OTL logfile created on: 2014-12-31 16:00:33 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Bartas\Downloads 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.17420) Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd 11,92 Gb Total Physical Memory | 8,91 Gb Available Physical Memory | 74,69% Memory free 23,84 Gb Paging File | 19,36 Gb Available in Paging File | 81,18% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 345,48 Gb Total Space | 244,39 Gb Free Space | 70,74% Space Free | Partition Type: NTFS Drive D: | 585,94 Gb Total Space | 539,86 Gb Free Space | 92,14% Space Free | Partition Type: NTFS Computer Name: BARTAS-PC | User Name: Bartas | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2014-12-31 15:59:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Bartas\Downloads\OTL.exe PRC - [2014-12-13 01:13:07 | 002,531,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe PRC - [2014-12-13 01:13:04 | 001,701,520 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe PRC - [2014-12-10 08:07:22 | 002,304,488 | ---- | M] (Baidu, Inc.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavSvc.exe PRC - [2014-12-10 08:06:40 | 001,852,776 | ---- | M] (Baidu, Inc.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavTray.exe PRC - [2014-12-10 08:06:26 | 000,427,672 | ---- | M] (Baidu, Inc.) -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe PRC - [2014-12-05 12:03:08 | 001,731,776 | ---- | M] (Baidu Inc.) -- C:\Program Files (x86)\Baidu Security\PC Faster\5.0.0.0\PCFTray.exe PRC - [2014-12-05 12:02:58 | 001,576,432 | ---- | M] (Baidu Inc.) -- C:\Program Files (x86)\Baidu Security\PC Faster\5.0.0.0\PCFasterSvc.exe PRC - [2014-12-05 12:02:14 | 000,889,328 | ---- | M] (Baidu Inc.) -- C:\Program Files (x86)\Baidu Security\PC Faster\5.0.0.0\FasterNow.exe PRC - [2014-12-01 16:26:32 | 000,682,992 | ---- | M] () -- C:\Program Files\010\duuwysugju32.exe PRC - [2014-10-22 05:05:02 | 000,854,344 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe PRC - [2014-10-15 10:39:46 | 000,468,192 | ---- | M] (Sony) -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe PRC - [2014-06-23 08:07:06 | 000,113,376 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe PRC - [2013-09-04 18:21:42 | 002,112,000 | ---- | M] () -- C:\Program Files (x86)\screenSHU\screenSHU.exe PRC - [2013-04-26 03:25:54 | 000,292,848 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe PRC - [2013-03-22 07:38:32 | 000,286,704 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe PRC - [2013-03-22 07:38:32 | 000,015,344 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe PRC - [2013-03-12 12:19:38 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe PRC - [2013-03-12 12:19:38 | 000,131,544 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe PRC - [2007-09-02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files (x86)\RocketDock\RocketDock.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2014-12-13 11:08:08 | 000,012,104 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll MOD - [2014-10-22 05:05:00 | 014,902,600 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\PepperFlash\pepflashplayer.dll MOD - [2014-10-22 05:04:57 | 008,910,664 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\pdf.dll MOD - [2014-10-22 05:04:51 | 001,042,760 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libglesv2.dll MOD - [2014-10-22 05:04:49 | 000,211,272 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\libegl.dll MOD - [2014-10-22 05:04:48 | 001,681,224 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.111\ffmpegsumo.dll MOD - [2014-10-17 20:53:21 | 001,091,072 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\8c9f9e94e93956d68b43e34324790c6d\System.ServiceModel.Web.ni.dll MOD - [2014-10-17 20:52:40 | 002,997,248 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\92a3b88ac6300af062edd6503bc5903c\System.IdentityModel.ni.dll MOD - [2014-10-17 20:52:38 | 019,696,640 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\316b149dbb031d0e35c9d57bb2fc4b6e\System.ServiceModel.ni.dll MOD - [2014-10-17 20:03:10 | 001,889,792 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\8b133e0d94535a7534719f70873ca7fe\System.Xaml.ni.dll MOD - [2014-10-17 20:02:53 | 012,894,208 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\db563d596d76daed04e9b5d25b2f4cb9\System.Windows.Forms.ni.dll MOD - [2014-10-17 20:02:53 | 007,668,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7147fa233a070283dba824da40089bf1\System.Xml.ni.dll MOD - [2014-10-17 20:02:50 | 002,822,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f9f13cd8fe1cefaad78579a7c3a41464\System.Runtime.Serialization.ni.dll MOD - [2014-10-17 20:02:48 | 006,990,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\691c1ad89d16f49d80e84fa06a79089a\System.Core.ni.dll MOD - [2014-10-17 20:02:48 | 000,794,112 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\35d3a1b878542de59cb4fc0593992404\System.ServiceModel.Internals.ni.dll MOD - [2014-10-17 20:02:47 | 000,122,880 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\046058f81b039ab6fd839e03e67595f8\SMDiagnostics.ni.dll MOD - [2014-10-17 20:02:45 | 000,976,384 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\0648dbecb7e3fb9523565107e04a5caf\System.Configuration.ni.dll MOD - [2014-10-17 20:02:44 | 001,644,544 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\b4c08872c259018b17b2801da33ac80f\System.Drawing.ni.dll MOD - [2014-10-17 20:02:42 | 010,100,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\17a393b77ae757f0768501fb95ff5af6\System.ni.dll MOD - [2014-10-09 23:16:04 | 016,953,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll MOD - [2014-06-23 08:07:06 | 000,113,376 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe MOD - [2013-09-13 10:02:30 | 000,208,896 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll MOD - [2013-09-04 18:21:42 | 002,112,000 | ---- | M] () -- C:\Program Files (x86)\screenSHU\screenSHU.exe MOD - [2012-04-30 10:57:42 | 000,039,936 | ---- | M] () -- C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll MOD - [2011-06-08 08:32:26 | 000,011,362 | ---- | M] () -- C:\Program Files (x86)\screenSHU\mingwm10.dll MOD - [2011-06-08 08:32:24 | 000,043,008 | ---- | M] () -- C:\Program Files (x86)\screenSHU\libgcc_s_dw2-1.dll MOD - [2007-09-02 12:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files (x86)\RocketDock\RocketDock.exe MOD - [2007-09-02 12:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files (x86)\RocketDock\RocketDock.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2014-12-13 01:13:04 | 001,148,560 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService) SRV:[b]64bit:[/b] - [2014-12-13 01:13:03 | 019,823,248 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc) SRV:[b]64bit:[/b] - [2014-12-01 16:26:32 | 000,682,992 | ---- | M] () [Auto | Running] -- C:\Program Files\010\duuwysugju32.exe -- (duuwysugju32) SRV:[b]64bit:[/b] - [2014-11-06 04:30:08 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService) SRV:[b]64bit:[/b] - [2014-10-15 12:56:22 | 000,328,296 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Windows\SysNative\igfxCUIService.exe -- (igfxCUIService1.0.0.0) SRV:[b]64bit:[/b] - [2014-03-03 11:53:34 | 000,344,576 | ---- | M] (Qualcomm Atheros) [Auto | Running] -- C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe -- (Qualcomm Atheros Killer Service V2) SRV:[b]64bit:[/b] - [2013-05-27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2013-03-22 07:38:32 | 000,015,344 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) SRV:[b]64bit:[/b] - [2013-02-13 11:47:04 | 000,820,184 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R) SRV:[b]64bit:[/b] - [2013-02-13 11:46:48 | 000,731,648 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R) SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV - [2014-12-20 00:07:29 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2014-12-13 01:13:04 | 001,701,520 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService) SRV - [2014-12-10 08:07:22 | 002,304,488 | ---- | M] (Baidu, Inc.) [Auto | Running] -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavSvc.exe -- (BavSvc) SRV - [2014-12-10 08:06:26 | 000,427,672 | ---- | M] (Baidu, Inc.) [Auto | Running] -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BHipsSvc.exe -- (BHipsSvc) SRV - [2014-12-05 12:02:58 | 001,576,432 | ---- | M] (Baidu Inc.) [Auto | Running] -- C:\Program Files (x86)\Baidu Security\PC Faster\5.0.0.0\PCFasterSvc.exe -- (PCFasterSvc_{PCFaster_4.0.0.0}) SRV - [2014-11-18 21:23:34 | 000,833,728 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2014-10-15 12:56:22 | 000,279,144 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs) SRV - [2014-09-12 10:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2014-08-19 15:09:48 | 002,282,272 | ---- | M] (IObit) [On_Demand | Stopped] -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc) SRV - [2014-04-03 19:21:48 | 000,315,008 | R--- | M] (Skype Technologies) [On_Demand | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2014-03-20 23:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2014-02-28 11:32:36 | 000,174,368 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe -- (iumsvc) SRV - [2013-09-11 20:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2013-04-25 17:53:06 | 000,042,496 | ---- | M] (Realtek Semiconductor Corporation) [Auto | Running] -- C:\Program Files (x86)\REALTEK\Realtek Bluetooth\RtkBleServ.exe -- (RtkBleServ) SRV - [2013-04-25 15:32:12 | 000,047,104 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe -- (BTDevManager) SRV - [2013-04-02 13:29:46 | 000,035,328 | ---- | M] (Realtek Semiconductor Corporation) [Auto | Running] -- C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe -- (AvrcpService) SRV - [2013-03-12 12:20:08 | 000,366,552 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS) SRV - [2013-03-12 12:19:38 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service) SRV - [2013-03-12 12:19:38 | 000,131,544 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe -- (Intel(R) SRV - [2013-02-04 17:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2014-12-13 11:08:08 | 000,031,376 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt) DRV:[b]64bit:[/b] - [2014-12-13 01:13:03 | 000,019,600 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms) DRV:[b]64bit:[/b] - [2014-12-10 08:07:18 | 000,222,016 | ---- | M] (Baidu, Inc.) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BdSandbox.sys -- (BdSandbox) DRV:[b]64bit:[/b] - [2014-12-10 08:07:14 | 000,483,040 | ---- | M] (Baidu, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bndef64.sys -- (Bndef) DRV:[b]64bit:[/b] - [2014-12-10 08:07:11 | 000,060,896 | ---- | M] (Baidu, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bnbasex64.sys -- (Bnbase) DRV:[b]64bit:[/b] - [2014-12-10 08:07:04 | 000,038,208 | ---- | M] (Baidu, Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\Bfmon.sys -- (Bfmon) DRV:[b]64bit:[/b] - [2014-12-10 08:07:03 | 000,059,712 | ---- | M] (Baidu, Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\Bfilter.sys -- (Bfilter) DRV:[b]64bit:[/b] - [2014-12-10 08:07:02 | 000,174,144 | ---- | M] (Baidu, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\Bprotect.sys -- (Bprotect) DRV:[b]64bit:[/b] - [2014-11-22 11:46:30 | 000,038,032 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible) DRV:[b]64bit:[/b] - [2014-10-30 22:47:42 | 000,038,912 | ---- | M] (SteelSeries ApS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\sshid.sys -- (sshid) DRV:[b]64bit:[/b] - [2014-10-30 22:47:42 | 000,008,704 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hidkmdf.sys -- (hidkmdf) DRV:[b]64bit:[/b] - [2014-10-27 07:30:36 | 000,094,528 | ---- | M] (Baidu, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BprotectEx.sys -- (BprotectEx) DRV:[b]64bit:[/b] - [2014-10-15 12:56:16 | 004,753,336 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx) DRV:[b]64bit:[/b] - [2014-10-15 12:56:08 | 000,454,416 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud) DRV:[b]64bit:[/b] - [2014-10-08 21:21:28 | 000,100,312 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64) DRV:[b]64bit:[/b] - [2014-10-08 21:21:17 | 003,073,752 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtwlane.sys -- (RTWlanE) DRV:[b]64bit:[/b] - [2014-10-08 21:21:10 | 000,466,648 | ---- | M] (Realsil Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsPer.sys -- (RTSPER) DRV:[b]64bit:[/b] - [2014-02-28 09:47:26 | 000,080,560 | ---- | M] (Qualcomm Atheros, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\bflwfx64.sys -- (BfLwf) DRV:[b]64bit:[/b] - [2013-10-02 03:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:[b]64bit:[/b] - [2013-04-26 03:24:58 | 000,020,464 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs) DRV:[b]64bit:[/b] - [2013-04-26 03:24:56 | 000,786,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc) DRV:[b]64bit:[/b] - [2013-04-26 03:24:56 | 000,368,112 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub) DRV:[b]64bit:[/b] - [2013-04-25 06:34:26 | 000,365,936 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD) DRV:[b]64bit:[/b] - [2013-03-28 02:32:06 | 000,535,624 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtkBtfilter.sys -- (RtkBtFilter) DRV:[b]64bit:[/b] - [2013-03-22 07:38:18 | 000,678,384 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA) DRV:[b]64bit:[/b] - [2013-03-22 07:38:18 | 000,028,656 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorF.sys -- (iaStorF) DRV:[b]64bit:[/b] - [2013-03-20 14:46:40 | 000,154,320 | ---- | M] (Qualcomm Atheros, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e22W7x64.sys -- (Ke2200) DRV:[b]64bit:[/b] - [2012-08-23 15:12:16 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt) DRV:[b]64bit:[/b] - [2012-08-23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:[b]64bit:[/b] - [2012-08-23 15:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD) DRV:[b]64bit:[/b] - [2012-03-01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2011-03-11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub) DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc) DRV:[b]64bit:[/b] - [2010-11-21 04:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc) DRV:[b]64bit:[/b] - [2010-11-21 04:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009-11-18 00:12:00 | 000,032,344 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBfilt64.sys -- (MBfilt) DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2008-05-06 16:06:00 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM) DRV - [2014-12-10 08:07:19 | 000,059,200 | ---- | M] (Baidu, Inc.) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BNmon64.sys -- (BNmon) DRV - [2014-12-10 08:07:08 | 000,024,864 | ---- | M] (Baidu, Inc.) [Kernel | On_Demand | Unknown] -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdCameraProtect64.sys -- (BdCameraProtect) DRV - [2014-12-10 08:07:07 | 000,116,800 | ---- | M] (Baidu, Inc.) [Kernel | On_Demand | Unknown] -- C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BdApiUtil64.sys -- (BdApiUtil) DRV - [2014-06-30 12:33:40 | 000,145,664 | ---- | M] (Baidu, Inc.) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Baidu Security\PC Faster\5.0.0.0\PCFApiUtil64.sys -- (PCFApiUtil) DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923 IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=ds&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923&q={searchTerms} IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=ds&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923&q={searchTerms} IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923 IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.mystartsearch.com/web/?type=ds&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923&q={searchTerms} IE:[b]64bit:[/b] - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.mystartsearch.com/web/?type=ds&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923&q={searchTerms} IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.mystartsearch.com/web/?type=ds&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type=ds&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type=ds&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923&q={searchTerms} IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923 IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.mystartsearch.com/web/?type=ds&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923&q={searchTerms} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hp&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923 IE - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hp&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923 IE - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pl IE - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 09 98 C6 FD 27 E3 CF 01 [binary data] IE - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.mystartsearch.com/web/?type=ds&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923&q={searchTerms} IE - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://mysearch.avg.com/search?cid={EB100B5E-7829-4996-AEDC-7CCCEEB03B61}&mid=a43ef933413c47d2b975bd389f502224-cc1cd67400a2bdc9d58a252e831ba5b474d9cff5&lang=pl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-06 08:11:10&v=4.0.0.19&pid=wtu&sg=&sap=dsp&q={searchTerms} IE - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll () FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.71.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: () CHR - default_search_provider: search_url = CHR - default_search_provider: suggest_url = CHR - homepage: http://www.mystartsearch.com/?type=hp&ts=1419982243&from=wpc&uid=WDCXWD10JPVX-22JC3T0_WD-WXN1E53LN923LN923 CHR - plugin: Error reading preferences file CHR - Extension: Prezentacje Google = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0\ CHR - Extension: HD for YouTube™ = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgihagponf\1.10_0\ CHR - Extension: Warcraft III: Night Elf (1920x1080) = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\amoholipjkaciandcdpnijfpaceigege\1.0.1_0\ CHR - Extension: Dokumenty Google = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\ CHR - Extension: Dysk Google = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\ CHR - Extension: Adblock Plus = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.8_0\ CHR - Extension: Szukaj w Google = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: Arkusze Google = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0\ CHR - Extension: Auto HD For YouTube™ = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak\6.5.1_0\ CHR - Extension: Google Wallet = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\ CHR - Extension: Gmail = C:\Users\Bartas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\ O1 HOSTS File: ([2014-10-20 13:54:56 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O4:[b]64bit:[/b] - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.) O4:[b]64bit:[/b] - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation) O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe () O4:[b]64bit:[/b] - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4:[b]64bit:[/b] - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation) O4 - HKLM..\Run: [Baidu Antivirus] C:\Program Files (x86)\Baidu Security\Baidu Antivirus\BavTray.exe (Baidu, Inc.) O4 - HKLM..\Run: [Baidu PC Faster 4.0.0.0] C:\Program Files (x86)\Baidu Security\PC Faster\5.0.0.0\PCFTray.exe (Baidu Inc.) O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation) O4 - HKU\S-1-5-21-650162474-3479143291-2949318116-1000..\Run: [screenSHU] C:\Program Files (x86)\screenSHU\screenSHU.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKU\S-1-5-21-650162474-3479143291-2949318116-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O8:[b]64bit:[/b] - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 File not found O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000 File not found O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation) O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0F1CB03A-656C-44C1-99B0-EB624CA6CBA5}: NameServer = 153.19.250.100,172.30.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BD318AAC-A91C-40C1-90CD-303CB462D494}: DhcpNameServer = 192.168.0.1 O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\ms-help - No CLSID value found O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:[b]64bit:[/b] - AppInit_DLLs: (C:\Windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation) O20 - AppInit_DLLs: (c:\windows\syswow64\nvinit.dll) - c:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation) O20 - AppInit_DLLs: (C:\Windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation) O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O34 - HKLM BootExecute: (autocheck autochk *) O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = ComFile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2014-12-31 14:24:40 | 000,000,000 | ---D | C] -- C:\FRST [2014-12-31 01:31:58 | 000,000,000 | ---D | C] -- C:\ProgramData\3872871776 [2014-12-31 00:38:29 | 000,000,000 | ---D | C] -- C:\ProgramData\phoefbekihhklcpagncllbgdjaflikia [2014-12-31 00:30:58 | 000,000,000 | ---D | C] -- C:\ProgramData\IePluginServices [2014-12-31 00:30:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SupTab [2014-12-31 00:29:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\youtubeadblocker [2014-12-31 00:29:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\unniisaLess [2014-12-31 00:29:08 | 000,000,000 | ---D | C] -- C:\ProgramData\10229327142306814426 [2014-12-31 00:29:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\unisalles [2014-12-31 00:29:01 | 000,000,000 | ---D | C] -- C:\ProgramData\acdomncddgfbgiodpnkpepljpcbkhjih [2014-12-31 00:23:05 | 000,000,000 | ---D | C] -- C:\Program Files\DD7191F4-293C-452F-8784-D96DE9582EC4 [2014-12-31 00:23:04 | 000,000,000 | ---D | C] -- C:\Program Files\010 [2014-12-20 10:50:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony [2014-12-20 10:50:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony [2014-12-20 10:50:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sony [2014-12-19 13:20:47 | 000,000,000 | -HSD | C] -- C:\Users\Bartas\IntelGraphicsProfiles [2014-12-19 12:47:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel [2014-12-19 12:45:49 | 002,020,352 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxLHM.dll [2014-12-19 12:45:49 | 001,365,504 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxcmjit64.dll [2014-12-19 12:45:49 | 001,137,080 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\iglhsip64.dll [2014-12-19 12:45:49 | 001,132,960 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\iglhsip32.dll [2014-12-19 12:45:49 | 001,061,376 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\igfxcmjit32.dll [2014-12-19 12:45:49 | 000,688,640 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxDH.dll [2014-12-19 12:45:49 | 000,372,736 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxOSP.dll [2014-12-19 12:45:49 | 000,372,224 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\IntelOpenCL64.dll [2014-12-19 12:45:49 | 000,328,296 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxCUIService.exe [2014-12-19 12:45:49 | 000,304,128 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\IntelOpenCL32.dll [2014-12-19 12:45:49 | 000,303,208 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxEM.exe [2014-12-19 12:45:49 | 000,279,144 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-12-19 12:45:49 | 000,273,408 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxDI.dll [2014-12-19 12:45:49 | 000,245,864 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxHK.exe [2014-12-19 12:45:49 | 000,224,256 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxDTCM.dll [2014-12-19 12:45:49 | 000,220,392 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\iglhcp64.dll [2014-12-19 12:45:49 | 000,207,496 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxcmrt64.dll [2014-12-19 12:45:49 | 000,206,848 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfx11cmrt64.dll [2014-12-19 12:45:49 | 000,195,176 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxext.exe [2014-12-19 12:45:49 | 000,184,312 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\iglhcp32.dll [2014-12-19 12:45:49 | 000,183,296 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxCoIn_v3960.dll [2014-12-19 12:45:49 | 000,175,024 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\igfxcmrt32.dll [2014-12-19 12:45:49 | 000,174,592 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\igfx11cmrt32.dll [2014-12-19 12:45:49 | 000,082,432 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\Intel_OpenCL_ICD64.dll [2014-12-19 12:45:49 | 000,074,240 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\Intel_OpenCL_ICD32.dll [2014-12-19 12:45:49 | 000,031,408 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igfxexps.dll [2014-12-19 12:45:49 | 000,030,720 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\igfxexps32.dll [2014-12-19 12:45:48 | 023,987,200 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igdfcl64.dll [2014-12-19 12:45:48 | 018,860,032 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\igdfcl32.dll [2014-12-19 12:45:48 | 008,350,720 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igdrcl64.dll [2014-12-19 12:45:48 | 007,816,192 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\igdrcl32.dll [2014-12-19 12:45:48 | 004,753,336 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\igdkmd64.sys [2014-12-19 12:45:48 | 000,629,272 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igdmd64.dll [2014-12-19 12:45:48 | 000,510,304 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\igdmd32.dll [2014-12-19 12:45:48 | 000,397,312 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igdbcl64.dll [2014-12-19 12:45:48 | 000,349,696 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\igdbcl32.dll [2014-12-19 12:45:48 | 000,162,304 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\igdail64.dll [2014-12-19 12:45:48 | 000,144,896 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\igdail32.dll [2014-12-19 12:45:47 | 009,097,216 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\ig75icd64.dll [2014-12-19 12:45:47 | 007,186,432 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\ig75icd32.dll [2014-12-19 12:45:47 | 007,074,488 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\igd10iumd32.dll [2014-12-19 12:45:47 | 001,131,008 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\GfxResources.dll [2014-12-19 12:45:47 | 000,768,104 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\Gfxv4_0.exe [2014-12-19 12:45:47 | 000,764,520 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\Gfxv2_0.exe [2014-12-19 12:45:47 | 000,454,416 | ---- | C] (Intel(R) Corporation) -- C:\Windows\SysNative\drivers\IntcDAud.sys [2014-12-19 12:45:47 | 000,154,728 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\difx64.exe [2014-12-19 12:45:47 | 000,087,144 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\DPTopologyApp.exe [2014-12-19 12:45:47 | 000,086,632 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\DPTopologyAppv2_0.exe [2014-12-19 12:45:12 | 000,000,000 | ---D | C] -- C:\ProgramData\IntelDLM [2014-12-19 12:43:45 | 000,000,000 | ---D | C] -- C:\Users\Bartas\AppData\Local\Intel [2014-12-19 12:42:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility [2014-12-19 12:42:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel Driver Update Utility [2014-12-19 12:42:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2014-12-19 12:13:40 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\NV [2014-12-19 12:13:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\NV [2014-12-19 12:09:46 | 032,099,472 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2014-12-19 12:09:46 | 025,460,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2014-12-19 12:09:46 | 024,764,232 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2014-12-19 12:09:46 | 020,465,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2014-12-19 12:09:46 | 018,594,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll [2014-12-19 12:09:46 | 017,264,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2014-12-19 12:09:46 | 016,040,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2014-12-19 12:09:46 | 013,288,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2014-12-19 12:09:46 | 013,202,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2014-12-19 12:09:46 | 010,770,120 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2014-12-19 12:09:46 | 010,710,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2014-12-19 12:09:46 | 003,610,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2014-12-19 12:09:46 | 003,248,968 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2014-12-19 12:09:46 | 002,897,824 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll [2014-12-19 12:09:46 | 001,895,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6434709.dll [2014-12-19 12:09:46 | 001,556,624 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6434709.dll [2014-12-19 12:09:46 | 000,994,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll [2014-12-19 12:09:46 | 000,968,336 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll [2014-12-19 12:09:46 | 000,942,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll [2014-12-19 12:09:46 | 000,928,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll [2014-12-19 12:09:46 | 000,906,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll [2014-12-19 12:09:46 | 000,496,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll [2014-12-19 12:09:46 | 000,399,688 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll [2014-12-19 12:09:46 | 000,391,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFROpenGL.dll [2014-12-19 12:09:46 | 000,353,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll [2014-12-19 12:09:46 | 000,346,944 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFROpenGL.dll [2014-12-19 12:09:46 | 000,306,328 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll [2014-12-19 12:09:46 | 000,178,632 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll [2014-12-19 12:09:46 | 000,031,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvpciflt.sys [2014-12-19 11:07:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader [2014-12-16 21:48:55 | 000,038,032 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvad64v.sys [2014-12-16 21:48:55 | 000,032,400 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll [2014-12-13 22:49:04 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll [2014-12-13 22:49:04 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll [2014-12-13 22:49:03 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll [2014-12-13 22:48:43 | 000,000,000 | ---D | C] -- C:\Riot Games [2014-12-13 14:01:37 | 000,000,000 | ---D | C] -- C:\Users\Bartas\AppData\Local\SteelSeries Engine 3 Client [2014-12-09 15:37:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Orbit [2014-12-08 22:47:14 | 000,000,000 | ---D | C] -- C:\Users\Bartas\AppData\Local\screenSHU [2014-12-08 22:46:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\screenSHU [2014-12-08 20:36:46 | 000,430,080 | ---- | C] (Farbar) -- C:\Windows\mod_frst.exe [2014-12-03 20:16:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Hewlett-Packard [2014-12-03 20:16:50 | 000,136,704 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\hpf3l70v.dll [2014-12-03 20:16:14 | 000,000,000 | -H-D | C] -- C:\Config.Msi [2014-12-03 20:16:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HP [2014-12-03 20:15:51 | 000,642,360 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hpzids40.dll [2014-12-03 20:15:50 | 000,880,640 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hposwia_d02c.dll [2014-12-03 20:15:50 | 000,748,544 | ---- | C] (Hewlett-Packard Co.) -- C:\Windows\SysNative\hpost_d02c.dll [2014-12-03 20:15:50 | 000,551,424 | ---- | C] (Hewlett-Packard) -- C:\Windows\SysNative\hppldcoi.dll [2014-12-03 20:15:50 | 000,515,072 | ---- | C] (Hewlett-Packard Co.) -- C:\Windows\SysNative\hposc_d02a.dll [2014-12-03 20:02:16 | 000,000,000 | ---D | C] -- C:\Program Files\HP [2014-12-03 20:01:18 | 000,000,000 | ---D | C] -- C:\ProgramData\HP [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2014-12-31 15:55:13 | 000,026,144 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2014-12-31 15:55:13 | 000,026,144 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2014-12-31 13:54:30 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2014-12-31 13:53:51 | 1011,318,782 | -HS- | M] () -- C:\hiberfil.sys [2014-12-31 02:45:57 | 872,109,017 | ---- | M] () -- C:\Windows\MEMORY.DMP [2014-12-31 00:30:47 | 000,002,499 | ---- | M] () -- C:\Users\Bartas\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk [2014-12-31 00:30:47 | 000,001,651 | ---- | M] () -- C:\Users\Bartas\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk [2014-12-25 16:53:38 | 003,062,941 | ---- | M] () -- C:\Users\Bartas\Desktop\KC & The Sunshine Band - Get Down Tonight (HQ with lyrics).mp3 [2014-12-20 10:50:40 | 000,002,098 | ---- | M] () -- C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk [2014-12-20 10:38:03 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2014-12-20 00:07:28 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2014-12-20 00:07:28 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2014-12-19 18:14:14 | 000,000,118 | ---- | M] () -- C:\Windows\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat [2014-12-19 13:21:42 | 000,018,354 | ---- | M] () -- C:\Windows\SysNative\results.xml [2014-12-19 13:20:38 | 000,000,425 | ---- | M] () -- C:\Windows\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat [2014-12-18 08:24:58 | 001,673,940 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2014-12-18 08:24:58 | 000,741,694 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2014-12-18 08:24:58 | 000,655,502 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2014-12-18 08:24:58 | 000,156,734 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2014-12-18 08:24:58 | 000,122,872 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2014-12-16 23:07:18 | 002,044,995 | ---- | M] () -- C:\Users\Bartas\Desktop\DSC_1004.jpg [2014-12-13 14:01:32 | 000,002,228 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2014-12-13 11:08:08 | 032,099,472 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2014-12-13 11:08:08 | 025,460,552 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2014-12-13 11:08:08 | 024,764,232 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2014-12-13 11:08:08 | 020,465,808 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2014-12-13 11:08:08 | 018,594,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll [2014-12-13 11:08:08 | 017,264,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2014-12-13 11:08:08 | 016,040,184 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2014-12-13 11:08:08 | 014,128,496 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll [2014-12-13 11:08:08 | 013,288,360 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2014-12-13 11:08:08 | 013,202,520 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2014-12-13 11:08:08 | 010,770,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2014-12-13 11:08:08 | 010,710,160 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2014-12-13 11:08:08 | 003,610,440 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2014-12-13 11:08:08 | 003,293,136 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll [2014-12-13 11:08:08 | 003,248,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2014-12-13 11:08:08 | 002,897,824 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll [2014-12-13 11:08:08 | 001,895,056 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6434709.dll [2014-12-13 11:08:08 | 001,556,624 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6434709.dll [2014-12-13 11:08:08 | 000,994,384 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll [2014-12-13 11:08:08 | 000,968,336 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll [2014-12-13 11:08:08 | 000,942,400 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll [2014-12-13 11:08:08 | 000,928,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll [2014-12-13 11:08:08 | 000,906,560 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll [2014-12-13 11:08:08 | 000,876,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll [2014-12-13 11:08:08 | 000,496,272 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvEncodeAPI64.dll [2014-12-13 11:08:08 | 000,399,688 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvEncodeAPI.dll [2014-12-13 11:08:08 | 000,391,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFROpenGL.dll [2014-12-13 11:08:08 | 000,353,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll [2014-12-13 11:08:08 | 000,346,944 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFROpenGL.dll [2014-12-13 11:08:08 | 000,306,328 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll [2014-12-13 11:08:08 | 000,178,632 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll [2014-12-13 11:08:08 | 000,165,760 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll [2014-12-13 11:08:08 | 000,031,376 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvpciflt.sys [2014-12-13 11:08:08 | 000,027,983 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb [2014-12-13 09:03:15 | 006,859,408 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll [2014-12-13 09:03:15 | 003,513,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll [2014-12-13 09:03:13 | 002,558,608 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll [2014-12-13 09:03:13 | 001,097,360 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshext.dll [2014-12-13 09:03:13 | 000,386,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll [2014-12-13 09:03:13 | 000,075,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nv3dappshextr.dll [2014-12-13 09:03:13 | 000,062,608 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll [2014-12-13 01:12:24 | 002,210,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll [2014-12-13 01:12:24 | 001,291,464 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspbridge.dll [2014-12-13 01:12:12 | 002,824,504 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll [2014-12-13 01:12:12 | 001,715,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspbridge64.dll [2014-12-13 00:11:01 | 004,151,176 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin [2014-12-12 12:55:09 | 000,011,910 | -H-- | M] () -- C:\Windows\SysWow64\binary_prog_stub [2014-12-10 08:07:18 | 000,222,016 | ---- | M] (Baidu, Inc.) -- C:\Windows\SysNative\drivers\BdSandbox.sys [2014-12-10 08:07:14 | 000,483,040 | ---- | M] (Baidu, Inc.) -- C:\Windows\SysNative\drivers\bndef64.sys [2014-12-10 08:07:11 | 000,060,896 | ---- | M] (Baidu, Inc.) -- C:\Windows\SysNative\drivers\bnbasex64.sys [2014-12-10 08:07:04 | 000,038,208 | ---- | M] (Baidu, Inc.) -- C:\Windows\SysNative\drivers\Bfmon.sys [2014-12-10 08:07:03 | 000,059,712 | ---- | M] (Baidu, Inc.) -- C:\Windows\SysNative\drivers\Bfilter.sys [2014-12-10 08:07:02 | 000,174,144 | ---- | M] (Baidu, Inc.) -- C:\Windows\SysNative\drivers\Bprotect.sys [2014-12-01 17:16:57 | 000,006,815 | ---- | M] () -- C:\Users\Bartas\AppData\Local\recently-used.xbel [color=#E56717]========== Files Created - No Company Name ==========[/color] [2014-12-31 00:40:30 | 872,109,017 | ---- | C] () -- C:\Windows\MEMORY.DMP [2014-12-25 16:53:34 | 003,062,941 | ---- | C] () -- C:\Users\Bartas\Desktop\KC & The Sunshine Band - Get Down Tonight (HQ with lyrics).mp3 [2014-12-20 10:50:40 | 000,002,098 | ---- | C] () -- C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk [2014-12-19 18:14:14 | 000,000,118 | ---- | C] () -- C:\Windows\SysNative\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat [2014-12-19 13:20:38 | 000,000,425 | ---- | C] () -- C:\Windows\SysNative\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat [2014-12-19 12:45:49 | 000,403,671 | ---- | C] () -- C:\Windows\SysNative\ImageStabilization.wmv [2014-12-19 12:45:49 | 000,254,976 | ---- | C] () -- C:\Windows\SysNative\igfxCPL.cpl [2014-12-19 12:45:49 | 000,069,632 | ---- | C] () -- C:\Windows\SysNative\igfxCUIServicePS.dll [2014-12-19 12:45:49 | 000,069,632 | ---- | C] ( ) -- C:\Windows\SysNative\igfxDHLibv2_0.dll [2014-12-19 12:45:49 | 000,059,392 | ---- | C] ( ) -- C:\Windows\SysNative\igfxDHLib.dll [2014-12-19 12:45:49 | 000,010,752 | ---- | C] ( ) -- C:\Windows\SysNative\igfxDILibv2_0.dll [2014-12-19 12:45:49 | 000,010,752 | ---- | C] ( ) -- C:\Windows\SysNative\igfxDILib.dll [2014-12-19 12:45:49 | 000,010,240 | ---- | C] ( ) -- C:\Windows\SysNative\igfxEMLibv2_0.dll [2014-12-19 12:45:49 | 000,010,240 | ---- | C] ( ) -- C:\Windows\SysNative\igfxEMLib.dll [2014-12-19 12:45:49 | 000,005,120 | ---- | C] ( ) -- C:\Windows\SysNative\igfxLHMLibv2_0.dll [2014-12-19 12:45:49 | 000,005,120 | ---- | C] ( ) -- C:\Windows\SysNative\igfxLHMLib.dll [2014-12-19 12:45:49 | 000,004,024 | ---- | C] () -- C:\Windows\SysNative\iglhxs64.vp [2014-12-19 12:45:48 | 000,225,792 | ---- | C] () -- C:\Windows\SysNative\igdde64.dll [2014-12-19 12:45:48 | 000,186,368 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll [2014-12-19 12:45:47 | 017,284,400 | ---- | C] () -- C:\Windows\SysNative\igd11dxva64.dll [2014-12-19 12:45:47 | 016,810,624 | ---- | C] () -- C:\Windows\SysWow64\igd11dxva32.dll [2014-12-19 12:45:47 | 000,641,530 | ---- | C] () -- C:\Windows\SysNative\FilmModeDetection.wmv [2014-12-19 12:45:47 | 000,375,173 | ---- | C] () -- C:\Windows\SysNative\ColorImageEnhancement.wmv [2014-12-19 12:45:47 | 000,000,935 | ---- | C] () -- C:\Windows\SysNative\Gfxv4_0.exe.config [2014-12-19 12:45:47 | 000,000,895 | ---- | C] () -- C:\Windows\SysNative\Gfxv2_0.exe.config [2014-12-19 12:45:47 | 000,000,895 | ---- | C] () -- C:\Windows\SysNative\DPTopologyAppv2_0.exe.config [2014-12-19 12:09:46 | 000,027,983 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb [2014-12-16 23:07:10 | 002,044,995 | ---- | C] () -- C:\Users\Bartas\Desktop\DSC_1004.jpg [2014-12-13 14:01:32 | 000,002,228 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2014-12-12 12:55:09 | 000,011,910 | -H-- | C] () -- C:\Windows\SysWow64\binary_prog_stub [2014-12-08 22:46:48 | 000,001,049 | ---- | C] () -- C:\Users\Bartas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\screenSHU.lnk [2014-12-01 17:16:57 | 000,006,815 | ---- | C] () -- C:\Users\Bartas\AppData\Local\recently-used.xbel [2014-11-18 18:49:20 | 000,014,304 | ---- | C] () -- C:\ProgramData\Duplicaterecord.js [2014-11-03 19:04:00 | 000,006,144 | ---- | C] () -- C:\Users\Bartas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2014-10-20 13:39:30 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe [2014-10-20 13:39:30 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe [2014-10-20 13:39:30 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe [2014-10-20 13:39:30 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe [2014-10-20 13:39:30 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe [2014-10-09 13:24:19 | 000,216,064 | ---- | C] ( ) -- C:\Windows\SysWow64\lagarith.dll [2014-10-09 13:24:18 | 000,243,200 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll [2014-10-09 13:24:18 | 000,218,200 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2014-10-09 11:49:53 | 000,650,752 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll [2014-10-09 11:49:53 | 000,258,048 | ---- | C] () -- C:\Windows\SysWow64\libFLAC.dll [2014-10-09 07:57:59 | 000,000,000 | ---- | C] () -- C:\Users\Bartas\AppData\Local\Driver_LOM_8161Present.flag [2014-10-08 19:27:08 | 000,451,072 | ---- | C] () -- C:\Windows\SysWow64\ISSRemoveSP.exe [2014-10-08 19:27:08 | 000,036,864 | ---- | C] () -- C:\Windows\runSW.exe [2014-10-08 19:07:03 | 001,646,514 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013-02-13 11:27:54 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll [color=#E56717]========== ZeroAccess Check ==========[/color] [2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2014-06-25 03:05:42 | 014,175,744 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2014-06-25 02:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-21 04:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] [color=#E56717]========== LOP Check ==========[/color] [2014-11-13 23:34:07 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\Audacity [2014-11-18 18:49:06 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\Baidu Security [2014-12-31 13:48:45 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\Battle.net [2014-12-31 02:26:17 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\foobar2000 [2014-10-27 08:35:50 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\Guild Wars 2 [2014-10-08 21:14:10 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\IObit [2014-10-11 19:54:06 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\LolClient [2014-10-14 17:42:15 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\My Bluetooth [2014-12-31 13:48:45 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\NapiProjekt [2014-10-08 21:02:48 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\ProductData [2014-12-13 22:49:10 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\Riot Games [2014-10-25 11:26:32 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\Tera_Awesomium [2014-12-30 03:02:06 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\TS3Client [2014-10-08 21:02:05 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\TuneUp Software [2014-12-31 13:48:45 | 000,000,000 | ---D | M] -- C:\Users\Bartas\AppData\Roaming\uTorrent [2014-10-08 21:12:18 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software [2014-10-08 21:12:18 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software [color=#E56717]========== Purity Check ==========[/color] < End of report >