OTL logfile created on: 1/14/2016 3:58:38 AM - Run 1 OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Gosia\Desktop 64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000409 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 66.00% Memory free 8.00 Gb Paging File | 6.00 Gb Available in Paging File | 81.00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 74.52 Gb Total Space | 8.26 Gb Free Space | 11.08% Space Free | Partition Type: NTFS Drive D: | 208.92 Gb Total Space | 170.01 Gb Free Space | 81.38% Space Free | Partition Type: NTFS Computer Name: GOSIA-KOMPUTER | User Name: Gosia | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 1 Day [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2016/01/14 01:53:20 | 000,245,576 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe PRC - [2016/01/14 01:17:59 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Gosia\Desktop\OTL_3.2.17.3.exe PRC - [2015/11/12 10:39:52 | 000,260,896 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe PRC - [2015/11/04 14:40:54 | 000,882,464 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe PRC - [2015/06/11 14:43:00 | 000,660,768 | ---- | M] (IOBit) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ascavsvc.exe PRC - [2015/05/22 13:52:14 | 002,596,640 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe PRC - [2015/02/20 18:42:06 | 004,841,120 | ---- | M] (Almico Software (almico.com)) -- C:\Program Files (x86)\SpeedFan\speedfan.exe PRC - [2014/12/19 20:55:56 | 000,204,800 | ---- | M] (CompSoft) -- C:\Program Files (x86)\DoroPDFWriter\DoroServer.exe PRC - [2014/11/22 13:01:26 | 000,911,648 | ---- | M] (IObit) -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCService.exe PRC - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe PRC - [2009/10/23 22:17:45 | 003,054,136 | ---- | M] (ASUS) -- C:\Windows\AsScrPro.exe PRC - [2009/07/24 18:32:50 | 001,593,344 | ---- | M] () -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe PRC - [2009/07/24 01:13:38 | 000,306,232 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe PRC - [2009/07/23 01:58:46 | 000,017,976 | ---- | M] () -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe PRC - [2009/07/16 18:07:54 | 000,178,744 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe PRC - [2009/07/07 19:20:56 | 008,493,624 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe PRC - [2009/06/24 20:30:18 | 000,272,952 | ---- | M] (ASUSTek Computer Inc.) -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe PRC - [2009/06/19 18:29:42 | 000,105,016 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe PRC - [2009/06/19 18:29:26 | 002,488,888 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe PRC - [2009/06/16 01:30:42 | 000,084,536 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe PRC - [2009/05/18 23:58:38 | 000,305,720 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe PRC - [2009/04/20 19:09:30 | 000,159,744 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe PRC - [2008/12/23 01:15:34 | 000,174,648 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe PRC - [2008/08/14 05:00:08 | 000,113,208 | ---- | M] (ASUS) -- C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe PRC - [2008/08/14 04:59:56 | 000,301,624 | ---- | M] () -- C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe PRC - [2008/07/19 03:52:16 | 000,104,936 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe PRC - [2007/08/08 08:08:40 | 000,094,208 | ---- | M] () -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2016/01/14 01:17:59 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Gosia\Desktop\OTL_3.2.17.3.exe MOD - [2010/08/21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2016/01/14 01:50:25 | 000,307,456 | ---- | M] (Realtek Semiconductor) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe -- (RtkAudioService) SRV:[b]64bit:[/b] - [2010/09/22 17:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc) SRV:[b]64bit:[/b] - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2007/08/08 08:08:40 | 000,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv) SRV - [2016/01/02 18:11:29 | 000,269,504 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2015/12/13 23:48:02 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2015/11/10 13:48:12 | 002,934,048 | ---- | M] (IObit) [Auto | Stopped] -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe -- (LiveUpdateSvc) SRV - [2015/11/04 14:40:54 | 000,882,464 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe -- (IMFservice) SRV - [2015/07/09 12:14:04 | 000,327,296 | R--- | M] (Skype Technologies) [On_Demand | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2015/06/11 14:43:00 | 000,660,768 | ---- | M] (IOBit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ascavsvc.exe -- (ASCAntivirusSrv) SRV - [2014/11/22 13:01:26 | 000,911,648 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCService.exe -- (AdvancedSystemCareService8) SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2010/02/19 13:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) SRV - [2009/07/24 01:13:38 | 000,306,232 | ---- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Windows\SysWOW64\Fast Boot\FastBootAgent.exe -- (FastBootAgent) SRV - [2009/06/16 01:30:42 | 000,084,536 | ---- | M] (ASUS) [Auto | Running] -- C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService) SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008/03/31 10:55:48 | 000,225,280 | ---- | M] (ASUSTek Computer Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe -- (ADSMService) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BVRPMPR5.SYS -- (BVRPMPR5) DRV:[b]64bit:[/b] - File not found [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\{fc8decf5-c269-4b18-87f1-c395dfcbd88f}w64.sys -- ({fc8decf5-c269-4b18-87f1-c395dfcbd88f}w64) DRV:[b]64bit:[/b] - File not found [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\{fb92e7a9-ee13-44c3-a51b-600382fe9211}Gw64.sys -- ({fb92e7a9-ee13-44c3-a51b-600382fe9211}Gw64) DRV:[b]64bit:[/b] - File not found [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\{ca4e7e4c-3ebf-4428-bf75-cc138b7061f1}w64.sys -- ({ca4e7e4c-3ebf-4428-bf75-cc138b7061f1}w64) DRV:[b]64bit:[/b] - File not found [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\{c88279d3-91dd-4bd9-ad38-681f71d6e36d}w64.sys -- ({c88279d3-91dd-4bd9-ad38-681f71d6e36d}w64) DRV:[b]64bit:[/b] - File not found [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\{84edc66f-0e16-4519-bd1a-cead01f243ac}w64.sys -- ({84edc66f-0e16-4519-bd1a-cead01f243ac}w64) DRV:[b]64bit:[/b] - File not found [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\{40d1e549-9fca-4f25-a19d-d845842dd635}w64.sys -- ({40d1e549-9fca-4f25-a19d-d845842dd635}w64) DRV:[b]64bit:[/b] - File not found [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\{27899312-155f-40f3-8661-fb6675d82b4b}w64.sys -- ({27899312-155f-40f3-8661-fb6675d82b4b}w64) DRV:[b]64bit:[/b] - File not found [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\{27899312-155f-40f3-8661-fb6675d82b4b}Gw64.sys -- ({27899312-155f-40f3-8661-fb6675d82b4b}Gw64) DRV:[b]64bit:[/b] - File not found [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\{122141c3-e1a4-4af5-b3d7-650743f49ec0}w64.sys -- ({122141c3-e1a4-4af5-b3d7-650743f49ec0}w64) DRV:[b]64bit:[/b] - [2016/01/14 01:47:33 | 000,084,480 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmUStor.sys -- (AmUStor) DRV:[b]64bit:[/b] - [2016/01/14 01:47:17 | 000,197,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA) DRV:[b]64bit:[/b] - [2016/01/14 01:42:41 | 001,026,304 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:[b]64bit:[/b] - [2016/01/11 19:40:03 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01) DRV:[b]64bit:[/b] - [2015/12/18 17:08:18 | 000,194,976 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\VBoxNetLwf.sys -- (VBoxNetLwf) DRV:[b]64bit:[/b] - [2015/12/18 17:08:18 | 000,117,768 | ---- | M] (Oracle Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\VBoxNetAdp6.sys -- (VBoxNetAdp) DRV:[b]64bit:[/b] - [2015/01/04 00:32:56 | 000,386,680 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2014/06/04 15:17:30 | 000,021,184 | ---- | M] (IObit) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys -- (SmartDefragDriver) DRV:[b]64bit:[/b] - [2014/01/22 08:52:10 | 000,206,080 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm) SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.) DRV:[b]64bit:[/b] - [2014/01/22 08:52:10 | 000,108,800 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus) SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.) DRV:[b]64bit:[/b] - [2011/11/21 18:59:02 | 000,329,800 | ---- | M] (BitDefender S.R.L.) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\trufos.sys -- (Trufos) DRV:[b]64bit:[/b] - [2011/03/24 15:36:24 | 000,431,176 | ---- | M] (BitDefender) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\bdfsfltr.sys -- (bdfsfltr) DRV:[b]64bit:[/b] - [2011/03/11 07:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2011/03/11 07:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2010/09/22 23:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr) DRV:[b]64bit:[/b] - [2010/01/05 02:23:20 | 001,847,296 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athurx.sys -- (athur) DRV:[b]64bit:[/b] - [2009/10/05 16:34:00 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr) DRV:[b]64bit:[/b] - [2009/07/20 10:29:39 | 000,015,416 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kbfiltr.sys -- (kbfiltr) DRV:[b]64bit:[/b] - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009/07/14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009/06/12 04:41:55 | 000,112,128 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD) DRV:[b]64bit:[/b] - [2009/06/10 21:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs) DRV:[b]64bit:[/b] - [2009/06/10 21:35:57 | 000,056,832 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SiSG664.sys -- (SiSGbeLH) DRV:[b]64bit:[/b] - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2009/05/20 09:11:05 | 001,799,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\snp2uvc.sys -- (SNP2UVC) USB2.0 PC Camera (SNP2UVC) DRV:[b]64bit:[/b] - [2009/05/13 02:07:19 | 000,015,928 | ---- | M] (ASUS) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATK64AMD.sys -- (MTsensor) DRV:[b]64bit:[/b] - [2009/04/29 16:28:30 | 000,030,208 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\KMWDFILTER.sys -- (KMWDFILTER) DRV:[b]64bit:[/b] - [2009/03/02 13:00:46 | 000,118,888 | ---- | M] (Rocket Division Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\StarPortLite.sys -- (StarPortLite) StarPort Storage Controller (Lite) DRV:[b]64bit:[/b] - [2008/05/24 01:27:28 | 000,154,168 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr) DRV:[b]64bit:[/b] - [2007/07/24 19:11:32 | 000,014,904 | ---- | M] () [Kernel | Auto | Running] -- C:\Program Files\ATKGFNEX\ASMMAP64.sys -- (ASMMAP64) DRV - [2012/12/29 21:59:38 | 000,028,664 | ---- | M] (Almico Software) [Kernel | Auto | Running] -- C:\Windows\SysWOW64\speedfan.sys -- (speedfan) DRV - [2008/01/04 13:14:13 | 000,011,320 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WindowsLive\procmon\AsPrOb64.sys -- (ASUSProcObsrv) DRV - [2006/10/06 21:49:00 | 000,044,224 | R--- | M] (BVRP Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\BVRPMPR5.SYS -- (BVRPMPR5) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\y, = http://yandex.ru/yandsearch?win=96&clid=1989599&text=%s IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - HKLM\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components FF - HKLM\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2013/04/04 05:42:34 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\mozilla\Extensions [2012/05/20 19:23:25 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\mozilla\Firefox\extensions [2012/05/20 19:23:25 | 000,000,000 | ---D | M] (BitTorrentBar Community Toolbar) -- C:\Users\Gosia\AppData\Roaming\mozilla\Firefox\extensions\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} [2016/01/14 02:22:09 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\mozilla\Firefox\Profiles\7ll7gl8s.default\extensions [2013/11/01 15:55:55 | 000,000,000 | ---D | M] (BonanzaDeals) -- C:\Users\Gosia\AppData\Roaming\mozilla\Firefox\Profiles\7ll7gl8s.default\extensions\{f9d03c26-0575-497e-821d-f7956d23e0ca} [2013/11/01 15:56:15 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\mozilla\Firefox\Profiles\7ll7gl8s.default\extensions\staged [2016/01/14 02:22:10 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\mozilla\Firefox\Profiles\bgebttj8.default\extensions O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O2:[b]64bit:[/b] - BHO: (ExplorerWnd Helper) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll (IObit) O2 - BHO: (ShowBarObj Class) - {2863E737-DD3F-4280-9AF8-E9E79C16F312} - C:\Program Files (x86)\Save Tube Video Company\SaveTubeVideo\MinBHO.dll () O2 - BHO: (no name) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - No CLSID value found. O2 - BHO: (Groove GFS Browser Helper) - {4DB74D06-491C-440D-305E-012400990F3E} - C:\Windows\SysWOW64\DDOOIProxy.dll () O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Advanced SystemCare Surfing Protection) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~2\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL (IObit) O2 - BHO: (no name) - {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} - No CLSID value found. O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (no name) - {fe063412-bea4-4d76-8ed3-183be6220d17} - No CLSID value found. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No CLSID value found. O3 - HKLM\..\Toolbar: (no name) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - No CLSID value found. O3 - HKLM\..\Toolbar: (Save Tube Video) - {F334C7B0-8774-4d5b-BD7A-4F448D03A1AE} - C:\Program Files (x86)\Save Tube Video Company\SaveTubeVideo\SaveTubeVideo.dll (Save Tube Video Company) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {30F9B915-B755-4826-820B-08FBA6BD249D} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {91397D20-1446-11D4-8AF4-0040CA1127B6} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4:[b]64bit:[/b] - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (AlcorMicro Co., Ltd.) O4:[b]64bit:[/b] - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.) O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe (ASUS) O4 - HKLM..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe (ASUS) O4 - HKLM..\Run: [DoroServer] C:\Program Files (x86)\DoroPDFWriter\DoroServer.exe (CompSoft) O4 - HKLM..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe (ASUS) O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKCU..\Run: [Advanced SystemCare Ultimate] C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe (IObit) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O18:[b]64bit:[/b] - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\msdaipp - No CLSID value found O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation) O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation) O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{5b83595d-b88a-11e5-bdda-baac628c0600}\Shell - "" = AutoRun O33 - MountPoints2\{5b83595d-b88a-11e5-bdda-baac628c0600}\Shell\AutoRun\command - "" = G:\setup.exe -- File not found O33 - MountPoints2\{eacd452e-b86b-11e5-8435-d0075728b41e}\Shell - "" = AutoRun O33 - MountPoints2\{eacd452e-b86b-11e5-8435-d0075728b41e}\Shell\AutoRun\command - "" = H:\HTC_Sync_Manager_PC.exe -- File not found O33 - MountPoints2\H\Shell - "" = AutoRun O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\HTC_Sync_Manager_PC.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %* O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %* O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 1 Day ==========[/color] [2016/01/14 03:43:43 | 000,000,000 | ---D | C] -- C:\Users\Gosia\AppData\Roaming\FileZilla [2016/01/14 03:43:03 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2016/01/14 02:25:29 | 000,431,176 | ---- | C] (BitDefender) -- C:\Windows\SysNative\drivers\bdfsfltr.sys [2016/01/14 02:22:57 | 000,329,800 | ---- | C] (BitDefender S.R.L.) -- C:\Windows\SysNative\drivers\trufos.sys [2016/01/14 02:11:23 | 000,000,000 | ---D | C] -- C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} [2016/01/14 02:11:22 | 000,000,000 | ---D | C] -- C:\ProgramData\{ACBCD40A-42A8-4FF9-BD42-ABCD14998CBA} [2016/01/14 01:59:34 | 000,000,000 | ---D | C] -- C:\Users\Gosia\AppData\Roaming\Apple Computer [2016/01/14 01:59:23 | 000,034,080 | ---- | C] (IObit) -- C:\Windows\SysNative\SmartDefragBootTime.exe [2016/01/14 01:59:22 | 000,128,288 | ---- | C] (IObit) -- C:\Windows\SysNative\IObitSmartDefragExtension.dll [2016/01/14 01:59:21 | 000,000,000 | ---D | C] -- C:\Windows\tasks\ImCleanDisabled [2016/01/14 01:59:20 | 000,000,000 | ---D | C] -- C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98} [2016/01/14 01:59:13 | 000,000,000 | ---D | C] -- C:\Users\Gosia\AppData\Roaming\ProductData [2016/01/14 01:59:05 | 000,021,184 | ---- | C] (IObit) -- C:\Windows\SysNative\drivers\SmartDefragDriver.sys [2016/01/14 01:59:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\IObit [2016/01/14 01:58:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2016/01/14 01:56:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache [2016/01/14 01:50:25 | 002,997,504 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll [2016/01/14 01:50:25 | 002,893,568 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl [2016/01/14 01:50:25 | 001,382,240 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll [2016/01/14 01:50:25 | 001,121,864 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\slcnt64.dll [2016/01/14 01:50:25 | 000,961,848 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\sl3apo64.dll [2016/01/14 01:50:25 | 000,873,464 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll [2016/01/14 01:50:25 | 000,749,000 | ---- | C] (DTS, Inc.) -- C:\Windows\SysNative\sltech64.dll [2016/01/14 01:50:25 | 000,343,712 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll [2016/01/14 01:50:25 | 000,195,192 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll [2016/01/14 01:50:25 | 000,158,704 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll [2016/01/14 01:50:25 | 000,075,544 | ---- | C] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll [2016/01/14 01:50:25 | 000,023,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll [2016/01/14 01:50:24 | 003,271,912 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll [2016/01/14 01:50:24 | 002,965,120 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RltkAPO64.dll [2016/01/14 01:50:24 | 002,028,664 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll [2016/01/14 01:50:24 | 001,351,992 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll [2016/01/14 01:50:24 | 000,689,888 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll [2016/01/14 01:50:24 | 000,387,320 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll [2016/01/14 01:50:24 | 000,321,720 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll [2016/01/14 01:50:24 | 000,321,720 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll [2016/01/14 01:50:24 | 000,214,840 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll [2016/01/14 01:50:24 | 000,110,984 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll [2016/01/14 01:50:24 | 000,088,352 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll [2016/01/14 01:50:21 | 003,278,408 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2016/01/14 01:50:20 | 001,601,944 | ---- | C] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64APO.dll [2016/01/14 01:50:20 | 000,574,760 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll [2016/01/14 01:50:20 | 000,122,328 | ---- | C] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll [2016/01/14 01:50:20 | 000,118,600 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll [2016/01/14 01:49:25 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2016/01/14 01:47:54 | 018,634,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll [2016/01/14 01:47:54 | 016,128,576 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2016/01/14 01:47:54 | 013,916,600 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2016/01/14 01:47:53 | 031,514,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2016/01/14 01:47:53 | 024,199,344 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2016/01/14 01:47:53 | 011,272,048 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2016/01/14 01:47:51 | 017,559,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2016/01/14 01:47:51 | 001,908,528 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6434192.dll [2016/01/14 01:47:51 | 001,556,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6434192.dll [2016/01/14 01:47:51 | 000,944,304 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll [2016/01/14 01:47:51 | 000,907,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll [2016/01/14 01:47:51 | 000,903,472 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll [2016/01/14 01:47:51 | 000,869,040 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll [2016/01/14 01:47:50 | 014,497,568 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll [2016/01/14 01:47:50 | 013,828,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2016/01/14 01:47:50 | 011,209,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2016/01/14 01:47:50 | 004,245,624 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2016/01/14 01:47:50 | 003,986,608 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2016/01/14 01:47:49 | 022,993,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2016/01/14 01:47:49 | 015,293,104 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2016/01/14 01:47:49 | 002,823,992 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll [2016/01/14 01:47:33 | 000,084,480 | ---- | C] (Alcor Micro, Corp.) -- C:\Windows\SysNative\drivers\AmUStor.sys [2016/01/14 01:47:33 | 000,012,800 | ---- | C] (Alcor Micro, Corp.) -- C:\Windows\SysNative\AmUStor2.dll [2016/01/14 01:47:17 | 001,515,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420103.dll [2016/01/14 01:47:17 | 000,197,408 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys [2016/01/14 01:47:17 | 000,031,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll [2016/01/14 01:47:16 | 000,074,016 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapo64v.dll [2016/01/14 01:46:47 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2016/01/14 01:46:44 | 000,239,720 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NVCOSMU.DLL [2016/01/14 01:42:41 | 001,026,304 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys [2016/01/14 01:42:41 | 000,116,304 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll [2016/01/14 01:42:41 | 000,082,544 | ---- | C] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RtNicProp64.dll [2016/01/14 01:41:40 | 000,000,000 | ---D | C] -- C:\ProgramData\ProductData [2016/01/14 01:36:16 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit [2016/01/14 01:36:15 | 000,000,000 | ---D | C] -- C:\Users\Gosia\AppData\Roaming\IObit [2016/01/14 01:36:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\IObit [2016/01/14 01:28:12 | 000,000,000 | ---D | C] -- C:\Users\Gosia\AppData\Roaming\Notepad++ [2016/01/14 01:28:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Notepad++ [2016/01/14 01:20:41 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\Gosia\Desktop\OTL_3.2.17.3.exe [2016/01/13 22:19:47 | 000,000,000 | ---D | C] -- C:\Users\Gosia\Desktop\Ubrania [2016/01/13 20:25:27 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe [2016/01/13 20:18:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2016/01/13 20:15:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Media Player [1 C:\Users\Gosia\AppData\Local\*.tmp files -> C:\Users\Gosia\AppData\Local\*.tmp -> ] [color=#E56717]========== Files - Modified Within 1 Day ==========[/color] [2016/01/14 04:03:26 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2016/01/14 04:03:26 | 000,010,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2016/01/14 04:01:00 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineUA.job [2016/01/14 03:54:47 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2016/01/14 03:54:47 | 000,000,920 | ---- | M] () -- C:\Windows\tasks\BonanzaDealsLiveUpdateTaskMachineCore.job [2016/01/14 03:54:23 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2016/01/14 03:54:16 | 3220,652,032 | -HS- | M] () -- C:\hiberfil.sys [2016/01/14 03:43:14 | 000,001,795 | ---- | M] () -- C:\Users\Public\Desktop\FileZilla Client.lnk [2016/01/14 03:15:00 | 000,118,524 | ---- | M] () -- C:\Users\Gosia\Desktop\przebudowa_logo-300x265.png [2016/01/14 03:11:03 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2016/01/14 02:21:42 | 000,000,266 | RHS- | M] () -- C:\ProgramData\ntuser.pol [2016/01/14 02:15:07 | 000,002,260 | ---- | M] () -- C:\Users\Public\Desktop\Advanced SystemCare Ultimate 8.lnk [2016/01/14 02:05:22 | 000,000,292 | ---- | M] () -- C:\Windows\tasks\Driver Booster Scheduler.job [2016/01/14 02:05:21 | 000,000,248 | ---- | M] () -- C:\Windows\tasks\Driver Booster SkipUAC (Gosia).job [2016/01/14 02:02:44 | 000,000,278 | ---- | M] () -- C:\Windows\tasks\Uninstaller_SkipUac_Gosia.job [2016/01/14 01:59:46 | 000,002,160 | ---- | M] () -- C:\Users\Public\Desktop\Driver Booster 3.lnk [2016/01/14 01:59:22 | 000,001,352 | ---- | M] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk [2016/01/14 01:59:02 | 000,000,388 | ---- | M] () -- C:\Windows\tasks\RunAsStdUser Task.job [2016/01/14 01:58:45 | 000,001,168 | ---- | M] () -- C:\Users\Public\Desktop\Smart Defrag 4.lnk [2016/01/14 01:58:39 | 000,001,171 | ---- | M] () -- C:\Users\Public\Desktop\IObit Malware Fighter.lnk [2016/01/14 01:55:45 | 000,002,259 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2016/01/14 01:53:22 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1d14e65f79cb9d0.job [2016/01/14 01:50:25 | 003,271,912 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll [2016/01/14 01:50:25 | 002,997,504 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll [2016/01/14 01:50:25 | 002,893,568 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl [2016/01/14 01:50:25 | 001,382,240 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\SysNative\tosade.dll [2016/01/14 01:50:25 | 001,121,864 | ---- | M] (SRS Labs, Inc.) -- C:\Windows\SysNative\slcnt64.dll [2016/01/14 01:50:25 | 000,961,848 | ---- | M] (DTS, Inc.) -- C:\Windows\SysNative\sl3apo64.dll [2016/01/14 01:50:25 | 000,873,464 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll [2016/01/14 01:50:25 | 000,749,000 | ---- | M] (DTS, Inc.) -- C:\Windows\SysNative\sltech64.dll [2016/01/14 01:50:25 | 000,343,712 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll [2016/01/14 01:50:25 | 000,195,192 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll [2016/01/14 01:50:25 | 000,158,704 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo.dll [2016/01/14 01:50:25 | 000,075,544 | ---- | M] (TOSHIBA CORPORATION.) -- C:\Windows\SysNative\tepeqapo64.dll [2016/01/14 01:50:25 | 000,023,704 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCoLDR64.dll [2016/01/14 01:50:24 | 004,005,405 | ---- | M] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT [2016/01/14 01:50:24 | 002,965,120 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RltkAPO64.dll [2016/01/14 01:50:24 | 002,028,664 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll [2016/01/14 01:50:24 | 001,351,992 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll [2016/01/14 01:50:24 | 000,689,888 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll [2016/01/14 01:50:24 | 000,387,320 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll [2016/01/14 01:50:24 | 000,321,720 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll [2016/01/14 01:50:24 | 000,321,720 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll [2016/01/14 01:50:24 | 000,214,840 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll [2016/01/14 01:50:24 | 000,110,984 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll [2016/01/14 01:50:24 | 000,088,352 | ---- | M] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll [2016/01/14 01:50:21 | 003,278,408 | ---- | M] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll [2016/01/14 01:50:20 | 001,601,944 | ---- | M] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64APO.dll [2016/01/14 01:50:20 | 000,574,760 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll [2016/01/14 01:50:20 | 000,122,328 | ---- | M] (Real Sound Lab SIA) -- C:\Windows\SysNative\CONEQMSAPOGUILibrary.dll [2016/01/14 01:50:20 | 000,118,600 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll [2016/01/14 01:47:55 | 018,634,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll [2016/01/14 01:47:54 | 016,128,576 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll [2016/01/14 01:47:54 | 013,916,600 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll [2016/01/14 01:47:54 | 011,272,048 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll [2016/01/14 01:47:53 | 031,514,288 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll [2016/01/14 01:47:53 | 024,199,344 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll [2016/01/14 01:47:52 | 000,026,155 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb [2016/01/14 01:47:51 | 017,559,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll [2016/01/14 01:47:51 | 014,497,568 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll [2016/01/14 01:47:51 | 001,908,528 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6434192.dll [2016/01/14 01:47:51 | 001,556,656 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6434192.dll [2016/01/14 01:47:51 | 000,944,304 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll [2016/01/14 01:47:51 | 000,907,440 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll [2016/01/14 01:47:51 | 000,903,472 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll [2016/01/14 01:47:51 | 000,869,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll [2016/01/14 01:47:50 | 013,828,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll [2016/01/14 01:47:50 | 011,209,376 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll [2016/01/14 01:47:50 | 004,245,624 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll [2016/01/14 01:47:50 | 003,986,608 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll [2016/01/14 01:47:49 | 022,993,200 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcompiler.dll [2016/01/14 01:47:49 | 015,293,104 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcompiler.dll [2016/01/14 01:47:49 | 003,209,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll [2016/01/14 01:47:49 | 002,823,992 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll [2016/01/14 01:47:33 | 001,077,248 | ---- | M] () -- C:\Windows\SysNative\AmRdrIco.icl [2016/01/14 01:47:33 | 000,084,480 | ---- | M] (Alcor Micro, Corp.) -- C:\Windows\SysNative\drivers\AmUStor.sys [2016/01/14 01:47:33 | 000,019,399 | ---- | M] () -- C:\Windows\SysNative\AmUStor.ini [2016/01/14 01:47:33 | 000,012,800 | ---- | M] (Alcor Micro, Corp.) -- C:\Windows\SysNative\AmUStor2.dll [2016/01/14 01:47:33 | 000,000,640 | ---- | M] () -- C:\Windows\SysNative\VendorCmd6435.bin [2016/01/14 01:47:33 | 000,000,032 | ---- | M] () -- C:\Windows\SysNative\VendorCmd6485.bin [2016/01/14 01:47:33 | 000,000,032 | ---- | M] () -- C:\Windows\SysNative\VendorCmd6465.bin [2016/01/14 01:47:33 | 000,000,008 | ---- | M] () -- C:\Windows\SysNative\CardDetect6485.bin [2016/01/14 01:47:33 | 000,000,008 | ---- | M] () -- C:\Windows\SysNative\CardDetect.bin [2016/01/14 01:47:17 | 001,515,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420103.dll [2016/01/14 01:47:17 | 000,197,408 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys [2016/01/14 01:47:17 | 000,031,520 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll [2016/01/14 01:47:16 | 000,074,016 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapo64v.dll [2016/01/14 01:46:44 | 000,239,720 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NVCOSMU.DLL [2016/01/14 01:45:49 | 000,030,509 | ---- | M] () -- C:\Users\Gosia\Desktop\bookmarks_14.01.2016.html [2016/01/14 01:42:41 | 001,026,304 | ---- | M] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys [2016/01/14 01:42:41 | 000,116,304 | ---- | M] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RTNUninst64.dll [2016/01/14 01:42:41 | 000,082,544 | ---- | M] (Realtek Semiconductor Corporation) -- C:\Windows\SysNative\RtNicProp64.dll [2016/01/14 01:17:59 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Gosia\Desktop\OTL_3.2.17.3.exe [2016/01/14 01:08:09 | 000,045,056 | ---- | M] () -- C:\Windows\SysNative\acovcnt.exe [2016/01/14 00:46:58 | 000,114,516 | ---- | M] () -- C:\Users\Gosia\Desktop\24p9z5k.jpg [2016/01/14 00:36:55 | 000,001,622 | ---- | M] () -- C:\Users\Gosia\Desktop\GG dysk.lnk [2016/01/13 22:43:28 | 000,000,132 | ---- | M] () -- C:\Users\Gosia\AppData\Roaming\Adobe PNG Format CS5 Prefs [2016/01/13 20:36:27 | 000,033,326 | ---- | M] () -- C:\Users\Gosia\Desktop\DeadlyWolf.gif [2016/01/13 20:32:55 | 004,977,224 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [1 C:\Users\Gosia\AppData\Local\*.tmp files -> C:\Users\Gosia\AppData\Local\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2016/01/14 03:43:14 | 000,001,795 | ---- | C] () -- C:\Users\Public\Desktop\FileZilla Client.lnk [2016/01/14 03:14:57 | 000,118,524 | ---- | C] () -- C:\Users\Gosia\Desktop\przebudowa_logo-300x265.png [2016/01/14 02:11:18 | 000,002,260 | ---- | C] () -- C:\Users\Public\Desktop\Advanced SystemCare Ultimate 8.lnk [2016/01/14 01:59:24 | 000,000,278 | ---- | C] () -- C:\Windows\tasks\Uninstaller_SkipUac_Gosia.job [2016/01/14 01:59:22 | 000,001,352 | ---- | C] () -- C:\Users\Public\Desktop\IObit Uninstaller.lnk [2016/01/14 01:58:45 | 000,001,168 | ---- | C] () -- C:\Users\Public\Desktop\Smart Defrag 4.lnk [2016/01/14 01:58:39 | 000,001,171 | ---- | C] () -- C:\Users\Public\Desktop\IObit Malware Fighter.lnk [2016/01/14 01:53:51 | 000,002,259 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2016/01/14 01:53:22 | 000,001,042 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1d14e65f79cb9d0.job [2016/01/14 01:50:24 | 004,005,405 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT [2016/01/14 01:49:49 | 005,972,783 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin [2016/01/14 01:47:52 | 000,026,155 | ---- | C] () -- C:\Windows\SysNative\nvinfo.pb [2016/01/14 01:47:33 | 001,077,248 | ---- | C] () -- C:\Windows\SysNative\AmRdrIco.icl [2016/01/14 01:47:33 | 000,019,399 | ---- | C] () -- C:\Windows\SysNative\AmUStor.ini [2016/01/14 01:47:33 | 000,000,640 | ---- | C] () -- C:\Windows\SysNative\VendorCmd6435.bin [2016/01/14 01:47:33 | 000,000,032 | ---- | C] () -- C:\Windows\SysNative\VendorCmd6485.bin [2016/01/14 01:47:33 | 000,000,032 | ---- | C] () -- C:\Windows\SysNative\VendorCmd6465.bin [2016/01/14 01:47:33 | 000,000,008 | ---- | C] () -- C:\Windows\SysNative\CardDetect6485.bin [2016/01/14 01:47:33 | 000,000,008 | ---- | C] () -- C:\Windows\SysNative\CardDetect.bin [2016/01/14 01:45:49 | 000,030,509 | ---- | C] () -- C:\Users\Gosia\Desktop\bookmarks_14.01.2016.html [2016/01/14 01:41:40 | 000,000,388 | ---- | C] () -- C:\Windows\tasks\RunAsStdUser Task.job [2016/01/14 01:36:16 | 000,000,292 | ---- | C] () -- C:\Windows\tasks\Driver Booster Scheduler.job [2016/01/14 01:36:16 | 000,000,248 | ---- | C] () -- C:\Windows\tasks\Driver Booster SkipUAC (Gosia).job [2016/01/14 01:36:15 | 000,002,160 | ---- | C] () -- C:\Users\Public\Desktop\Driver Booster 3.lnk [2016/01/14 00:46:56 | 000,114,516 | ---- | C] () -- C:\Users\Gosia\Desktop\24p9z5k.jpg [2016/01/14 00:36:55 | 000,001,622 | ---- | C] () -- C:\Users\Gosia\Desktop\GG dysk.lnk [2016/01/13 22:23:30 | 000,000,132 | ---- | C] () -- C:\Users\Gosia\AppData\Roaming\Adobe PNG Format CS5 Prefs [2016/01/13 20:36:26 | 000,033,326 | ---- | C] () -- C:\Users\Gosia\Desktop\DeadlyWolf.gif [2016/01/09 21:39:46 | 000,007,605 | ---- | C] () -- C:\Users\Gosia\AppData\Local\Resmon.ResmonCfg [2016/01/09 21:38:44 | 000,000,412 | ---- | C] () -- C:\Users\Gosia\AppData\Roaming\All CPU Meter_Settings.ini [2014/12/26 13:17:28 | 000,000,266 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2014/04/29 16:26:59 | 000,000,320 | ---- | C] () -- C:\Users\Gosia\AppData\Roaming\aps.uninstall.scan.results [2012/09/26 20:57:14 | 000,974,848 | ---- | C] () -- C:\Windows\SysWow64\cis-2.4.dll [2012/09/26 20:57:14 | 000,081,920 | ---- | C] () -- C:\Windows\SysWow64\issacapi_bs-2.3.dll [2012/09/26 20:57:14 | 000,065,536 | ---- | C] () -- C:\Windows\SysWow64\issacapi_pe-2.3.dll [2012/09/26 20:57:14 | 000,057,344 | ---- | C] () -- C:\Windows\SysWow64\issacapi_se-2.3.dll [2012/02/29 18:58:19 | 000,003,584 | ---- | C] () -- C:\Users\Gosia\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/10/29 18:57:11 | 000,000,412 | ---- | C] () -- C:\Windows\ODBC.INI [2010/08/07 16:24:13 | 000,000,048 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat [2010/06/13 08:02:52 | 000,000,049 | ---- | C] () -- C:\Windows\NeroDigital.ini [2010/05/13 11:42:58 | 000,001,400 | ---- | C] () -- C:\Users\Gosia\AppData\Roaming\default.cfg [2009/10/23 22:20:41 | 000,053,248 | ---- | C] () -- C:\Windows\SysWow64\LogonStart.dll [2009/10/23 22:01:00 | 000,000,105 | ---- | C] () -- C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log [2009/10/23 22:00:35 | 000,000,107 | ---- | C] () -- C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log [2009/08/19 09:33:09 | 000,000,031 | ---- | C] () -- C:\Windows\OOBEPlayer.ini [2009/07/29 06:20:40 | 000,000,010 | ---- | C] () -- C:\Windows\SysWow64\ABLKSR.ini [2009/07/14 01:14:01 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\accessibillitycpl.dll [2009/07/14 01:07:15 | 000,049,152 | ---- | C] () -- C:\Windows\SysWow64\avrtt.dll [2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009/07/14 00:23:51 | 000,094,208 | ---- | C] () -- C:\Windows\SysWow64\DDOOIProxy.dll [2009/07/13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2006/05/19 04:39:57 | 000,015,497 | ---- | C] () -- C:\Windows\snp2uvc.ini [2005/10/14 10:56:50 | 003,596,288 | ---- | C] () -- C:\Windows\SysWow64\qt-dx331.dll [2005/10/14 10:56:50 | 000,921,600 | ---- | C] () -- C:\Windows\SysWow64\VorbisEnc.dll [2005/10/14 10:56:50 | 000,344,064 | ---- | C] () -- C:\Windows\SysWow64\xvid.dll [2005/10/14 10:56:50 | 000,237,568 | ---- | C] () -- C:\Windows\SysWow64\OggDS.dll [2005/10/14 10:56:50 | 000,188,416 | ---- | C] () -- C:\Windows\SysWow64\vorbis.dll [2005/10/14 10:56:50 | 000,155,136 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll [2005/10/14 10:56:50 | 000,045,056 | ---- | C] () -- C:\Windows\SysWow64\ogg.dll [2003/04/08 10:40:22 | 000,005,679 | ---- | C] () -- C:\Windows\SysWow64\OUTLPERF.INI [color=#E56717]========== LOP Check ==========[/color] [2014/05/11 12:30:20 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Akhra [2014/04/04 18:51:41 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\AlawarEntertainment [2011/02/17 17:52:45 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Ancient Quest of Saqqarah__bfg [2014/06/23 17:55:05 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Argonyt [2011/02/27 17:23:53 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Artogon [2010/04/30 16:49:14 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Ashampoo [2014/04/05 20:03:22 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Awem [2014/05/18 11:12:47 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Beep Industries [2016/01/14 02:09:38 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\BitTorrent [2014/07/06 13:23:42 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Blue Tea Games [2011/01/22 17:51:01 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\calibre [2014/05/18 11:25:34 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Camel101 [2012/07/03 17:14:33 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Canon [2010/10/19 17:15:53 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 [2016/01/14 02:09:39 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\DAEMON Tools Lite [2014/06/20 12:49:02 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\ERS G-Studio [2016/01/14 04:04:20 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\FileZilla [2016/01/14 00:36:10 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\GG [2014/05/11 07:09:35 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\GreenSauceGames [2016/01/14 02:11:08 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\IObit [2013/03/15 17:49:06 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\iWin [2016/01/14 01:42:12 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Notepad++ [2013/11/01 15:56:22 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Opera [2013/11/01 15:56:22 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Opera Software [2016/01/07 23:45:30 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\PC Remote [2016/01/14 02:02:49 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\ProductData [2013/06/03 19:38:24 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Samsung [2014/06/23 18:03:35 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Settlement. Colossus [2014/04/28 10:47:31 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\ShamanGS [2016/01/09 21:58:03 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Sony [2015/12/31 00:55:38 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Spotify [2010/06/13 07:37:00 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\StarBurn [2014/04/29 16:29:05 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\systweak [2014/06/23 17:14:35 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\tabagames [2013/11/01 15:56:42 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\TreeCardGames [2015/09/02 23:22:25 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\TS3Client [2016/01/12 00:33:21 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\uTorrent [2013/11/01 16:02:06 | 000,000,000 | ---D | M] -- C:\Users\Gosia\AppData\Roaming\Yandex [2016/01/14 03:54:47 | 000,000,920 | ---- | M] () -- C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job [2016/01/14 04:01:00 | 000,000,924 | ---- | M] () -- C:\Windows\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job [2016/01/14 02:05:22 | 000,000,292 | ---- | M] () -- C:\Windows\Tasks\Driver Booster Scheduler.job [2016/01/14 02:05:21 | 000,000,248 | ---- | M] () -- C:\Windows\Tasks\Driver Booster SkipUAC (Gosia).job [2016/01/14 01:59:02 | 000,000,388 | ---- | M] () -- C:\Windows\Tasks\RunAsStdUser Task.job [2016/01/13 23:01:05 | 000,032,604 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [2016/01/14 02:02:44 | 000,000,278 | ---- | M] () -- C:\Windows\Tasks\Uninstaller_SkipUac_Gosia.job [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 98 bytes -> C:\ProgramData\Temp:ED2998F5 @Alternate Data Stream - 113 bytes -> C:\ProgramData\Temp:4EE323A4 < End of report >