Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-10-2014 01
Ran by Admin (administrator) on WOLPC on 08-10-2014 21:38:59
Running from D:\Instalki\FRST
Loaded Profile: Admin (Available profiles: Admin)
Platform: Windows 7 Home Premium (X64) OS Language: Polski (Polska)
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(GG Network S.A.) C:\Users\Admin\AppData\Local\GG\Application\gghub.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(GG Network S.A.) C:\Users\Admin\AppData\Local\GG\Application\ggapp.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
(GG Network S.A.) C:\Users\Admin\AppData\Local\GG\Application\ggdrive\ggdrive.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7833120 2014-10-03] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2014-10-03] (Realtek Semiconductor Corp.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767200 2014-09-15] (Advanced Micro Devices, Inc.)
HKU\S-1-5-21-3468641135-3769563675-2749450165-1001\...\Run: [GG] => C:\Users\Admin\AppData\Local\GG\Application\gghub.exe [4023360 2014-09-29] (GG Network S.A.)
HKU\S-1-5-21-3468641135-3769563675-2749450165-1001\...\Run: [CMD] => cmd.exe /c start http://adverttraff.org && exit <===== ATTENTION
HKU\S-1-5-21-3468641135-3769563675-2749450165-1001\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2011-04-19] (AMD)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xA7C3C0CB08DFCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = pl
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ub2bfj2b.default-1412795224972
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)

Chrome: 
=======
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentacje Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-06]
CHR Extension: (Dokumenty Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-06]
CHR Extension: (Dysk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-06]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-06]
CHR Extension: (Szukaj w Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-06]
CHR Extension: (Arkusze Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-10-06]
CHR Extension: (Google Wallet) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-06]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-06]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)


==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)


==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-08 20:59 - 2014-10-08 21:39 - 00000000 ____D () C:\FRST
2014-10-07 20:20 - 2014-10-07 20:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-10-07 20:20 - 2014-10-07 20:20 - 00000000 ____D () C:\ProgramData\AMD
2014-10-07 20:20 - 2014-10-07 20:20 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-10-07 20:19 - 2014-10-07 20:19 - 00000000 ____D () C:\ProgramData\ATI
2014-10-07 20:18 - 2014-10-07 20:18 - 00000000 ____D () C:\Program Files\AMD
2014-10-07 20:17 - 2014-10-07 20:17 - 01606314 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-10-07 20:15 - 2009-11-25 11:47 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-07 20:15 - 2009-11-25 11:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-07 20:15 - 2009-11-25 11:47 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2014-10-07 20:15 - 2009-11-25 11:47 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2014-10-07 20:15 - 2009-11-25 11:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll
2014-10-07 20:15 - 2009-11-25 11:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe
2014-10-07 20:15 - 2009-11-25 11:47 - 00109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2014-10-07 20:15 - 2009-11-25 11:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll
2014-10-07 20:15 - 2009-11-25 11:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll
2014-10-07 20:15 - 2009-11-25 11:47 - 00048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2014-10-07 20:14 - 2014-10-07 20:17 - 00000000 ____D () C:\ProgramData\Package Cache
2014-10-07 19:38 - 2014-10-07 19:39 - 00000000 ____D () C:\ProgramData\HP
2014-10-07 19:38 - 2014-10-07 19:38 - 00002248 _____ () C:\Users\Public\Desktop\HP Deskjet Ink Adv 2060 K110.lnk
2014-10-07 19:38 - 2014-10-07 19:38 - 00001238 _____ () C:\Users\Public\Desktop\HP Deskjet Ink Adv 2060 K110 Scan.lnk
2014-10-07 19:38 - 2014-10-07 19:38 - 00001201 _____ () C:\Users\Public\Desktop\Zakup materiałów eksploatacyjnych - HP Deskjet Ink Adv 2060 K110.lnk
2014-10-07 19:38 - 2014-10-07 19:38 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\HpUpdate
2014-10-07 19:38 - 2014-10-07 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-10-07 19:38 - 2014-10-07 19:38 - 00000000 ____D () C:\Program Files (x86)\HP
2014-10-07 19:37 - 2014-10-07 19:37 - 00000000 ____D () C:\Program Files\HP
2014-10-07 19:36 - 2014-10-07 19:36 - 00000000 ____D () C:\Users\Admin\AppData\Local\HP
2014-10-07 14:58 - 2014-10-07 14:58 - 00000000 ____D () C:\Users\Admin\AppData\Local\Macromedia
2014-10-07 14:56 - 2014-10-07 14:56 - 00000000 ____D () C:\ProgramData\McAfee
2014-10-06 17:21 - 2014-10-06 17:21 - 00434122 __RSH () C:\BGDZU
2014-10-06 17:20 - 2014-10-06 17:20 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\WinRAR
2014-10-06 17:20 - 2014-10-06 17:20 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-10-06 17:20 - 2014-10-06 17:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-10-06 17:20 - 2014-10-06 17:20 - 00000000 ____D () C:\Program Files (x86)\WinRAR
2014-10-04 13:04 - 2014-10-04 13:04 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Steam
2014-10-04 12:29 - 2014-10-08 18:43 - 00002186 _____ () C:\Windows\PFRO.log
2014-10-03 15:38 - 2014-10-03 15:38 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-10-03 15:38 - 2014-10-03 14:47 - 00000000 ____D () C:\Windows\Panther
2014-10-03 15:38 - 2009-07-14 03:38 - 00383562 __RSH () C:\bootmgr
2014-10-03 15:36 - 2014-10-03 15:36 - 00000000 ____D () C:\Users\Admin\Documents\WB Games
2014-10-03 15:30 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-10-03 15:30 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-10-03 15:30 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-10-03 15:30 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-10-03 15:30 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-10-03 15:30 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-10-03 15:30 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-10-03 15:29 - 2014-10-03 15:29 - 00000818 _____ () C:\Users\Public\Desktop\Middle-earth Shadow of Mordor.lnk
2014-10-03 15:29 - 2014-10-03 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Middle-earth Shadow of Mordor
2014-10-03 15:27 - 2014-10-03 15:28 - 00000000 ___SD () C:\Users\Admin\GG dysk
2014-10-03 15:27 - 2014-10-03 15:27 - 00001617 _____ () C:\Users\Admin\Desktop\GG dysk.lnk
2014-10-03 15:26 - 2014-10-08 21:09 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\GG
2014-10-03 15:26 - 2014-10-03 15:27 - 00000000 ____D () C:\Users\Admin\AppData\Local\GG
2014-10-03 15:26 - 2014-10-03 15:26 - 00001146 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
2014-10-03 15:26 - 2014-10-03 15:26 - 00001138 _____ () C:\Users\Admin\Desktop\GG.lnk
2014-10-03 15:24 - 2014-09-15 09:06 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-10-03 15:12 - 2014-10-03 15:13 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Mozilla
2014-10-03 15:12 - 2014-10-03 15:13 - 00000000 ____D () C:\Users\Admin\AppData\Local\Mozilla
2014-10-03 15:12 - 2014-10-03 15:12 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-03 15:12 - 2014-10-03 15:12 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-10-03 15:11 - 2014-10-03 15:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-03 15:11 - 2014-10-03 15:12 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-03 15:11 - 2014-10-03 15:11 - 00000000 ____D () C:\ProgramData\Mozilla
2014-10-03 15:09 - 2014-10-03 15:09 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Macromedia
2014-10-03 15:09 - 2014-10-03 15:09 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Adobe
2014-10-03 15:08 - 2014-10-08 21:19 - 00001046 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-03 15:08 - 2014-10-08 21:10 - 00001042 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-03 15:08 - 2014-10-07 19:17 - 00000000 ____D () C:\Program Files\Google
2014-10-03 15:08 - 2014-10-07 19:17 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-03 15:08 - 2014-10-07 14:57 - 00000000 ____D () C:\Users\Admin\AppData\Local\Google
2014-10-03 15:08 - 2014-10-07 14:57 - 00000000 ____D () C:\ProgramData\Google
2014-10-03 15:08 - 2014-10-07 14:56 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-03 15:08 - 2014-10-07 14:56 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-03 15:08 - 2014-10-03 15:35 - 00002189 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-03 15:08 - 2014-10-03 15:14 - 00004042 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-03 15:08 - 2014-10-03 15:14 - 00003790 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-03 15:08 - 2014-10-03 15:08 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-10-03 15:08 - 2014-10-03 15:08 - 00000000 ____D () C:\Windows\system32\Macromed
2014-10-03 15:08 - 2014-10-03 15:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-10-03 15:07 - 2014-10-07 14:56 - 00000000 ____D () C:\Users\Admin\AppData\Local\Adobe
2014-10-03 15:02 - 2014-10-03 15:02 - 01762080 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-10-03 15:02 - 2014-10-03 15:02 - 01603104 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 01277984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 01163296 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00611360 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-10-03 15:02 - 2014-10-03 15:02 - 00540672 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00513536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00417824 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00332320 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00311296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00304640 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00304640 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00211376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00193536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00176640 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\FMAPO64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00166400 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00150528 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00149536 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00108032 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00058400 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll
2014-10-03 15:02 - 2014-10-03 15:02 - 00001769 _____ () C:\Windows\Language_trs.ini
2014-10-03 15:02 - 2014-10-03 15:02 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-10-03 15:02 - 2014-10-03 15:02 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-03 15:02 - 2014-10-03 15:02 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-10-03 15:02 - 2014-10-03 15:02 - 00000000 ____D () C:\Program Files\Realtek
2014-10-03 15:02 - 2014-10-03 15:02 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-10-03 15:01 - 2014-10-03 15:01 - 00057560 _____ () C:\Users\Admin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-03 15:00 - 2014-10-03 15:00 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\ATI
2014-10-03 15:00 - 2014-10-03 15:00 - 00000000 ____D () C:\Users\Admin\AppData\Local\ATI
2014-10-03 15:00 - 2014-10-03 15:00 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-10-03 14:59 - 2014-10-03 14:59 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-10-03 14:58 - 2014-10-03 14:59 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-10-03 14:58 - 2014-10-03 14:58 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-10-03 14:58 - 2014-10-03 14:58 - 00000000 ____D () C:\Program Files\ATI
2014-10-03 14:58 - 2011-04-20 04:05 - 00462848 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-10-03 14:58 - 2011-04-20 03:27 - 00058880 _____ (AMD) C:\Windows\system32\coinst.dll
2014-10-03 14:58 - 2011-04-06 01:46 - 00032200 _____ () C:\Windows\atiogl.xml
2014-10-03 14:56 - 2014-10-07 20:19 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-10-03 14:50 - 2014-10-03 14:50 - 00000000 ____D () C:\Samsung
2014-10-03 14:49 - 2014-10-03 14:49 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-10-03 14:48 - 2014-10-03 14:48 - 00001455 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-03 14:48 - 2014-10-03 14:48 - 00001421 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-10-03 14:47 - 2014-10-03 15:27 - 00000000 ____D () C:\Users\Admin
2014-10-03 14:47 - 2014-10-03 14:47 - 00000020 ___SH () C:\Users\Admin\ntuser.ini
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Public\Documents\Moje wideo
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Public\Documents\Moje obrazy
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Public\Documents\Moja muzyka
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\Ustawienia lokalne
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\Szablony
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\Moje dokumenty
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\Menu Start
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\Documents\Moje wideo
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\Documents\Moje obrazy
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\Documents\Moja muzyka
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\Dane aplikacji
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Historia
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Dane aplikacji
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default User\Documents\Moje wideo
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default User\Documents\Moje obrazy
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default User\Documents\Moja muzyka
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Historia
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Dane aplikacji
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\Ustawienia lokalne
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\Szablony
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\Moje dokumenty
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\Menu Start
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\Documents\Moje wideo
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\Documents\Moje obrazy
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\Documents\Moja muzyka
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\Dane aplikacji
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\AppData\Local\Historia
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\Users\Admin\AppData\Local\Dane aplikacji
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\ProgramData\Ulubione
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\ProgramData\Szablony
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\ProgramData\Pulpit
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programy
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\ProgramData\Menu Start
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\ProgramData\Dokumenty
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 _SHDL () C:\ProgramData\Dane aplikacji
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 __SHD () C:\Recovery
2014-10-03 14:47 - 2014-10-03 14:47 - 00000000 ____D () C:\Users\Admin\AppData\Local\VirtualStore
2014-10-03 14:47 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-03 14:47 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-10-03 14:43 - 2014-10-03 14:43 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-10-03 14:43 - 2014-10-03 14:43 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-10-03 14:43 - 2014-10-03 14:43 - 00001313 _____ () C:\Windows\TSSysprep.log
2014-10-03 14:42 - 2014-10-08 21:12 - 00069616 _____ () C:\Windows\WindowsUpdate.log
2014-10-03 14:41 - 2014-10-03 14:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-09-16 00:32 - 2014-09-16 00:32 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-09-16 00:32 - 2014-09-16 00:32 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-09-16 00:32 - 2014-09-16 00:32 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-09-16 00:32 - 2014-09-16 00:32 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-09-16 00:31 - 2014-09-16 00:31 - 10826488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-09-16 00:29 - 2014-09-16 00:29 - 00293088 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-09-16 00:26 - 2014-09-16 00:26 - 16750080 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-09-16 00:18 - 2014-09-16 00:18 - 01187342 _____ () C:\Windows\system32\amdocl_as64.exe
2014-09-16 00:18 - 2014-09-16 00:18 - 01061902 _____ () C:\Windows\system32\amdocl_ld64.exe
2014-09-16 00:18 - 2014-09-16 00:18 - 00995342 _____ () C:\Windows\SysWOW64\amdocl_as32.exe
2014-09-16 00:18 - 2014-09-16 00:18 - 00798734 _____ () C:\Windows\SysWOW64\amdocl_ld32.exe
2014-09-16 00:18 - 2014-09-16 00:18 - 00235008 _____ () C:\Windows\system32\clinfo.exe
2014-09-16 00:18 - 2014-09-16 00:18 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-09-16 00:17 - 2014-09-16 00:17 - 33867264 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-09-16 00:17 - 2014-09-16 00:17 - 28770304 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-09-16 00:17 - 2014-09-16 00:17 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-09-16 00:17 - 2014-09-16 00:17 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-09-16 00:17 - 2014-09-16 00:17 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-09-16 00:16 - 2014-09-16 00:16 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-09-16 00:16 - 2014-09-16 00:16 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-09-16 00:13 - 2014-09-16 00:13 - 27918336 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-09-16 00:09 - 2014-09-16 00:09 - 05639168 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-09-16 00:09 - 2014-09-16 00:09 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-09-16 00:09 - 2014-09-16 00:09 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-09-16 00:09 - 2014-09-16 00:09 - 00048128 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-09-16 00:09 - 2014-09-16 00:09 - 00037888 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-09-16 00:08 - 2014-09-16 00:08 - 23375360 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-09-16 00:07 - 2014-09-16 00:07 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-09-16 00:07 - 2014-09-16 00:07 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-09-16 00:07 - 2014-09-16 00:07 - 00609272 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-09-16 00:07 - 2014-09-16 00:07 - 00609272 _____ () C:\Windows\system32\atiapfxx.blb
2014-09-16 00:07 - 2014-09-16 00:07 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-09-16 00:07 - 2014-09-16 00:07 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-09-16 00:07 - 2014-09-16 00:07 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-09-16 00:07 - 2014-09-16 00:07 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-09-16 00:07 - 2014-09-16 00:07 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-09-16 00:06 - 2014-09-16 00:06 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-09-16 00:06 - 2014-09-16 00:06 - 00204952 _____ () C:\Windows\SysWOW64\ativvsvl.dat
2014-09-16 00:06 - 2014-09-16 00:06 - 00204952 _____ () C:\Windows\system32\ativvsvl.dat
2014-09-16 00:06 - 2014-09-16 00:06 - 00157144 _____ () C:\Windows\SysWOW64\ativvsva.dat
2014-09-16 00:06 - 2014-09-16 00:06 - 00157144 _____ () C:\Windows\system32\ativvsva.dat
2014-09-16 00:05 - 2014-09-16 00:05 - 04480000 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-09-16 00:03 - 2014-09-16 00:03 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-09-16 00:03 - 2014-09-16 00:03 - 00619008 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-09-16 00:03 - 2014-09-16 00:03 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-09-16 00:03 - 2014-09-16 00:03 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-09-16 00:03 - 2014-09-16 00:03 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-09-16 00:03 - 2014-09-16 00:03 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-09-16 00:03 - 2014-09-16 00:03 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-09-16 00:03 - 2014-09-16 00:03 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-09-15 23:59 - 2014-09-15 23:59 - 00900608 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-09-15 23:59 - 2014-09-15 23:59 - 00827392 _____ (AMD) C:\Windows\system32\coinst_14.30.dll
2014-09-15 23:59 - 2014-09-15 23:59 - 00576000 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-09-15 23:59 - 2014-09-15 23:59 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-09-15 23:59 - 2014-09-15 23:59 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-09-15 23:59 - 2014-09-15 23:59 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-09-15 23:59 - 2014-09-15 23:59 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-09-15 23:59 - 2014-09-15 23:59 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-09-15 23:58 - 2014-09-15 23:58 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-09-15 18:21 - 2014-09-15 18:21 - 00051200 _____ () C:\Windows\system32\kdbsdk64.dll
2014-09-15 18:19 - 2014-09-15 18:19 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-08 21:16 - 2009-07-14 06:45 - 00022880 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-08 21:16 - 2009-07-14 06:45 - 00022880 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-08 21:15 - 2009-07-14 19:55 - 00739694 _____ () C:\Windows\system32\perfh015.dat
2014-10-08 21:15 - 2009-07-14 19:55 - 00155268 _____ () C:\Windows\system32\perfc015.dat
2014-10-08 21:15 - 2009-07-14 07:13 - 01668226 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-08 21:09 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-08 21:09 - 2009-07-14 06:51 - 00020885 _____ () C:\Windows\setupact.log
2014-10-03 15:38 - 2009-07-14 07:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-10-03 15:38 - 2009-07-14 07:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-10-03 15:23 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\restore
2014-10-03 14:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-10-03 14:47 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-10-03 14:47 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-10-03 14:47 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-10-03 14:45 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-10-03 14:43 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-03 14:43 - 2009-07-14 06:46 - 00001774 _____ () C:\Windows\DtcInstall.log
2014-10-03 14:43 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-03 14:43 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-10-03 14:40 - 2009-07-14 06:45 - 00274840 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-16 00:31 - 2011-04-20 04:09 - 01113576 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-09-16 00:31 - 2011-04-20 04:07 - 01335544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-09-16 00:31 - 2011-04-20 03:59 - 09254184 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-09-16 00:31 - 2011-04-20 03:40 - 08044976 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-09-16 00:31 - 2011-04-20 03:38 - 07028336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-09-16 00:31 - 2011-04-20 03:31 - 08296296 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-09-16 00:31 - 2011-04-20 03:30 - 07207592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-09-16 00:31 - 2011-04-20 03:21 - 00144328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-09-16 00:31 - 2011-04-20 03:21 - 00126848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-09-16 00:31 - 2011-04-20 03:21 - 00118096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-09-16 00:31 - 2011-04-20 03:21 - 00100032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-09-15 23:59 - 2011-04-20 03:23 - 01210880 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-03 14:39

==================== End Of Log ============================