Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-01-2014 03 Ran by Siera (administrator) on SIERA-PC on 17-01-2014 23:12:54 Running from C:\Users\Siera\Downloads Windows 7 Professional Service Pack 1 (X64) OS Language: Polish Internet Explorer Version 10 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\SysWOW64\PnkBstrA.exe () C:\Program Files (x86)\Hotkey\PowerBiosServer.exe (Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.exe (Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe (VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (YourWare Solutions (TM)) C:\Program Files (x86)\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTSched.exe () C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe () C:\Program Files (x86)\Hotkey\Hotkey.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe () C:\Program Files (x86)\4G Hostless Modem\PLAY ONLINE\CheckNDISPort_df.exe () C:\Program Files (x86)\4G Hostless Modem\PLAY ONLINE\CancelAutoPlay_df.exe (Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\main.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Razer Inc.) C:\Program Files (x86)\Razer\Razer Game Booster\ProcessCapturer.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (techPowerUp (www.techpowerup.com)) C:\PROGRAMY\GPU-Z\GPU-Z.exe () C:\Program Files\Core Temp\Core Temp.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (OldTimer Tools) C:\Users\Siera\Downloads\OTL.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2776360 2011-12-05] (ELAN Microelectronics Corp.) HKLM\...\Run: [Creative SB Monitoring Utility] - C:\Windows\system32\sbavmon.dll [109056 2009-12-16] (Creative Technology Ltd.) HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12921488 2012-07-09] (Realtek Semiconductor) HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-14] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation) HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation) HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-06-11] (Intel Corporation) HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5119600 2012-05-10] (VIA) HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [CheckNDISPortF0acD2] - C:\Program Files (x86)\4G Hostless Modem\PLAY ONLINE\CheckNDISPort_df.exe [459008 2013-07-26] () HKLM-x32\...\Run: [CancelAutoPlay_df] - C:\Program Files (x86)\4G Hostless Modem\PLAY ONLINE\CancelAutoPlay_df.exe [446208 2013-07-26] () HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKLM\...\Policies\Explorer\Run: [12659] - C:\PROGRA~3\LOCALS~1\Temp\mskqxa.cmd No File HKLM\...\Policies\Explorer: [HideSCAHealth] 1 HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1815976 2014-01-16] (Valve Corporation) HKCU\...\Run: [DAEMON Tools Lite] - C:\PROGRAMY\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd) HKCU\...\Run: [Google Update] - C:\Users\Siera\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-07-13] (Google Inc.) HKCU\...\Run: [minerd] - C:\Users\Siera\AppData\Roaming\minerd\nircmd.exe [44032 2013-08-11] (NirSoft) HKCU\...\Run: [FreeRAM XP] - C:\Program Files (x86)\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe [1591808 2006-03-23] (YourWare Solutions (TM)) HKCU\...\Run: [CreativeTaskScheduler] - C:\Program Files (x86)\Creative\Shared Files\CTSched.exe [53341 2006-11-17] (Creative Technology Ltd) HKCU\...\Run: [Bloody2] - C:\Program Files (x86)\Bloody5\Bloody5\Bloody5.exe [13181952 2013-12-25] () HKCU\...\Run: [NextLive] - C:\Users\Siera\AppData\Roaming\newnext.me\nengine.dll [1283584 2013-11-14] (NewNextDotMe) AppInit_DLLs: C:\Windows\system32\nvinitx.dll [168616 2013-12-19] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [141336 2013-12-19] (NVIDIA Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://wyborcza.pl/0,0.html?p=139 SearchScopes: HKLM - DefaultScope value is missing. BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.) BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: Pomocnik logowania za pomocą konta Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.) BHO-x32: No Name - {F1AF26F8-1828-4279-ABCE-074EF3235BD7} - No File DPF: HKLM-x32 {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} http://content.systemrequirementslab.com/bin/srldetect_intel_4.5.15.0.cab DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 217.172.224.160 192.168.0.1 FireFox: ======== FF ProfilePath: C:\Users\Siera\AppData\Roaming\Mozilla\Firefox\Profiles\dj53xh76.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll () FF Plugin: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB) FF Plugin-x32: @idsoftware.com/QuakeLive - C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=10.17.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.17.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE - C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Siera\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Siera\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File FF Extension: PutLockerDownloader - C:\Users\Siera\AppData\Roaming\Mozilla\Firefox\profiles\extensions\putlockerdownloader@putlockerdownloader.com.xpi [2012-11-06] FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\ [] Chrome: ======= CHR Extension: (0) - C:\Users\Siera\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2014-01-17] CHR Extension: (0) - C:\Users\Siera\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-27] CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2014-01-12] CHR StartMenuInternet: Google Chrome - C:\Users\Siera\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Services (Whitelisted) ================= R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [127320 2012-03-15] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [162648 2012-03-15] (Intel Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-12-21] () R2 PowerBiosServer; C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [35328 2011-02-18] () R2 RzKLService; C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe [106472 2013-09-18] (Razer Inc.) R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-05-03] (VIA Technologies, Inc.) ==================== Drivers (Whitelisted) ==================== S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.) S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.) S3 andnetndis; C:\Windows\System32\DRIVERS\lgandnetndis64.sys [93184 2012-07-04] (LG Electronics Inc.) R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [150808 2013-11-05] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [240920 2013-11-04] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [194872 2013-10-24] (AVG Technologies CZ, s.r.o.) R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-10-31] (AVG Technologies CZ, s.r.o.) R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-10-31] (AVG Technologies CZ, s.r.o.) R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-10-01] (AVG Technologies CZ, s.r.o.) R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-10] (AVG Technologies CZ, s.r.o.) R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.) S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-08-21] (Disc Soft Ltd) S3 ksaud; C:\Windows\System32\drivers\ksaud.sys [1148288 2011-07-06] (Creative Technology Ltd.) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation) S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited) R3 UHSfiltv; C:\Windows\System32\drivers\UHSfiltv.sys [23552 2013-07-19] (Creative Technology Ltd.) S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2012-03-02] (LG Electronics Inc.) S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [28160 2012-03-02] (LG Electronics Inc.) S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [34816 2012-03-02] (LG Electronics Inc.) S3 VMfilt; C:\Windows\System32\drivers\VMfilt64.sys [25600 2009-07-31] (Creative Technology Ltd.) R3 ALSysIO; \??\C:\Users\Siera\AppData\Local\Temp\ALSysIO64.sys [x] S3 catchme; \??\C:\ComboFix\catchme.sys [x] R3 GPU-Z; \??\C:\Users\Siera\AppData\Local\Temp\GPU-Z.sys [x] S3 huawei_cdcacm; system32\DRIVERS\ew_jucdcacm.sys [x] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [x] S3 WinRing0_1_2_0; \??\C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-01-17 23:12 - 2014-01-17 23:12 - 00017697 _____ C:\Users\Siera\Downloads\FRST.txt 2014-01-17 23:12 - 2014-01-17 23:12 - 00000000 ____D C:\FRST 2014-01-17 23:11 - 2014-01-17 23:12 - 00000000 ____D C:\Users\Siera\Desktop\logi 2014-01-17 23:10 - 2014-01-17 23:10 - 00159534 _____ C:\Users\Siera\Downloads\Extras.Txt 2014-01-17 23:09 - 2014-01-17 23:09 - 00140110 _____ C:\Users\Siera\Downloads\OTL.Txt 2014-01-17 23:03 - 2014-01-17 23:03 - 00602112 _____ (OldTimer Tools) C:\Users\Siera\Downloads\OTL.exe 2014-01-17 23:02 - 2014-01-17 23:03 - 02076160 _____ (Farbar) C:\Users\Siera\Downloads\FRST64.exe 2014-01-17 21:52 - 2014-01-17 21:52 - 00001756 _____ C:\Users\Siera\Desktop\Process Hacker 2.lnk 2014-01-17 21:35 - 2014-01-17 21:35 - 01065219 _____ C:\Users\Siera\Downloads\Tweaking.com-RepairWMI.exe 2014-01-17 21:35 - 2014-01-17 21:35 - 00000000 ____D C:\Users\Siera\Downloads\Tweaking.com - Repair WMI 2014-01-17 21:34 - 2014-01-17 21:34 - 01415825 _____ C:\Users\Siera\Downloads\309418-Tweaking.com-RepairWMI_sciagnij.exe 2014-01-17 21:10 - 2014-01-17 21:10 - 00000948 _____ C:\Users\Siera\Desktop\Core Temp.lnk 2014-01-17 21:09 - 2014-01-17 21:09 - 02038864 _____ (InstallX, LLC) C:\Users\Siera\Downloads\coretemp_d7632790.exe 2014-01-17 21:09 - 2014-01-17 21:09 - 00000000 ____D C:\ProgramData\APN 2014-01-16 22:34 - 2014-01-16 22:34 - 00714207 _____ C:\Users\Siera\Downloads\pbsetup.zip 2014-01-16 19:03 - 2011-05-03 13:40 - 00000000 ____D C:\Unpark-CPU-App 2014-01-16 19:02 - 2014-01-16 19:02 - 00546199 _____ C:\Users\Siera\Downloads\Unpark-CPU-App.zip 2014-01-15 15:56 - 2014-01-15 15:56 - 00000044 _____ C:\Users\Siera\Desktop\stali klienci.txt 2014-01-14 22:26 - 2014-01-14 22:26 - 00276267 _____ C:\Users\Siera\Downloads\RAMMap.zip 2014-01-14 22:26 - 2013-10-31 15:18 - 00562368 _____ (Sysinternals - www.sysinternals.com) C:\Users\Siera\Desktop\RAMMap.exe 2014-01-14 21:29 - 2014-01-14 21:29 - 00000000 ____D C:\Windows\SysWOW64\NV 2014-01-14 21:29 - 2014-01-14 21:29 - 00000000 ____D C:\Windows\system32\NV 2014-01-14 21:16 - 2014-01-14 21:18 - 266633424 _____ (NVIDIA Corporation) C:\Users\Siera\Downloads\332.21-notebook-win8-win7-64bit-international-whql.exe 2014-01-14 21:12 - 2014-01-14 21:12 - 00011760 _____ C:\Users\Siera\Downloads\CheckForDotNet45.exe 2014-01-14 19:21 - 2014-01-14 19:21 - 00001949 _____ C:\Users\Siera\Desktop\Skyrim (SKSE).lnk 2014-01-14 16:41 - 2014-01-14 16:41 - 00266051 _____ C:\Users\Siera\Downloads\skse_1_06_16_installer.exe 2014-01-14 16:39 - 2014-01-14 16:39 - 00000000 ____D C:\Games 2014-01-14 16:38 - 2014-01-14 16:38 - 00000890 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk 2014-01-14 16:38 - 2014-01-14 16:38 - 00000000 ____D C:\Program Files\Nexus Mod Manager 2014-01-14 16:37 - 2014-01-14 16:37 - 04136616 _____ (Black Tree Gaming ) C:\Users\Siera\Downloads\Nexus Mod Manager-0.46.0.exe 2014-01-14 15:40 - 2014-01-14 15:40 - 00000980 _____ C:\Users\Siera\Desktop\The Elder Scrolls III Morrowind GOTY.lnk 2014-01-14 12:07 - 2014-01-14 12:07 - 00001030 _____ C:\Users\Public\Desktop\The Elder Scrolls V Skyrim - Legendary Edition.lnk 2014-01-12 20:05 - 2014-01-12 20:05 - 00022862 _____ C:\Users\Siera\AppData\Local\recently-used.xbel 2014-01-12 19:53 - 2014-01-12 20:05 - 00000000 ____D C:\Users\Siera\AppData\Local\gtk-2.0 2014-01-12 19:45 - 2014-01-12 19:45 - 00000000 ____D C:\Program Files\GIMP 2 2014-01-12 19:41 - 2014-01-12 19:45 - 90396104 _____ (The GIMP Team ) C:\Users\Siera\Downloads\gimp-2.8.10-setup.exe 2014-01-12 19:32 - 2014-01-12 19:33 - 14802168 _____ (Karlis Blumentals ) C:\Users\Siera\Downloads\egifan6.exe 2014-01-12 19:32 - 2014-01-12 19:32 - 00923784 _____ (CNET Download.com) C:\Users\Siera\Downloads\cbsidlm-cbsi145-Easy_GIF_Animator-ORG-10202399.exe 2014-01-12 19:30 - 2014-01-17 22:45 - 00000000 ____D C:\Users\Siera\AppData\Roaming\newnext.me 2014-01-12 19:30 - 2014-01-12 19:31 - 00000000 ____D C:\Users\Siera\AppData\Local\Mobogenie 2014-01-12 19:30 - 2014-01-12 19:31 - 00000000 ____D C:\Program Files (x86)\Mobogenie 2014-01-12 19:30 - 2014-01-12 19:30 - 00637240 _____ (Free Gif Maker) C:\Users\Siera\Downloads\gifmaker_setup.exe 2014-01-12 19:30 - 2014-01-12 19:30 - 00000000 ____D C:\Users\Siera\Documents\Mobogenie 2014-01-12 19:30 - 2014-01-12 19:30 - 00000000 ____D C:\Users\Siera\AppData\Local\genienext 2014-01-12 19:30 - 2014-01-12 19:30 - 00000000 ____D C:\Users\Siera\AppData\Local\cache 2014-01-12 19:30 - 2014-01-12 19:30 - 00000000 ____D C:\Users\Siera\.android 2014-01-12 19:30 - 2014-01-12 19:30 - 00000000 _____ C:\Users\Siera\daemonprocess.txt 2014-01-12 19:08 - 2014-01-12 20:19 - 00000000 ____D C:\Users\Siera\AppData\Local\Adobe 2014-01-12 15:48 - 2014-01-12 15:48 - 00000000 ____D C:\Users\Siera\Documents\MGR 2014-01-12 14:20 - 2014-01-12 14:21 - 34008992 _____ (DVDVideoSoft Ltd. ) C:\Users\Siera\Downloads\FreeYouTubeToMP3Converter.exe 2014-01-09 01:31 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 18310112 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 15230352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2014-01-09 01:31 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2014-01-09 01:31 - 2013-12-19 21:33 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys 2014-01-09 01:27 - 2014-01-09 01:30 - 231635002 _____ C:\Users\Siera\Downloads\VGA_N64.zip 2014-01-09 01:18 - 2014-01-09 01:19 - 00000000 ____D C:\Users\Siera\AppData\Local\NVIDIA Corporation 2014-01-09 01:17 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2014-01-09 01:17 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2014-01-04 19:10 - 2014-01-04 19:24 - 00000000 ____D C:\Users\Siera\Desktop\Bioo 2014-01-01 11:28 - 2014-01-01 11:28 - 00001981 _____ C:\Users\Public\Desktop\Bloody5.lnk 2014-01-01 11:28 - 2014-01-01 11:28 - 00000000 ____D C:\Program Files (x86)\Bloody5 2014-01-01 11:26 - 2014-01-01 11:27 - 20286448 _____ C:\Users\Siera\Downloads\Bloody5_V2013.1225.zip 2013-12-27 18:30 - 2013-12-27 18:31 - 00000000 ____D C:\Users\Siera\Documents\Battlefield 3 2013-12-27 18:22 - 2013-12-27 18:22 - 00001130 _____ C:\Users\Public\Desktop\Battlefield 3.lnk 2013-12-27 15:12 - 2013-12-27 15:12 - 00008073 _____ C:\Users\Siera\Documents\Uninstall STAR WARS The Old Republic.log 2013-12-22 11:05 - 2013-12-22 11:05 - 00000957 _____ C:\Users\Siera\Desktop\Origin.lnk 2013-12-21 19:42 - 2013-12-21 19:42 - 03821064 _____ C:\Users\Siera\Downloads\battlelog-web-plugins_2.3.2_130.exe 2013-12-21 19:32 - 2013-12-22 10:41 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins 2013-12-21 19:32 - 2013-12-21 19:36 - 00001154 _____ C:\Users\Public\Desktop\Battlefield 4.lnk 2013-12-21 19:32 - 2013-12-21 19:36 - 00001130 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk 2013-12-21 01:42 - 2013-12-21 01:42 - 00000000 ____D C:\Users\Siera\Documents\Square Enix 2013-12-20 14:07 - 2013-12-20 14:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-12-20 11:59 - 2013-12-20 11:59 - 00003186 _____ C:\Windows\System32\Tasks\{CDC54C6B-BCCF-498F-B809-9146DEA8088C} 2013-12-20 11:59 - 2013-12-20 11:59 - 00000000 ____D C:\Users\Siera\Desktop\PLAY ONLINE 2013-12-19 19:35 - 2013-12-19 19:35 - 00003050 _____ C:\Windows\System32\Tasks\{6146C2BE-F6F2-4E82-96DB-C6CFB33B9AAB} 2013-12-19 19:28 - 2013-12-20 11:59 - 00001199 _____ C:\Windows\Setup.log 2013-12-19 19:26 - 2013-12-19 19:26 - 00001952 _____ C:\Users\Public\Desktop\PLAY ONLINE.lnk 2013-12-19 19:26 - 2013-12-19 19:26 - 00000000 ____D C:\Windows\SysWOW64\SupportAppPB4G Hostless Modem 2013-12-19 19:26 - 2013-12-19 19:26 - 00000000 ____D C:\Program Files (x86)\4G Hostless Modem ==================== One Month Modified Files and Folders ======= 2014-01-17 23:12 - 2014-01-17 23:12 - 00017697 _____ C:\Users\Siera\Downloads\FRST.txt 2014-01-17 23:12 - 2014-01-17 23:12 - 00000000 ____D C:\FRST 2014-01-17 23:12 - 2014-01-17 23:11 - 00000000 ____D C:\Users\Siera\Desktop\logi 2014-01-17 23:10 - 2014-01-17 23:10 - 00159534 _____ C:\Users\Siera\Downloads\Extras.Txt 2014-01-17 23:09 - 2014-01-17 23:09 - 00140110 _____ C:\Users\Siera\Downloads\OTL.Txt 2014-01-17 23:03 - 2014-01-17 23:03 - 00602112 _____ (OldTimer Tools) C:\Users\Siera\Downloads\OTL.exe 2014-01-17 23:03 - 2014-01-17 23:02 - 02076160 _____ (Farbar) C:\Users\Siera\Downloads\FRST64.exe 2014-01-17 23:01 - 2013-06-01 08:54 - 01586884 _____ C:\Windows\WindowsUpdate.log 2014-01-17 22:52 - 2009-07-14 05:45 - 00022032 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-01-17 22:52 - 2009-07-14 05:45 - 00022032 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-01-17 22:49 - 2011-04-12 14:21 - 00732316 _____ C:\Windows\system32\perfh015.dat 2014-01-17 22:49 - 2011-04-12 14:21 - 00153666 _____ C:\Windows\system32\perfc015.dat 2014-01-17 22:49 - 2009-07-14 06:13 - 01679362 _____ C:\Windows\system32\PerfStringBackup.INI 2014-01-17 22:46 - 2013-03-02 17:26 - 00000000 ____D C:\Program Files (x86)\Steam 2014-01-17 22:45 - 2014-01-12 19:30 - 00000000 ____D C:\Users\Siera\AppData\Roaming\newnext.me 2014-01-17 22:45 - 2013-07-08 22:10 - 00085154 _____ C:\Windows\setupact.log 2014-01-17 22:45 - 2013-06-21 16:35 - 00272598 _____ C:\Windows\PFRO.log 2014-01-17 22:45 - 2013-06-17 10:04 - 00069792 _____ (Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.dll 2014-01-17 22:45 - 2013-06-17 09:52 - 00017920 _____ C:\Windows\system32\rpcnetp.exe 2014-01-17 22:45 - 2012-07-12 12:34 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job 2014-01-17 22:45 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2014-01-17 22:44 - 2013-03-22 23:02 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-01-17 22:43 - 2013-03-16 07:08 - 00007642 _____ C:\Users\Siera\AppData\Local\resmon.resmoncfg 2014-01-17 22:32 - 2012-07-13 08:37 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3084762684-821461874-1989656068-1003UA.job 2014-01-17 22:28 - 2013-10-14 13:42 - 00000000 ____D C:\Users\Siera\Documents\Virtual Playtable 2014-01-17 22:28 - 2012-07-13 09:00 - 00000000 ____D C:\PROGRAMY 2014-01-17 21:52 - 2014-01-17 21:52 - 00001756 _____ C:\Users\Siera\Desktop\Process Hacker 2.lnk 2014-01-17 21:35 - 2014-01-17 21:35 - 01065219 _____ C:\Users\Siera\Downloads\Tweaking.com-RepairWMI.exe 2014-01-17 21:35 - 2014-01-17 21:35 - 00000000 ____D C:\Users\Siera\Downloads\Tweaking.com - Repair WMI 2014-01-17 21:34 - 2014-01-17 21:34 - 01415825 _____ C:\Users\Siera\Downloads\309418-Tweaking.com-RepairWMI_sciagnij.exe 2014-01-17 21:10 - 2014-01-17 21:10 - 00000948 _____ C:\Users\Siera\Desktop\Core Temp.lnk 2014-01-17 21:09 - 2014-01-17 21:09 - 02038864 _____ (InstallX, LLC) C:\Users\Siera\Downloads\coretemp_d7632790.exe 2014-01-17 21:09 - 2014-01-17 21:09 - 00000000 ____D C:\ProgramData\APN 2014-01-17 21:06 - 2013-05-26 21:21 - 00000000 ____D C:\Users\Siera\AppData\Roaming\TS3Client 2014-01-17 19:24 - 2012-07-13 08:59 - 00000000 ____D C:\Users\Siera\AppData\Roaming\uTorrent 2014-01-17 19:04 - 2012-07-13 10:03 - 00000000 ____D C:\SYF 2014-01-17 18:52 - 2013-03-16 12:57 - 00000000 ____D C:\ProgramData\MFAData 2014-01-17 18:09 - 2013-10-07 13:16 - 00292096 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2014-01-17 18:09 - 2012-07-15 00:46 - 00292096 _____ C:\Windows\SysWOW64\PnkBstrB.xtr 2014-01-17 18:08 - 2013-10-07 12:36 - 00000000 ____D C:\Program Files (x86)\Origin 2014-01-17 13:53 - 2012-07-12 12:34 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job 2014-01-17 13:32 - 2012-07-13 08:37 - 00001006 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3084762684-821461874-1989656068-1003Core.job 2014-01-16 22:39 - 2012-07-15 00:42 - 00292096 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2014-01-16 22:34 - 2014-01-16 22:34 - 00714207 _____ C:\Users\Siera\Downloads\pbsetup.zip 2014-01-16 19:02 - 2014-01-16 19:02 - 00546199 _____ C:\Users\Siera\Downloads\Unpark-CPU-App.zip 2014-01-15 15:56 - 2014-01-15 15:56 - 00000044 _____ C:\Users\Siera\Desktop\stali klienci.txt 2014-01-14 22:26 - 2014-01-14 22:26 - 00276267 _____ C:\Users\Siera\Downloads\RAMMap.zip 2014-01-14 21:29 - 2014-01-14 21:29 - 00000000 ____D C:\Windows\SysWOW64\NV 2014-01-14 21:29 - 2014-01-14 21:29 - 00000000 ____D C:\Windows\system32\NV 2014-01-14 21:29 - 2013-06-17 09:59 - 00000000 ____D C:\ProgramData\NVIDIA 2014-01-14 21:18 - 2014-01-14 21:16 - 266633424 _____ (NVIDIA Corporation) C:\Users\Siera\Downloads\332.21-notebook-win8-win7-64bit-international-whql.exe 2014-01-14 21:12 - 2014-01-14 21:12 - 00011760 _____ C:\Users\Siera\Downloads\CheckForDotNet45.exe 2014-01-14 19:21 - 2014-01-14 19:21 - 00001949 _____ C:\Users\Siera\Desktop\Skyrim (SKSE).lnk 2014-01-14 17:36 - 2012-07-13 11:17 - 00000000 ____D C:\Users\Siera\AppData\Local\Skyrim 2014-01-14 16:41 - 2014-01-14 16:41 - 00266051 _____ C:\Users\Siera\Downloads\skse_1_06_16_installer.exe 2014-01-14 16:39 - 2014-01-14 16:39 - 00000000 ____D C:\Games 2014-01-14 16:38 - 2014-01-14 16:38 - 00000890 _____ C:\Users\Public\Desktop\Nexus Mod Manager.lnk 2014-01-14 16:38 - 2014-01-14 16:38 - 00000000 ____D C:\Program Files\Nexus Mod Manager 2014-01-14 16:38 - 2013-01-20 16:56 - 00000000 ____D C:\Users\Siera\AppData\Local\Black_Tree_Gaming 2014-01-14 16:37 - 2014-01-14 16:37 - 04136616 _____ (Black Tree Gaming ) C:\Users\Siera\Downloads\Nexus Mod Manager-0.46.0.exe 2014-01-14 15:40 - 2014-01-14 15:40 - 00000980 _____ C:\Users\Siera\Desktop\The Elder Scrolls III Morrowind GOTY.lnk 2014-01-14 15:39 - 2012-07-13 09:48 - 00000000 ____D C:\GRY 2014-01-14 12:07 - 2014-01-14 12:07 - 00001030 _____ C:\Users\Public\Desktop\The Elder Scrolls V Skyrim - Legendary Edition.lnk 2014-01-13 21:39 - 2013-07-13 15:04 - 00424689 _____ C:\Windows\DirectX.log 2014-01-12 20:54 - 2012-09-02 18:12 - 00007680 _____ C:\Users\Siera\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-01-12 20:19 - 2014-01-12 19:08 - 00000000 ____D C:\Users\Siera\AppData\Local\Adobe 2014-01-12 20:06 - 2012-09-07 00:37 - 00000000 ____D C:\Users\Siera\.gimp-2.8 2014-01-12 20:05 - 2014-01-12 20:05 - 00022862 _____ C:\Users\Siera\AppData\Local\recently-used.xbel 2014-01-12 20:05 - 2014-01-12 19:53 - 00000000 ____D C:\Users\Siera\AppData\Local\gtk-2.0 2014-01-12 19:45 - 2014-01-12 19:45 - 00000000 ____D C:\Program Files\GIMP 2 2014-01-12 19:45 - 2014-01-12 19:41 - 90396104 _____ (The GIMP Team ) C:\Users\Siera\Downloads\gimp-2.8.10-setup.exe 2014-01-12 19:33 - 2014-01-12 19:32 - 14802168 _____ (Karlis Blumentals ) C:\Users\Siera\Downloads\egifan6.exe 2014-01-12 19:32 - 2014-01-12 19:32 - 00923784 _____ (CNET Download.com) C:\Users\Siera\Downloads\cbsidlm-cbsi145-Easy_GIF_Animator-ORG-10202399.exe 2014-01-12 19:31 - 2014-01-12 19:30 - 00000000 ____D C:\Users\Siera\AppData\Local\Mobogenie 2014-01-12 19:31 - 2014-01-12 19:30 - 00000000 ____D C:\Program Files (x86)\Mobogenie 2014-01-12 19:30 - 2014-01-12 19:30 - 00637240 _____ (Free Gif Maker) C:\Users\Siera\Downloads\gifmaker_setup.exe 2014-01-12 19:30 - 2014-01-12 19:30 - 00000000 ____D C:\Users\Siera\Documents\Mobogenie 2014-01-12 19:30 - 2014-01-12 19:30 - 00000000 ____D C:\Users\Siera\AppData\Local\genienext 2014-01-12 19:30 - 2014-01-12 19:30 - 00000000 ____D C:\Users\Siera\AppData\Local\cache 2014-01-12 19:30 - 2014-01-12 19:30 - 00000000 ____D C:\Users\Siera\.android 2014-01-12 19:30 - 2014-01-12 19:30 - 00000000 _____ C:\Users\Siera\daemonprocess.txt 2014-01-12 19:30 - 2012-07-13 08:33 - 00000000 ____D C:\Users\Siera 2014-01-12 19:06 - 2013-11-03 22:36 - 00000000 ____D C:\Users\Siera\Desktop\madiowedoki 2014-01-12 15:48 - 2014-01-12 15:48 - 00000000 ____D C:\Users\Siera\Documents\MGR 2014-01-12 14:22 - 2013-03-12 15:34 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft 2014-01-12 14:22 - 2012-10-05 22:27 - 00000000 ____D C:\Users\Siera\AppData\Roaming\DVDVideoSoft 2014-01-12 14:21 - 2014-01-12 14:20 - 34008992 _____ (DVDVideoSoft Ltd. ) C:\Users\Siera\Downloads\FreeYouTubeToMP3Converter.exe 2014-01-11 20:32 - 2012-10-11 16:04 - 00000000 ____D C:\Users\Siera\AppData\Local\Last.fm 2014-01-09 01:30 - 2014-01-09 01:27 - 231635002 _____ C:\Users\Siera\Downloads\VGA_N64.zip 2014-01-09 01:19 - 2014-01-09 01:18 - 00000000 ____D C:\Users\Siera\AppData\Local\NVIDIA Corporation 2014-01-09 01:19 - 2013-05-25 14:15 - 00000000 ____D C:\Users\Siera\AppData\Local\NVIDIA 2014-01-09 01:18 - 2013-11-22 22:46 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2014-01-09 01:17 - 2012-07-12 11:57 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2014-01-09 01:17 - 2012-07-12 11:56 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2014-01-07 12:27 - 2013-03-24 00:19 - 00000000 ____D C:\Users\Siera\Desktop\FIRMA 2014-01-05 17:50 - 2012-07-18 01:14 - 00000000 ____D C:\FILMY 2014-01-04 19:24 - 2014-01-04 19:10 - 00000000 ____D C:\Users\Siera\Desktop\Bioo 2014-01-01 11:28 - 2014-01-01 11:28 - 00001981 _____ C:\Users\Public\Desktop\Bloody5.lnk 2014-01-01 11:28 - 2014-01-01 11:28 - 00000000 ____D C:\Program Files (x86)\Bloody5 2014-01-01 11:28 - 2013-12-16 14:54 - 00000000 ____D C:\Program Files (x86)\Bloody4 2014-01-01 11:27 - 2014-01-01 11:26 - 20286448 _____ C:\Users\Siera\Downloads\Bloody5_V2013.1225.zip 2013-12-30 14:45 - 2013-09-22 16:03 - 00000000 ___RD C:\Users\Siera\Desktop\Madzia 2013-12-27 18:31 - 2013-12-27 18:30 - 00000000 ____D C:\Users\Siera\Documents\Battlefield 3 2013-12-27 18:22 - 2013-12-27 18:22 - 00001130 _____ C:\Users\Public\Desktop\Battlefield 3.lnk 2013-12-27 15:12 - 2013-12-27 15:12 - 00008073 _____ C:\Users\Siera\Documents\Uninstall STAR WARS The Old Republic.log 2013-12-27 15:11 - 2012-07-12 12:00 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-12-27 15:09 - 2013-11-18 19:28 - 00000000 ____D C:\Program Files (x86)\Origin Games 2013-12-22 11:05 - 2013-12-22 11:05 - 00000957 _____ C:\Users\Siera\Desktop\Origin.lnk 2013-12-22 10:41 - 2013-12-21 19:32 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins 2013-12-21 19:58 - 2013-12-15 21:15 - 00000000 ____D C:\Users\Siera\AppData\Roaming\NVIDIA 2013-12-21 19:43 - 2013-10-07 12:38 - 00000000 ____D C:\Users\Siera\AppData\Local\Origin 2013-12-21 19:42 - 2013-12-21 19:42 - 03821064 _____ C:\Users\Siera\Downloads\battlelog-web-plugins_2.3.2_130.exe 2013-12-21 19:36 - 2013-12-21 19:32 - 00001154 _____ C:\Users\Public\Desktop\Battlefield 4.lnk 2013-12-21 19:36 - 2013-12-21 19:32 - 00001130 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk 2013-12-21 19:32 - 2013-06-29 00:03 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe 2013-12-21 10:08 - 2013-05-22 17:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-12-21 01:42 - 2013-12-21 01:42 - 00000000 ____D C:\Users\Siera\Documents\Square Enix 2013-12-20 14:07 - 2013-12-20 14:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-12-20 12:03 - 2013-06-17 09:52 - 00017920 _____ C:\Windows\SysWOW64\rpcnetp.dll 2013-12-20 12:03 - 2013-06-14 16:03 - 00017920 _____ C:\Windows\SysWOW64\rpcnetp.exe 2013-12-20 11:59 - 2013-12-20 11:59 - 00003186 _____ C:\Windows\System32\Tasks\{CDC54C6B-BCCF-498F-B809-9146DEA8088C} 2013-12-20 11:59 - 2013-12-20 11:59 - 00000000 ____D C:\Users\Siera\Desktop\PLAY ONLINE 2013-12-20 11:59 - 2013-12-19 19:28 - 00001199 _____ C:\Windows\Setup.log 2013-12-19 21:33 - 2014-01-09 01:31 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 18310112 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 15230352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2013-12-19 21:33 - 2014-01-09 01:31 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2013-12-19 21:33 - 2014-01-09 01:31 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys 2013-12-19 21:33 - 2013-11-22 22:41 - 03071656 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2013-12-19 21:33 - 2013-11-22 22:41 - 02698272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2013-12-19 21:33 - 2013-11-22 22:41 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2013-12-19 21:33 - 2013-11-22 22:41 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2013-12-19 21:33 - 2013-11-22 22:41 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2013-12-19 21:33 - 2013-11-22 22:41 - 00023754 _____ C:\Windows\system32\nvinfo.pb 2013-12-19 19:53 - 2013-11-22 22:46 - 06671648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2013-12-19 19:53 - 2013-11-22 22:46 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2013-12-19 19:53 - 2013-11-22 22:46 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2013-12-19 19:53 - 2013-11-22 22:46 - 01065248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2013-12-19 19:53 - 2013-11-22 22:46 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2013-12-19 19:53 - 2013-11-22 22:46 - 00386336 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2013-12-19 19:53 - 2013-11-22 22:46 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2013-12-19 19:53 - 2013-11-22 22:46 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2013-12-19 19:35 - 2013-12-19 19:35 - 00003050 _____ C:\Windows\System32\Tasks\{6146C2BE-F6F2-4E82-96DB-C6CFB33B9AAB} 2013-12-19 19:26 - 2013-12-19 19:26 - 00001952 _____ C:\Users\Public\Desktop\PLAY ONLINE.lnk 2013-12-19 19:26 - 2013-12-19 19:26 - 00000000 ____D C:\Windows\SysWOW64\SupportAppPB4G Hostless Modem 2013-12-19 19:26 - 2013-12-19 19:26 - 00000000 ____D C:\Program Files (x86)\4G Hostless Modem 2013-12-19 06:01 - 2013-11-22 22:46 - 03539040 _____ C:\Windows\system32\nvcoproc.bin Files to move or delete: ==================== C:\Users\Siera\Network_Meter_Data.js Some content of TEMP: ==================== C:\Users\Siera\AppData\Local\Temp\1_Offer_3.exe C:\Users\Siera\AppData\Local\Temp\aria.exe C:\Users\Siera\AppData\Local\Temp\bitool.dll C:\Users\Siera\AppData\Local\Temp\BRSVC_16489914_hlp.exe C:\Users\Siera\AppData\Local\Temp\CTPBSeq.exe C:\Users\Siera\AppData\Local\Temp\DownloadManager.exe C:\Users\Siera\AppData\Local\Temp\DTLite4471-0337.exe C:\Users\Siera\AppData\Local\Temp\ICReinstall_Setup.exe C:\Users\Siera\AppData\Local\Temp\nircmd.exe C:\Users\Siera\AppData\Local\Temp\processhacker-2.33-setup.exe C:\Users\Siera\AppData\Local\Temp\SCC.dll C:\Users\Siera\AppData\Local\Temp\setup.exe C:\Users\Siera\AppData\Local\Temp\sfamcc00001.dll C:\Users\Siera\AppData\Local\Temp\sfextra.dll C:\Users\Siera\AppData\Local\Temp\sonarinst.exe C:\Users\Siera\AppData\Local\Temp\SymCCIS.dll C:\Users\Siera\AppData\Local\Temp\UNINSTALL.EXE ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-09 21:01 ==================== End Of Log ============================