Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-09-2013 04 Ran by Tatuś (administrator) on TATUŚ-KOMPUTER on 02-09-2013 11:04:24 Running from C:\Users\Tatuś\Desktop Microsoft Windows 7 Ultimate Service Pack 1 (X86) OS Language: Polish Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG10\avgchsvx.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (LSoft Technologies Inc) C:\Program Files\LSoft Technologies Inc\Active@ Hard Disk Monitor\DiskMonitorService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG10\avgwdsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe () C:\Windows\system32\PnkBstrA.exe (Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG10\avgtray.exe () C:\Windows\FixCamera.exe () C:\Windows\tsnp325.exe () C:\Windows\vsnp325.exe (Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe () C:\Program Files\RocketDock\RocketDock.exe (BitTorrent Inc.) C:\Program Files\uTorrent\uTorrent.exe (DT Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTLite.exe (Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Refactoria Paweł Urbanek) C:\Program Files\Draco Software\Draco Organizer 3\Organizer.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (GG Network S.A.) C:\Users\Tatuś\AppData\Local\GG\Application\gghub.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (GG Network S.A.) C:\Users\Tatuś\AppData\Local\GG\Application\ggapp.exe () C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (GG Network S.A.) C:\Users\Tatuś\AppData\Local\GG\Application\ggdrive\ggdrive.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG10\avgam.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG10\avgnsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG10\avgemcx.exe () C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG10\avgcsrvx.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG10\avgrsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG10\avgcsrvx.exe (Opera Software) C:\Program Files\Opera\opera.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10062440 2011-05-09] (Realtek Semiconductor) HKLM\...\Run: [AVG_TRAY] - C:\Program Files\AVG\AVG10\avgtray.exe [2345592 2012-08-01] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [FixCamera] - C:\Windows\FixCamera.exe [20480 2007-02-12] () HKLM\...\Run: [tsnp325] - C:\Windows\tsnp325.exe [270336 2006-10-10] () HKLM\...\Run: [snp325] - C:\Windows\vsnp325.exe [827392 2006-10-10] () HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [hpqSRMon] - C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [150528 2008-07-22] (Hewlett-Packard) HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard) HKLM\...\Run: [Nvtmru] - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1012000 2013-05-16] (NVIDIA Corporation) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation) HKCU\...\Run: [RocketDock] - C:\Program Files\RocketDock\RocketDock.exe [495616 2007-09-02] () HKCU\...\Run: [uTorrent] - C:\Program Files\uTorrent\uTorrent.exe [802136 2013-05-11] (BitTorrent Inc.) HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd) HKCU\...\Run: [Sony PC Companion] - C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony) HKCU\...\Run: [DRACO ORGANIZER] - C:\Program Files\Draco Software\Draco Organizer 3\Organizer.exe [11222528 2011-01-19] (Refactoria Paweł Urbanek) HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [18678376 2013-04-19] (Skype Technologies S.A.) HKCU\...\Run: [GG] - C:\Users\Tatuś\AppData\Local\GG\Application\gghub.exe [3365440 2013-06-20] (GG Network S.A.) HKCU\...\Policies\system: [LogonHoursAction] 2 HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 MountPoints2: {26cc5eb1-eaa0-11e1-953c-001a4d4f744d} - N:\Startme.exe MountPoints2: {65c3655a-e603-11e1-94e9-001a4d4f744d} - L:\BlacklistAutoRun.exe MountPoints2: {65c3655c-e603-11e1-94e9-001a4d4f744d} - M:\Setup.exe HKU\UpdatusUser\...\RunOnce: [spchecker] - C:\Program Files\AVG\AVG10\Notification\SPCheckerTE.exe [ 2012-08-11] () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /syncC:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart ==================== Internet (Whitelisted) ==================== SearchScopes: HKLM - DefaultScope value is missing. BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 85.11.66.45 85.11.67.250 0.0.0.0 ========================== Services (Whitelisted) ================= R2 Active@ Disk Monitor; C:\Program Files\LSoft Technologies Inc\Active@ Hard Disk Monitor\DiskMonitorService.exe [1727200 2012-10-12] (LSoft Technologies Inc) S3 AVG Security Toolbar Service; C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe [167264 2011-11-10] () R2 AVGIDSAgent; C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [7391072 2012-01-31] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG10\avgwdsvc.exe [269520 2011-02-08] (AVG Technologies CZ, s.r.o.) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2012-12-27] () R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.) S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) ==================== Drivers (Whitelisted) ==================== R3 AVGIDSDriver; C:\Windows\System32\DRIVERS\AVGIDSDriver.Sys [134480 2011-05-27] (AVG Technologies CZ, s.r.o. ) R0 AVGIDSEH; C:\Windows\System32\DRIVERS\AVGIDSEH.Sys [22992 2011-02-22] (AVG Technologies CZ, s.r.o. ) R3 AVGIDSFilter; C:\Windows\System32\DRIVERS\AVGIDSFilter.Sys [24144 2011-02-10] (AVG Technologies CZ, s.r.o. ) R3 AVGIDSShim; C:\Windows\System32\DRIVERS\AVGIDSShim.Sys [21968 2011-02-10] (AVG Technologies CZ, s.r.o. ) R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [255968 2012-11-12] (AVG Technologies CZ, s.r.o.) R1 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [34896 2011-03-01] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [32592 2011-03-16] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [297168 2011-04-05] (AVG Technologies CZ, s.r.o.) R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation) R2 RtNdPt60; C:\Windows\System32\DRIVERS\RtNdPt60.sys [27648 2009-07-20] (Realtek ) S3 RTTEAMPT; C:\Windows\System32\DRIVERS\RtTeam60.sys [43520 2009-12-21] (Realtek Corporation) S3 RTVLANPT; C:\Windows\System32\DRIVERS\RtVlan60.sys [19968 2007-12-03] (Windows (R) Codename Longhorn DDK provider) S3 SNP325; C:\Windows\System32\DRIVERS\snp325.sys [10260864 2007-03-07] (Sonix Co. Ltd.) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2012-08-14] () S3 TEAM; C:\Windows\System32\DRIVERS\RtTeam60.sys [43520 2009-12-21] (Realtek Corporation) S3 VLAN; C:\Windows\System32\DRIVERS\RtVLAN60.sys [19968 2007-12-03] (Windows (R) Codename Longhorn DDK provider) U3 a4ujl2h3; C:\Windows\System32\Drivers\a4ujl2h3.sys [0 ] (Microsoft Corporation) S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x] S3 tsusbhub; system32\drivers\tsusbhub.sys [x] S3 VGPU; System32\drivers\rdvgkmd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-09-01 20:05 - 2013-09-01 20:05 - 00000000 ____D C:\Users\TATU~1\AppData\Local\Google 2013-09-01 20:05 - 2013-08-23 03:40 - 01155072 _____ (3DMGAME) C:\Users\Tatuś\Desktop\Splinter Cell Blacklist v1.01 Plus 8 Trainer.exe 2013-09-01 20:04 - 2013-09-01 20:04 - 00635390 _____ C:\Users\Tatuś\Desktop\Splinter_Cell_Blacklist_v1.01_Plus_8_Trainer.rar 2013-09-01 12:13 - 2013-09-01 12:13 - 00000000 ____D C:\Users\Tatuś\AppData\Roaming\Mozilla 2013-09-01 12:09 - 2013-09-01 12:10 - 00000000 ____D C:\AdwCleaner 2013-08-31 12:09 - 2013-09-02 11:01 - 00000000 ____D C:\Users\Tatuś\Desktop\Nowy folder (3) 2013-08-31 09:36 - 2013-08-31 09:36 - 00000000 ____D C:\FRST 2013-08-31 06:56 - 2013-08-31 06:56 - 00000000 ____D C:\ProgramData\BROWSE~1 2013-08-23 20:50 - 2013-08-23 20:50 - 00000000 ____D C:\Users\Tatuś\Documents\Ubisoft 2013-08-15 01:31 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-08-15 01:31 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-08-15 01:31 - 2013-07-26 05:13 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-08-15 01:31 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-08-15 01:31 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-08-15 01:31 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-08-15 01:31 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-08-15 01:31 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-08-15 01:31 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-08-15 01:31 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-08-15 01:31 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-08-15 01:31 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-08-15 01:31 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-08-15 01:31 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-08-15 01:31 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-08-15 01:31 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-08-15 00:57 - 2013-08-15 00:57 - 00000000 ____D C:\Users\Tatuś\Nowy folder 2013-08-14 16:08 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-08-14 16:08 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2013-08-14 16:08 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2013-08-14 16:08 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-08-14 16:08 - 2013-07-09 06:53 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-08-14 16:08 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2013-08-14 16:08 - 2013-07-09 06:50 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2013-08-14 16:08 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-08-14 16:08 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2013-08-14 16:08 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2013-08-14 16:08 - 2013-07-06 07:05 - 01293760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-08-14 16:07 - 2013-06-15 05:38 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2013-08-14 16:01 - 2013-09-02 09:49 - 00000000 ____D C:\Users\Tatuś\Desktop\JUST CAUSE 2 - ALL - V1.0.0.1 + 23 TRAINER CES-LINGON 2013-08-13 12:03 - 2013-08-13 12:03 - 00000032 _____ C:\Users\Tatuś\Desktop\jacek.txt 2013-08-05 22:22 - 2013-08-15 01:37 - 00000000 ____D C:\Windows\system32\MRT ==================== One Month Modified Files and Folders ======= 2013-09-02 11:03 - 2013-09-02 11:03 - 01085803 _____ (Farbar) C:\Users\Tatuś\Desktop\FRST.exe 2013-09-02 11:01 - 2013-08-31 12:09 - 00000000 ____D C:\Users\Tatuś\Desktop\Nowy folder (3) 2013-09-02 11:01 - 2012-08-13 19:21 - 00000000 ____D C:\Users\Tatuś\AppData\Roaming\uTorrent 2013-09-02 10:50 - 2012-09-23 20:32 - 00000000 ____D C:\Users\Tatuś\AppData\Roaming\Skype 2013-09-02 10:19 - 2012-08-09 22:58 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-09-02 09:56 - 2009-07-14 06:34 - 00017360 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-09-02 09:56 - 2009-07-14 06:34 - 00017360 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-09-02 09:53 - 2012-08-09 22:45 - 00000000 ____D C:\Windows\system32\Drivers\AVG 2013-09-02 09:49 - 2013-08-14 16:01 - 00000000 ____D C:\Users\Tatuś\Desktop\JUST CAUSE 2 - ALL - V1.0.0.1 + 23 TRAINER CES-LINGON 2013-09-02 09:49 - 2013-07-14 21:34 - 00000000 ____D C:\Users\Tatuś\AppData\Roaming\GG 2013-09-02 09:49 - 2013-04-07 09:09 - 00000000 ____D C:\Users\Tatuś\Documents\Tożsamość1 2013-09-02 09:49 - 2012-08-09 21:54 - 00000000 ____D C:\ProgramData\NVIDIA 2013-09-02 09:49 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-09-02 09:49 - 2009-07-14 06:39 - 00045152 _____ C:\Windows\setupact.log 2013-09-01 23:54 - 2012-08-09 21:34 - 02085424 _____ C:\Windows\WindowsUpdate.log 2013-09-01 20:05 - 2013-09-01 20:05 - 00000000 ____D C:\Users\TATU~1\AppData\Local\Google 2013-09-01 20:04 - 2013-09-01 20:04 - 00635390 _____ C:\Users\Tatuś\Desktop\Splinter_Cell_Blacklist_v1.01_Plus_8_Trainer.rar 2013-09-01 12:13 - 2013-09-01 12:13 - 00000000 ____D C:\Users\Tatuś\AppData\Roaming\Mozilla 2013-09-01 12:11 - 2012-08-10 09:49 - 00066176 _____ C:\Windows\PFRO.log 2013-09-01 12:10 - 2013-09-01 12:09 - 00000000 ____D C:\AdwCleaner 2013-09-01 00:24 - 2012-08-20 14:35 - 00000000 ____D C:\Users\Tatuś\AppData\Roaming\Draco Organizer 2013-08-31 09:36 - 2013-08-31 09:36 - 00000000 ____D C:\FRST 2013-08-31 06:56 - 2013-08-31 06:56 - 00000000 ____D C:\ProgramData\BROWSE~1 2013-08-23 20:50 - 2013-08-23 20:50 - 00000000 ____D C:\Users\Tatuś\Documents\Ubisoft 2013-08-23 20:50 - 2012-11-30 22:16 - 00000000 ____D C:\ProgramData\Orbit 2013-08-23 20:07 - 2012-08-09 21:49 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2013-08-23 10:47 - 2012-08-09 21:45 - 01662556 _____ C:\Windows\system32\PerfStringBackup.INI 2013-08-23 10:47 - 2009-07-14 10:07 - 00737730 _____ C:\Windows\system32\perfh015.dat 2013-08-23 10:47 - 2009-07-14 10:07 - 00154418 _____ C:\Windows\system32\perfc015.dat 2013-08-23 03:40 - 2013-09-01 20:05 - 01155072 _____ (3DMGAME) C:\Users\Tatuś\Desktop\Splinter Cell Blacklist v1.01 Plus 8 Trainer.exe 2013-08-21 21:19 - 2012-08-09 22:58 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2013-08-21 21:19 - 2012-08-09 22:58 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2013-08-17 20:47 - 2013-03-11 11:00 - 00010703 _____ C:\Users\Tatuś\Documents\TombRaider.log 2013-08-16 12:21 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache 2013-08-16 10:53 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET 2013-08-15 10:41 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\pl-PL 2013-08-15 01:37 - 2013-08-05 22:22 - 00000000 ____D C:\Windows\system32\MRT 2013-08-15 01:34 - 2012-08-11 23:06 - 75778376 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-08-15 00:57 - 2013-08-15 00:57 - 00000000 ____D C:\Users\Tatuś\Nowy folder 2013-08-15 00:57 - 2012-08-09 21:39 - 00000000 ____D C:\Users\Tatuś 2013-08-13 12:03 - 2013-08-13 12:03 - 00000032 _____ C:\Users\Tatuś\Desktop\jacek.txt ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-09-01 12:41 ==================== End Of Log ============================