Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-02-2014 02
Ran by Raven (administrator) on KALIVA on 27-02-2014 12:03:54
Running from C:\Users\Raven\Desktop\Download
Windows 8.1 (X64) OS Language: English(UK)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\WINDOWS\system32\atiesrxx.exe
(Hewlett-Packard Company) C:\WINDOWS\system32\Hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\Dragon Notes\Core\DACore.exe
(Hewlett-Packard Development Company, L.P.) c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
(AMD) C:\WINDOWS\system32\atieclxx.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft) C:\Users\Raven\AppData\Local\Temp\svchost.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Java\jre6\bin\jusched.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7191768 2013-06-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-04-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [YouCam Service] - C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [267224 2013-05-22] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Java\jre6\bin\jusched.exe [148888 2014-01-18] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] - C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [77088 2013-07-24] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] - C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-10-08] (Hewlett-Packard Development Company, L.P.)
HKU\S-1-5-21-1456361715-324973510-1321076691-1002\...\Run: [Power2GoExpress8] - NA
HKU\S-1-5-21-1456361715-324973510-1321076691-1002\...\Run: [svchost.exe] - C:\Users\Raven\AppData\Local\Temp\svchost.exe [3133440 2014-02-22] (Microsoft) <===== ATTENTION
HKU\S-1-5-21-1456361715-324973510-1321076691-1002\...\MountPoints2: H - "H:\SETUP.EXE" 

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPNOT13/2
HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://g.uk.msn.com/HPNOT13/2
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT13/2
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT13/2
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPNOT13/2
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKLM - {C280562B-383A-4337-9EAA-2BE3DEA63189} URL = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/710-29550-11896-25/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKLM-x32 - {C280562B-383A-4337-9EAA-2BE3DEA63189} URL = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/710-29550-11896-25/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=HPNTDFJS
SearchScopes: HKCU - {C280562B-383A-4337-9EAA-2BE3DEA63189} URL = http://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk3-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/710-29550-11896-25/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
BHO-x32: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: ClassicIEBHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\coIEPlg.dll (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0

Chrome: 
=======
CHR DefaultSearchKeyword: google.co.uk
CHR Extension: (Google Docs) - C:\Users\Raven\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-16]
CHR Extension: (Google Drive) - C:\Users\Raven\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-16]
CHR Extension: (YouTube) - C:\Users\Raven\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-16]
CHR Extension: (Adblock Plus) - C:\Users\Raven\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-01-16]
CHR Extension: (Google Search) - C:\Users\Raven\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-16]
CHR Extension: (Norton Identity Protection) - C:\Users\Raven\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2014-01-16]
CHR Extension: (Google Wallet) - C:\Users\Raven\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-16]
CHR Extension: (Gmail) - C:\Users\Raven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-16]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\Exts\Chrome.crx [2014-02-01]

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-04-16] (Advanced Micro Devices, Inc.)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-09-05] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [298760 2013-09-05] (CyberLink)
R2 DACoreService; C:\Program Files (x86)\Nuance\Dragon Notes\Core\DACore.exe [411024 2013-02-01] (Nuance Communications, Inc.)
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-10-08] (Hewlett-Packard Development Company, L.P.)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-19] (Realtek Semiconductor)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-01-16] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S2 HP Support Assistant Service; "C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe" [X]

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [37472 2013-02-14] (Advanced Micro Devices, Inc.)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3858944 2013-10-17] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98744 2013-04-24] (Advanced Micro Devices)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-12] (Windows (R) Win 7 DDK provider)
R3 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\Definitions\BASHDefs\20140214.001\BHDrvx64.sys [1526488 2014-01-10] (Symantec Corporation)
R3 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
R3 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2014-01-16] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2014-01-16] (Symantec Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R3 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\Definitions\IPSDefs\20140226.001\IDSvia64.sys [521944 2014-01-21] (Symantec Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-16] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\Definitions\VirusDefs\20140226.024\ENG64.SYS [126040 2014-02-24] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.0.36\Definitions\VirusDefs\20140226.024\EX64.SYS [2099288 2014-02-24] (Symantec Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [290008 2014-01-24] (Realtek Semiconductor Corp.)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-16] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29424 2013-06-05] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [33008 2013-06-05] (Synaptics Incorporated)
R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
R3 SRTSPX; C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
R3 SymDS; C:\Windows\system32\drivers\NISx64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R3 SymEFA; C:\Windows\system32\drivers\NISx64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NISx64\1404000.028\SymELAM.sys [23448 2012-11-15] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2014-01-17] (Symantec Corporation)
R3 SymIRON; C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
R3 SymNetS; C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-27 12:02 - 2014-02-27 12:03 - 00000000 ____D () C:\FRST
2014-02-27 11:08 - 2014-02-27 11:06 - 00069328 _____ () C:\Users\Raven\Desktop\Extras.Txt
2014-02-27 11:06 - 2014-02-27 11:06 - 00143756 _____ () C:\Users\Raven\Desktop\OTL.Txt
2014-02-27 10:10 - 2014-02-27 10:23 - 00000000 ___RD () C:\Users\Raven\Dropbox
2014-02-27 10:10 - 2014-02-27 10:14 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\DropboxMaster
2014-02-27 10:10 - 2014-02-27 10:10 - 00001058 _____ () C:\Users\Raven\Desktop\Dropbox.lnk
2014-02-27 10:09 - 2014-02-27 10:23 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\Dropbox
2014-02-27 10:09 - 2014-02-27 10:09 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-02-24 14:52 - 2014-02-24 18:40 - 00000000 ____D () C:\Users\Raven\Downloads\ChomikBox
2014-02-24 14:50 - 2014-02-26 17:17 - 00000000 ____D () C:\Users\Raven\AppData\Local\ChomikBox
2014-02-24 14:50 - 2014-02-26 16:37 - 00000000 ____D () C:\Users\Raven\.gstreamer-0.10
2014-02-24 14:50 - 2014-02-24 14:50 - 00000674 _____ () C:\Users\Public\Desktop\ChomikBox.lnk
2014-02-24 14:50 - 2014-02-24 14:50 - 00000000 ____D () C:\Program Files (x86)\ChomikBox
2014-02-24 12:34 - 2014-02-24 12:35 - 00000000 ____D () C:\Users\Raven\AppData\Local\NPE
2014-02-24 10:55 - 2014-02-26 16:15 - 00000000 ____D () C:\Users\Raven\Desktop\cv f
2014-02-24 10:54 - 2014-02-24 10:54 - 00000000 ____D () C:\Users\Raven\Desktop\cv u
2014-02-23 20:35 - 2014-02-23 20:35 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\Prince of Persia - The Sands of Time
2014-02-22 19:53 - 2014-02-22 19:53 - 00000000 ____D () C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-02-22 10:06 - 2014-02-22 10:06 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-22 10:06 - 2014-02-22 10:06 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-22 10:06 - 2014-02-22 10:06 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-22 10:06 - 2014-02-22 10:06 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-21 00:37 - 2014-02-21 00:05 - 212981652 _____ () C:\Users\Raven\Desktop\Wonderland_Clash of Queens all_CMYK.tif
2014-02-18 16:22 - 2014-02-18 16:27 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\Curse Advertising
2014-02-18 16:21 - 2014-02-18 16:38 - 00000000 ____D () C:\Users\Raven\AppData\Local\Deployment
2014-02-17 01:34 - 2013-12-11 07:55 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-17 01:34 - 2013-11-27 15:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-02-17 01:34 - 2013-11-27 13:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-02-17 01:34 - 2013-11-27 08:20 - 04106240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-17 01:34 - 2013-11-26 10:13 - 04191232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-17 01:34 - 2013-11-26 09:21 - 18577920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-17 01:34 - 2013-11-23 11:49 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-17 01:34 - 2013-11-23 03:57 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-17 01:34 - 2013-11-23 03:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-17 01:34 - 2013-11-23 03:25 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-17 01:34 - 2013-11-23 03:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-17 01:33 - 2013-12-09 00:34 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-02-17 01:33 - 2013-12-09 00:04 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-02-17 01:33 - 2013-11-27 15:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-02-17 01:33 - 2013-11-27 14:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-02-17 01:33 - 2013-11-27 12:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-02-17 01:33 - 2013-11-27 10:54 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-17 01:33 - 2013-11-27 10:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-02-17 01:33 - 2013-11-27 10:08 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-17 01:33 - 2013-11-27 09:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-02-17 01:33 - 2013-11-27 09:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-02-17 01:33 - 2013-11-27 09:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-02-17 01:33 - 2013-11-27 09:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-02-17 01:33 - 2013-11-27 08:58 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-02-17 01:33 - 2013-11-27 08:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-02-17 01:33 - 2013-11-27 04:01 - 00385614 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-02-17 01:33 - 2013-11-26 13:22 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-02-17 01:33 - 2013-11-26 13:20 - 02131120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-02-17 01:33 - 2013-11-26 13:20 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-02-17 01:33 - 2013-11-26 13:20 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-02-17 01:33 - 2013-11-26 11:50 - 01371312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-02-17 01:33 - 2013-11-26 11:44 - 02142936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-02-17 01:33 - 2013-11-26 11:44 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-02-17 01:33 - 2013-11-26 08:28 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-17 01:33 - 2013-11-25 01:45 - 00142680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-02-17 01:33 - 2013-11-25 01:32 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-02-17 01:33 - 2013-11-24 23:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-02-17 01:33 - 2013-11-24 23:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-02-17 01:33 - 2013-11-23 12:47 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-02-17 01:33 - 2013-11-23 08:19 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-17 01:33 - 2013-11-23 07:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-02-17 01:33 - 2013-11-23 07:13 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-02-17 01:33 - 2013-11-23 07:08 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-02-17 01:33 - 2013-11-23 04:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-02-17 01:33 - 2013-11-23 03:19 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-02-17 01:33 - 2013-11-23 03:15 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-02-17 01:33 - 2013-11-21 06:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-02-17 01:33 - 2013-11-21 06:26 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-02-17 01:33 - 2013-11-16 05:11 - 00764856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-02-17 01:33 - 2013-11-15 18:19 - 00669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-02-17 01:33 - 2013-11-15 14:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-02-17 01:33 - 2013-11-15 14:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-02-17 01:33 - 2013-11-15 14:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-02-17 01:33 - 2013-11-15 13:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-02-17 01:33 - 2013-11-05 20:12 - 02551128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-02-17 01:33 - 2013-10-31 00:29 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-02-17 01:33 - 2013-10-30 23:41 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-02-15 20:17 - 2014-02-15 20:17 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\CyberLink
2014-02-15 15:07 - 2014-02-15 15:07 - 00003160 _____ () C:\WINDOWS\System32\Tasks\CLVDLauncher
2014-02-15 15:07 - 2014-02-15 15:07 - 00003160 _____ () C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8
2014-02-15 15:07 - 2013-03-05 12:01 - 00091712 _____ (CyberLink) C:\WINDOWS\system32\Drivers\CLVirtualDrive.sys
2014-02-13 00:37 - 2014-02-06 12:16 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-13 00:37 - 2014-02-06 11:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-13 00:37 - 2014-02-06 11:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-13 00:37 - 2014-02-06 11:12 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-13 00:37 - 2014-02-06 11:07 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-13 00:37 - 2014-02-06 11:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-13 00:37 - 2014-02-06 10:57 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-13 00:37 - 2014-02-06 10:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-13 00:37 - 2014-02-06 10:49 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-13 00:37 - 2014-02-06 10:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-13 00:37 - 2014-02-06 10:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-13 00:37 - 2014-02-06 10:38 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-13 00:37 - 2014-02-06 10:32 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-13 00:37 - 2014-02-06 10:20 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-13 00:37 - 2014-02-06 10:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-13 00:37 - 2014-02-06 10:11 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-13 00:37 - 2014-02-06 10:01 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-13 00:37 - 2014-02-06 10:00 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-13 00:37 - 2014-02-06 09:57 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-13 00:37 - 2014-02-06 09:57 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-13 00:37 - 2014-02-06 09:52 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-13 00:37 - 2014-02-06 09:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-13 00:37 - 2014-02-06 09:50 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-13 00:37 - 2014-02-06 09:47 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-13 00:37 - 2014-02-06 09:46 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-13 00:37 - 2014-02-06 09:25 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-13 00:37 - 2014-02-06 09:25 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-13 00:37 - 2014-02-06 09:24 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-13 00:37 - 2014-02-06 09:22 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-13 00:37 - 2014-02-06 09:13 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-13 00:37 - 2014-02-06 09:09 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-13 00:37 - 2014-02-06 09:03 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-13 00:37 - 2014-02-06 08:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-13 00:37 - 2014-02-06 08:41 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-13 00:37 - 2014-02-06 08:40 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-13 00:37 - 2014-02-06 08:36 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-13 00:37 - 2014-02-06 08:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-13 00:37 - 2014-01-07 05:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-13 00:37 - 2014-01-07 04:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-13 00:37 - 2013-12-09 02:57 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-13 00:37 - 2013-12-09 01:51 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-02-13 00:37 - 2013-12-09 00:27 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-13 00:37 - 2013-12-08 23:54 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-13 00:37 - 2013-11-21 06:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-13 00:37 - 2013-11-21 05:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-12 13:11 - 2014-02-27 09:56 - 00000000 ____D () C:\Users\Raven\AppData\Local\SoulseekQt
2014-02-12 12:11 - 2014-02-12 12:11 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoulseekQt
2014-02-12 12:10 - 2014-02-12 12:11 - 00000000 ____D () C:\Program Files (x86)\SoulseekQt
2014-02-11 20:54 - 2013-12-13 20:54 - 00000032 ____R () C:\ProgramData\hash.dat
2014-02-11 20:52 - 2014-02-11 20:52 - 00001142 _____ () C:\Users\Raven\Desktop\Spiral Knights.lnk
2014-02-11 20:52 - 2014-02-11 20:52 - 00001142 _____ () C:\Users\Raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spiral Knights.lnk
2014-02-10 01:01 - 2014-02-10 01:03 - 00000000 ____D () C:\Users\Raven\Desktop\Mistrz i Małgorzata
2014-02-06 16:48 - 2014-02-11 12:23 - 00000022 _____ () C:\Users\Raven\Desktop\New Text Document (2).txt
2014-02-01 23:29 - 2014-02-01 23:30 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\NapiProjekt
2014-02-01 23:29 - 2014-02-01 23:29 - 00000000 ____D () C:\Program Files (x86)\NapiProjekt
2014-02-01 11:06 - 2014-02-23 16:30 - 00001397 _____ () C:\Users\Raven\Desktop\New Text Document.txt

==================== One Month Modified Files and Folders =======

2014-02-27 12:03 - 2014-02-27 12:02 - 00000000 ____D () C:\FRST
2014-02-27 12:03 - 2014-01-16 19:57 - 00000000 ____D () C:\Users\Raven\Desktop\Download
2014-02-27 12:01 - 2014-01-16 23:02 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\ClassicShell
2014-02-27 12:00 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-02-27 11:27 - 2014-01-16 18:49 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1456361715-324973510-1321076691-1002
2014-02-27 11:10 - 2014-01-16 19:55 - 00001060 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-27 11:06 - 2014-02-27 11:08 - 00069328 _____ () C:\Users\Raven\Desktop\Extras.Txt
2014-02-27 11:06 - 2014-02-27 11:06 - 00143756 _____ () C:\Users\Raven\Desktop\OTL.Txt
2014-02-27 10:23 - 2014-02-27 10:10 - 00000000 ___RD () C:\Users\Raven\Dropbox
2014-02-27 10:23 - 2014-02-27 10:09 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\Dropbox
2014-02-27 10:23 - 2014-01-16 18:43 - 00000000 ___RD () C:\Users\Raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-27 10:14 - 2014-02-27 10:10 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\DropboxMaster
2014-02-27 10:12 - 2014-01-16 23:43 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\foobar2000
2014-02-27 10:10 - 2014-02-27 10:10 - 00001058 _____ () C:\Users\Raven\Desktop\Dropbox.lnk
2014-02-27 10:10 - 2014-01-16 22:04 - 00000000 ____D () C:\Users\Raven
2014-02-27 10:09 - 2014-02-27 10:09 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-02-27 09:56 - 2014-02-12 13:11 - 00000000 ____D () C:\Users\Raven\AppData\Local\SoulseekQt
2014-02-27 09:47 - 2014-01-16 22:14 - 01218232 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-27 09:28 - 2014-01-16 18:45 - 00000000 ____D () C:\Users\Raven\Documents\Youcam
2014-02-27 09:27 - 2014-01-16 22:33 - 00000000 __RDO () C:\Users\Raven\SkyDrive
2014-02-27 09:27 - 2014-01-16 19:55 - 00001056 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-27 00:53 - 2014-01-16 18:43 - 00003918 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{4DA2B6AB-3B8F-4979-AC74-F534686AD11C}
2014-02-26 22:03 - 2013-11-14 12:45 - 00956476 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-26 19:18 - 2013-08-22 14:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-26 17:17 - 2014-02-24 14:50 - 00000000 ____D () C:\Users\Raven\AppData\Local\ChomikBox
2014-02-26 16:37 - 2014-02-24 14:50 - 00000000 ____D () C:\Users\Raven\.gstreamer-0.10
2014-02-26 16:15 - 2014-02-24 10:55 - 00000000 ____D () C:\Users\Raven\Desktop\cv f
2014-02-25 13:31 - 2013-08-22 13:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-02-24 18:40 - 2014-02-24 14:52 - 00000000 ____D () C:\Users\Raven\Downloads\ChomikBox
2014-02-24 14:50 - 2014-02-24 14:50 - 00000674 _____ () C:\Users\Public\Desktop\ChomikBox.lnk
2014-02-24 14:50 - 2014-02-24 14:50 - 00000000 ____D () C:\Program Files (x86)\ChomikBox
2014-02-24 12:35 - 2014-02-24 12:34 - 00000000 ____D () C:\Users\Raven\AppData\Local\NPE
2014-02-24 12:35 - 2014-01-16 16:35 - 00000000 ____D () C:\ProgramData\Norton
2014-02-24 10:54 - 2014-02-24 10:54 - 00000000 ____D () C:\Users\Raven\Desktop\cv u
2014-02-24 01:29 - 2014-01-20 21:39 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\uTorrent
2014-02-24 01:29 - 2014-01-16 23:01 - 00000000 ____D () C:\ProgramData\ClassicShell
2014-02-24 01:29 - 2014-01-16 23:01 - 00000000 ____D () C:\Program Files\Classic Shell
2014-02-24 01:29 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\Help
2014-02-24 01:29 - 2013-07-19 21:51 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-02-24 01:23 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\registration
2014-02-24 01:22 - 2013-07-19 21:46 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2014-02-23 20:35 - 2014-02-23 20:35 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\Prince of Persia - The Sands of Time
2014-02-23 16:30 - 2014-02-01 11:06 - 00001397 _____ () C:\Users\Raven\Desktop\New Text Document.txt
2014-02-23 15:05 - 2013-08-22 14:46 - 00314617 _____ () C:\WINDOWS\setupact.log
2014-02-22 19:53 - 2014-02-22 19:53 - 00000000 ____D () C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}
2014-02-22 19:51 - 2012-08-04 00:02 - 00000000 ____D () C:\SWSetup
2014-02-22 11:18 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-02-22 10:13 - 2013-08-22 13:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-02-22 10:06 - 2014-02-22 10:06 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-02-22 10:06 - 2014-02-22 10:06 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2014-02-22 10:06 - 2014-02-22 10:06 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2014-02-22 10:06 - 2014-02-22 10:06 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-02-22 10:06 - 2014-02-22 10:06 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-02-21 15:20 - 2014-01-24 16:54 - 00000052 _____ () C:\WINDOWS\SysWOW64\DOErrors.log
2014-02-21 15:20 - 2014-01-24 16:54 - 00000000 _____ () C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-02-21 00:05 - 2014-02-21 00:37 - 212981652 _____ () C:\Users\Raven\Desktop\Wonderland_Clash of Queens all_CMYK.tif
2014-02-19 16:35 - 2014-01-16 18:43 - 00000000 ___RD () C:\Users\Raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-19 16:35 - 2013-08-22 14:44 - 00361696 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-19 16:33 - 2013-08-22 15:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-02-19 16:33 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-02-19 16:33 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-02-19 16:33 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-02-19 16:33 - 2013-08-22 13:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-02-19 16:33 - 2013-08-22 13:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-02-18 16:38 - 2014-02-18 16:21 - 00000000 ____D () C:\Users\Raven\AppData\Local\Deployment
2014-02-18 16:27 - 2014-02-18 16:22 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\Curse Advertising
2014-02-18 16:21 - 2014-01-16 19:55 - 00000000 ____D () C:\Users\Raven\AppData\Local\Apps\2.0
2014-02-17 21:00 - 2013-08-22 15:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-17 21:00 - 2013-08-22 15:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-17 11:08 - 2014-01-16 20:29 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-17 11:06 - 2014-01-16 20:29 - 88567024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-17 00:26 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-02-15 20:17 - 2014-02-15 20:17 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\CyberLink
2014-02-15 20:17 - 2014-01-16 16:25 - 00000000 ____D () C:\Users\Public\CyberLink
2014-02-15 20:17 - 2014-01-16 16:21 - 00000000 ____D () C:\ProgramData\CyberLink
2014-02-15 19:05 - 2014-01-16 19:55 - 00004032 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-15 19:05 - 2014-01-16 19:55 - 00003796 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-15 15:07 - 2014-02-15 15:07 - 00003160 _____ () C:\WINDOWS\System32\Tasks\CLVDLauncher
2014-02-15 15:07 - 2014-02-15 15:07 - 00003160 _____ () C:\WINDOWS\System32\Tasks\CLMLSvc_P2G8
2014-02-15 15:06 - 2014-01-16 16:19 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-02-15 14:45 - 2014-01-16 16:13 - 00000000 ____D () C:\WINDOWS\Hewlett-Packard
2014-02-12 12:11 - 2014-02-12 12:11 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoulseekQt
2014-02-12 12:11 - 2014-02-12 12:10 - 00000000 ____D () C:\Program Files (x86)\SoulseekQt
2014-02-11 20:52 - 2014-02-11 20:52 - 00001142 _____ () C:\Users\Raven\Desktop\Spiral Knights.lnk
2014-02-11 20:52 - 2014-02-11 20:52 - 00001142 _____ () C:\Users\Raven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spiral Knights.lnk
2014-02-11 12:23 - 2014-02-06 16:48 - 00000022 _____ () C:\Users\Raven\Desktop\New Text Document (2).txt
2014-02-10 01:03 - 2014-02-10 01:01 - 00000000 ____D () C:\Users\Raven\Desktop\Mistrz i Małgorzata
2014-02-06 12:16 - 2014-02-13 00:37 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-06 11:30 - 2014-02-13 00:37 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-06 11:30 - 2014-02-13 00:37 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-06 11:12 - 2014-02-13 00:37 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-06 11:07 - 2014-02-13 00:37 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-06 11:06 - 2014-02-13 00:37 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-06 10:57 - 2014-02-13 00:37 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-06 10:56 - 2014-02-13 00:37 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-06 10:49 - 2014-02-13 00:37 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-06 10:48 - 2014-02-13 00:37 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-06 10:48 - 2014-02-13 00:37 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-06 10:38 - 2014-02-13 00:37 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-06 10:32 - 2014-02-13 00:37 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-06 10:20 - 2014-02-13 00:37 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-06 10:17 - 2014-02-13 00:37 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-06 10:11 - 2014-02-13 00:37 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-06 10:01 - 2014-02-13 00:37 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-06 10:00 - 2014-02-13 00:37 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-06 09:57 - 2014-02-13 00:37 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-06 09:57 - 2014-02-13 00:37 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-06 09:52 - 2014-02-13 00:37 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-06 09:52 - 2014-02-13 00:37 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-06 09:50 - 2014-02-13 00:37 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-06 09:47 - 2014-02-13 00:37 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-06 09:46 - 2014-02-13 00:37 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-06 09:25 - 2014-02-13 00:37 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-06 09:25 - 2014-02-13 00:37 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-06 09:24 - 2014-02-13 00:37 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-06 09:22 - 2014-02-13 00:37 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-06 09:13 - 2014-02-13 00:37 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-06 09:09 - 2014-02-13 00:37 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-06 09:03 - 2014-02-13 00:37 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-06 08:55 - 2014-02-13 00:37 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-06 08:41 - 2014-02-13 00:37 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-06 08:40 - 2014-02-13 00:37 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-06 08:36 - 2014-02-13 00:37 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-06 08:34 - 2014-02-13 00:37 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-03 23:32 - 2013-11-14 04:34 - 00018948 _____ () C:\WINDOWS\PFRO.log
2014-02-01 23:30 - 2014-02-01 23:29 - 00000000 ____D () C:\Users\Raven\AppData\Roaming\NapiProjekt
2014-02-01 23:29 - 2014-02-01 23:29 - 00000000 ____D () C:\Program Files (x86)\NapiProjekt
2014-01-31 11:34 - 2014-01-16 16:14 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros

Files to move or delete:
====================
C:\Users\Raven\AppData\Local\Temp\svchost.exe
C:\ProgramData\hash.dat


Some content of TEMP:
====================
C:\Users\Raven\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp8mezlh.dll
C:\Users\Raven\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzehnfh.dll
C:\Users\Raven\AppData\Local\Temp\Extract.exe
C:\Users\Raven\AppData\Local\Temp\k7oct64y.dll
C:\Users\Raven\AppData\Local\Temp\MouseKeyboardCenterx64_1033.exe
C:\Users\Raven\AppData\Local\Temp\SP63065.exe
C:\Users\Raven\AppData\Local\Temp\SP63285.exe
C:\Users\Raven\AppData\Local\Temp\SP63341.exe
C:\Users\Raven\AppData\Local\Temp\SP63599.exe
C:\Users\Raven\AppData\Local\Temp\SP63752.exe
C:\Users\Raven\AppData\Local\Temp\SP63786.exe
C:\Users\Raven\AppData\Local\Temp\SP64109.exe
C:\Users\Raven\AppData\Local\Temp\sp64126.exe
C:\Users\Raven\AppData\Local\Temp\SP64223.exe
C:\Users\Raven\AppData\Local\Temp\SP64224.exe
C:\Users\Raven\AppData\Local\Temp\SP64225.exe
C:\Users\Raven\AppData\Local\Temp\SP64226.exe
C:\Users\Raven\AppData\Local\Temp\SP64255.exe
C:\Users\Raven\AppData\Local\Temp\SP64569.exe
C:\Users\Raven\AppData\Local\Temp\SP64854.exe
C:\Users\Raven\AppData\Local\Temp\SP65048.exe
C:\Users\Raven\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\Raven\AppData\Local\Temp\svchost.exe
C:\Users\Raven\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\Raven\AppData\Local\Temp\uttB053.tmp.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-26 12:57

==================== End Of Log ============================