Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-06-2015 01 Ran by user (administrator) on USER-KOMPUTER on 29-06-2015 09:37:22 Running from C:\Users\user\Downloads Loaded Profiles: user (Available Profiles: user) Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Polski (Polska) Internet Explorer Version 11 (Default browser: Opera) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_25c3c9ef676ad202\stacsv.exe () C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Dell Inc.) C:\Program Files\Dell\Dell Wireless WLAN Card\BCMWLTRY.EXE (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_25c3c9ef676ad202\AEstSrv.exe (Apple Computer, Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (O2Micro International) C:\Windows\System32\drivers\o2flash.exe (Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe (WA) C:\Program Files\WordAnchor_1.10.0.19\Service\wasvc.exe (Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe (Dell Inc.) C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe (CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Microsoft) C:\dell\DBRM\Reminder\DbrmTrayicon.exe () C:\Windows\Samsung\PanelMgr\SSMMgr.exe (Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe (Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe (Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe (ALLPlayer Group Ltd.) C:\Program Files\ALLPlayer Remote\ALLPlayerRemoteControl.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Opera Software) C:\Users\user\AppData\Local\Programs\Opera\30.0.1835.88\opera.exe (Opera Software) C:\Users\user\AppData\Local\Programs\Opera\30.0.1835.88\opera_crashreporter.exe (Opera Software) C:\Users\user\AppData\Local\Programs\Opera\30.0.1835.88\opera.exe (Opera Software) C:\Users\user\AppData\Local\Programs\Opera\30.0.1835.88\opera.exe (Opera Software) C:\Users\user\AppData\Local\Programs\Opera\30.0.1835.88\opera.exe (Opera Software) C:\Users\user\AppData\Local\Programs\Opera\30.0.1835.88\opera.exe (Opera Software) C:\Users\user\AppData\Local\Programs\Opera\30.0.1835.88\opera.exe (Opera Software) C:\Users\user\AppData\Local\Programs\Opera\30.0.1835.88\opera.exe (Opera Software) C:\Users\user\AppData\Local\Programs\Opera\30.0.1835.88\opera.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [217088 2009-06-29] (Alps Electric Co., Ltd.) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [495708 2009-11-06] (IDT, Inc.) HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe [4562944 2009-07-17] (Dell Inc.) HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-28] (Adobe Systems Incorporated) HKLM\...\Run: [PDVDDXSrv] => C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [140520 2009-06-25] (CyberLink Corp.) HKLM\...\Run: [DBRMTray] => C:\Dell\DBRM\Reminder\DbrmTrayIcon.exe [203776 2009-11-12] (Microsoft) HKLM\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\ssmmgr.exe [614400 2009-08-14] () HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.) HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54576 2009-11-18] (Hewlett-Packard) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-28] (Avast Software s.r.o.) HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.) HKLM\...\Run: [BrMfcWnd] => C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [1159168 2009-05-26] (Brother Industries, Ltd.) HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) HKLM\...\RunOnce: [DBRMTray] => C:\Dell\DBRM\Reminder\TrayApp.exe [7168 2009-10-17] (Microsoft) HKU\S-1-5-21-356970189-196760685-2834952327-1000\...\Run: [ALLUpdate] => C:\Program Files\ALLPlayer\ALLUpdate.exe [2765256 2015-04-27] (ALLPlayer Group Ltd.) HKU\S-1-5-21-356970189-196760685-2834952327-1000\...\Run: [ALLPlayer WiFi Remote] => C:\Program Files\ALLPlayer Remote\ALLPlayerRemoteControl.exe [5182896 2014-07-23] (ALLPlayer Group Ltd.) HKU\S-1-5-21-356970189-196760685-2834952327-1000\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner.exe [6405912 2015-06-01] (Piriform Ltd) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-06-28] (Avast Software s.r.o.) BootExecute: autocheck autochk * sdnclean.exe GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-356970189-196760685-2834952327-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-356970189-196760685-2834952327-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.) BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-02-01] (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-28] (Avast Software s.r.o.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-02-01] (Oracle Corporation) BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2008-01-13] (Microsoft Corporation) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [94208 2006-02-28] (Apple Computer, Inc.) Tcpip\Parameters: [DhcpNameServer] 87.204.204.204 62.233.233.233 Tcpip\..\Interfaces\{51B8B2A8-4594-42C1-BA59-6E00603B2E89}: [DhcpNameServer] 87.204.204.204 62.233.233.233 FireFox: ======== FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\yumpv31x.default FF Homepage: https://www.google.pl/?gws_rd=ssl FF Keyword.URL: FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-02-01] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.11.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-02-01] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-18] (Google Inc.) FF Plugin HKU\S-1-5-21-356970189-196760685-2834952327-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\user\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2013-01-10] (Unity Technologies ApS) FF SearchPlugin: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\yumpv31x.default\searchplugins\dsrlte1.xml [2015-04-29] FF Extension: Adblock Plus Pop-up Addon - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\yumpv31x.default\Extensions\adblockpopups@jessehakanen.net.xpi [2015-03-30] FF Extension: Adblock Plus - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\yumpv31x.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-03-30] FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-03-01] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-03] FF HKU\S-1-5-21-356970189-196760685-2834952327-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: No Name - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\yumpv31x.default\extensions\quick_searchff@gmail.com [not found] FF Extension: No Name - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\yumpv31x.default\extensions\sweetsearch@gmail.com [not found] FF Extension: No Name - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\yumpv31x.default\extensions\searchffv2@gmail.com [not found] Chrome: ======= CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-29] CHR Extension: (Radio) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\agljkoinmcdnopnlbhhjibjiablccgoh [2015-02-10] CHR Extension: (Google Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-29] CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-12-30] CHR Extension: (TV) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2015-02-10] CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-12-30] CHR Extension: (Adblock Plus) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-03-16] CHR Extension: (Adblock for Youtube™) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-02-10] CHR Extension: (Google Search) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-12-30] CHR Extension: (No Name) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-06-29] CHR Extension: (Avast Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-10-03] CHR Extension: (Solution Real) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfgiggjleaookkleooimjnbhmmdnjdgm [2015-01-08] CHR Extension: (Google Wallet) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-31] CHR Extension: (Special Box) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogiglaepmheikjmddcafhmjklepppnaa [2015-06-14] CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-12-30] CHR Profile: C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (Google Slides) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-15] CHR Extension: (Google Docs) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-15] CHR Extension: (Google Drive) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-15] CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-15] CHR Extension: (Google Search) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-15] CHR Extension: (Google Sheets) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-15] CHR Extension: (avast! Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-01-15] CHR Extension: (Google Wallet) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-01-15] CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-15] CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-28] Opera: ======= OPR Extension: (avast! Online Security) - C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2015-06-29] OPR Extension: (Adblock Plus) - C:\Users\user\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-06-29] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-28] (Avast Software s.r.o.) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3207800 2015-06-28] (Avast Software) R2 Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed] S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-01-13] (Macrovision Europe Ltd.) [File not signed] R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed] R2 O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [65536 2007-02-12] (O2Micro International) R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed] R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.) R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.) R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_25c3c9ef676ad202\STacSV.exe [229458 2009-11-06] (IDT, Inc.) R2 wasvc_1.10.0.19; C:\Program Files\WordAnchor_1.10.0.19\Service\wasvc.exe [299096 2015-06-16] (WA) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) R2 wltrysvc; C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe [3086848 2009-07-17] (Dell Inc.) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24144 2015-06-28] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [74976 2015-06-28] (Avast Software s.r.o.) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-06-28] (Avast Software s.r.o.) R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49904 2015-06-28] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [787760 2015-06-28] (Avast Software s.r.o.) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427992 2015-06-28] (Avast Software s.r.o.) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [106912 2015-06-28] (Avast Software s.r.o.) R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [209048 2015-06-28] () R3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [18424 2009-07-17] (Broadcom Corporation) S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [38400 2009-06-08] (Samsung Electronics Co., Ltd.) [File not signed] R3 O2MDGRDR; C:\Windows\System32\DRIVERS\o2mdg.sys [58528 2009-05-22] (O2Micro ) R3 O2SDGRDR; C:\Windows\System32\DRIVERS\o2sdg.sys [41504 2009-05-07] (O2Micro ) R2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [5120 2008-01-10] (Samsung Electronics) [File not signed] S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [13056 2010-01-21] (LG Electronics Inc.) S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [20864 2010-01-21] (LG Electronics Inc.) S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [24960 2010-01-21] (LG Electronics Inc.) R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220752 2015-06-28] (Avast Software) R1 wafd_1_10_0_19; C:\Windows\System32\drivers\wafd_1_10_0_19.sys [56448 2015-06-16] (WA) U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) S3 catchme; \??\C:\Users\user\AppData\Local\Temp\catchme.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-29 09:36 - 2015-06-29 09:36 - 00007701 _____ C:\Windows\WindowsUpdate.log 2015-06-29 09:28 - 2015-06-29 09:28 - 00000764 _____ C:\Users\user\Desktop\rejestr.reg 2015-06-29 09:22 - 2015-06-29 09:22 - 00029541 _____ C:\Users\user\Downloads\Addition (3).txt 2015-06-29 09:22 - 2015-06-29 09:22 - 00000514 _____ C:\Users\user\Downloads\GMER.txt 2015-06-29 09:21 - 2015-06-29 09:21 - 00052790 _____ C:\Users\user\Downloads\FRST (1).txt 2015-06-29 09:20 - 2015-06-29 09:20 - 00029541 _____ C:\Users\user\Downloads\Addition (2).txt 2015-06-29 09:14 - 2015-06-29 09:14 - 02244096 _____ C:\Users\user\Downloads\adwcleaner_4.207.exe 2015-06-29 09:07 - 2015-06-29 09:07 - 00029541 _____ C:\Users\user\Downloads\Addition (1).txt 2015-06-29 08:39 - 2015-06-29 08:39 - 00380416 _____ C:\Users\user\Downloads\m5c8qheo.exe 2015-06-29 08:37 - 2015-06-29 09:36 - 00000000 ____D C:\_logi 2015-06-29 08:36 - 2015-06-29 08:36 - 00058199 _____ C:\Users\user\Downloads\Shortcut.txt 2015-06-29 08:35 - 2015-06-29 08:36 - 00029541 _____ C:\Users\user\Downloads\Addition.txt 2015-06-29 08:33 - 2015-06-29 09:37 - 00000000 ____D C:\FRST 2015-06-29 08:33 - 2015-06-29 08:33 - 01636352 _____ (Farbar) C:\Users\user\Downloads\FRST.exe 2015-06-29 08:22 - 2015-06-29 09:37 - 00020876 _____ C:\Users\user\Downloads\FRST.txt 2015-06-29 07:22 - 2015-06-29 07:22 - 00000000 ____D C:\Users\user\Documents\ProcAlyzer Dumps 2015-06-29 07:08 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe 2015-06-29 07:08 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe 2015-06-29 07:08 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2015-06-29 07:08 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2015-06-29 07:08 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2015-06-29 07:08 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe 2015-06-29 07:08 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe 2015-06-29 07:08 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe 2015-06-29 06:57 - 2015-06-29 06:57 - 00000000 ____D C:\Windows\system32\vbox 2015-06-28 21:28 - 2015-06-29 07:19 - 00000000 ____D C:\Qoobox 2015-06-28 21:27 - 2015-06-29 07:19 - 00000000 ____D C:\Windows\erdnt 2015-06-28 21:27 - 2015-06-28 21:27 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\user\Downloads\rkill.com 2015-06-28 21:26 - 2015-06-28 21:27 - 05630589 ____R (Swearware) C:\Users\user\Downloads\ComboFix.exe 2015-06-28 21:20 - 2015-06-28 21:20 - 06565736 _____ (Piriform Ltd) C:\Users\user\Downloads\ccsetup507.exe 2015-06-28 21:20 - 2015-06-28 21:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-06-28 21:20 - 2015-06-28 21:20 - 00000000 ____D C:\Program Files\CCleaner 2015-06-28 21:18 - 2015-06-28 21:18 - 00843240 _____ (Generic Internet Program ) C:\Users\user\Downloads\CCleaner(13061)-dp.exe 2015-06-28 21:05 - 2015-06-28 21:05 - 00291312 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe 2015-06-28 21:05 - 2015-06-28 21:05 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr 2015-06-28 21:05 - 2015-06-28 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-06-24 12:51 - 2015-06-24 12:51 - 00145855 _____ C:\Users\user\AppData\Roaming\PhotoStage.dmp 2015-06-24 09:06 - 2015-06-24 09:06 - 00030699 _____ C:\Users\user\Desktop\Bez tytułu 1.odt 2015-06-23 23:16 - 2015-06-23 23:16 - 00000000 ____D C:\Users\user\Documents\Photostage Projects 2015-06-23 22:02 - 2015-06-29 09:08 - 00000000 ____D C:\Program Files\NCH Software 2015-06-23 22:02 - 2015-06-23 23:25 - 00000000 ____D C:\Users\user\AppData\Roaming\NCH Software 2015-06-23 22:02 - 2015-06-23 22:02 - 00000000 ____D C:\ProgramData\NCH Software 2015-06-23 22:00 - 2015-06-23 22:00 - 05509920 _____ (NCH Software) C:\Users\user\Downloads\pstagesetup.exe 2015-06-23 22:00 - 2015-06-23 22:00 - 00000000 ____D C:\Program Files\WordAnchor_1.10.0.19 2015-06-23 21:58 - 2015-06-23 21:59 - 00713312 _____ (Internet ) C:\Users\user\Downloads\Photostage-Slideshow(17952)-dp.exe 2015-06-23 20:02 - 2015-06-24 05:03 - 00033968 _____ C:\Users\user\Desktop\Ewaluacja.odt 2015-06-21 18:15 - 2015-06-22 21:18 - 08272138 _____ C:\Users\user\Downloads\Prezentacja multimedialna.ppsx 2015-06-16 21:44 - 2015-06-16 21:58 - 00015712 _____ C:\Users\user\Desktop\piosenki rel.odt 2015-06-16 07:37 - 2015-06-16 07:38 - 25396547 _____ C:\Users\user\Downloads\download.zip 2015-06-16 00:21 - 2015-06-16 00:21 - 00056448 _____ (WA) C:\Windows\system32\Drivers\wafd_1_10_0_19.sys 2015-06-14 22:02 - 2015-06-14 22:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-06-14 22:02 - 2015-06-14 22:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer Pilot 2015-06-14 22:02 - 2015-06-14 22:02 - 00000000 ____D C:\ProgramData\ALLPlayerRemote 2015-06-14 22:02 - 2015-06-14 22:02 - 00000000 ____D C:\Program Files\ALLPlayer Remote 2015-06-14 22:01 - 2015-06-14 22:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ALLPlayer 2015-06-14 22:01 - 2015-06-14 22:01 - 00000000 ____D C:\ProgramData\ALLPlayer 2015-06-14 22:01 - 2015-06-14 22:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-06-14 22:01 - 2015-06-14 22:01 - 00000000 ____D C:\Program Files\ALLPlayer 2015-06-14 22:01 - 2013-04-05 21:26 - 02106368 _____ C:\Windows\system32\ac3filter.ax 2015-06-14 22:01 - 2013-04-05 21:26 - 00276992 _____ (IntelleSoft) C:\Windows\system32\BugTrap.dll 2015-06-14 22:01 - 2011-06-02 02:10 - 00644608 _____ C:\Windows\system32\xvidcore.dll 2015-06-14 22:01 - 2007-10-07 15:36 - 00258048 _____ C:\Windows\system32\libFLAC.dll 2015-06-14 22:00 - 2015-06-14 22:00 - 42917768 _____ (ALLPlayer ) C:\Users\user\Downloads\ALLPlayerPL.exe 2015-06-11 12:03 - 2015-06-11 12:03 - 00000000 ____D C:\Users\user\AppData\Roaming\WinRAR 2015-06-11 12:03 - 2015-06-11 12:03 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-06-11 12:03 - 2015-06-11 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-06-11 12:03 - 2015-06-11 12:03 - 00000000 ____D C:\Program Files\WinRAR 2015-06-11 11:52 - 2015-06-11 11:52 - 01847888 _____ C:\Users\user\Downloads\wrar521pl.exe 2015-06-10 13:21 - 2015-06-02 21:35 - 00342728 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-06-10 13:21 - 2015-05-25 19:00 - 02384384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-06-10 13:21 - 2015-05-23 05:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-06-10 13:21 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-06-10 13:21 - 2015-05-23 05:15 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-06-10 13:21 - 2015-05-23 05:09 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-06-10 13:21 - 2015-05-23 05:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-06-10 13:21 - 2015-05-23 05:05 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-06-10 13:21 - 2015-05-23 05:05 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-06-10 13:21 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-06-10 13:21 - 2015-05-23 05:00 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-06-10 13:21 - 2015-05-23 04:57 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-06-10 13:21 - 2015-05-23 04:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-06-10 13:21 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-06-10 13:21 - 2015-05-23 04:38 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-06-10 13:21 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-06-10 13:21 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-06-10 13:21 - 2015-04-11 05:07 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys 2015-06-10 13:20 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-06-10 13:20 - 2015-05-25 20:07 - 03989440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2015-06-10 13:20 - 2015-05-25 20:07 - 03934144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-06-10 13:20 - 2015-05-25 20:07 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-06-10 13:20 - 2015-05-25 20:07 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-06-10 13:20 - 2015-05-25 20:04 - 01307648 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-06-10 13:20 - 2015-05-25 20:01 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-06-10 13:20 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-06-10 13:20 - 2015-05-25 20:00 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-06-10 13:20 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe 2015-06-10 13:20 - 2015-05-25 20:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-06-10 13:20 - 2015-05-25 20:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-06-10 13:20 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe 2015-06-10 13:20 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe 2015-06-10 13:20 - 2015-05-25 20:00 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-06-10 13:20 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe 2015-06-10 13:20 - 2015-05-25 19:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-06-10 13:20 - 2015-05-25 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-06-10 13:20 - 2015-05-25 19:55 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-06-10 13:20 - 2015-05-25 19:55 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-06-10 13:20 - 2015-05-25 18:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-06-10 13:20 - 2015-05-23 05:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-06-10 13:20 - 2015-05-23 05:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-06-10 13:20 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-06-10 13:20 - 2015-05-23 05:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-06-10 13:20 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-06-10 13:20 - 2015-05-23 05:06 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-06-10 13:20 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-06-10 13:20 - 2015-05-23 04:49 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-06-10 13:20 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-06-10 13:20 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-06-10 13:20 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-06-10 13:20 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-06-10 13:20 - 2015-05-23 04:37 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-06-10 13:20 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-06-10 13:20 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-06-10 13:20 - 2015-05-09 05:14 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-06-10 13:20 - 2015-05-09 05:13 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-06-10 13:20 - 2015-05-09 05:13 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-06-10 13:20 - 2015-05-09 05:12 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-06-10 13:20 - 2015-05-09 05:08 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 03:59 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 03:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 03:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-06-10 13:20 - 2015-05-09 03:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-06-10 13:20 - 2015-04-29 20:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2015-06-10 13:20 - 2015-04-29 20:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2015-06-10 13:20 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2015-06-10 13:20 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2015-06-10 13:20 - 2015-04-29 20:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2015-06-10 13:19 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2015-06-05 21:49 - 2015-05-22 20:03 - 00571392 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-06-05 21:49 - 2015-05-22 20:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-06-05 21:49 - 2015-05-22 20:02 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-06-05 21:49 - 2015-05-22 20:02 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-06-05 21:49 - 2015-05-22 20:02 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-06-05 21:49 - 2015-05-22 20:02 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-06-05 21:49 - 2015-05-22 19:58 - 00901120 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-06-05 21:49 - 2015-05-21 15:20 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-06-02 18:33 - 2015-06-02 18:33 - 00000000 ____D C:\Users\user\AppData\Local\GWX 2015-06-02 12:09 - 2015-06-02 12:09 - 00000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AP Tuner 3.08 2015-06-02 12:09 - 2015-06-02 12:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AP Tuner 3.08 2015-06-02 12:09 - 2015-06-02 12:09 - 00000000 ____D C:\Program Files\AP Tuner 2015-06-02 12:06 - 2015-06-02 12:06 - 01359867 _____ C:\Users\user\Downloads\APTunerInstall308.exe 2015-06-02 04:47 - 2015-06-25 21:41 - 00000000 ____D C:\Users\user\Desktop\Dagee ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-29 09:34 - 2012-12-30 21:04 - 00001032 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-06-29 09:34 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-06-29 09:34 - 2009-07-14 06:34 - 00022464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-06-29 09:34 - 2009-07-14 06:34 - 00022464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-06-29 09:32 - 2015-03-16 10:01 - 00000000 ____D C:\AdwCleaner 2015-06-29 09:24 - 2015-04-10 21:02 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-06-29 09:09 - 2013-05-16 15:48 - 00000000 ____D C:\Program Files\LG Electronics 2015-06-29 09:09 - 2012-12-30 21:04 - 00001036 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-06-29 09:09 - 2009-07-14 06:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-06-29 07:38 - 2009-07-14 04:04 - 00000615 _____ C:\Windows\win.ini 2015-06-29 07:36 - 2015-04-26 15:00 - 00000000 ____D C:\Users\user\AppData\Local\CrashDumps 2015-06-29 07:19 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Default 2015-06-29 07:19 - 2009-07-14 04:37 - 00000000 ___RD C:\Users\Public 2015-06-29 07:18 - 2009-07-14 04:04 - 00000215 _____ C:\Windows\system.ini 2015-06-28 21:22 - 2015-03-24 10:51 - 00000000 ____D C:\Users\user\AppData\Roaming\FileZilla 2015-06-28 21:22 - 2010-06-22 08:00 - 00000000 ____D C:\Windows\Minidump 2015-06-28 21:22 - 2010-03-11 11:18 - 00000000 ____D C:\Windows\Panther 2015-06-28 21:05 - 2014-10-03 16:29 - 00427992 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys 2015-06-28 21:05 - 2014-10-03 16:29 - 00209048 _____ C:\Windows\system32\Drivers\aswVmm.sys 2015-06-28 21:05 - 2014-10-03 16:29 - 00106912 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys 2015-06-28 21:05 - 2014-10-03 16:29 - 00081728 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys 2015-06-28 21:05 - 2014-10-03 16:29 - 00074976 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys 2015-06-28 21:05 - 2014-10-03 16:29 - 00049904 _____ C:\Windows\system32\Drivers\aswRvrt.sys 2015-06-28 21:05 - 2014-10-03 16:29 - 00024144 _____ C:\Windows\system32\Drivers\aswHwid.sys 2015-06-28 21:04 - 2014-10-03 16:29 - 00787760 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys 2015-06-28 12:22 - 2010-04-07 07:31 - 00000000 ____D C:\ProgramData\Roxio 2015-06-26 09:44 - 2015-01-13 09:46 - 00000000 ____D C:\_FOTO 2015-06-24 20:05 - 2010-03-25 16:05 - 01669190 _____ C:\Windows\system32\PerfStringBackup.INI 2015-06-24 20:05 - 2009-07-14 10:07 - 00740348 _____ C:\Windows\system32\perfh015.dat 2015-06-24 20:05 - 2009-07-14 10:07 - 00155890 _____ C:\Windows\system32\perfc015.dat 2015-06-24 11:24 - 2015-04-10 21:02 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-06-24 11:24 - 2015-04-10 21:02 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-06-12 23:07 - 2015-03-31 18:56 - 00001720 _____ C:\Users\user\Desktop\_Projekt HTML _Parafialna.lnk 2015-06-11 11:51 - 2015-01-06 21:42 - 00000000 ____D C:\Literatura 2015-06-11 11:50 - 2015-03-29 16:33 - 00000000 ____D C:\Users\user\AppData\Local\WinZip 2015-06-11 10:41 - 2015-04-21 07:56 - 00000000 ____D C:\Windows\rescache 2015-06-11 10:14 - 2009-07-14 06:33 - 01785704 _____ C:\Windows\system32\FNTCACHE.DAT 2015-06-11 10:12 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\pl-PL 2015-06-11 05:55 - 2013-08-27 13:01 - 00000000 ____D C:\Windows\system32\MRT 2015-06-11 05:16 - 2013-02-03 11:27 - 136900096 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-06-09 17:18 - 2015-05-11 11:15 - 00000000 ____D C:\Users\user\Desktop\allegro 2015-06-09 08:19 - 2015-01-06 21:43 - 00000000 ____D C:\Users\user\Documents\Biblioteka calibre 2015-06-09 08:18 - 2013-06-27 09:16 - 00000000 ____D C:\Albion 2015-06-09 07:13 - 2009-07-14 06:53 - 00032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-06-06 06:46 - 2015-01-05 09:53 - 00000000 ____D C:\Windows\system32\appraiser 2015-06-06 06:46 - 2014-07-10 11:11 - 00000000 ___SD C:\Windows\system32\CompatTel ==================== Files in the root of some directories ======= 2015-06-24 12:51 - 2015-06-24 12:51 - 0145855 _____ () C:\Users\user\AppData\Roaming\PhotoStage.dmp 2012-06-22 11:54 - 2014-09-09 08:37 - 0004608 _____ () C:\Users\user\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-03-27 18:04 - 2015-04-10 11:55 - 0000600 _____ () C:\Users\user\AppData\Local\PUTTY.RND 2013-03-01 10:10 - 2013-03-01 10:18 - 0000792 _____ () C:\ProgramData\hpzinstall.log Some files in TEMP: ==================== C:\Users\user\AppData\Local\temp\Quarantine.exe C:\Users\user\AppData\Local\temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-06-24 10:42 ==================== End of log ============================