Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-06-2015
Ran by darek (administrator) on DAREK-MSI on 20-06-2015 21:32:28
Running from C:\Users\darek\Desktop
Loaded Profiles: darek (Available Profiles: darek)
Platform: Microsoft Windows 7 Starter  Service Pack 1 (X86) OS Language: Polski (Polska)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe
(Micro-Star International Co., Ltd.) C:\Program Files\System Control Manager\MSIService.exe
(Symantec Corporation) C:\Program Files\Norton AntiVirus\Engine\21.7.0.11\nav.exe
(Symantec Corporation) C:\Program Files\Norton Identity Safe\Engine\2014.7.8.23\NST.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\obexsrv.exe
(Macrovision Europe Ltd.) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Symantec Corporation) C:\Program Files\Norton AntiVirus\Engine\21.7.0.11\nav.exe
(Symantec Corporation) C:\Program Files\Norton Identity Safe\Engine\2014.7.8.23\NST.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Motorola, Inc.) C:\Program Files\Motorola\Bluetooth\audiosrv.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [7830048 2009-10-13] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files\Motorola\Bluetooth\btmshell.dll",TrayApp
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-57077078-4109812761-1278619592-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\S-1-5-21-57077078-4109812761-1278619592-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=
HKU\S-1-5-21-57077078-4109812761-1278619592-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
SearchScopes: HKLM -> {51F460C5-4682-461D-86DB-48B247208ECA} URL = http://www.bing.com/search?q={searchTerms}&form=MSITDF&pc=MAMI&src=IE-SearchBox
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Norton AntiVirus\Engine\21.7.0.11\IPS\IPSBHO.DLL [2015-03-05] (Symantec Corporation)
BHO: No Name -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} ->  No File
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-20] (Oracle Corporation)
BHO: Norton Identity Protection -> {AB4C7833-A6EC-433f-B9FE-6B14B1A2F836} -> C:\Program Files\Norton Identity Safe\Engine\2014.7.8.23\coIEPlg.dll [2014-09-20] (Symantec Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-20] (Oracle Corporation)
Toolbar: HKLM - Norton Identity Safe Toolbar - {A13C2648-91D4-4bf3-BC6D-0079707C4389} - C:\Program Files\Norton Identity Safe\Engine\2014.7.8.23\coIEPlg.dll [2014-09-20] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-57077078-4109812761-1278619592-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\darek\AppData\Roaming\Mozilla\Firefox\Profiles\m11a7jiq.default-1434792635949
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_160.dll [2015-06-20] ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-12-13] (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-20] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-57077078-4109812761-1278619592-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\darek\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-11] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &video& - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2012-11-23]
FF HKLM\...\Firefox\Extensions: [{F04D2D30-776C-4d02-8627-8E4385ECA58D}] - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.7.8.23\coFFPlgn
FF Extension: Norton Identity Safe Toolbar - C:\ProgramData\Norton\{92622AAD-05E8-4459-B256-765CE1E929FB}\NST_2014.7.8.23\coFFPlgn [2015-06-20]

Chrome: 
=======
CHR StartupUrls: Default -> "hxxp://search.yahoo.com/?fr=hp-ddc-bd&type=616_pr__alt__ddc_dsssyc_bd_com"
CHR Profile: C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-01]
CHR Extension: (Google Docs) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-03]
CHR Extension: (Google Drive) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-01]
CHR Extension: (YouTube) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-01]
CHR Extension: (Google Search) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-01]
CHR Extension: (webporpoise) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgihlahjcobhicckdihcglcaolmmbgbn [2015-04-03]
CHR Extension: (Google Sheets) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-01]
CHR Extension: (Adblock Plus ++) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\feonmncchcjjmpoghaghgokiaknajkog [2015-04-14]
CHR Extension: (Avast Online Security) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-04-03]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-10]
CHR Extension: (Google Wallet) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-03]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2015-04-03]
CHR Extension: (Gmail) - C:\Users\darek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-01]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]
CHR HKLM\...\Chrome\Extension: [nppllibpnmahfaklnpggkibhkapjkeob] - C:\Program Files\Norton Identity Safe\Engine\2014.7.8.23\Exts\Chrome.crx [2015-06-20]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R3 Bluetooth Device Manager; C:\Program Files\Motorola\Bluetooth\devmgrsrv.exe [3473672 2009-10-22] (Motorola, Inc.)
R3 Bluetooth Media Service; C:\Program Files\Motorola\Bluetooth\audiosrv.exe [709384 2009-08-15] (Motorola, Inc.)
R2 Bluetooth OBEX Service; C:\Program Files\Motorola\Bluetooth\obexsrv.exe [480520 2009-10-20] (Motorola, Inc.)
R3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [647680 2010-02-20] (Macrovision Europe Ltd.) [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 Micro Star SCM; C:\Program Files\System Control Manager\MSIService.exe [160768 2009-07-10] (Micro-Star International Co., Ltd.) [File not signed]
R2 NAV; C:\Program Files\Norton AntiVirus\Engine\21.7.0.11\NAV.exe [262928 2015-03-07] (Symantec Corporation)
R2 NCO; C:\Program Files\Norton Identity Safe\Engine\2014.7.8.23\NST.exe [130104 2014-09-20] (Symantec Corporation)
R2 Themes; C:\Windows\system32\themeservice.dll [37376 2009-07-14] (Microsoft Corporation) [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [17408 2009-05-27] (ArcSoft, Inc.)
R1 BHDrvx86; C:\Program Files\Norton AntiVirus\NortonData\21.6.0.32\Definitions\BASHDefs\20150602.001\BHDrvx86.sys [1172696 2015-06-02] (Symantec Corporation)
S3 BTMCOM; C:\Windows\System32\Drivers\btmcom.sys [40448 2009-07-10] (Motorola, Inc.)
S3 btmhid; C:\Windows\system32\DRIVERS\btmhid.sys [27008 2009-06-29] (Motorola, Inc.)
R3 BTMUSB; C:\Windows\System32\Drivers\btmusb.sys [520960 2009-10-22] (Motorola, Inc.)
S3 Ca2001v; C:\Windows\System32\Drivers\Ca2001v.sys [2333568 2008-02-19] (Digital Camera)
R1 ccSet_NAV; C:\Windows\system32\drivers\NAV\1507000.00B\ccSetx86.sys [127064 2014-02-21] (Symantec Corporation)
R1 ccSet_NST; C:\Windows\system32\drivers\NST\7DE07080.017\ccSetx86.sys [127064 2013-09-27] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [380720 2015-06-19] (Symantec Corporation)
U3 EraserUtilDrv11510; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11510.sys [113456 2015-06-19] (Symantec Corporation)
R1 IDSVix86; C:\Program Files\Norton AntiVirus\NortonData\21.6.0.32\Definitions\IPSDefs\20150619.001\IDSvix86.sys [523512 2015-06-19] (Symantec Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-04-14] (Malwarebytes Corporation)
R3 NAVENG; C:\Program Files\Norton AntiVirus\NortonData\21.6.0.32\Definitions\VirusDefs\20150619.019\NAVENG.SYS [95704 2015-06-19] (Symantec Corporation)
R3 NAVEX15; C:\Program Files\Norton AntiVirus\NortonData\21.6.0.32\Definitions\VirusDefs\20150619.019\NAVEX15.SYS [1636696 2015-06-19] (Symantec Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\NAV\1507000.00B\SRTSP.SYS [664792 2014-08-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NAV\1507000.00B\SRTSPX.SYS [32984 2014-08-26] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NAV\1507000.00B\SYMDS.SYS [367704 2014-08-26] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NAV\1507000.00B\SYMEFA.SYS [936152 2014-08-26] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [142936 2015-06-20] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NAV\1507000.00B\Ironx86.SYS [209624 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NAV\1507000.00B\SYMNETS.SYS [447704 2014-08-26] (Symantec Corporation)
S4 cpuz134; \??\C:\Users\darek\AppData\Local\Temp\cpuz134\cpuz134_x32.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-20 21:32 - 2015-06-20 21:33 - 00014757 _____ C:\Users\darek\Desktop\FRST.txt
2015-06-20 21:31 - 2015-06-20 21:32 - 00000000 ___DC C:\FRST
2015-06-20 21:28 - 2015-06-20 21:28 - 01148416 _____ (Farbar) C:\Users\darek\Desktop\FRST.exe
2015-06-20 21:28 - 2015-06-20 21:28 - 00380416 _____ C:\Users\darek\Desktop\w25cik56.exe
2015-06-20 20:46 - 2015-06-20 20:47 - 00000000 __RDC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Identity Safe
2015-06-20 20:46 - 2015-06-20 20:46 - 00000000 ___DC C:\Windows\system32\Drivers\NST
2015-06-20 20:46 - 2015-06-20 20:46 - 00000000 ___DC C:\Program Files\Norton Identity Safe
2015-06-20 20:44 - 2015-06-20 21:26 - 00000000 ___DC C:\Program Files\Common Files\Symantec Shared
2015-06-20 20:44 - 2015-06-20 20:44 - 00142936 ____C (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT.SYS
2015-06-20 20:44 - 2015-06-20 20:44 - 00008194 ____C C:\Windows\system32\Drivers\SYMEVENT.CAT
2015-06-20 20:42 - 2015-06-20 21:19 - 00002337 ____C C:\Users\Public\Desktop\Norton AntiVirus.lnk
2015-06-20 20:38 - 2015-06-20 21:19 - 00000000 __RDC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton AntiVirus
2015-06-20 20:38 - 2015-06-20 21:19 - 00000000 ___DC C:\Windows\system32\Drivers\NAV
2015-06-20 20:38 - 2015-06-20 20:50 - 00000000 ___DC C:\ProgramData\Norton
2015-06-20 20:38 - 2015-06-20 20:38 - 00000000 ___DC C:\Program Files\Norton AntiVirus
2015-06-20 20:34 - 2015-06-20 20:34 - 00000342 ____C C:\Windows\PFRO.log
2015-06-20 20:32 - 2009-07-14 03:16 - 00027136 ____C (Microsoft Corporation) C:\Windows\system32\sl2.dll
2015-06-20 20:25 - 2015-06-20 20:27 - 00002422 ____C C:\Personalization_Panel_Undo.log
2015-06-20 20:23 - 2011-08-16 05:47 - 00367938 _____ () C:\Users\darek\Desktop\Personalization Panel v1.2.1.exe
2015-06-20 20:21 - 2015-06-20 20:21 - 00309941 _____ C:\Users\darek\Downloads\aero_patch_w7starter_and_basic_by_shikharev-d45q7ck.7z
2015-06-20 19:43 - 2015-06-20 19:45 - 02744320 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-06-20 19:43 - 2015-06-20 19:45 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-06-20 19:43 - 2015-06-20 19:45 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-06-20 19:43 - 2015-06-20 19:44 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-06-20 19:25 - 2015-06-20 19:26 - 05703168 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-06-20 18:08 - 2015-06-20 18:47 - 00000000 ____D C:\Users\darek\AppData\Roaming\Panda Security
2015-06-20 18:06 - 2015-06-20 18:48 - 00000000 ___DC C:\Program Files\Panda Security
2015-06-20 18:05 - 2015-06-20 18:47 - 00000000 ___DC C:\ProgramData\Panda Security
2015-06-20 14:57 - 2015-06-20 14:57 - 00000363 ____C C:\DelFix.txt
2015-06-20 14:52 - 2015-06-20 21:21 - 00000560 ____C C:\Windows\setupact.log
2015-06-20 14:52 - 2015-06-20 14:52 - 00000000 ____C C:\Windows\setuperr.log
2015-06-20 11:46 - 2015-06-20 11:46 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-06-20 11:46 - 2015-06-20 11:46 - 00000000 ___DC C:\Program Files\Common Files\Java
2015-06-20 11:46 - 2015-06-20 11:45 - 00096352 ____C (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-06-20 11:43 - 2015-06-20 11:43 - 00000000 ___DC C:\Program Files\WinRAR
2015-06-20 11:43 - 2015-06-20 11:43 - 00000000 ____D C:\Users\darek\AppData\Roaming\WinRAR
2015-06-20 11:43 - 2015-06-20 11:43 - 00000000 ____D C:\Users\darek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-06-20 11:14 - 2015-06-20 11:14 - 00000024 ___SH C:\Users\darek\AppData\Roaming\System5908ConfigCollection.dat
2015-06-20 11:14 - 2015-06-20 11:14 - 00000024 ___SH C:\Users\darek\AppData\Roaming\1D959CA221C7573.sys
2015-06-20 11:05 - 2015-06-20 11:05 - 00000975 ____C C:\Users\Public\Desktop\CCleaner.lnk
2015-06-20 11:05 - 2015-06-20 11:05 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-06-20 11:05 - 2015-06-20 11:05 - 00000000 ___DC C:\Program Files\CCleaner
2015-06-20 10:44 - 2015-06-20 10:55 - 00002471 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-06-20 10:44 - 2015-06-20 10:44 - 00001999 ____C C:\Users\Public\Desktop\Adobe Reader XI.lnk
2015-06-20 10:44 - 2015-06-20 10:44 - 00000000 ___DC C:\Program Files\Common Files\Adobe
2015-06-19 23:07 - 2015-06-20 20:31 - 00000000 __HDC C:\W7P_Backups
2015-06-19 23:07 - 2009-07-14 03:16 - 00239616 ____C (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2015-06-19 16:58 - 2015-06-19 16:58 - 00000000 ___DC C:\Windows\system32\x64
2015-06-19 16:56 - 2015-06-19 16:56 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2015-06-19 16:56 - 2015-06-19 16:56 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-06-19 16:53 - 2015-06-19 16:54 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-06-19 16:53 - 2015-06-19 16:54 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-06-19 16:53 - 2015-06-19 16:54 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-06-19 16:53 - 2015-06-19 16:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-06-19 16:53 - 2015-06-19 16:54 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2015-06-19 16:53 - 2015-06-19 16:54 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2015-06-19 16:53 - 2015-06-19 16:54 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2015-06-19 16:53 - 2015-06-19 16:54 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2015-06-19 16:53 - 2015-06-19 16:54 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2015-06-19 16:53 - 2015-06-19 16:54 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2015-06-19 16:45 - 2015-06-19 16:53 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-06-19 16:45 - 2015-06-19 16:53 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-06-19 16:45 - 2015-06-19 16:53 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-06-19 16:45 - 2015-06-19 16:53 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-06-19 16:45 - 2015-06-19 16:53 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-06-19 16:45 - 2015-06-19 16:53 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-06-19 16:44 - 2015-06-19 16:48 - 00715200 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2015-06-19 16:42 - 2015-06-19 16:48 - 02937344 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-06-19 16:42 - 2015-06-19 16:48 - 02045952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-06-19 16:42 - 2015-06-19 16:48 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-06-19 16:42 - 2015-06-19 16:48 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-06-19 16:42 - 2015-06-19 16:48 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-06-19 16:42 - 2015-06-19 16:48 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-06-19 16:42 - 2015-06-19 16:48 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-06-19 16:42 - 2015-06-19 16:48 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-06-19 16:42 - 2015-06-19 16:48 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-06-19 16:42 - 2015-06-19 16:48 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-06-19 16:42 - 2015-06-19 16:48 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 19607040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 12829696 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-06-19 14:02 - 2015-06-19 15:13 - 02278912 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-19 14:02 - 2015-06-19 15:13 - 01950720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 01309696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-06-19 14:02 - 2015-06-19 15:13 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-06-19 14:02 - 2015-06-19 15:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00342728 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-19 14:02 - 2015-06-19 15:13 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-06-19 14:02 - 2015-06-19 15:13 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-06-19 14:02 - 2015-06-19 15:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-06-19 14:02 - 2015-06-19 15:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-06-19 14:02 - 2015-06-19 14:16 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-06-19 14:02 - 2015-06-19 14:16 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 03989440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 03934144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 01307648 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-06-19 14:01 - 2015-06-19 15:05 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-06-19 14:01 - 2015-06-19 15:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-06-19 14:01 - 2015-06-19 15:05 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-06-19 14:01 - 2015-06-19 15:05 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-06-19 13:59 - 2015-06-19 14:09 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-19 13:56 - 2015-06-19 15:19 - 00901120 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-19 13:56 - 2015-06-19 15:19 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-19 13:56 - 2015-06-19 15:19 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-19 13:56 - 2015-06-19 15:19 - 00571392 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-19 13:56 - 2015-06-19 15:19 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-19 13:56 - 2015-06-19 15:19 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-19 13:56 - 2015-06-19 15:19 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-19 13:56 - 2015-06-19 15:19 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-19 13:51 - 2015-06-19 15:19 - 02384384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-19 13:50 - 2015-06-19 15:14 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2015-06-19 13:50 - 2015-06-19 14:16 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2015-06-19 13:50 - 2015-06-19 14:16 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-06-19 13:50 - 2015-06-19 14:16 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2015-06-19 13:50 - 2015-06-19 14:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2015-06-19 13:50 - 2015-06-19 14:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2015-06-18 16:30 - 2015-06-20 11:41 - 00740634 ____C C:\Windows\system32\perfh015.dat
2015-06-18 16:30 - 2015-06-20 11:41 - 00156176 ____C C:\Windows\system32\perfc015.dat
2015-06-18 16:30 - 2015-06-18 16:27 - 00337158 ____C C:\Windows\system32\perfi015.dat
2015-06-18 16:30 - 2015-06-18 16:27 - 00038710 ____C C:\Windows\system32\perfd015.dat
2015-06-18 16:28 - 2015-06-19 15:35 - 00000000 ___DC C:\Windows\system32\Drivers\pl-PL
2015-06-18 16:28 - 2015-06-18 16:28 - 00000000 ___DC C:\Windows\system32\XPSViewer
2015-06-18 16:28 - 2015-06-18 16:28 - 00000000 ___DC C:\Windows\system32\pl
2015-06-18 16:28 - 2015-06-18 16:28 - 00000000 ___DC C:\Windows\pl-PL
2015-06-18 07:22 - 2015-06-18 07:22 - 00000000 ___DC C:\Device
2015-06-16 15:34 - 2015-06-16 20:00 - 00000000 ___DC C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-06-15 22:29 - 2015-06-20 11:12 - 00119512 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-15 22:28 - 2015-06-16 15:32 - 00092888 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-06-15 22:28 - 2015-06-15 22:28 - 00001086 ____C C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-15 22:28 - 2015-06-15 22:28 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-06-15 22:28 - 2015-06-15 22:28 - 00000000 ___DC C:\ProgramData\Malwarebytes
2015-06-15 22:28 - 2015-06-15 22:28 - 00000000 ___DC C:\Program Files\Malwarebytes Anti-Malware
2015-06-15 22:28 - 2015-04-14 09:37 - 00051928 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-06-15 22:28 - 2015-04-14 09:37 - 00023256 ____C (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-06-15 21:15 - 2015-06-15 21:15 - 00000000 ___DC C:\Windows\pss
2015-06-15 20:55 - 2015-06-15 20:56 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-06-09 18:23 - 2015-06-15 20:59 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-06-09 18:23 - 2015-06-15 20:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-06-09 18:22 - 2015-06-19 14:56 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-06-09 18:22 - 2015-06-15 20:51 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-06-09 18:22 - 2015-06-15 20:51 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-06-09 18:22 - 2015-06-15 20:47 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-06-09 18:18 - 2015-06-15 20:43 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-06-09 18:18 - 2015-06-15 20:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-06-09 18:18 - 2015-06-15 20:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-06-09 18:18 - 2015-06-15 20:43 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-06-09 18:07 - 2015-06-09 18:07 - 00001772 ____C C:\Windows\system32\ScanResults.xml
2015-06-09 18:02 - 2015-06-15 20:36 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-06-09 17:56 - 2015-06-09 17:56 - 00001133 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-06-09 17:56 - 2015-06-09 17:56 - 00001121 ____C C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-06-09 17:55 - 2015-06-09 17:56 - 00000000 ___DC C:\Program Files\Mozilla Maintenance Service

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-20 21:29 - 2009-07-14 06:34 - 00018768 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-06-20 21:29 - 2009-07-14 06:34 - 00018768 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-06-20 21:24 - 2014-04-05 21:54 - 02051925 _____ C:\Windows\WindowsUpdate.log
2015-06-20 21:21 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-20 20:34 - 2009-07-14 06:33 - 00464496 ____C C:\Windows\system32\FNTCACHE.DAT
2015-06-20 20:32 - 2009-07-14 04:37 - 00000000 ___DC C:\Windows\system32\ru-RU
2015-06-20 19:44 - 2009-07-14 04:37 - 00000000 ___DC C:\Windows\system32\pl-PL
2015-06-20 19:02 - 2012-09-28 17:43 - 00000000 ___DC C:\Users\darek
2015-06-20 18:59 - 2010-02-20 19:19 - 00000000 ___DC C:\ProgramData\FLEXnet
2015-06-20 18:59 - 2009-07-14 04:37 - 00000000 ___DC C:\Windows\system32\wfp
2015-06-20 18:58 - 2009-07-14 04:37 - 00000000 ___DC C:\Windows\registration
2015-06-20 14:28 - 2009-07-14 04:37 - 00000000 ___DC C:\Windows\system32\LogFiles
2015-06-20 13:00 - 2012-10-07 22:02 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-20 11:47 - 2014-06-21 17:18 - 00000000 ___DC C:\ProgramData\Oracle
2015-06-20 11:45 - 2014-06-21 17:17 - 00000000 ___DC C:\Program Files\Java
2015-06-20 11:43 - 2010-02-20 19:27 - 00000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-06-20 11:41 - 2010-02-20 19:11 - 00894178 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-20 11:29 - 2012-10-10 05:59 - 00000000 ____D C:\Users\darek\AppData\Local\Adobe
2015-06-20 11:27 - 2012-10-07 22:02 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-06-20 11:27 - 2012-10-07 22:02 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-06-20 11:22 - 2015-05-01 18:54 - 00000000 __SHD C:\Users\darek\AppData\Local\EmieBrowserModeList
2015-06-20 11:22 - 2014-05-18 23:56 - 00000000 __SHD C:\Users\darek\AppData\Local\EmieUserList
2015-06-20 11:22 - 2014-05-18 23:56 - 00000000 __SHD C:\Users\darek\AppData\Local\EmieSiteList
2015-06-20 10:51 - 2012-10-07 17:45 - 00000000 ____D C:\Users\darek\AppData\Roaming\Adobe
2015-06-20 10:51 - 2010-02-20 19:38 - 00000000 ___DC C:\ProgramData\Adobe
2015-06-20 10:44 - 2012-10-10 06:03 - 00000000 ___DC C:\Program Files\Adobe
2015-06-20 10:15 - 2009-07-14 04:37 - 00000000 ___DC C:\Windows\Microsoft.NET
2015-06-19 22:16 - 2014-10-02 20:52 - 00000266 _RSHC C:\ProgramData\ntuser.pol
2015-06-19 17:07 - 2009-07-14 04:37 - 00000000 __RDC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-19 15:35 - 2015-04-28 19:23 - 00000000 ___DC C:\Windows\system32\appraiser
2015-06-19 15:35 - 2014-05-07 08:37 - 00000000 __SDC C:\Windows\system32\CompatTel
2015-06-19 14:30 - 2013-07-20 22:59 - 00000000 ___DC C:\Windows\system32\MRT
2015-06-18 16:53 - 2009-07-14 06:57 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2015-06-18 16:53 - 2009-07-14 06:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2015-06-18 16:28 - 2009-07-14 06:56 - 00000000 ___DC C:\Windows\system32\winrm
2015-06-18 16:28 - 2009-07-14 06:56 - 00000000 ___DC C:\Windows\system32\WCN
2015-06-18 16:28 - 2009-07-14 06:56 - 00000000 ___DC C:\Windows\system32\slmgr
2015-06-18 16:28 - 2009-07-14 06:56 - 00000000 ___DC C:\Windows\system32\Printing_Admin_Scripts
2015-06-18 16:28 - 2009-07-14 06:52 - 00000000 ___DC C:\Program Files\Windows Sidebar
2015-06-18 16:28 - 2009-07-14 06:52 - 00000000 ___DC C:\Program Files\Windows Photo Viewer
2015-06-18 16:28 - 2009-07-14 06:52 - 00000000 ___DC C:\Program Files\Windows Defender
2015-06-18 16:28 - 2009-07-14 06:52 - 00000000 ___DC C:\Program Files\DVD Maker
2015-06-18 16:28 - 2009-07-14 04:37 - 00000000 ___DC C:\Windows\system32\MUI
2015-06-18 16:28 - 2009-07-14 04:37 - 00000000 ___DC C:\Windows\system32\com
2015-06-18 16:28 - 2009-07-14 04:37 - 00000000 ___DC C:\Windows\IME
2015-06-18 16:28 - 2009-07-14 04:37 - 00000000 ___DC C:\Program Files\Common Files\System
2015-06-16 16:17 - 2009-07-14 04:04 - 00000219 _____ C:\Windows\system.ini
2015-06-16 16:13 - 2013-04-02 21:19 - 00000000 ___DC C:\Windows\System64
2015-06-15 21:43 - 2009-07-14 04:04 - 00000580 _____ C:\Windows\win.ini
2015-06-15 21:17 - 2015-04-11 17:59 - 00000000 __SDC C:\Windows\system32\GWX
2015-06-15 21:17 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-06-09 18:00 - 2013-09-24 10:56 - 00000000 ____D C:\Users\darek\AppData\Roaming\Mozilla
2015-06-09 17:54 - 2014-06-20 11:10 - 00000000 ___DC C:\Program Files\Mozilla Firefox
2015-06-09 17:36 - 2015-05-17 03:36 - 00000464 ____C C:\Windows\system32\ScannerSettings
2015-05-27 00:03 - 2012-10-27 06:39 - 136900096 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Files in the root of some directories =======

2015-04-03 16:28 - 2015-04-03 16:28 - 6103040 ____C () C:\Program Files\GUTD337.tmp
2015-06-20 11:14 - 2015-06-20 11:14 - 0000024 ___SH () C:\Users\darek\AppData\Roaming\1D959CA221C7573.sys
2015-06-20 11:14 - 2015-06-20 11:14 - 0000024 ___SH () C:\Users\darek\AppData\Roaming\System5908ConfigCollection.dat
2012-11-24 09:35 - 2012-11-25 01:56 - 0000179 _____ () C:\Users\darek\AppData\Roaming\wss.ini
2013-05-10 20:33 - 2013-05-10 20:33 - 0003584 _____ () C:\Users\darek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-10-30 06:38 - 2012-10-30 07:07 - 0001656 _____ () C:\Users\darek\AppData\Local\mbt-actwiz.log
2012-11-26 04:06 - 2012-11-26 04:06 - 0000094 _____ () C:\ProgramData\CameraRecorder.ini

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-16 03:20

==================== End of log ============================