 2014-01-01 07:49 - 00000000 ___DC C:\Users\Default\AppData\Roaming\Macromedia 2014-01-01 07:49 - 2014-01-01 07:49 - 00000000 ___DC C:\Users\Default User\AppData\Roaming\Macromedia 2014-01-01 07:49 - 2014-01-01 07:49 - 00000000 ___DC C:\Program Files\Common Files\Adobe AIR 2014-01-01 07:49 - 2014-01-01 07:49 - 00000000 ___DC C:\Program Files\Adobe 2014-01-01 07:48 - 2014-01-01 07:58 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Adobe 2014-01-01 07:48 - 2014-01-01 07:50 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Adobe 2014-01-01 07:48 - 2014-01-01 07:48 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Macromedia 2014-01-01 07:40 - 2014-01-01 07:41 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-01-01 07:40 - 2014-01-01 07:41 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-01-01 07:40 - 2014-01-01 07:41 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-01-01 07:40 - 2014-01-01 07:41 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2014-01-01 07:39 - 2014-01-01 13:50 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-01-01 07:39 - 2014-01-01 13:50 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-01-01 07:39 - 2014-01-01 13:50 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-01-01 07:38 - 2014-01-01 07:41 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-01-01 07:38 - 2014-01-01 07:41 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-01-01 07:34 - 2014-01-01 07:34 - 00003304 ____N C:\bootsqm.dat 2013-12-31 09:23 - 2013-12-31 09:23 - 00000000 ___DC C:\490e4df0ee375de1e1b5 2013-12-31 09:21 - 2013-12-23 16:35 - 00000023 ____C C:\Users\Dominik\Downloads\kluczKIS.txt 2013-12-30 20:44 - 2013-12-30 20:44 - 00000000 ___DC C:\863b02a49232c91d52c232ec46f35f 2013-12-30 10:40 - 2013-12-30 10:41 - 00000000 ___DC C:\797ad5104fd76c9aa392 2013-12-30 09:31 - 2013-12-30 09:31 - 00000000 ___DC C:\89081a8d959e72ed59d7 2013-12-29 18:30 - 2013-12-29 18:30 - 00000000 ___HC C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-12-29 18:19 - 2014-01-02 07:08 - 01549212 ____C C:\Windows\system32\PerfStringBackup.TMP 2013-12-29 17:58 - 2013-12-29 17:58 - 00000000 ___DC C:\Users\Dominik\Downloads\tdsskiller 2013-12-29 17:57 - 2013-12-23 12:34 - 00000042 ____C C:\Users\Dominik\Downloads\DNS.txt 2013-12-29 17:56 - 2014-01-02 07:22 - 00000000 ___DC C:\Users\Dominik\Downloads\Programy 2013-12-29 17:36 - 2011-10-07 03:53 - 02205696 ____C (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athr.sys 2013-12-29 17:14 - 2013-12-29 17:14 - 00000000 ___DC C:\Program Files\MozBackup 2013-12-29 14:30 - 2013-12-29 14:30 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Mozilla 2013-12-29 13:37 - 2013-12-29 14:30 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Mozilla 2013-12-29 13:37 - 2013-12-29 13:37 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Thunderbird 2013-12-29 13:37 - 2013-12-29 13:37 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Thunderbird 2013-12-29 13:31 - 2013-12-29 18:12 - 00000000 ___DC C:\Program Files\Mozilla Thunderbird 2013-12-29 13:31 - 2013-12-29 18:12 - 00000000 ___DC C:\Program Files\Mozilla Firefox 2013-12-29 13:31 - 2013-12-29 13:31 - 00001105 ____C C:\Users\Public\Desktop\Firefox.lnk 2013-12-29 13:31 - 2013-12-29 13:31 - 00000000 ___DC C:\ProgramData\Mozilla 2013-12-29 13:31 - 2013-12-29 13:31 - 00000000 ___DC C:\Program Files\Mozilla Maintenance Service 2013-12-29 13:04 - 2013-12-29 13:04 - 00000000 ___DC C:\Windows\system32\EventProviders 2013-12-29 12:30 - 2013-12-29 12:30 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\QFX Software 2013-12-29 12:30 - 2013-12-29 12:30 - 00000000 ___DC C:\ProgramData\QFX Software 2013-12-29 12:15 - 2014-01-02 13:00 - 00000000 ___DC C:\ProgramData\Kaspersky Lab 2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ___DC C:\Windows\ELAMBKUP 2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ___DC C:\Program Files\Windows Sidebar 2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ___DC C:\Program Files\Kaspersky Lab 2013-12-29 12:14 - 2014-01-01 07:47 - 00574560 ____C (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys 2013-12-29 12:14 - 2013-06-08 20:18 - 00094304 ____C (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys 2013-12-29 12:10 - 2013-12-29 12:10 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\PhrozenSoft 2013-12-29 12:10 - 2013-12-29 12:10 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhrozenSoft VirusTotal Uploader 2013-12-29 11:59 - 2013-12-29 11:59 - 00000000 ___DC C:\ProgramData\Mobile Partner 2013-12-29 11:58 - 2014-01-01 18:38 - 00000000 ___DC C:\ProgramData\DatacardService 2013-12-29 11:58 - 2013-12-29 11:59 - 00000000 ___DC C:\Program Files\Mobile Partner 2013-12-29 11:58 - 2013-12-29 11:58 - 00000000 ___HC C:\Windows\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf 2013-12-29 11:58 - 2012-04-26 04:02 - 00377856 ____C (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbwwan.sys 2013-12-29 11:58 - 2012-04-23 02:55 - 00202752 ____C (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juwwanecm.sys 2013-12-29 11:58 - 2012-04-23 02:53 - 00095616 ____C (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys 2013-12-29 11:58 - 2012-04-23 02:53 - 00076544 ____C (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys 2013-12-29 11:58 - 2012-04-23 02:53 - 00070016 ____C (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys 2013-12-29 11:58 - 2012-04-23 02:53 - 00027520 ____C (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys 2013-12-29 11:58 - 2011-12-31 02:20 - 00199168 ____C (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys 2013-12-29 11:58 - 2011-08-16 09:40 - 01112288 ____C (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01007.dll 2013-12-29 11:58 - 2011-08-16 09:40 - 01112288 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\WdfCoInstaller01007.dll 2013-12-29 11:58 - 2010-10-08 09:55 - 00025856 ____C (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys 2013-12-29 11:58 - 2010-09-26 11:09 - 00019200 ____C (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwupgrade.sys 2013-12-29 11:58 - 2010-08-06 00:42 - 00861696 ____C (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys 2013-12-29 11:58 - 2010-07-27 02:52 - 00102784 ____C (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys 2013-12-29 11:58 - 2010-03-20 05:06 - 00011136 ____C (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys 2013-12-29 11:53 - 2013-12-29 11:53 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Ashampoo Photo Commander 10 2013-12-29 11:43 - 2013-12-30 15:26 - 00009728 ____C C:\Users\Dominik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-12-29 11:40 - 2013-12-29 11:40 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Ashampoo 2013-12-29 11:39 - 2014-01-01 17:31 - 00000000 ___DC C:\ProgramData\Ashampoo 2013-12-29 11:39 - 2013-12-29 17:45 - 00000000 ___DC C:\Program Files\Ashampoo 2013-12-29 11:39 - 2013-12-29 11:39 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Secunia PSI 2013-12-29 11:39 - 2013-12-29 11:39 - 00000000 ___DC C:\Users\Dominik\AppData\Local\ashampoo 2013-12-29 11:39 - 2013-12-29 11:39 - 00000000 ___DC C:\Program Files\Secunia 2013-12-29 11:37 - 2013-12-30 11:47 - 00001660 ____C C:\Windows\Sandboxie.ini 2013-12-29 11:36 - 2013-12-29 11:36 - 00000000 ___DC C:\Program Files\Sandboxie 2013-12-29 11:35 - 2013-12-29 11:35 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Malwarebytes 2013-12-29 11:35 - 2013-12-29 11:35 - 00000000 ___DC C:\ProgramData\Malwarebytes 2013-12-29 11:35 - 2013-12-29 11:35 - 00000000 ___DC C:\Program Files\Malwarebytes' Anti-Malware 2013-12-29 11:35 - 2013-04-04 14:50 - 00022856 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-12-29 11:33 - 2013-12-29 11:33 - 00000000 ___DC C:\Program Files\CCleaner 2013-12-29 11:31 - 2014-01-01 17:43 - 00000000 ___DC C:\Users\Dominik\AppData\Local\CyberGhost 2013-12-29 11:30 - 2014-01-01 17:46 - 00000000 ___DC C:\Program Files\CyberGhost 5 2013-12-29 11:30 - 2013-12-29 11:31 - 00000000 ___DC C:\Program Files\TAP-Windows 2013-12-29 11:29 - 2014-01-01 17:58 - 00135464 ____C (SurfRight B.V.) C:\Windows\system32\LnkProtect.dll 2013-12-29 11:29 - 2013-12-29 11:29 - 00000000 ___DC C:\Program Files\HitmanPro 2013-12-29 11:28 - 2014-01-01 17:58 - 00000000 ___DC C:\ProgramData\HitmanPro 2013-12-29 11:27 - 2013-12-29 11:27 - 00000000 ___DC C:\Program Files\VS Revo Group 2013-12-29 11:27 - 2013-12-29 11:27 - 00000000 ___DC C:\Program Files\KeyScrambler 2013-12-29 11:27 - 2013-05-31 15:53 - 00209016 ____C (QFX Software Corporation) C:\Windows\system32\Drivers\keyscrambler.sys 2013-12-29 11:25 - 2013-12-29 11:25 - 00000000 ___DC C:\Program Files\EMET 2013-12-29 11:24 - 2013-12-29 11:33 - 00000000 ___DC C:\ProgramData\Auslogics 2013-12-29 11:24 - 2013-12-29 11:32 - 00000000 ___DC C:\Program Files\Auslogics 2013-12-29 11:22 - 2013-12-29 11:22 - 00564312 ____C (SurfRight) C:\Windows\system32\hmpalert.dll 2013-12-29 11:22 - 2013-12-29 11:22 - 00014376 ____C C:\Windows\system32\Drivers\hmpalert.sys 2013-12-29 11:22 - 2013-12-29 11:22 - 00000000 ___DC C:\Program Files\HitmanPro.Alert 2013-12-29 11:17 - 2013-12-30 12:07 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Wise Care 365 2013-12-29 11:16 - 2013-12-29 11:16 - 00000000 ___DC C:\Program Files\Wise 2013-12-29 11:14 - 2013-12-29 11:14 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Canneverbe Limited 2013-12-29 11:14 - 2013-12-29 11:14 - 00000000 ___DC C:\ProgramData\Canneverbe Limited 2013-12-29 11:14 - 2013-12-29 11:14 - 00000000 ___DC C:\Program Files\CDBurnerXP 2013-12-29 11:10 - 2013-12-29 11:10 - 00000000 ___DC C:\ProgramData\Sony 2013-12-29 11:10 - 2013-12-29 11:10 - 00000000 ___DC C:\Program Files\Sony 2013-12-29 11:09 - 2013-12-29 11:09 - 00000000 ___DC C:\Program Files\7-Zip 2013-12-29 11:08 - 2013-12-29 11:08 - 00000000 ___DC C:\Program Files\Elaborate Bytes 2013-12-29 10:29 - 2013-12-29 10:29 - 00000000 ___DC C:\Program Files\Microsoft Works 2013-12-29 10:28 - 2013-12-29 10:28 - 00000000 ___DC C:\Windows\PCHEALTH 2013-12-29 10:28 - 2013-12-29 10:28 - 00000000 ___DC C:\Program Files\Microsoft Visual Studio 2013-12-29 10:28 - 2013-12-29 10:28 - 00000000 ___DC C:\Program Files\Common Files\DESIGNER 2013-12-29 10:27 - 2013-12-29 10:27 - 00000000 ___DC C:\Windows\SHELLNEW 2013-12-29 10:26 - 2013-12-29 10:30 - 00000000 ___DC C:\ProgramData\Microsoft Help 2013-12-29 10:26 - 2013-12-29 10:28 - 00000000 ___DC C:\Program Files\Microsoft Office 2013-12-29 10:26 - 2013-12-29 10:26 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Microsoft Help 2013-12-29 10:25 - 2013-12-29 10:25 - 00000000 _RHDC C:\MSOCache 2013-12-29 10:19 - 2013-12-29 10:19 - 00000000 ___DC C:\ProgramData\USBChargerPlus 2013-12-29 10:07 - 2013-12-29 10:07 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center 2013-12-29 10:07 - 2013-12-29 10:07 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\ATI 2013-12-29 10:07 - 2013-12-29 10:07 - 00000000 ___DC C:\Users\Dominik\AppData\Local\ATI 2013-12-29 10:07 - 2013-12-29 10:07 - 00000000 ___DC C:\Users\Dominik\AppData\Local\AMD 2013-12-29 10:07 - 2013-12-29 10:07 - 00000000 ___DC C:\ProgramData\ATI 2013-12-29 10:01 - 2013-12-29 10:01 - 00000000 ___DC C:\Program Files\AMD 2013-12-29 10:00 - 2013-12-29 10:02 - 00000000 ___DC C:\Program Files\ASUS 2013-12-29 09:57 - 2013-12-29 09:57 - 00000000 ____C C:\Windows\ativpsrm.bin 2013-12-29 09:56 - 2013-12-29 09:56 - 00000000 ___DC C:\Program Files\Microsoft Games 2013-12-29 09:56 - 2013-12-29 09:56 - 00000000 ___DC C:\Program Files\Common Files\ATI Technologies 2013-12-29 09:56 - 2013-12-29 09:56 - 00000000 ___DC C:\Program Files\AMD APP 2013-12-29 09:55 - 2013-12-29 09:55 - 00000000 ___DC C:\ProgramData\AMD 2013-12-29 09:55 - 2010-02-18 09:18 - 00037944 ____C (Advanced Micro Devices) C:\Windows\system32\Drivers\amdiox86.sys 2013-12-29 09:54 - 2013-12-29 09:55 - 00000000 ___DC C:\Program Files\ATI Technologies 2013-12-29 09:54 - 2013-12-29 09:54 - 00000000 ___DC C:\Program Files\ATI 2013-12-29 09:54 - 2011-11-02 04:03 - 00198664 ____C C:\Windows\system32\atiapfxx.blb 2013-12-29 09:54 - 2011-11-02 03:58 - 00466944 ____C (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll 2013-12-29 09:54 - 2011-11-02 03:10 - 00052736 ____C (AMD) C:\Windows\system32\coinst.dll 2013-12-29 09:54 - 2011-10-17 18:40 - 00085520 ____C (Advanced Micro Devices) C:\Windows\system32\Drivers\AtihdW73.sys 2013-12-29 09:54 - 2011-09-22 08:56 - 00035707 ____C C:\Windows\atiogl.xml 2013-12-29 09:54 - 2011-08-17 21:44 - 00041600 ___RC (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys 2013-12-29 09:54 - 2011-07-15 21:53 - 00168576 ____C (Advanced Micro Devices, INC.) C:\Windows\system32\Drivers\amdxhc.sys 2013-12-29 09:54 - 2011-07-15 21:53 - 00076928 ____C (Advanced Micro Devices, INC.) C:\Windows\system32\Drivers\amdhub30.sys 2013-12-29 09:54 - 2011-03-17 18:51 - 00003929 ____C C:\Windows\system32\atipblag.dat 2013-12-29 09:51 - 2014-01-01 17:29 - 00000000 __HDC C:\Program Files\InstallShield Installation Information 2013-12-29 09:51 - 2013-12-29 09:52 - 00000189 ____C C:\setup.log 2013-12-29 09:51 - 2013-12-29 09:51 - 00000000 ___DC C:\Program Files\Realtek 2013-12-29 09:51 - 2011-06-10 06:34 - 00100896 ____C (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll 2013-12-29 09:51 - 2011-03-21 14:22 - 00362600 ____C (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys 2013-12-29 09:51 - 2011-03-21 14:22 - 00100896 ____C (Realtek Semiconductor Corporation) C:\Windows\system32\SETACC.tmp 2013-12-29 09:49 - 2013-12-29 10:28 - 00000000 ___DC C:\Program Files\Microsoft.NET 2013-12-29 09:47 - 2013-12-29 09:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2013-12-29 09:47 - 2013-12-29 09:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll 2013-12-29 09:47 - 2013-12-29 09:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe 2013-12-29 09:47 - 2013-12-29 09:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll 2013-12-29 09:47 - 2013-12-29 09:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll 2013-12-29 09:43 - 2013-12-29 09:43 - 00000000 ___DC C:\Windows\pss 2013-12-29 09:21 - 2013-12-29 09:21 - 01523412 ___HC C:\Windows\system32\PerfStringBackup.INI 2013-12-29 09:19 - 2013-12-29 09:19 - 00000020 __SHC C:\Users\Dominik\ntuser.ini 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Public\Documents\Moje wideo 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Public\Documents\Moje obrazy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Public\Documents\Moja muzyka 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Ustawienia lokalne 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Szablony 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Moje dokumenty 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Menu Start 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Documents\Moje wideo 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Documents\Moje obrazy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Documents\Moja muzyka 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\AppData\Local\Historia 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\AppData\Local\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Ustawienia lokalne 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Szablony 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Moje dokumenty 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Menu Start 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Documents\Moje wideo 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Documents\Moje obrazy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Documents\Moja muzyka 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historia 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\Documents\Moje wideo 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\Documents\Moje obrazy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\Documents\Moja muzyka 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historia 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Ulubione 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Szablony 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Pulpit 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Menu Start 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Dokumenty 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDC C:\Recovery 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 ___DC C:\Users\Dominik\AppData\Local\VirtualStore 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 ___DC C:\Users\Dominik 2013-12-29 09:19 - 2009-07-14 05:42 - 00000000 __RDC C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-12-29 09:19 - 2009-07-14 05:37 - 00000000 __RDC C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-12-29 09:08 - 2013-12-29 09:08 - 00000000 ___HC C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-12-29 09:05 - 2014-01-01 15:51 - 00000000 __HDC C:\Windows\Panther ==================== One Month Modified Files and Folders ======= 2014-01-02 13:26 - 2014-01-02 13:25 - 00013579 ____C C:\Users\Dominik\Downloads\FRST.txt 2014-01-02 13:24 - 2014-01-02 13:24 - 00000000 ___DC C:\FRST 2014-01-02 13:22 - 2014-01-02 13:21 - 01064481 ____C (Farbar) C:\Users\Dominik\Downloads\FRST.exe 2014-01-02 13:21 - 2014-01-02 13:21 - 00602112 ____C (OldTimer Tools) C:\Users\Dominik\Downloads\OTL.exe 2014-01-02 13:15 - 2014-01-02 13:00 - 00134898 ____C C:\Windows\WindowsUpdate.log 2014-01-02 13:12 - 2014-01-02 13:12 - 00280204 ____C C:\Users\Dominik\Downloads\WindowsUpdateDiagnostic.diagcab 2014-01-02 13:00 - 2014-01-02 13:00 - 00084120 ____C C:\Users\Dominik\AppData\Local\GDIPFONTCACHEV1.DAT 2014-01-02 13:00 - 2013-12-29 12:15 - 00000000 ___DC C:\ProgramData\Kaspersky Lab 2014-01-02 12:59 - 2009-07-14 05:53 - 00000006 ___HC C:\Windows\Tasks\SA.DAT 2014-01-02 12:53 - 2009-07-14 05:34 - 00009600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-01-02 12:53 - 2009-07-14 05:34 - 00009600 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-01-02 09:51 - 2014-01-02 09:51 - 00000000 ___DC C:\Windows\system32\SPReview 2014-01-02 08:46 - 2014-01-02 08:46 - 00040776 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys 2014-01-02 08:27 - 2014-01-02 08:27 - 00689664 ____C C:\Users\Dominik\Downloads\MicrosoftFixit50202.msi 2014-01-02 08:09 - 2014-01-02 08:05 - 183244764 ____C C:\Users\Dominik\Downloads\Windows6.1-KB947821-v31-x86.msu 2014-01-02 07:22 - 2013-12-29 17:56 - 00000000 ___DC C:\Users\Dominik\Downloads\Programy 2014-01-02 07:08 - 2013-12-29 18:19 - 01549212 ____C C:\Windows\system32\PerfStringBackup.TMP 2014-01-02 06:33 - 2014-01-02 06:17 - 563934504 ____C (Microsoft Corporation) C:\Users\Dominik\Downloads\windows6.1-KB976932-X86.exe 2014-01-02 06:04 - 2014-01-02 06:04 - 01233962 ____C C:\Users\Dominik\Downloads\AdwCleaner.exe 2014-01-02 06:04 - 2009-07-14 03:37 - 00000000 __HDC C:\Windows\system32\catroot2.bak 2014-01-01 21:33 - 2014-01-01 21:33 - 00000000 ___DC C:\Windows\system32\%Report% 2014-01-01 20:40 - 2014-01-01 20:40 - 00000000 __RDC C:\Sandbox 2014-01-01 20:25 - 2014-01-01 20:25 - 00002770 ____C C:\Windows\Tasks\SCHEDLGU.TXT 2014-01-01 20:17 - 2009-07-14 03:37 - 00000000 __HDC C:\Windows\Microsoft.NET 2014-01-01 18:38 - 2013-12-29 11:58 - 00000000 ___DC C:\ProgramData\DatacardService 2014-01-01 18:33 - 2014-01-01 18:33 - 00000000 ___DC C:\Windows\system32\%DataRoot% 2014-01-01 18:29 - 2014-01-01 07:58 - 00000930 ____C C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-01-01 18:20 - 2009-07-14 03:37 - 00000000 __HDC C:\Windows\system32\NDF 2014-01-01 17:58 - 2013-12-29 11:29 - 00135464 ____C (SurfRight B.V.) C:\Windows\system32\LnkProtect.dll 2014-01-01 17:58 - 2013-12-29 11:28 - 00000000 ___DC C:\ProgramData\HitmanPro 2014-01-01 17:46 - 2013-12-29 11:30 - 00000000 ___DC C:\Program Files\CyberGhost 5 2014-01-01 17:43 - 2013-12-29 11:31 - 00000000 ___DC C:\Users\Dominik\AppData\Local\CyberGhost 2014-01-01 17:35 - 2014-01-01 17:35 - 00000000 ___HC C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01007.Wdf 2014-01-01 17:35 - 2014-01-01 17:35 - 00000000 ___DC C:\Users\Public\Documents\NativeFus_Log 2014-01-01 17:35 - 2014-01-01 17:35 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Samsung 2014-01-01 17:34 - 2014-01-01 17:34 - 00000000 ___DC C:\Users\Dominik\Documents\samsung 2014-01-01 17:34 - 2014-01-01 17:34 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Samsung 2014-01-01 17:32 - 2014-01-01 17:28 - 00000000 ___DC C:\Program Files\Samsung 2014-01-01 17:31 - 2014-01-01 17:28 - 00000000 ___DC C:\ProgramData\Samsung 2014-01-01 17:31 - 2013-12-29 11:39 - 00000000 ___DC C:\ProgramData\Ashampoo 2014-01-01 17:29 - 2013-12-29 09:51 - 00000000 __HDC C:\Program Files\InstallShield Installation Information 2014-01-01 17:16 - 2014-01-01 17:16 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Downloaded Installations 2014-01-01 16:54 - 2014-01-01 16:47 - 00000000 ___DC C:\Windows\system32\MRT 2014-01-01 16:34 - 2014-01-01 08:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2014-01-01 15:51 - 2013-12-29 09:05 - 00000000 __HDC C:\Windows\Panther 2014-01-01 15:50 - 2014-01-01 15:50 - 00001421 ____C C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2014-01-01 13:51 - 2009-07-14 03:37 - 00000000 __HDC C:\Windows\system32\pl-PL 2014-01-01 13:50 - 2014-01-01 07:39 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-01-01 13:50 - 2014-01-01 07:39 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-01-01 13:50 - 2014-01-01 07:39 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 12344320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2014-01-01 12:53 - 2014-01-01 12:53 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-01-01 12:53 - 2014-01-01 12:53 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-01-01 12:53 - 2014-01-01 12:53 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2014-01-01 12:53 - 2014-01-01 12:53 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2014-01-01 12:53 - 2014-01-01 12:53 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2014-01-01 12:53 - 2014-01-01 12:53 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2014-01-01 12:53 - 2014-01-01 12:53 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2014-01-01 12:50 - 2014-01-01 12:50 - 03181568 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 01619456 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2014-01-01 12:50 - 2014-01-01 12:50 - 01495040 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 01170944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 01074176 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00801792 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00739840 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00728448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-01-01 12:50 - 2014-01-01 12:50 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00283648 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00219008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2014-01-01 12:50 - 2014-01-01 12:50 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll 2014-01-01 12:50 - 2014-01-01 12:50 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2014-01-01 12:47 - 2014-01-01 12:47 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe 2014-01-01 08:39 - 2014-01-01 08:38 - 00000000 ___DC C:\Program Files\EaseUS 2014-01-01 08:38 - 2014-01-01 08:38 - 00000000 ___DC C:\My Backups 2014-01-01 08:23 - 2014-01-01 08:14 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Skype 2014-01-01 08:14 - 2014-01-01 08:13 - 00000000 ___DC C:\ProgramData\Skype 2014-01-01 08:13 - 2014-01-01 08:13 - 00000000 __RDC C:\Program Files\Skype 2014-01-01 08:13 - 2014-01-01 08:13 - 00000000 ___DC C:\Program Files\Common Files\Skype 2014-01-01 08:03 - 2014-01-01 08:03 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Macromedia 2014-01-01 08:01 - 2014-01-01 08:01 - 00000000 ___DC C:\Windows\system32\Adobe 2014-01-01 07:58 - 2014-01-01 07:48 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Adobe 2014-01-01 07:57 - 2014-01-01 07:57 - 00692616 ____C (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-01-01 07:57 - 2014-01-01 07:57 - 00071048 ____C (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-01-01 07:57 - 2014-01-01 07:57 - 00000000 ___DC C:\Windows\system32\Macromed 2014-01-01 07:50 - 2014-01-01 07:50 - 00000000 ___DC C:\ProgramData\Adobe 2014-01-01 07:50 - 2014-01-01 07:48 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Adobe 2014-01-01 07:49 - 2014-01-01 07:49 - 00000000 ___DC C:\Users\Default\AppData\Roaming\Macromedia 2014-01-01 07:49 - 2014-01-01 07:49 - 00000000 ___DC C:\Users\Default User\AppData\Roaming\Macromedia 2014-01-01 07:49 - 2014-01-01 07:49 - 00000000 ___DC C:\Program Files\Common Files\Adobe AIR 2014-01-01 07:49 - 2014-01-01 07:49 - 00000000 ___DC C:\Program Files\Adobe 2014-01-01 07:48 - 2014-01-01 07:48 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Macromedia 2014-01-01 07:47 - 2013-12-29 12:14 - 00574560 ____C (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys 2014-01-01 07:47 - 2013-10-16 02:39 - 00135776 ____C (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys 2014-01-01 07:47 - 2013-06-06 17:38 - 00144992 ____C (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys 2014-01-01 07:41 - 2014-01-01 07:40 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-01-01 07:41 - 2014-01-01 07:40 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-01-01 07:41 - 2014-01-01 07:40 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-01-01 07:41 - 2014-01-01 07:40 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2014-01-01 07:41 - 2014-01-01 07:38 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-01-01 07:41 - 2014-01-01 07:38 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-01-01 07:34 - 2014-01-01 07:34 - 00003304 ____N C:\bootsqm.dat 2013-12-31 09:23 - 2013-12-31 09:23 - 00000000 ___DC C:\490e4df0ee375de1e1b5 2013-12-30 20:44 - 2013-12-30 20:44 - 00000000 ___DC C:\863b02a49232c91d52c232ec46f35f 2013-12-30 15:26 - 2013-12-29 11:43 - 00009728 ____C C:\Users\Dominik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-12-30 12:07 - 2013-12-29 11:17 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Wise Care 365 2013-12-30 11:47 - 2013-12-29 11:37 - 00001660 ____C C:\Windows\Sandboxie.ini 2013-12-30 10:41 - 2013-12-30 10:40 - 00000000 ___DC C:\797ad5104fd76c9aa392 2013-12-30 09:31 - 2013-12-30 09:31 - 00000000 ___DC C:\89081a8d959e72ed59d7 2013-12-29 18:30 - 2013-12-29 18:30 - 00000000 ___HC C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-12-29 18:12 - 2013-12-29 13:31 - 00000000 ___DC C:\Program Files\Mozilla Thunderbird 2013-12-29 18:12 - 2013-12-29 13:31 - 00000000 ___DC C:\Program Files\Mozilla Firefox 2013-12-29 18:12 - 2009-07-14 03:37 - 00000000 __HDC C:\Windows\Help 2013-12-29 17:58 - 2013-12-29 17:58 - 00000000 ___DC C:\Users\Dominik\Downloads\tdsskiller 2013-12-29 17:45 - 2013-12-29 11:39 - 00000000 ___DC C:\Program Files\Ashampoo 2013-12-29 17:14 - 2013-12-29 17:14 - 00000000 ___DC C:\Program Files\MozBackup 2013-12-29 15:50 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache 2013-12-29 14:30 - 2013-12-29 14:30 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Mozilla 2013-12-29 14:30 - 2013-12-29 13:37 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Mozilla 2013-12-29 13:37 - 2013-12-29 13:37 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Thunderbird 2013-12-29 13:37 - 2013-12-29 13:37 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Thunderbird 2013-12-29 13:31 - 2013-12-29 13:31 - 00001105 ____C C:\Users\Public\Desktop\Firefox.lnk 2013-12-29 13:31 - 2013-12-29 13:31 - 00000000 ___DC C:\ProgramData\Mozilla 2013-12-29 13:31 - 2013-12-29 13:31 - 00000000 ___DC C:\Program Files\Mozilla Maintenance Service 2013-12-29 13:04 - 2013-12-29 13:04 - 00000000 ___DC C:\Windows\system32\EventProviders 2013-12-29 12:52 - 2009-07-14 03:03 - 29622272 _____ C:\Windows\system32\config\SOFTWARE.bak 2013-12-29 12:52 - 2009-07-14 03:03 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak 2013-12-29 12:52 - 2009-07-14 03:03 - 00262144 _____ C:\Windows\system32\config\SAM.bak 2013-12-29 12:52 - 2009-07-14 03:03 - 00262144 _____ C:\Windows\system32\config\DEFAULT.bak 2013-12-29 12:30 - 2013-12-29 12:30 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\QFX Software 2013-12-29 12:30 - 2013-12-29 12:30 - 00000000 ___DC C:\ProgramData\QFX Software 2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ___DC C:\Windows\ELAMBKUP 2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ___DC C:\Program Files\Windows Sidebar 2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ___DC C:\Program Files\Kaspersky Lab 2013-12-29 12:10 - 2013-12-29 12:10 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\PhrozenSoft 2013-12-29 12:10 - 2013-12-29 12:10 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhrozenSoft VirusTotal Uploader 2013-12-29 11:59 - 2013-12-29 11:59 - 00000000 ___DC C:\ProgramData\Mobile Partner 2013-12-29 11:59 - 2013-12-29 11:58 - 00000000 ___DC C:\Program Files\Mobile Partner 2013-12-29 11:58 - 2013-12-29 11:58 - 00000000 ___HC C:\Windows\system32\Drivers\Msft_Kernel_ew_jubusenum_01007.Wdf 2013-12-29 11:53 - 2013-12-29 11:53 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Ashampoo Photo Commander 10 2013-12-29 11:40 - 2013-12-29 11:40 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Ashampoo 2013-12-29 11:39 - 2013-12-29 11:39 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Secunia PSI 2013-12-29 11:39 - 2013-12-29 11:39 - 00000000 ___DC C:\Users\Dominik\AppData\Local\ashampoo 2013-12-29 11:39 - 2013-12-29 11:39 - 00000000 ___DC C:\Program Files\Secunia 2013-12-29 11:36 - 2013-12-29 11:36 - 00000000 ___DC C:\Program Files\Sandboxie 2013-12-29 11:35 - 2013-12-29 11:35 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Malwarebytes 2013-12-29 11:35 - 2013-12-29 11:35 - 00000000 ___DC C:\ProgramData\Malwarebytes 2013-12-29 11:35 - 2013-12-29 11:35 - 00000000 ___DC C:\Program Files\Malwarebytes' Anti-Malware 2013-12-29 11:33 - 2013-12-29 11:33 - 00000000 ___DC C:\Program Files\CCleaner 2013-12-29 11:33 - 2013-12-29 11:24 - 00000000 ___DC C:\ProgramData\Auslogics 2013-12-29 11:32 - 2013-12-29 11:24 - 00000000 ___DC C:\Program Files\Auslogics 2013-12-29 11:31 - 2013-12-29 11:30 - 00000000 ___DC C:\Program Files\TAP-Windows 2013-12-29 11:29 - 2013-12-29 11:29 - 00000000 ___DC C:\Program Files\HitmanPro 2013-12-29 11:27 - 2013-12-29 11:27 - 00000000 ___DC C:\Program Files\VS Revo Group 2013-12-29 11:27 - 2013-12-29 11:27 - 00000000 ___DC C:\Program Files\KeyScrambler 2013-12-29 11:25 - 2013-12-29 11:25 - 00000000 ___DC C:\Program Files\EMET 2013-12-29 11:22 - 2013-12-29 11:22 - 00564312 ____C (SurfRight) C:\Windows\system32\hmpalert.dll 2013-12-29 11:22 - 2013-12-29 11:22 - 00014376 ____C C:\Windows\system32\Drivers\hmpalert.sys 2013-12-29 11:22 - 2013-12-29 11:22 - 00000000 ___DC C:\Program Files\HitmanPro.Alert 2013-12-29 11:16 - 2013-12-29 11:16 - 00000000 ___DC C:\Program Files\Wise 2013-12-29 11:14 - 2013-12-29 11:14 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Canneverbe Limited 2013-12-29 11:14 - 2013-12-29 11:14 - 00000000 ___DC C:\ProgramData\Canneverbe Limited 2013-12-29 11:14 - 2013-12-29 11:14 - 00000000 ___DC C:\Program Files\CDBurnerXP 2013-12-29 11:10 - 2013-12-29 11:10 - 00000000 ___DC C:\ProgramData\Sony 2013-12-29 11:10 - 2013-12-29 11:10 - 00000000 ___DC C:\Program Files\Sony 2013-12-29 11:09 - 2013-12-29 11:09 - 00000000 ___DC C:\Program Files\7-Zip 2013-12-29 11:08 - 2013-12-29 11:08 - 00000000 ___DC C:\Program Files\Elaborate Bytes 2013-12-29 10:30 - 2013-12-29 10:26 - 00000000 ___DC C:\ProgramData\Microsoft Help 2013-12-29 10:29 - 2013-12-29 10:29 - 00000000 ___DC C:\Program Files\Microsoft Works 2013-12-29 10:29 - 2009-07-14 03:37 - 00000000 ___DC C:\Program Files\Common Files\microsoft shared 2013-12-29 10:28 - 2013-12-29 10:28 - 00000000 ___DC C:\Windows\PCHEALTH 2013-12-29 10:28 - 2013-12-29 10:28 - 00000000 ___DC C:\Program Files\Microsoft Visual Studio 2013-12-29 10:28 - 2013-12-29 10:28 - 00000000 ___DC C:\Program Files\Common Files\DESIGNER 2013-12-29 10:28 - 2013-12-29 10:26 - 00000000 ___DC C:\Program Files\Microsoft Office 2013-12-29 10:28 - 2013-12-29 09:49 - 00000000 ___DC C:\Program Files\Microsoft.NET 2013-12-29 10:27 - 2013-12-29 10:27 - 00000000 ___DC C:\Windows\SHELLNEW 2013-12-29 10:26 - 2013-12-29 10:26 - 00000000 ___DC C:\Users\Dominik\AppData\Local\Microsoft Help 2013-12-29 10:25 - 2013-12-29 10:25 - 00000000 _RHDC C:\MSOCache 2013-12-29 10:19 - 2013-12-29 10:19 - 00000000 ___DC C:\ProgramData\USBChargerPlus 2013-12-29 10:07 - 2013-12-29 10:07 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center 2013-12-29 10:07 - 2013-12-29 10:07 - 00000000 ___DC C:\Users\Dominik\AppData\Roaming\ATI 2013-12-29 10:07 - 2013-12-29 10:07 - 00000000 ___DC C:\Users\Dominik\AppData\Local\ATI 2013-12-29 10:07 - 2013-12-29 10:07 - 00000000 ___DC C:\Users\Dominik\AppData\Local\AMD 2013-12-29 10:07 - 2013-12-29 10:07 - 00000000 ___DC C:\ProgramData\ATI 2013-12-29 10:02 - 2013-12-29 10:00 - 00000000 ___DC C:\Program Files\ASUS 2013-12-29 10:01 - 2013-12-29 10:01 - 00000000 ___DC C:\Program Files\AMD 2013-12-29 09:57 - 2013-12-29 09:57 - 00000000 ____C C:\Windows\ativpsrm.bin 2013-12-29 09:56 - 2013-12-29 09:56 - 00000000 ___DC C:\Program Files\Microsoft Games 2013-12-29 09:56 - 2013-12-29 09:56 - 00000000 ___DC C:\Program Files\Common Files\ATI Technologies 2013-12-29 09:56 - 2013-12-29 09:56 - 00000000 ___DC C:\Program Files\AMD APP 2013-12-29 09:56 - 2009-07-14 05:52 - 00000000 ___DC C:\Program Files\DVD Maker 2013-12-29 09:56 - 2009-07-14 03:37 - 00000000 __HDC C:\Windows\system32\LogFiles 2013-12-29 09:55 - 2013-12-29 09:55 - 00000000 ___DC C:\ProgramData\AMD 2013-12-29 09:55 - 2013-12-29 09:54 - 00000000 ___DC C:\Program Files\ATI Technologies 2013-12-29 09:54 - 2013-12-29 09:54 - 00000000 ___DC C:\Program Files\ATI 2013-12-29 09:52 - 2013-12-29 09:51 - 00000189 ____C C:\setup.log 2013-12-29 09:51 - 2013-12-29 09:51 - 00000000 ___DC C:\Program Files\Realtek 2013-12-29 09:47 - 2013-12-29 09:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2013-12-29 09:47 - 2013-12-29 09:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll 2013-12-29 09:47 - 2013-12-29 09:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe 2013-12-29 09:47 - 2013-12-29 09:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll 2013-12-29 09:47 - 2013-12-29 09:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll 2013-12-29 09:43 - 2013-12-29 09:43 - 00000000 ___DC C:\Windows\pss 2013-12-29 09:37 - 2009-07-14 05:52 - 00000000 __HDC C:\Windows\system32\restore 2013-12-29 09:37 - 2009-07-14 03:37 - 00000000 __RDC C:\Users\Public 2013-12-29 09:21 - 2013-12-29 09:21 - 01523412 ___HC C:\Windows\system32\PerfStringBackup.INI 2013-12-29 09:21 - 2009-07-14 09:07 - 00687828 ___HC C:\Windows\system32\perfh015.dat 2013-12-29 09:21 - 2009-07-14 09:07 - 00131382 ___HC C:\Windows\system32\perfc015.dat 2013-12-29 09:19 - 2013-12-29 09:19 - 00000020 __SHC C:\Users\Dominik\ntuser.ini 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Public\Documents\Moje wideo 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Public\Documents\Moje obrazy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Public\Documents\Moja muzyka 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Ustawienia lokalne 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Szablony 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Moje dokumenty 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Menu Start 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Documents\Moje wideo 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Documents\Moje obrazy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Documents\Moja muzyka 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\AppData\Local\Historia 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Dominik\AppData\Local\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Ustawienia lokalne 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Szablony 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Moje dokumenty 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Menu Start 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Documents\Moje wideo 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Documents\Moje obrazy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Documents\Moja muzyka 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historia 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\Documents\Moje wideo 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\Documents\Moje obrazy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\Documents\Moja muzyka 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historia 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Ulubione 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Szablony 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Pulpit 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Menu Start 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Dokumenty 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDL C:\ProgramData\Dane aplikacji 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 _SHDC C:\Recovery 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 ___DC C:\Users\Dominik\AppData\Local\VirtualStore 2013-12-29 09:19 - 2013-12-29 09:19 - 00000000 ___DC C:\Users\Dominik 2013-12-29 09:19 - 2009-07-14 03:37 - 00000000 _RHDC C:\Users\Default 2013-12-29 09:19 - 2009-07-14 03:37 - 00000000 __HDC C:\Windows\system32\Recovery 2013-12-29 09:19 - 2009-07-14 03:37 - 00000000 ___DC C:\Program Files\Windows NT 2013-12-29 09:08 - 2013-12-29 09:08 - 00000000 ___HC C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-12-29 09:06 - 2009-07-14 09:28 - 00000000 __HDC C:\Windows\CSC 2013-12-29 09:04 - 2009-07-14 05:57 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2013-12-29 09:04 - 2009-07-14 05:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2013-12-23 16:35 - 2013-12-31 09:21 - 00000023 ____C C:\Users\Dominik\Downloads\kluczKIS.txt 2013-12-23 12:34 - 2013-12-29 17:57 - 00000042 ____C C:\Users\Dominik\Downloads\DNS.txt ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-12-29 20:53 ==================== End Of Log ============================