Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:22-06-2014 Ran by Andrzej (administrator) on ANDRZEJ-LAPTOP on 23-06-2014 15:26:25 Running from F:\diagnostyka Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Polski (Polska) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (Lenovo.) C:\Windows\System32\ibmpmsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe (Fuyu LIMITED) C:\ProgramData\WindowsProtectManger\wprotectmanager.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Vimicro) C:\Program Files\USB Camera\VM331STI.EXE (Intel Corporation) C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe () C:\ProgramData\DatacardService\DCService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (GG Network S.A.) C:\Users\Andrzej\AppData\Local\GG\Application\gghub.exe (Redefine Sp z o.o.) C:\Program Files\ipla\ipla.exe (Huawei Technologies Co., Ltd.) C:\Users\Andrzej\AppData\Roaming\PLAY ONLINE\ouc.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\MDM.EXE (Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe (Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (GG Network S.A.) C:\Users\Andrzej\AppData\Local\GG\Application\ggapp.exe (Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe (Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe () C:\Program Files\Greener Web\updateGreenerWeb.exe () C:\Program Files\Greener Web\bin\utilGreenerWeb.exe (Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11947080 2013-05-13] (Realtek Semiconductor) HKLM\...\Run: [331BigDog] => C:\Program Files\USB Camera\VM331STI.EXE [548864 2013-03-12] (Vimicro) HKLM\...\Run: [USB3MON] => C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-03-27] (Intel Corporation) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2350832 2013-03-29] (Synaptics Incorporated) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3774312 2014-04-02] (AVAST Software) HKU\.DEFAULT\...\Run: [HW_OPENEYE_OUC_PLAY ONLINE] => C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe [110592 2009-04-14] (Huawei Technologies Co., Ltd.) HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\Run: [GG] => C:\Users\Andrzej\AppData\Local\GG\Application\gghub.exe [4023360 2014-06-10] (GG Network S.A.) HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\Run: [IPLA!] => C:\Program Files\ipla\ipla.exe [16222208 2010-07-07] (Redefine Sp z o.o.) HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\Run: [UpdateMyDrivers] => C:\Program Files\SmartTweak\UpdateMyDrivers\UpdateMyDrivers.exe /ot /as /ss HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\Run: [SpeedUpMyComputer] => C:\Program Files\SmartTweak\SpeedUpMyComputer\SpeedUpMyComputer.exe /ot /as HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\Run: [FixMyRegistry] => C:\Program Files\SmartTweak\FixMyRegistry\FixMyRegistry.exe /ot /as HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\Run: [HW_OPENEYE_OUC_PLAY ONLINE] => C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe [110592 2009-04-14] (Huawei Technologies Co., Ltd.) HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\MountPoints2: {26c84c99-f944-11e3-8e89-8056f2da4438} - F:\AutoRun.exe HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\MountPoints2: {34199271-8a98-11e3-8f0c-8056f2da4438} - F:\AutoRun.exe HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\MountPoints2: {3419927b-8a98-11e3-8f0c-8056f2da4438} - F:\AutoRun.exe HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\MountPoints2: {bb7e6b7b-f8aa-11e3-906b-8056f2da4438} - F:\AutoRun.exe HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\MountPoints2: {bb7e6b92-f8aa-11e3-906b-8056f2da4438} - F:\AutoRun.exe HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\MountPoints2: {bcff1cff-e0cd-11e3-8f79-8056f2da4438} - F:\AutoRun.exe HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\MountPoints2: {bcff1d08-e0cd-11e3-8f79-8056f2da4438} - F:\AutoRun.exe HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\MountPoints2: {bcff1d27-e0cd-11e3-8f79-001e101fabdd} - F:\AutoRun.exe HKU\S-1-5-21-2249233204-1993995762-2997965696-1000\...\MountPoints2: {bcff1db7-e0cd-11e3-8f79-001e101fabdd} - F:\AutoRun.exe AppInit_DLLs: C:\PROGRA~1\SupTab\SEARCH~1.DLL => C:\PROGRA~1\SupTab\SEARCH~1.DLL File Not Found Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.) Startup: C:\Users\Andrzej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\lollipop.lnk ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software) ShellIconOverlayIdentifiers: GGDriveOverlay1 -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ShellIconOverlayIdentifiers: GGDriveOverlay2 -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ShellIconOverlayIdentifiers: GGDriveOverlay3 -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ShellIconOverlayIdentifiers: GGDriveOverlay4 -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x115CE544971BCF01 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1403261780&from=cor&uid=WDCXWD5000LPVT-24G33T1_WD-WXD1E63KCKY9KCKY9&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1403261780&from=cor&uid=WDCXWD5000LPVT-24G33T1_WD-WXD1E63KCKY9KCKY9&q={searchTerms} URLSearchHook: HKLM - mySyncCell Toolbar - {d46d0a6c-fab1-45a4-997e-030450e41de5} - C:\Program Files\mySyncCell\prxtbmySy.dll (Conduit Ltd.) URLSearchHook: HKCU - mySyncCell Toolbar - {d46d0a6c-fab1-45a4-997e-030450e41de5} - C:\Program Files\mySyncCell\prxtbmySy.dll (Conduit Ltd.) BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.) BHO: Greener Web - {1973d53b-7311-45d7-8270-f44571c041a0} - C:\Program Files\Greener Web\GreenerWebbho.dll (Greener Web) BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: mySyncCell Toolbar - {d46d0a6c-fab1-45a4-997e-030450e41de5} - C:\Program Files\mySyncCell\prxtbmySy.dll (Conduit Ltd.) Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKLM - mySyncCell Toolbar - {d46d0a6c-fab1-45a4-997e-030450e41de5} - C:\Program Files\mySyncCell\prxtbmySy.dll (Conduit Ltd.) DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{3BF034D5-2625-41EC-BC70-0D6F447748C2}: [NameServer]212.2.96.53 212.2.96.54 Tcpip\..\Interfaces\{DE43400E-21A5-43D7-9A58-71464CA2AB07}: [NameServer]212.2.96.53 212.2.96.54 FireFox: ======== FF ProfilePath: C:\Users\Andrzej\AppData\Roaming\Mozilla\Firefox\Profiles\3yf99llf.default-1391865424975 FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll () FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF user.js: detected! => C:\Users\Andrzej\AppData\Roaming\Mozilla\Firefox\Profiles\3yf99llf.default-1391865424975\user.js FF Extension: Greener Web - C:\Users\Andrzej\AppData\Roaming\Mozilla\Firefox\Profiles\3yf99llf.default-1391865424975\Extensions\{a3f28269-ad17-41a8-b032-3e0313ef8979}.xpi [2014-06-20] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-01-27] FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] Chrome: ======= CHR StartupUrls: "hxxp://www.sweet-page.com/?type=hp&ts=1403261780&from=cor&uid=WDCXWD5000LPVT-24G33T1_WD-WXD1E63KCKY9KCKY9" CHR Extension: (Dokumenty Google) - C:\Users\Andrzej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-29] CHR Extension: (Dysk Google) - C:\Users\Andrzej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-29] CHR Extension: (YouTube) - C:\Users\Andrzej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-29] CHR Extension: (Szukaj w Google) - C:\Users\Andrzej\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-29] CHR Extension: (avast! Online Security) - C:\Users\Andrzej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-01-29] CHR Extension: (Google Wallet) - C:\Users\Andrzej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-01-29] CHR Extension: (Gmail) - C:\Users\Andrzej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-29] CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-01-27] ========================== Services (Whitelisted) ================= R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-27] (AVAST Software) R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [829656 2013-02-19] (Broadcom Corporation.) S3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [277616 2012-12-14] (Intel Corporation) R2 DCService.exe; C:\ProgramData\DatacardService\DCService.exe [249856 2010-09-29] () [File not signed] R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [704112 2014-05-08] (Cherished Technololgy LIMITED) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [583680 2013-02-13] (Intel(R) Corporation) [File not signed] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [637912 2013-02-13] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation) S3 iumsvc; C:\Program Files\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] () R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.) R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-11-15] (Motorola Mobility LLC) R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed] R2 Update Greener Web; C:\Program Files\Greener Web\updateGreenerWeb.exe [318240 2014-06-20] () R2 Util Greener Web; C:\Program Files\Greener Web\bin\utilGreenerWeb.exe [318240 2014-06-20] () R2 WindowsProtectManger; C:\ProgramData\WindowsProtectManger\wprotectmanager.exe [591776 2014-06-12] (Fuyu LIMITED) ==================== Drivers (Whitelisted) ==================== R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-01-27] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [79720 2014-01-27] (AVAST Software) R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-01-27] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [775952 2014-01-27] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [410784 2014-01-27] (AVAST Software) S3 aswStm; C:\Windows\system32\drivers\aswStm.sys [64168 2014-01-27] (AVAST Software) R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180248 2014-01-27] () R3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [170552 2012-09-25] (Broadcom Corporation.) R3 btwampfl; C:\Windows\system32\drivers\btwampfl.sys [508184 2012-12-04] (Broadcom Corporation.) R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [15640 2012-03-27] (Intel Corporation) R3 iusb3hub; C:\Windows\System32\DRIVERS\iusb3hub.sys [349976 2012-03-27] (Intel Corporation) R3 iusb3xhc; C:\Windows\System32\DRIVERS\iusb3xhc.sys [792856 2012-03-27] (Intel Corporation) R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [56432 2013-03-12] (Intel Corporation) R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [38640 2013-03-29] (Synaptics Incorporated) R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [1002368 2013-04-17] (Vimicro Corporation) R1 {a3f28269-ad17-41a8-b032-3e0313ef8979}Gw; C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw.sys [52928 2014-06-19] (StdLib) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-06-23 15:26 - 2014-06-23 15:26 - 00000000 ____D () C:\FRST 2014-06-22 03:00 - 2014-06-22 03:01 - 00257532 _____ () C:\Windows\msxml4-KB2758694-enu.LOG 2014-06-20 20:46 - 2014-06-20 20:46 - 00001169 _____ () C:\Users\Public\Desktop\Internet w Cyfrowym Polsacie.lnk 2014-06-20 20:46 - 2014-06-20 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet w Cyfrowym Polsacie 2014-06-20 20:46 - 2010-09-03 17:35 - 00168960 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juwwanecm.sys 2014-06-20 20:46 - 2010-09-03 17:34 - 00027008 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_juextctrl.sys 2014-06-20 20:46 - 2010-08-24 22:52 - 00082816 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcacm.sys 2014-06-20 20:46 - 2010-07-27 15:25 - 00072832 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jubusenum.sys 2014-06-20 20:46 - 2010-07-27 15:25 - 00051712 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_jucdcecm.sys 2014-06-20 20:46 - 2010-05-04 16:50 - 00019456 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwupgrade.sys 2014-06-20 20:45 - 2010-08-31 18:09 - 00208896 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbnet.sys 2014-06-20 20:45 - 2010-08-07 17:48 - 00106880 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys 2014-06-20 20:45 - 2010-07-27 09:52 - 00102784 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_hwusbdev.sys 2014-06-20 20:45 - 2010-05-10 14:18 - 00860928 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys 2014-06-20 20:45 - 2010-03-20 12:06 - 00011136 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ew_usbenumfilter.sys 2014-06-20 20:45 - 2010-01-18 18:48 - 00027136 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys 2014-06-20 17:04 - 2014-06-20 17:05 - 01047460 _____ () C:\Users\Andrzej\Downloads\install_flashplayer14x32_mssa_awc_aih.exe 2014-06-20 16:56 - 2014-06-20 17:00 - 01054400 _____ () C:\Users\Andrzej\Downloads\install_flashplayer14x32_mssd_awc_aih(1).exe 2014-06-20 16:39 - 2014-06-20 16:47 - 01051624 _____ () C:\Users\Andrzej\Downloads\install_flashplayer14x32_mssd_awc_aih.exe 2014-06-20 12:56 - 2014-06-20 13:21 - 00000000 ____D () C:\Program Files\SupTab 2014-06-20 12:56 - 2014-06-20 12:57 - 00000000 ____D () C:\ProgramData\WindowsProtectManger 2014-06-20 12:56 - 2014-06-20 12:57 - 00000000 ____D () C:\ProgramData\IePluginServices 2014-06-20 12:55 - 2014-06-20 12:55 - 08753504 _____ () C:\Users\Andrzej\Downloads\SyncCell 3.1.07 [1].exe 2014-06-20 12:54 - 2014-06-20 12:54 - 00679208 _____ () C:\Users\Andrzej\Downloads\SyncCell 3.1.07.exe 2014-06-20 11:35 - 2014-06-19 15:27 - 00052928 _____ (StdLib) C:\Windows\system32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw.sys 2014-06-20 10:41 - 2014-06-20 10:41 - 00000000 ____D () C:\Users\Andrzej\AppData\Local\Conduit 2014-06-20 10:41 - 2014-06-20 10:41 - 00000000 ____D () C:\Program Files\Conduit 2014-06-20 10:40 - 2014-06-20 10:40 - 00000000 ____D () C:\ProgramData\Andrzej 2014-06-20 10:38 - 2014-06-20 13:23 - 00000000 ____D () C:\Program Files\SyncCell 2014-06-20 10:38 - 2014-06-20 12:59 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\SyncCell 2014-06-20 10:38 - 2014-06-20 10:41 - 00000000 ____D () C:\Program Files\mySyncCell 2014-06-20 10:38 - 2014-06-20 10:38 - 00000019 _____ () C:\Windows\info9.ini 2014-06-20 10:38 - 2014-06-20 10:38 - 00000019 _____ () C:\Windows\info7.ini 2014-06-20 10:38 - 2014-06-20 10:38 - 00000019 _____ () C:\Windows\info4.ini 2014-06-20 10:38 - 2014-06-20 10:38 - 00000019 _____ () C:\Windows\info10.ini 2014-06-20 10:34 - 2014-06-20 12:40 - 00000000 ____D () C:\Program Files\Greener Web 2014-06-20 10:33 - 2014-06-20 10:33 - 10231800 _____ () C:\Users\Andrzej\Downloads\SyncCellSetup.exe 2014-06-20 10:31 - 2014-06-20 10:31 - 00702504 _____ () C:\Users\Andrzej\Downloads\SyncCell-for-Motorola(12820).exe 2014-06-20 09:55 - 2014-06-23 13:12 - 00000000 ____D () C:\Temp 2014-06-20 09:55 - 2014-06-20 09:55 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\Motorola Mobility 2014-06-20 09:54 - 2014-06-20 14:02 - 00000000 ____D () C:\Program Files\Motorola Mobility 2014-06-20 09:54 - 2014-06-20 09:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager 2014-06-20 09:54 - 2014-06-20 09:54 - 00000000 ____D () C:\Program Files\Motorola 2014-06-20 09:54 - 2014-06-20 09:54 - 00000000 ____D () C:\Program Files\Common Files\MSSoap 2014-06-20 09:53 - 2014-06-20 09:53 - 00000000 ____D () C:\Program Files\MSXML 4.0 2014-06-20 09:52 - 2014-06-20 09:52 - 00000000 ____D () C:\Program Files\Common Files\Motorola Shared 2014-06-20 09:50 - 2014-06-20 09:50 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\Motorola 2014-06-20 09:48 - 2014-06-20 09:50 - 33586888 _____ (Motorola Mobility) C:\Users\Andrzej\Downloads\MotorolaDeviceManager_2.4.5.exe 2014-06-18 10:43 - 2014-06-20 17:03 - 00000000 ____D () C:\Users\Andrzej\AppData\Local\Adobe 2014-06-18 00:36 - 2014-06-18 00:36 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-06-12 16:41 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-06-12 16:41 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-06-12 16:41 - 2014-05-30 11:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-06-12 16:41 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-06-12 16:41 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-06-12 16:41 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-06-12 16:41 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-06-12 16:41 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-06-12 16:41 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-06-12 16:41 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-06-12 16:41 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-06-12 16:41 - 2014-05-30 10:28 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-06-12 16:41 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-06-12 16:41 - 2014-05-30 10:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-06-12 16:41 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-06-12 16:41 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-06-12 16:41 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-06-12 16:41 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-06-12 16:41 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-06-12 16:41 - 2014-05-30 09:57 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-06-12 16:41 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-06-12 16:41 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-06-12 16:41 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-06-12 16:41 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-06-12 16:41 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-06-12 16:41 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-06-12 16:41 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-06-12 16:41 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-06-12 16:40 - 2014-06-08 10:48 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-06-12 16:40 - 2014-06-08 10:43 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-06-12 16:40 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll 2014-06-12 16:40 - 2014-04-05 04:25 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-06-12 16:40 - 2014-04-05 04:24 - 00187840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2014-06-12 16:40 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2014-06-12 16:40 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-06-12 16:40 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll 2014-06-12 16:40 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2014-06-11 22:39 - 2014-05-08 11:06 - 02742784 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-06-11 22:39 - 2014-05-08 11:06 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll 2014-05-28 22:45 - 2014-05-28 22:45 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-05-25 00:38 - 2014-06-04 22:31 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\PLAY ONLINE ==================== One Month Modified Files and Folders ======= 2014-06-23 15:26 - 2014-06-23 15:26 - 00000000 ____D () C:\FRST 2014-06-23 15:23 - 2014-01-27 21:33 - 01198942 _____ () C:\Windows\WindowsUpdate.log 2014-06-23 15:23 - 2011-04-12 07:08 - 00743926 _____ () C:\Windows\system32\perfh015.dat 2014-06-23 15:23 - 2011-04-12 07:08 - 00157508 _____ () C:\Windows\system32\perfc015.dat 2014-06-23 15:23 - 2010-11-20 23:01 - 01679230 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-06-23 15:22 - 2014-01-29 05:10 - 00001038 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-06-23 15:21 - 2014-01-27 22:25 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-06-23 13:25 - 2009-07-14 06:34 - 00031504 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-06-23 13:25 - 2009-07-14 06:34 - 00031504 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-06-23 13:12 - 2014-06-20 09:55 - 00000000 ____D () C:\Temp 2014-06-23 13:12 - 2014-01-31 19:10 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\ipla 2014-06-23 13:12 - 2014-01-29 05:10 - 00001034 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-06-23 13:12 - 2014-01-28 20:26 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\GG 2014-06-23 13:11 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-06-23 13:11 - 2009-07-14 06:39 - 00056603 _____ () C:\Windows\setupact.log 2014-06-22 03:01 - 2014-06-22 03:00 - 00257532 _____ () C:\Windows\msxml4-KB2758694-enu.LOG 2014-06-21 15:08 - 2009-07-14 04:04 - 00000601 _____ () C:\Windows\win.ini 2014-06-20 20:47 - 2014-01-31 18:59 - 00000000 ____D () C:\Program Files\Internet w Cyfrowym Polsacie 2014-06-20 20:47 - 2014-01-31 18:58 - 00000000 ____D () C:\ProgramData\DatacardService 2014-06-20 20:46 - 2014-06-20 20:46 - 00001169 _____ () C:\Users\Public\Desktop\Internet w Cyfrowym Polsacie.lnk 2014-06-20 20:46 - 2014-06-20 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet w Cyfrowym Polsacie 2014-06-20 17:05 - 2014-06-20 17:04 - 01047460 _____ () C:\Users\Andrzej\Downloads\install_flashplayer14x32_mssa_awc_aih.exe 2014-06-20 17:03 - 2014-06-18 10:43 - 00000000 ____D () C:\Users\Andrzej\AppData\Local\Adobe 2014-06-20 17:00 - 2014-06-20 16:56 - 01054400 _____ () C:\Users\Andrzej\Downloads\install_flashplayer14x32_mssd_awc_aih(1).exe 2014-06-20 16:47 - 2014-06-20 16:39 - 01051624 _____ () C:\Users\Andrzej\Downloads\install_flashplayer14x32_mssd_awc_aih.exe 2014-06-20 14:02 - 2014-06-20 09:54 - 00000000 ____D () C:\Program Files\Motorola Mobility 2014-06-20 13:33 - 2010-11-20 23:48 - 00097762 _____ () C:\Windows\PFRO.log 2014-06-20 13:23 - 2014-06-20 10:38 - 00000000 ____D () C:\Program Files\SyncCell 2014-06-20 13:21 - 2014-06-20 12:56 - 00000000 ____D () C:\Program Files\SupTab 2014-06-20 12:59 - 2014-06-20 10:38 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\SyncCell 2014-06-20 12:57 - 2014-06-20 12:56 - 00000000 ____D () C:\ProgramData\WindowsProtectManger 2014-06-20 12:57 - 2014-06-20 12:56 - 00000000 ____D () C:\ProgramData\IePluginServices 2014-06-20 12:55 - 2014-06-20 12:55 - 08753504 _____ () C:\Users\Andrzej\Downloads\SyncCell 3.1.07 [1].exe 2014-06-20 12:54 - 2014-06-20 12:54 - 00679208 _____ () C:\Users\Andrzej\Downloads\SyncCell 3.1.07.exe 2014-06-20 12:40 - 2014-06-20 10:34 - 00000000 ____D () C:\Program Files\Greener Web 2014-06-20 12:40 - 2014-01-27 22:21 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-06-20 10:41 - 2014-06-20 10:41 - 00000000 ____D () C:\Users\Andrzej\AppData\Local\Conduit 2014-06-20 10:41 - 2014-06-20 10:41 - 00000000 ____D () C:\Program Files\Conduit 2014-06-20 10:41 - 2014-06-20 10:38 - 00000000 ____D () C:\Program Files\mySyncCell 2014-06-20 10:40 - 2014-06-20 10:40 - 00000000 ____D () C:\ProgramData\Andrzej 2014-06-20 10:38 - 2014-06-20 10:38 - 00000019 _____ () C:\Windows\info9.ini 2014-06-20 10:38 - 2014-06-20 10:38 - 00000019 _____ () C:\Windows\info7.ini 2014-06-20 10:38 - 2014-06-20 10:38 - 00000019 _____ () C:\Windows\info4.ini 2014-06-20 10:38 - 2014-06-20 10:38 - 00000019 _____ () C:\Windows\info10.ini 2014-06-20 10:33 - 2014-06-20 10:33 - 10231800 _____ () C:\Users\Andrzej\Downloads\SyncCellSetup.exe 2014-06-20 10:31 - 2014-06-20 10:31 - 00702504 _____ () C:\Users\Andrzej\Downloads\SyncCell-for-Motorola(12820).exe 2014-06-20 09:55 - 2014-06-20 09:55 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\Motorola Mobility 2014-06-20 09:54 - 2014-06-20 09:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager 2014-06-20 09:54 - 2014-06-20 09:54 - 00000000 ____D () C:\Program Files\Motorola 2014-06-20 09:54 - 2014-06-20 09:54 - 00000000 ____D () C:\Program Files\Common Files\MSSoap 2014-06-20 09:53 - 2014-06-20 09:53 - 00000000 ____D () C:\Program Files\MSXML 4.0 2014-06-20 09:52 - 2014-06-20 09:52 - 00000000 ____D () C:\Program Files\Common Files\Motorola Shared 2014-06-20 09:52 - 2014-01-27 21:52 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2014-06-20 09:50 - 2014-06-20 09:50 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\Motorola 2014-06-20 09:50 - 2014-06-20 09:48 - 33586888 _____ (Motorola Mobility) C:\Users\Andrzej\Downloads\MotorolaDeviceManager_2.4.5.exe 2014-06-19 15:27 - 2014-06-20 11:35 - 00052928 _____ (StdLib) C:\Windows\system32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}Gw.sys 2014-06-18 00:36 - 2014-06-18 00:36 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-06-14 02:48 - 2014-01-27 22:25 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-06-14 02:48 - 2014-01-27 22:25 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-06-13 08:08 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache 2014-06-13 05:16 - 2014-05-07 05:40 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-06-12 03:03 - 2013-08-16 00:22 - 00000000 ____D () C:\Windows\system32\MRT 2014-06-12 03:01 - 2013-08-16 00:22 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-06-12 02:50 - 2014-01-29 05:11 - 00002135 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-06-10 04:03 - 2014-01-28 20:26 - 00000000 ____D () C:\Users\Andrzej\AppData\Local\GG 2014-06-08 10:48 - 2014-06-12 16:40 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-06-08 10:43 - 2014-06-12 16:40 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-06-04 22:31 - 2014-05-25 00:38 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\PLAY ONLINE 2014-06-04 22:31 - 2014-05-21 12:15 - 00000000 ____D () C:\Program Files\PLAY ONLINE 2014-06-02 03:00 - 2014-01-29 01:38 - 00000000 ____D () C:\Users\Andrzej\AppData\Roaming\Skype 2014-05-30 21:04 - 2014-04-14 20:19 - 00000000 ____D () C:\Users\Andrzej\Downloads\kotwa 2014-05-30 11:18 - 2014-06-12 16:41 - 17271296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-05-30 11:02 - 2014-06-12 16:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-05-30 11:02 - 2014-06-12 16:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2014-05-30 10:44 - 2014-06-12 16:41 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-05-30 10:43 - 2014-06-12 16:41 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-05-30 10:42 - 2014-06-12 16:41 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2014-05-30 10:38 - 2014-06-12 16:41 - 02179072 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-05-30 10:34 - 2014-06-12 16:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-05-30 10:33 - 2014-06-12 16:41 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-05-30 10:30 - 2014-06-12 16:41 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2014-05-30 10:28 - 2014-06-12 16:41 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-05-30 10:28 - 2014-06-12 16:41 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2014-05-30 10:27 - 2014-06-12 16:41 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2014-05-30 10:21 - 2014-06-12 16:41 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2014-05-30 10:16 - 2014-06-12 16:41 - 00368128 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-05-30 10:10 - 2014-06-12 16:41 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-05-30 10:06 - 2014-06-12 16:41 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-05-30 10:04 - 2014-06-12 16:41 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-05-30 10:02 - 2014-06-12 16:41 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-05-30 09:57 - 2014-06-12 16:41 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-05-30 09:56 - 2014-06-12 16:41 - 04244992 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-05-30 09:54 - 2014-06-12 16:41 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-05-30 09:50 - 2014-06-12 16:41 - 01068032 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2014-05-30 09:49 - 2014-06-12 16:41 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-05-30 09:40 - 2014-06-12 16:41 - 11725312 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-05-30 09:21 - 2014-06-12 16:41 - 01790976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-05-30 09:15 - 2014-06-12 16:41 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-05-30 09:13 - 2014-06-12 16:41 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2014-05-28 22:45 - 2014-05-28 22:45 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-05-28 22:45 - 2014-01-29 01:38 - 00000000 ___RD () C:\Program Files\Skype 2014-05-28 22:45 - 2014-01-29 01:37 - 00000000 ____D () C:\ProgramData\Skype Files to move or delete: ==================== C:\Users\Windows Portable Devices\sqmapi.dll Some content of TEMP: ==================== C:\Users\Andrzej\AppData\Local\Temp\5flj9cif.dll C:\Users\Andrzej\AppData\Local\Temp\BackupSetup.exe C:\Users\Andrzej\AppData\Local\Temp\bitool.dll C:\Users\Andrzej\AppData\Local\Temp\FixMyRegistry.exe C:\Users\Andrzej\AppData\Local\Temp\fp_pl_pfs_installer.exe C:\Users\Andrzej\AppData\Local\Temp\ggdrive-menu.exe C:\Users\Andrzej\AppData\Local\Temp\ggdrive-overlay.exe C:\Users\Andrzej\AppData\Local\Temp\installstats.exe C:\Users\Andrzej\AppData\Local\Temp\MyPCBackup.exe C:\Users\Andrzej\AppData\Local\Temp\SpeedUpMyComputer.exe ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-06-19 01:13 ==================== End Of Log ============================