Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-01-2015 01 Ran by dom (administrator) on KASIA-KOMPUTER on 29-01-2015 20:39:22 Running from E:\ Loaded Profiles: dom (Available profiles: Kasia & dom) Platform: Microsoft Windows 7 Ultimate (X86) OS Language: Polski (Polska) Internet Explorer Version 8 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Dritek System Inc.) C:\Program Files\Launch Manager\dsiwmis.exe (Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe (Dritek System Inc.) C:\Program Files\Launch Manager\LMutilps32.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Atheros) C:\Program Files\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Dritek System Inc.) C:\Program Files\Launch Manager\LManager.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (Dritek System Inc.) C:\Program Files\Launch Manager\LMworker.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe (Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-04-13] (Intel Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10025576 2011-02-18] (Realtek Semiconductor) HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.exe [1092688 2011-03-31] (Dritek System Inc.) HKLM\...\Run: [Power Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [715368 2011-02-22] (Acer Incorporated) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated) HKU\S-1-5-21-1880997745-2878968255-1170384601-1003\...\Run: [Tok-Cirrhatus] => "C:\Users\dom\AppData\Local\smss.exe" ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-1880997745-2878968255-1170384601-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) Chrome: ======= CHR Profile: C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Prezentacje Google) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-22] CHR Extension: (Dokumenty Google) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-22] CHR Extension: (Dysk Google) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-22] CHR Extension: (YouTube) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-22] CHR Extension: (Szukaj w Google) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-22] CHR Extension: (Arkusze Google) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-22] CHR Extension: (Google Wallet) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-22] CHR Extension: (Gmail) - C:\Users\dom\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-22] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 ePowerSvc; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [739944 2011-02-22] (Acer Incorporated) S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation) R2 ZAtheros Wlan Agent; C:\Program Files\Qualcomm Atheros Fast Reconnect\Ath_WlanAgent.exe [57344 2011-08-10] (Atheros) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-29 19:48 - 2015-01-29 19:48 - 00000000 ____D () C:\Windows\system32\%LOCALAPPDATA% 2015-01-29 19:24 - 2015-01-29 20:39 - 00000000 ____D () C:\FRST 2015-01-28 19:29 - 2015-01-28 19:29 - 00000000 ___SD () C:\32788R22FWJFW 2015-01-28 19:29 - 2015-01-28 19:29 - 00000000 ____D () C:\Windows\erdnt 2015-01-28 19:18 - 2015-01-28 19:18 - 00000715 _____ () C:\Users\Kasia\Desktop\Nowy dokument tekstowy.txt 2015-01-28 19:08 - 2015-01-28 19:09 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Kasia\Downloads\mbam-setup-2.0.4.1028.exe 2015-01-28 19:08 - 2015-01-28 19:08 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0.bak 2015-01-28 19:08 - 2015-01-28 19:08 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0.bak 2015-01-28 19:08 - 2015-01-28 19:08 - 00000552 _____ () C:\Windows\system32\spsys.log 2015-01-28 18:58 - 2015-01-28 18:59 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\dom\Downloads\mbam-setup-2.0.4.1028.exe 2015-01-26 22:50 - 2015-01-26 22:50 - 00000000 ____D () C:\ProgramData\McAfee 2015-01-26 22:49 - 2015-01-26 23:02 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-01-26 22:49 - 2015-01-26 22:51 - 00000000 ____D () C:\ProgramData\Adobe 2015-01-26 22:49 - 2015-01-26 22:50 - 00000000 ____D () C:\Users\Kasia\AppData\Local\Adobe 2015-01-26 22:49 - 2015-01-26 22:49 - 00001989 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk 2015-01-26 22:49 - 2015-01-26 22:49 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2015-01-26 22:49 - 2015-01-26 22:49 - 00000000 ____D () C:\Program Files\Adobe 2015-01-26 21:51 - 2015-01-26 21:51 - 14207624 _____ (FORMAT Biuro Informatyki Stosowanej ) C:\Users\dom\Downloads\Instaluj_PIT_Format_2014.exe 2015-01-23 21:19 - 2015-01-23 21:34 - 2427582464 _____ () C:\Users\dom\Desktop\Miasto.44.2014.PL.HQ.DVDRip.XViD.AC3-NOiSE.avi 2015-01-23 01:59 - 2015-01-23 02:08 - 00000000 ____D () C:\Users\Kasia\AppData\Local\Microsoft Games 2015-01-22 22:57 - 2015-01-29 20:02 - 00001058 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1880997745-2878968255-1170384601-1000UA.job 2015-01-22 22:57 - 2015-01-28 10:28 - 00001006 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1880997745-2878968255-1170384601-1000Core.job 2015-01-22 22:57 - 2015-01-22 22:57 - 00001068 _____ () C:\Users\Public\Desktop\Picasa 3.lnk 2015-01-22 22:57 - 2015-01-22 22:57 - 00000000 ____D () C:\Users\Kasia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup 2015-01-22 22:57 - 2015-01-22 22:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 2015-01-22 22:56 - 2015-01-22 22:56 - 17385800 _____ (Google Inc.) C:\Users\Kasia\Downloads\picasa39-setup.exe 2015-01-22 21:58 - 2015-01-22 21:58 - 01309728 _____ (Ministerstwo Finansów ) C:\Users\dom\Downloads\e-Deklaracje-wtyczka.exe 2015-01-22 18:54 - 2015-01-22 18:54 - 01080608 _____ (Unity Technologies ApS) C:\Users\dom\Downloads\UnityWebPlayer.exe 2015-01-22 10:55 - 2015-01-22 10:55 - 00000000 ____D () C:\Users\dom\AppData\Local\Microsoft Games 2015-01-22 10:30 - 2015-01-22 10:30 - 00000000 ____D () C:\Users\dom\AppData\Roaming\Macromedia 2015-01-22 10:30 - 2015-01-22 10:30 - 00000000 ____D () C:\Users\dom\AppData\Roaming\Adobe 2015-01-22 10:03 - 2015-01-24 00:30 - 00000000 ____D () C:\Users\dom\AppData\Local\Google 2015-01-22 10:03 - 2015-01-22 10:03 - 00057560 _____ () C:\Users\dom\AppData\Local\GDIPFONTCACHEV1.DAT 2015-01-22 10:03 - 2015-01-22 10:03 - 00001425 _____ () C:\Users\dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-01-22 10:03 - 2015-01-22 10:03 - 00000000 ____D () C:\Users\dom\AppData\Roaming\Intel Corporation 2015-01-22 10:02 - 2015-01-22 10:03 - 00000000 ____D () C:\Users\dom 2015-01-22 10:02 - 2015-01-22 10:02 - 00000020 ___SH () C:\Users\dom\ntuser.ini 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\Ustawienia lokalne 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\Szablony 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\Moje dokumenty 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\Menu Start 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\Documents\Moje wideo 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\Documents\Moje obrazy 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\Documents\Moja muzyka 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\Dane aplikacji 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\AppData\Local\Historia 2015-01-22 10:02 - 2015-01-22 10:02 - 00000000 _SHDL () C:\Users\dom\AppData\Local\Dane aplikacji 2015-01-22 10:02 - 2009-07-14 05:42 - 00000000 ___RD () C:\Users\dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-01-22 10:02 - 2009-07-14 05:37 - 00000000 ___RD () C:\Users\dom\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-01-21 23:16 - 2015-01-21 23:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-01-21 23:16 - 2015-01-21 23:16 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2015-01-21 23:15 - 2015-01-21 23:15 - 06958304 _____ (Microsoft Corporation) C:\Users\Kasia\Downloads\Silverlight.exe 2015-01-21 22:56 - 2015-01-21 22:56 - 00000304 _____ () C:\Windows\PFRO.log 2015-01-21 22:08 - 2015-01-29 19:51 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-01-21 22:08 - 2015-01-26 22:50 - 00000000 ____D () C:\Users\Kasia\AppData\Roaming\Adobe 2015-01-21 22:08 - 2015-01-25 01:51 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-01-21 22:08 - 2015-01-25 01:51 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-01-21 22:08 - 2015-01-21 22:08 - 00000000 ____D () C:\Windows\system32\Macromed 2015-01-21 22:08 - 2015-01-21 22:08 - 00000000 ____D () C:\Users\Kasia\AppData\Roaming\Macromedia 2015-01-21 21:47 - 2015-01-27 05:43 - 00002135 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-01-21 21:47 - 2015-01-21 21:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-01-21 21:46 - 2015-01-29 20:38 - 00001030 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-01-21 21:46 - 2015-01-29 19:51 - 00001034 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-01-21 21:46 - 2015-01-22 22:57 - 00000000 ____D () C:\Users\Kasia\AppData\Local\Google 2015-01-21 21:46 - 2015-01-22 22:57 - 00000000 ____D () C:\Program Files\Google 2015-01-21 21:46 - 2015-01-21 21:46 - 00000000 ____D () C:\Users\Kasia\AppData\Local\Deployment 2015-01-21 21:46 - 2015-01-21 21:46 - 00000000 ____D () C:\Users\Kasia\AppData\Local\Apps\2.0 2015-01-21 19:01 - 2015-01-08 09:55 - 00249488 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2015-01-21 16:48 - 2015-01-21 19:06 - 00000000 ____D () C:\Users\Kasia\Desktop\kasku 2015-01-21 16:48 - 2015-01-21 16:48 - 00000000 ____D () C:\Users\Kasia\Desktop\KASIA - DOKUMENTY 2015-01-21 16:46 - 2015-01-21 16:46 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros 2015-01-21 16:46 - 2015-01-21 16:46 - 00000000 ____D () C:\Program Files\Qualcomm Atheros Fast Reconnect 2015-01-21 16:46 - 2011-08-10 07:51 - 00067681 _____ () C:\Windows\system32\athrext.cat 2015-01-21 16:46 - 2011-08-05 16:32 - 02203648 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athr.sys 2015-01-21 16:46 - 2011-08-05 16:32 - 02203648 _____ (Atheros Communications, Inc.) C:\Windows\system32\athr.sys 2015-01-21 16:43 - 2015-01-21 16:44 - 00010382 _____ () C:\Windows\DPINST.LOG 2015-01-21 16:42 - 2015-01-21 16:42 - 00057560 _____ () C:\Users\Kasia\AppData\Local\GDIPFONTCACHEV1.DAT 2015-01-21 16:42 - 2015-01-21 16:42 - 00015742 _____ () C:\Windows\system32\results.xml 2015-01-21 16:42 - 2015-01-21 16:42 - 00000000 ____D () C:\Users\Kasia\AppData\Roaming\Intel Corporation 2015-01-21 16:39 - 2015-01-21 16:39 - 00000176 _____ () C:\Windows\RtlWlanInstall.log 2015-01-21 16:39 - 2009-02-05 02:49 - 00451072 _____ () C:\Windows\system32\ISSRemoveSP.exe 2015-01-21 16:38 - 2015-01-21 16:38 - 00000000 ____D () C:\ProgramData\OEM 2015-01-21 16:38 - 2015-01-21 16:38 - 00000000 ____D () C:\Program Files\Acer 2015-01-21 16:37 - 2015-01-21 16:37 - 00000000 ____D () C:\Program Files\Broadcom 2015-01-21 16:36 - 2015-01-21 16:36 - 00000000 ____D () C:\Program Files\Common Files\Intel 2015-01-21 16:34 - 2015-01-21 16:34 - 00000172 _____ () C:\Windows\LMv4.UNI 2015-01-21 16:34 - 2015-01-21 16:34 - 00000000 ____D () C:\Program Files\Launch Manager 2015-01-21 16:33 - 2015-01-21 16:33 - 00000000 ____D () C:\Windows\system32\sda 2015-01-21 16:33 - 2010-09-22 09:46 - 00190464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsUStor.sys 2015-01-21 16:33 - 2010-07-20 17:42 - 09112168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsUStoricon.dll 2015-01-21 16:33 - 2010-07-20 17:42 - 00313960 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtsUStor.dll 2015-01-21 16:32 - 2015-01-21 16:33 - 00000000 ____D () C:\Program Files\Realtek 2015-01-21 16:32 - 2015-01-21 16:32 - 00000000 ____D () C:\Windows\system32\RTCOM 2015-01-21 16:32 - 2011-02-22 20:07 - 03405288 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys 2015-01-21 16:32 - 2011-02-22 15:52 - 01730112 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll 2015-01-21 16:32 - 2011-02-22 13:20 - 00820224 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat 2015-01-21 16:32 - 2011-02-22 11:16 - 02145896 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll 2015-01-21 16:32 - 2011-02-18 10:49 - 03805288 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll 2015-01-21 16:32 - 2011-02-17 14:03 - 00485992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll 2015-01-21 16:32 - 2011-02-16 13:11 - 00069224 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInst.dll 2015-01-21 16:32 - 2011-02-09 16:46 - 00029494 _____ () C:\Windows\system32\Drivers\RtPCEE4.DAT 2015-01-21 16:32 - 2010-11-29 18:48 - 01723536 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2015-01-21 16:32 - 2010-11-29 18:48 - 01439064 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek.dll 2015-01-21 16:32 - 2010-11-08 07:31 - 00359768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll 2015-01-21 16:32 - 2010-11-08 07:31 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll 2015-01-21 16:32 - 2010-11-08 07:31 - 00295768 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll 2015-01-21 16:32 - 2010-11-08 07:31 - 00170840 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll 2015-01-21 16:32 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll 2015-01-21 16:32 - 2010-11-08 07:31 - 00064856 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll 2015-01-21 16:32 - 2010-11-03 18:27 - 01084008 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl 2015-01-21 16:32 - 2010-11-03 18:25 - 01132648 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00962664 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00901224 _____ (DTS) C:\Windows\system32\DTSBoostDLL.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00448616 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00429160 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00406120 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00291432 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00236648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00224360 _____ (DTS) C:\Windows\system32\DTSLimiterDLL.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00107112 _____ (DTS) C:\Windows\system32\DTSLFXAPO.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00107112 _____ (DTS) C:\Windows\system32\DTSGFXAPO.dll 2015-01-21 16:32 - 2010-11-03 18:25 - 00106600 _____ (DTS) C:\Windows\system32\DTSGFXAPONS.dll 2015-01-21 16:32 - 2010-11-02 09:32 - 01705816 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP32A.dll 2015-01-21 16:32 - 2010-11-02 09:32 - 00341848 _____ (Dolby Laboratories) C:\Windows\system32\R4EED32A.dll 2015-01-21 16:32 - 2010-11-02 09:32 - 00096600 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL32A.dll 2015-01-21 16:32 - 2010-11-02 09:32 - 00061784 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG32A.dll 2015-01-21 16:32 - 2010-11-02 09:31 - 00081240 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA32A.dll 2015-01-21 16:32 - 2010-10-03 13:45 - 00259928 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2015-01-21 16:32 - 2010-09-27 09:34 - 00232792 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2015-01-21 16:32 - 2010-09-23 17:21 - 00039672 _____ () C:\Windows\system32\Drivers\RtPCEE3.DAT 2015-01-21 16:32 - 2010-07-22 16:48 - 00214352 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFNHK.dll 2015-01-21 16:32 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFCOM.dll 2015-01-21 16:32 - 2010-07-22 16:48 - 00068944 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\system32\SFAPO.dll 2015-01-21 16:32 - 2010-07-22 16:37 - 00175200 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll 2015-01-21 16:32 - 2010-05-06 17:35 - 00252760 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2015-01-21 16:32 - 2010-03-22 13:21 - 00247560 _____ () C:\Windows\system32\Drivers\RTConvEQ.dat 2015-01-21 16:32 - 2010-03-22 13:21 - 00001448 _____ () C:\Windows\system32\Drivers\RtHdatEx.dat 2015-01-21 16:32 - 2010-03-15 16:59 - 00000024 _____ () C:\Windows\system32\Drivers\rtkhdaud.dat 2015-01-21 16:32 - 2010-02-11 15:45 - 00000176 _____ () C:\Windows\system32\Drivers\RTHDAEQ1.dat 2015-01-21 16:32 - 2010-01-26 21:52 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX3.dat 2015-01-21 16:32 - 2009-12-23 23:26 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX0.dat 2015-01-21 16:32 - 2009-12-04 15:43 - 00132368 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO.dll 2015-01-21 16:32 - 2009-11-24 09:55 - 00345328 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll 2015-01-21 16:32 - 2009-11-24 09:55 - 00185584 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSHD.dll 2015-01-21 16:32 - 2009-11-24 09:55 - 00173296 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP360.dll 2015-01-21 16:32 - 2009-11-24 09:55 - 00140528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll 2015-01-21 16:32 - 2009-11-18 18:42 - 01938704 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2015-01-21 16:32 - 2009-11-18 18:42 - 01783056 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesLib.dll 2015-01-21 16:32 - 2009-11-17 18:13 - 00096160 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll 2015-01-21 16:32 - 2008-08-21 13:43 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX2.dat 2015-01-21 16:32 - 2005-06-27 05:29 - 00000520 _____ () C:\Windows\system32\Drivers\RTEQEX1.dat 2015-01-21 16:31 - 2015-01-21 16:32 - 00000000 ___HD () C:\Program Files\Temp 2015-01-21 16:31 - 2015-01-21 16:31 - 00000000 ____D () C:\Program Files\Common Files\InstallShield 2015-01-21 16:31 - 2011-02-09 15:56 - 01284712 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2015-01-21 16:29 - 2015-01-21 16:29 - 00000000 ____D () C:\Program Files\Common Files\postureAgent 2015-01-21 16:28 - 2015-01-21 21:28 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2015-01-21 16:28 - 2015-01-21 16:36 - 00000000 ____D () C:\Program Files\Intel 2015-01-21 16:28 - 2015-01-21 16:35 - 00000000 ____D () C:\Intel 2015-01-21 16:28 - 2015-01-21 16:28 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2015-01-21 16:28 - 2015-01-21 16:28 - 00000000 ____D () C:\Users\Kasia\AppData\Roaming\InstallShield 2015-01-21 16:28 - 2010-04-13 09:35 - 00435736 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys 2015-01-21 15:48 - 2015-01-28 19:10 - 01523412 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-01-19 19:52 - 2015-01-28 19:27 - 00001425 _____ () C:\Users\Kasia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-01-19 19:50 - 2015-01-19 19:52 - 00000000 ____D () C:\Users\Kasia 2015-01-19 19:50 - 2015-01-19 19:50 - 00000020 ___SH () C:\Users\Kasia\ntuser.ini 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Public\Documents\Moje wideo 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Public\Documents\Moje obrazy 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Public\Documents\Moja muzyka 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\Ustawienia lokalne 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\Szablony 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\Moje dokumenty 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\Menu Start 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\Documents\Moje wideo 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\Documents\Moje obrazy 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\Documents\Moja muzyka 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\Dane aplikacji 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\AppData\Local\Historia 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Kasia\AppData\Local\Dane aplikacji 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\Ustawienia lokalne 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\Szablony 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\Moje dokumenty 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\Menu Start 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\Documents\Moje wideo 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\Documents\Moje obrazy 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\Documents\Moja muzyka 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\Dane aplikacji 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historia 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Dane aplikacji 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default User\Documents\Moje wideo 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default User\Documents\Moje obrazy 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default User\Documents\Moja muzyka 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historia 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Dane aplikacji 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\ProgramData\Ulubione 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\ProgramData\Szablony 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\ProgramData\Pulpit 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programy 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\ProgramData\Menu Start 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\ProgramData\Dokumenty 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 _SHDL () C:\ProgramData\Dane aplikacji 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 __SHD () C:\Recovery 2015-01-19 19:50 - 2015-01-19 19:50 - 00000000 ____D () C:\Users\Kasia\AppData\Local\VirtualStore 2015-01-19 19:50 - 2009-07-14 05:42 - 00000000 ___RD () C:\Users\Kasia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-01-19 19:50 - 2009-07-14 05:37 - 00000000 ___RD () C:\Users\Kasia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-01-19 17:30 - 2015-01-19 17:30 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2015-01-19 17:29 - 2015-01-19 17:29 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2015-01-19 17:28 - 2015-01-29 20:37 - 00139192 _____ () C:\Windows\WindowsUpdate.log 2015-01-19 17:28 - 2015-01-19 17:28 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2015-01-19 17:26 - 2015-01-19 17:29 - 00001313 _____ () C:\Windows\TSSysprep.log 2015-01-19 17:24 - 2015-01-19 19:50 - 00000000 ____D () C:\Windows\Panther ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-29 20:38 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-01-29 20:38 - 2009-07-14 05:39 - 00020992 _____ () C:\Windows\setupact.log 2015-01-29 20:37 - 2009-07-14 05:34 - 00001184 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-01-29 20:37 - 2009-07-14 05:34 - 00001184 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-01-29 20:27 - 2009-07-14 09:28 - 00000000 ____D () C:\Windows\ShellNew 2015-01-29 20:27 - 2009-07-14 03:04 - 00000007 ___SH () C:\autoexec.bat 2015-01-28 19:27 - 2009-07-14 05:46 - 00001515 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-01-28 19:10 - 2009-07-14 09:07 - 00687828 _____ () C:\Windows\system32\perfh015.dat 2015-01-28 19:10 - 2009-07-14 09:07 - 00131382 _____ () C:\Windows\system32\perfc015.dat 2015-01-28 19:03 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\LogFiles 2015-01-21 22:21 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NDF 2015-01-21 16:48 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Public\Libraries 2015-01-21 16:46 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2015-01-21 16:33 - 2009-07-14 05:52 - 00000000 ____D () C:\Windows\system32\restore 2015-01-21 15:54 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2015-01-19 19:52 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache 2015-01-19 19:50 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Default 2015-01-19 19:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\Recovery 2015-01-19 19:50 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Windows NT 2015-01-19 17:29 - 2009-07-14 05:52 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-01-19 17:29 - 2009-07-14 03:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-01-19 17:26 - 2009-07-14 09:28 - 00000000 ____D () C:\Windows\CSC 2015-01-19 17:26 - 2009-07-14 05:34 - 00001774 _____ () C:\Windows\DtcInstall.log 2015-01-19 17:25 - 2009-07-14 05:33 - 00265896 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-01-19 17:24 - 2009-07-14 05:57 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG 2015-01-19 17:24 - 2009-07-14 05:52 - 00028672 _____ () C:\Windows\system32\config\BCD-Template ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-01-29 20:16 ==================== End Of Log ============================