Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-01-2014 03 Ran by SYSTEM on MININT-5K0R3T4 on 18-01-2014 16:56:20 Running from G:\ Windows 7 Enterprise (X64) OS Language: Polish Internet Explorer Version 10 Boot Mode: Recovery The current controlset is ControlSet001 [b]ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.[/b] The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Broadcom Wireless Manager UI] - C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [7138816 2013-04-05] (Broadcom Corporation) HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1020576 2012-02-20] (Atheros Communications) HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2012-02-20] (Atheros Commnucations) HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2892072 2012-01-17] (ELAN Microelectronics Corp.) HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12343400 2011-12-27] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1156712 2011-11-15] (Realtek Semiconductor) HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [6325936 2012-11-26] (ESET) HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated) HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1106512 2012-03-02] (Dritek System Inc.) HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-27] (Intel Corporation) HKLM-x32\...\Run: [Dolby Home Theater v4] - C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.) HKLM-x32\...\Run: [AdobeCS5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated) HKLM-x32\...\Run: [APSDaemon] - "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" HKLM-x32\...\Run: [Nikon Message Center 2] - C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [571392 2011-10-30] (Nikon Corporation) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-09-12] (NVIDIA Corporation) AppInit_DLLs-x32: c:\Windows\SysWOW64\nvinit.dll C:\Windows\SysWOW64\nvinit.dll [141336 2013-09-12] (NVIDIA Corporation) ==================== Services (Whitelisted) ================= S2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1329304 2012-11-26] (ESET) S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-08] (Intel Corporation) S4 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-12-22] () S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [759192 2013-09-03] (Tunngle.net GmbH) S3 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [5824512 2013-04-05] (Broadcom Corporation) S4 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [72864 2012-02-19] (Atheros) ==================== Drivers (Whitelisted) ==================== S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-09-26] () S1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-09-26] (Disc Soft Ltd) S1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [211344 2012-10-08] (ESET) S1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [149592 2012-10-08] (ESET) S2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [138744 2012-10-08] (ESET) S2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-09-26] () S3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net) S3 catchme; \??\C:\ComboFix\catchme.sys [x] S3 SmbDrv; system32\DRIVERS\Smb_driver.sys [x] S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [x] S3 tsusbhub; system32\drivers\tsusbhub.sys [x] S3 VGPU; System32\drivers\rdvgkmd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-01-18 16:02 - 2014-01-18 16:02 - 00000000 ____D C:\FRST 2014-01-16 15:11 - 2013-07-26 02:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2014-01-16 15:10 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2014-01-16 15:08 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll 2014-01-16 15:08 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\System32\secur32.dll 2014-01-16 15:08 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2014-01-16 15:08 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk(126).dll 2014-01-16 15:07 - 2013-07-09 06:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll 2014-01-16 15:07 - 2013-07-09 05:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2014-01-16 15:03 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2014-01-13 18:47 - 2014-01-13 18:47 - 03441528 _____ (Solvusoft Corporation ) C:\Users\Emil\Downloads\Nikon_COOLPIX_S2700_Driver_Update_01-2014.exe 2014-01-08 15:33 - 2014-01-08 15:33 - 00000000 ____D C:\ProgramData\Nikon 2014-01-07 17:00 - 2014-01-07 17:00 - 00000000 _____ C:\Windows\ViewNX2.INI 2014-01-07 16:59 - 2014-01-07 16:59 - 00000000 ____D C:\Users\Emil\AppData\Roaming\Nikon 2014-01-07 16:59 - 2014-01-07 16:59 - 00000000 ____D C:\Users\Emil\AppData\Local\Nikon 2014-01-07 16:57 - 2014-01-18 13:52 - 00000000 ____D C:\Program Files (x86)\ArcSoft 2014-01-07 16:57 - 2014-01-07 16:57 - 00002054 _____ C:\Users\Public\Desktop\Panorama Maker 6.lnk 2014-01-07 16:56 - 2014-01-18 13:52 - 00000000 ____D C:\Users\Emil\AppData\Roaming\ArcSoft 2014-01-07 16:53 - 2014-01-07 16:59 - 00000020 ____H C:\ProgramData\PKP_DLes.DAT 2014-01-07 16:53 - 2014-01-07 16:53 - 00000268 ___RH C:\Users\Emil\AppData\Roaming\Sound Effects 2014-01-07 16:53 - 2014-01-07 16:53 - 00000268 ___RH C:\ProgramData\Spacious 2014-01-07 16:53 - 2014-01-07 16:53 - 00000012 ___RH C:\ProgramData\SupportPrinters 2014-01-07 16:52 - 2014-01-07 16:59 - 00000020 ____H C:\ProgramData\PKP_DLet.DAT 2014-01-07 16:52 - 2014-01-07 16:55 - 00000000 ____D C:\Program Files (x86)\Nikon 2014-01-07 16:52 - 2014-01-07 16:54 - 00000000 ____D C:\Program Files\Common Files\Nikon 2014-01-07 16:52 - 2014-01-07 16:52 - 00002049 _____ C:\Users\Public\Desktop\ViewNX 2.lnk 2014-01-07 16:52 - 2014-01-07 16:52 - 00000268 ___RH C:\Users\Emil\AppData\Roaming\Sounds 2014-01-07 16:52 - 2014-01-07 16:52 - 00000268 ___RH C:\Users\Emil\AppData\Roaming\Solid Colors 2014-01-07 16:52 - 2014-01-07 16:52 - 00000268 ___RH C:\ProgramData\Specifications 2014-01-07 16:52 - 2014-01-07 16:52 - 00000268 ___RH C:\ProgramData\Space Choir 2014-01-07 16:52 - 2014-01-07 16:52 - 00000020 ____H C:\ProgramData\PKP_DLev.DAT 2014-01-07 16:52 - 2014-01-07 16:52 - 00000012 ___RH C:\ProgramData\Sync Services 2014-01-07 16:52 - 2014-01-07 16:52 - 00000000 ____D C:\Program Files\Nikon 2014-01-07 16:52 - 2014-01-07 16:51 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ATL71.DLL 2014-01-07 16:51 - 2014-01-07 16:54 - 00000000 ____D C:\Users\Emil\AppData\Local\Downloaded Installations 2014-01-07 16:50 - 2014-01-07 16:53 - 00000000 ____D C:\ProgramData\Ultima_T15 2014-01-07 16:50 - 2014-01-07 16:53 - 00000000 ____D C:\ProgramData\EnterNHelp 2014-01-07 16:50 - 2014-01-07 16:52 - 00000012 ___RH C:\ProgramData\Strings 2014-01-07 16:50 - 2014-01-07 16:51 - 00000020 ____H C:\ProgramData\PKP_DLeo.DAT 2014-01-07 16:50 - 2014-01-07 16:50 - 00000268 ___RH C:\Users\Emil\AppData\Roaming\StatusSheet 2014-01-07 16:47 - 2014-01-07 16:47 - 00000000 ____D C:\Users\Emil\Downloads\Nikon 2014-01-07 16:27 - 2014-01-07 16:27 - 00000000 ____H C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-12-31 14:17 - 2013-12-31 14:17 - 00000000 _____ C:\Users\Emil\Desktop\Nowy dokument tekstowy (2).txt 2013-12-27 21:02 - 2013-12-27 21:02 - 00000000 ____D C:\Users\Emil\Downloads\_brak_tematu_(3) 2013-12-27 20:50 - 2013-12-27 21:03 - 07268863 _____ C:\Users\Emil\Downloads\Zdjecia.zip 2013-12-27 20:49 - 2013-12-27 20:49 - 07378344 _____ C:\Users\Emil\Downloads\_brak_tematu_(4).zip 2013-12-27 20:49 - 2013-12-27 20:49 - 03406147 _____ C:\Users\Emil\Downloads\_brak_tematu_(5).zip 2013-12-27 20:48 - 2013-12-27 20:49 - 08100231 _____ C:\Users\Emil\Downloads\_brak_tematu_(3).zip 2013-12-27 20:47 - 2013-12-27 20:51 - 01974309 _____ C:\Users\Emil\Downloads\image.jpeg 2013-12-27 20:47 - 2013-12-27 20:48 - 07084779 _____ C:\Users\Emil\Downloads\_brak_tematu_(2).zip 2013-12-27 20:47 - 2013-12-27 20:47 - 07236131 _____ C:\Users\Emil\Downloads\_brak_tematu_.zip 2013-12-27 20:47 - 2013-12-27 20:47 - 07084779 _____ C:\Users\Emil\Downloads\_brak_tematu_(1).zip 2013-12-22 14:01 - 2014-01-14 14:34 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-12-22 14:01 - 2013-12-22 14:35 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-12-22 14:00 - 2013-12-22 14:35 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe ==================== One Month Modified Files and Folders ======= 2014-01-18 16:02 - 2014-01-18 16:02 - 00000000 ____D C:\FRST 2014-01-18 14:05 - 2013-04-05 16:48 - 382303540 _____ C:\Windows\MEMORY.DMP 2014-01-18 14:03 - 2013-04-05 13:45 - 00000000 ____D C:\users\Emil 2014-01-18 14:03 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries 2014-01-18 14:03 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\Msdtc 2014-01-18 14:02 - 2013-11-10 20:31 - 00000000 ____D C:\Program Files (x86)\Steam 2014-01-18 14:02 - 2013-10-30 14:52 - 00000000 ____D C:\Program Files (x86)\EaseUS 2014-01-18 14:02 - 2013-08-03 16:21 - 00000000 ___RD C:\Users\Emil\Virtual Machines 2014-01-18 14:02 - 2013-05-08 23:56 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2014-01-18 14:02 - 2013-05-08 23:56 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2014-01-18 14:02 - 2013-04-06 22:18 - 00000000 ____D C:\Users\Emil\AppData\Roaming\Winamp 2014-01-18 14:02 - 2013-04-05 17:33 - 00000000 ____D C:\ProgramData\Atheros 2014-01-18 14:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\System32\NDF 2014-01-18 14:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\servicing 2014-01-18 14:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat 2014-01-18 14:02 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2014-01-18 14:01 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration 2014-01-18 13:52 - 2014-01-07 16:57 - 00000000 ____D C:\Program Files (x86)\ArcSoft 2014-01-18 13:52 - 2014-01-07 16:56 - 00000000 ____D C:\Users\Emil\AppData\Roaming\ArcSoft 2014-01-18 13:52 - 2013-05-10 13:52 - 00000000 ____D C:\Users\Emil\AppData\Roaming\Skype 2014-01-18 13:52 - 2013-04-06 00:39 - 00000000 ____D C:\Users\Emil\AppData\Roaming\GG 2014-01-18 13:52 - 2013-04-05 13:48 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2014-01-16 15:17 - 2013-07-12 17:18 - 00000000 ____D C:\Windows\System32\MRT 2014-01-16 14:57 - 2013-04-05 19:43 - 01348684 _____ C:\Windows\WindowsUpdate.log 2014-01-16 14:46 - 2009-07-14 13:43 - 00749368 _____ C:\Windows\System32\perfh015.dat 2014-01-16 14:46 - 2009-07-14 13:43 - 00160998 _____ C:\Windows\System32\perfc015.dat 2014-01-16 14:46 - 2009-07-14 06:13 - 01691938 _____ C:\Windows\System32\PerfStringBackup.INI 2014-01-16 14:39 - 2009-07-14 05:51 - 00048607 _____ C:\Windows\setupact.log 2014-01-16 14:38 - 2009-07-14 05:45 - 00020208 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-01-16 14:38 - 2009-07-14 05:45 - 00020208 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-01-14 22:19 - 2013-04-06 01:27 - 00000000 ____D C:\Users\Emil\Desktop\Gry 2014-01-14 14:34 - 2013-12-22 14:01 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-01-14 14:12 - 2013-09-27 01:54 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-01-14 11:46 - 2013-09-27 01:54 - 00001040 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-01-14 11:46 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2014-01-14 00:15 - 2013-04-05 17:08 - 00000000 ____D C:\Users\Emil\AppData\Roaming\Atheros 2014-01-14 00:14 - 2013-04-05 13:53 - 00000000 ____D C:\Users\Emil\Documents\Bluetooth Folder 2014-01-13 18:47 - 2014-01-13 18:47 - 03441528 _____ (Solvusoft Corporation ) C:\Users\Emil\Downloads\Nikon_COOLPIX_S2700_Driver_Update_01-2014.exe 2014-01-13 16:56 - 2013-04-06 19:41 - 00003982 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{C95CC20B-B854-40E2-91AE-18FDBD2ADBA0} 2014-01-12 19:27 - 2013-10-30 16:24 - 00000443 _____ C:\Windows\System32\Drivers\etc\hosts.ics 2014-01-08 15:33 - 2014-01-08 15:33 - 00000000 ____D C:\ProgramData\Nikon 2014-01-07 17:00 - 2014-01-07 17:00 - 00000000 _____ C:\Windows\ViewNX2.INI 2014-01-07 16:59 - 2014-01-07 16:59 - 00000000 ____D C:\Users\Emil\AppData\Roaming\Nikon 2014-01-07 16:59 - 2014-01-07 16:59 - 00000000 ____D C:\Users\Emil\AppData\Local\Nikon 2014-01-07 16:59 - 2014-01-07 16:53 - 00000020 ____H C:\ProgramData\PKP_DLes.DAT 2014-01-07 16:59 - 2014-01-07 16:52 - 00000020 ____H C:\ProgramData\PKP_DLet.DAT 2014-01-07 16:57 - 2014-01-07 16:57 - 00002054 _____ C:\Users\Public\Desktop\Panorama Maker 6.lnk 2014-01-07 16:55 - 2014-01-07 16:52 - 00000000 ____D C:\Program Files (x86)\Nikon 2014-01-07 16:54 - 2014-01-07 16:52 - 00000000 ____D C:\Program Files\Common Files\Nikon 2014-01-07 16:54 - 2014-01-07 16:51 - 00000000 ____D C:\Users\Emil\AppData\Local\Downloaded Installations 2014-01-07 16:54 - 2013-04-05 14:00 - 00000000 ____D C:\Windows\Downloaded Installations 2014-01-07 16:53 - 2014-01-07 16:53 - 00000268 ___RH C:\Users\Emil\AppData\Roaming\Sound Effects 2014-01-07 16:53 - 2014-01-07 16:53 - 00000268 ___RH C:\ProgramData\Spacious 2014-01-07 16:53 - 2014-01-07 16:53 - 00000012 ___RH C:\ProgramData\SupportPrinters 2014-01-07 16:53 - 2014-01-07 16:50 - 00000000 ____D C:\ProgramData\Ultima_T15 2014-01-07 16:53 - 2014-01-07 16:50 - 00000000 ____D C:\ProgramData\EnterNHelp 2014-01-07 16:52 - 2014-01-07 16:52 - 00002049 _____ C:\Users\Public\Desktop\ViewNX 2.lnk 2014-01-07 16:52 - 2014-01-07 16:52 - 00000268 ___RH C:\Users\Emil\AppData\Roaming\Sounds 2014-01-07 16:52 - 2014-01-07 16:52 - 00000268 ___RH C:\Users\Emil\AppData\Roaming\Solid Colors 2014-01-07 16:52 - 2014-01-07 16:52 - 00000268 ___RH C:\ProgramData\Specifications 2014-01-07 16:52 - 2014-01-07 16:52 - 00000268 ___RH C:\ProgramData\Space Choir 2014-01-07 16:52 - 2014-01-07 16:52 - 00000020 ____H C:\ProgramData\PKP_DLev.DAT 2014-01-07 16:52 - 2014-01-07 16:52 - 00000012 ___RH C:\ProgramData\Sync Services 2014-01-07 16:52 - 2014-01-07 16:52 - 00000000 ____D C:\Program Files\Nikon 2014-01-07 16:52 - 2014-01-07 16:50 - 00000012 ___RH C:\ProgramData\Strings 2014-01-07 16:51 - 2014-01-07 16:52 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ATL71.DLL 2014-01-07 16:51 - 2014-01-07 16:50 - 00000020 ____H C:\ProgramData\PKP_DLeo.DAT 2014-01-07 16:50 - 2014-01-07 16:50 - 00000268 ___RH C:\Users\Emil\AppData\Roaming\StatusSheet 2014-01-07 16:47 - 2014-01-07 16:47 - 00000000 ____D C:\Users\Emil\Downloads\Nikon 2014-01-07 16:27 - 2014-01-07 16:27 - 00000000 ____H C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2014-01-02 21:45 - 2013-04-06 01:27 - 00000000 ___RD C:\Users\Emil\Desktop\Programy 2013-12-31 14:17 - 2013-12-31 14:17 - 00000000 _____ C:\Users\Emil\Desktop\Nowy dokument tekstowy (2).txt 2013-12-28 17:03 - 2013-04-05 17:32 - 00021614 _____ C:\Windows\PFRO.log 2013-12-27 21:23 - 2013-12-14 20:07 - 00000000 ____D C:\ProgramData\ParetoLogic 2013-12-27 21:22 - 2013-12-17 18:01 - 00000000 ____D C:\Program Files (x86)\Ontrack 2013-12-27 21:03 - 2013-12-27 20:50 - 07268863 _____ C:\Users\Emil\Downloads\Zdjecia.zip 2013-12-27 21:02 - 2013-12-27 21:02 - 00000000 ____D C:\Users\Emil\Downloads\_brak_tematu_(3) 2013-12-27 20:51 - 2013-12-27 20:47 - 01974309 _____ C:\Users\Emil\Downloads\image.jpeg 2013-12-27 20:49 - 2013-12-27 20:49 - 07378344 _____ C:\Users\Emil\Downloads\_brak_tematu_(4).zip 2013-12-27 20:49 - 2013-12-27 20:49 - 03406147 _____ C:\Users\Emil\Downloads\_brak_tematu_(5).zip 2013-12-27 20:49 - 2013-12-27 20:48 - 08100231 _____ C:\Users\Emil\Downloads\_brak_tematu_(3).zip 2013-12-27 20:48 - 2013-12-27 20:47 - 07084779 _____ C:\Users\Emil\Downloads\_brak_tematu_(2).zip 2013-12-27 20:47 - 2013-12-27 20:47 - 07236131 _____ C:\Users\Emil\Downloads\_brak_tematu_.zip 2013-12-27 20:47 - 2013-12-27 20:47 - 07084779 _____ C:\Users\Emil\Downloads\_brak_tematu_(1).zip 2013-12-23 19:49 - 2013-07-25 22:26 - 00000000 ____D C:\FFOutput 2013-12-22 20:35 - 2013-04-06 00:39 - 00000000 ____D C:\Users\Emil\AppData\Local\GG 2013-12-22 19:23 - 2013-04-09 11:46 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe 2013-12-22 14:35 - 2013-12-22 14:01 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-12-22 14:35 - 2013-12-22 14:00 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-12-22 14:35 - 2013-04-05 23:26 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-12-22 14:32 - 2013-10-11 12:53 - 00000000 ____D C:\Users\Emil\Documents\Ubisoft 2013-12-22 14:28 - 2013-08-31 10:37 - 00000000 ____D C:\ProgramData\Ubisoft Files to move or delete: ==================== C:\ProgramData\PKP_DLeo.DAT C:\ProgramData\PKP_DLes.DAT C:\ProgramData\PKP_DLet.DAT C:\ProgramData\PKP_DLev.DAT C:\Users\Emil\bootreg.exe Some content of TEMP: ==================== C:\Users\Emil\AppData\Local\Temp\ggdrive-menu.exe C:\Users\Emil\AppData\Local\Temp\ggdrive-overlay.exe C:\Users\Emil\AppData\Local\Temp\installstats.exe ==================== Known DLLs (Whitelisted) ================ C:\Windows\System32\LPK.dll IS MISSING <==== ATTENTION! C:\Windows\SysWOW64\LPK.dll IS MISSING <==== ATTENTION! ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit ==================== EXE ASSOCIATION ===================== HKLM\...\.exe: exefile => OK HKLM\...\exefile\DefaultIcon: %1 => OK HKLM\...\exefile\open\command: "%1" %* => OK ==================== Restore Points ========================= Restore point made on: 2013-12-27 21:13:35 Restore point made on: 2013-12-27 21:16:20 Restore point made on: 2013-12-27 21:17:32 Restore point made on: 2013-12-27 21:19:55 Restore point made on: 2014-01-04 19:24:10 Restore point made on: 2014-01-07 16:51:09 Restore point made on: 2014-01-07 16:56:50 Restore point made on: 2014-01-16 15:12:18 ==================== Memory info =========================== Percentage of memory in use: 8% Total physical RAM: 12126.36 MB Available physical RAM: 11105.91 MB Total Pagefile: 12124.5 MB Available Pagefile: 11125.8 MB Total Virtual: 8192 MB Available Virtual: 8191.88 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:341.02 GB) (Free:202.05 GB) NTFS Drive e: () (Fixed) (Total:357.52 GB) (Free:140.95 GB) NTFS Drive g: (MEMORY CARD) (Removable) (Total:7.35 GB) (Free:5.33 GB) FAT32 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS Drive y: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 699 GB) (Disk ID: 1AAF1E19) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=341 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=358 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 7 GB) (Disk ID: 00000000) Partition 1: (Not Active) - (Size=7 GB) - (Type=0B) LastRegBack: 2014-01-18 14:00 ==================== End Of Log ============================