Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-01-2014 01
Ran by Armani (administrator) on ARMANI-KOMPUTER on 25-01-2014 22:25:05
Running from F:\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(TeamViewer GmbH) F:\Programy\TeamViewer\Version 9\TeamViewer_Service.exe
(DT Soft Ltd) C:\Program Files (x86)\Daemon Tools Pro\DTShellHlp.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(GG Network S.A.) C:\Users\Armani\AppData\Local\GG\Application\gghub.exe
(GG Network S.A.) C:\Users\Armani\AppData\Local\GG\Application\ggapp.exe
(GG Network S.A.) C:\Users\Armani\AppData\Local\GG\Application\ggdrive\ggdrive.exe
(GG Network S.A.) C:\Users\Armani\AppData\Local\GG\Application\xulrunner\gghub.exe
(OldTimer Tools) F:\Downloads\OTL.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe


==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2792448 2009-12-04] (VIA)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] - F:\Programy\MS Office 2007\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKCU\...\Run: [AdobeBridge] - [x]
HKCU\...\Run: [DAEMON Tools Pro Agent] - C:\Program Files (x86)\Daemon Tools Pro\DTAgent.exe [3035968 2012-02-02] (DT Soft Ltd)

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - F:\Programy\MS Office 2007\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - F:\Programy\MS Office 2007\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Hosts: 127.0.0.1 validation.sls.microsoft.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

Chrome: 
=======
CHR Extension: (Dokumenty Google) - C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-22]
CHR Extension: (Dysk Google) - C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-22]
CHR Extension: (YouTube) - C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-22]
CHR Extension: (Chrome YouTube Downloader) - C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbdjiinahkdjdcdlgfimlcolkjpbooja [2013-12-26]
CHR Extension: (Szukaj w Google) - C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-22]
CHR Extension: (Google Wallet) - C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-22]
CHR Extension: (Blue Space Sunset Chrome Theme) - C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\nndfdjfoclbidmgpmbelcieibgjjfdog [2014-01-23]
CHR Extension: (Gmail) - C:\Users\Armani\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-22]

==================== Services (Whitelisted) =================

S4 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-04-29] (Advanced Micro Devices, Inc.)
S3 Microsoft Office Groove Audit Service; F:\Programy\MS Office 2007\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation)
R2 TeamViewer9; F:\Programy\TeamViewer\Version 9\TeamViewer_Service.exe [5341536 2013-12-17] (TeamViewer GmbH)

==================== Drivers (Whitelisted) ====================

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-12-22] (DT Soft Ltd)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 XFDriver64; C:\Program Files (x86)\Xfire2\XFDriver64.sys [17160 2013-03-14] (XFire)
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-25 22:24 - 2014-01-25 22:24 - 00000000 ____D C:\FRST
2014-01-25 22:15 - 2014-01-25 22:15 - 00063978 _____ C:\Users\Armani\Desktop\OTL.Txt
2014-01-25 22:14 - 2014-01-25 22:14 - 00051030 _____ C:\Users\Armani\Desktop\Extras.Txt
2014-01-25 02:07 - 2014-01-25 02:07 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-01-25 01:59 - 2014-01-25 02:01 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Notepad++
2014-01-25 01:59 - 2014-01-25 01:59 - 00000726 _____ C:\Users\Gość\Desktop\Notepad++.lnk
2014-01-25 01:59 - 2014-01-25 01:59 - 00000726 _____ C:\Users\Armani\Desktop\Notepad++.lnk
2014-01-25 01:59 - 2014-01-25 01:59 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-01-25 00:15 - 2014-01-25 00:15 - 00715038 _____ C:\Windows\unins000.exe
2014-01-25 00:15 - 2014-01-25 00:15 - 00001998 _____ C:\Windows\unins000.dat
2014-01-25 00:15 - 2011-12-07 19:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2014-01-25 00:15 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2014-01-24 23:48 - 2014-01-25 00:02 - 00000000 ____D C:\Program Files (x86)\Xfire2
2014-01-24 23:48 - 2014-01-24 23:48 - 00000972 _____ C:\Users\Public\Desktop\Xfire.lnk
2014-01-24 22:48 - 2014-01-24 22:49 - 00000000 ____D C:\Users\Armani\Desktop\Folder 8
2014-01-24 22:36 - 2014-01-25 00:02 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Xfire
2014-01-24 22:35 - 2014-01-25 00:02 - 00000000 ____D C:\ProgramData\Xfire
2014-01-24 22:08 - 2014-01-24 22:08 - 00000657 _____ C:\Users\Armani\Desktop\Dxtory.lnk
2014-01-24 22:08 - 2013-02-15 22:44 - 08300544 _____ (Dxtory Software) C:\Windows\SysWOW64\DxtoryCodec.dll
2014-01-24 22:08 - 2013-02-15 22:44 - 08043008 _____ (Dxtory Software) C:\Windows\system32\DxtoryCodec.dll
2014-01-24 22:01 - 2014-01-24 22:08 - 00000000 ____D C:\Users\Armani\AppData\Local\Dxtory Software
2014-01-24 21:57 - 2014-01-24 21:59 - 01640128 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-23 14:25 - 2014-01-23 14:25 - 00035706 _____ C:\Users\Armani\AppData\Local\recently-used.xbel
2014-01-22 18:50 - 2014-01-22 18:50 - 00391064 _____ C:\Users\Gość\Downloads\billiards_install_1_0_2_7 (2).exe
2014-01-21 10:39 - 2014-01-21 10:39 - 00391064 _____ C:\Users\Gość\Downloads\billiards_install_1_0_2_7 (1).exe
2014-01-20 21:08 - 2014-01-20 21:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2014-01-20 21:07 - 2014-01-20 21:07 - 00000000 ____D C:\Windows\PCHEALTH
2014-01-20 21:07 - 2014-01-20 21:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2014-01-20 21:06 - 2014-01-20 21:06 - 00000000 ____D C:\Program Files\Microsoft Office
2014-01-20 21:06 - 2014-01-20 21:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2014-01-20 21:05 - 2014-01-20 21:09 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-20 21:05 - 2014-01-20 21:05 - 00000000 ____D C:\Users\Armani\AppData\Local\Microsoft Help
2014-01-20 19:16 - 2014-01-23 11:07 - 00000000 ____D C:\Users\Gość\AppData\Roaming\GanymedeNet
2014-01-20 19:13 - 2014-01-20 19:13 - 00391064 _____ C:\Users\Gość\Downloads\billiards_install_1_0_2_7.exe
2014-01-18 17:23 - 2014-01-18 17:23 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Grupa IMAGE
2014-01-18 17:23 - 2014-01-18 17:23 - 00000000 ____D C:\Program Files (x86)\Grupa IMAGE
2014-01-11 22:12 - 2014-01-11 22:12 - 00000000 ____D C:\Users\Gość\Documents\GTA San Andreas User Files
2014-01-05 22:03 - 2014-01-05 22:03 - 00000000 ____D C:\Program Files (x86)\Mumble
2013-12-31 17:05 - 2013-12-31 17:05 - 00000000 ____D C:\Users\Gość\AppData\Roaming\Unity
2013-12-31 17:04 - 2013-12-31 17:04 - 01050264 _____ (Unity Technologies ApS) C:\Users\Gość\Downloads\UnityWebPlayer.exe
2013-12-31 17:04 - 2013-12-31 17:04 - 00000000 ____D C:\Users\Gość\AppData\Local\Unity
2013-12-31 14:25 - 2013-12-31 14:25 - 00000000 ____D C:\Users\Gość\AppData\Local\Google
2013-12-31 14:23 - 2013-12-31 14:23 - 00001451 _____ C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-31 14:23 - 2013-12-31 14:23 - 00001417 _____ C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2013-12-31 14:23 - 2013-12-31 14:23 - 00000020 ___SH C:\Users\Gość\ntuser.ini
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Ustawienia lokalne
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Szablony
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Moje dokumenty
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Menu Start
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Documents\Moje wideo
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Documents\Moje obrazy
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Documents\Moja muzyka
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Dane aplikacji
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\AppData\Local\Historia
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\AppData\Local\Dane aplikacji
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 ___RD C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 ___RD C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 ____D C:\Users\Gość\AppData\Roaming\DAEMON Tools Pro
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 ____D C:\Users\Gość\AppData\Local\VirtualStore
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 ____D C:\Users\Gość
2013-12-31 14:23 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-31 14:23 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-27 23:31 - 2014-01-05 22:01 - 00000000 ____D C:\Windows\system32\appmgmt
2013-12-27 23:27 - 2014-01-25 12:58 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Mumble
2013-12-26 20:28 - 2013-12-26 20:28 - 00000132 _____ C:\Users\Armani\AppData\Roaming\Preferencje formatu BMP CS6 firmy Adobe
2013-12-26 18:47 - 2013-12-26 18:47 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-12-26 14:15 - 2013-12-26 14:21 - 00000000 ____D C:\Users\Armani\AppData\Roaming\TeamViewer
2013-12-26 14:12 - 2013-12-26 14:12 - 00000794 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2013-12-26 13:53 - 2013-12-26 13:53 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Apple Computer
2013-12-26 13:53 - 2013-12-26 13:53 - 00000000 ____D C:\Users\Armani\AppData\Local\Apple Computer
2013-12-26 13:47 - 2013-12-26 13:47 - 00000000 ____D C:\Users\Armani\AppData\Local\Apple
2013-12-26 13:47 - 2013-12-26 13:47 - 00000000 ____D C:\ProgramData\Apple Computer
2013-12-26 13:47 - 2013-12-26 13:47 - 00000000 ____D C:\ProgramData\Apple
2013-12-26 13:47 - 2013-12-26 13:47 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-12-26 12:57 - 2013-12-26 12:57 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-26 11:48 - 2013-12-26 11:48 - 00000607 _____ C:\Users\Armani\Desktop\HD Tune.lnk
2013-12-26 10:42 - 2013-12-26 10:42 - 00000000 ____D C:\Users\Armani\Desktop\Grafika
2013-12-26 10:00 - 2013-12-26 10:00 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Publish Providers
2013-12-26 09:56 - 2013-12-26 10:00 - 00000000 ____D C:\Users\Armani\AppData\Local\Sony
2013-12-26 09:56 - 2013-12-26 09:56 - 00000783 _____ C:\Users\Public\Desktop\Vegas Pro 12.0 (64-bit).lnk
2013-12-26 09:56 - 2013-12-26 09:56 - 00000000 ____D C:\ProgramData\Sony
2013-12-26 09:56 - 2013-12-26 09:56 - 00000000 ____D C:\Program Files (x86)\Sony
2013-12-26 09:54 - 2014-01-25 20:34 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Sony

==================== One Month Modified Files and Folders =======

2014-01-25 22:24 - 2014-01-25 22:24 - 00000000 ____D C:\FRST
2014-01-25 22:15 - 2014-01-25 22:15 - 00063978 _____ C:\Users\Armani\Desktop\OTL.Txt
2014-01-25 22:14 - 2014-01-25 22:14 - 00051030 _____ C:\Users\Armani\Desktop\Extras.Txt
2014-01-25 22:07 - 2013-12-22 16:30 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-25 21:37 - 2013-12-22 17:26 - 00001048 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-25 21:22 - 2013-12-22 16:23 - 00635903 _____ C:\Windows\WindowsUpdate.log
2014-01-25 20:51 - 2013-12-22 18:06 - 00000000 ____D C:\Users\Armani\AppData\Roaming\GG
2014-01-25 20:34 - 2013-12-26 09:54 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Sony
2014-01-25 20:34 - 2013-12-25 23:09 - 00000000 ____D C:\Users\Armani\AppData\Roaming\uTorrent
2014-01-25 20:34 - 2013-12-22 21:03 - 00000000 ____D C:\Users\Armani\AppData\Roaming\AIMP3
2014-01-25 20:34 - 2013-12-22 19:55 - 00000000 ____D C:\Users\Armani\AppData\Roaming\DAEMON Tools Pro
2014-01-25 20:23 - 2009-07-14 05:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-25 20:23 - 2009-07-14 05:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-25 20:17 - 2013-12-22 17:26 - 00001044 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-25 20:16 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-25 12:58 - 2013-12-27 23:27 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Mumble
2014-01-25 02:07 - 2014-01-25 02:07 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2014-01-25 02:01 - 2014-01-25 01:59 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Notepad++
2014-01-25 01:59 - 2014-01-25 01:59 - 00000726 _____ C:\Users\Gość\Desktop\Notepad++.lnk
2014-01-25 01:59 - 2014-01-25 01:59 - 00000726 _____ C:\Users\Armani\Desktop\Notepad++.lnk
2014-01-25 01:59 - 2014-01-25 01:59 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-01-25 00:15 - 2014-01-25 00:15 - 00715038 _____ C:\Windows\unins000.exe
2014-01-25 00:15 - 2014-01-25 00:15 - 00001998 _____ C:\Windows\unins000.dat
2014-01-25 00:02 - 2014-01-24 23:48 - 00000000 ____D C:\Program Files (x86)\Xfire2
2014-01-25 00:02 - 2014-01-24 22:36 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Xfire
2014-01-25 00:02 - 2014-01-24 22:35 - 00000000 ____D C:\ProgramData\Xfire
2014-01-24 23:58 - 2013-12-22 17:26 - 00110472 _____ C:\Users\Armani\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-24 23:48 - 2014-01-24 23:48 - 00000972 _____ C:\Users\Public\Desktop\Xfire.lnk
2014-01-24 23:39 - 2009-07-14 05:45 - 05035120 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-24 22:49 - 2014-01-24 22:48 - 00000000 ____D C:\Users\Armani\Desktop\Folder 8
2014-01-24 22:08 - 2014-01-24 22:08 - 00000657 _____ C:\Users\Armani\Desktop\Dxtory.lnk
2014-01-24 22:08 - 2014-01-24 22:01 - 00000000 ____D C:\Users\Armani\AppData\Local\Dxtory Software
2014-01-24 21:59 - 2014-01-24 21:57 - 01640128 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-24 21:59 - 2011-02-04 18:55 - 00739694 _____ C:\Windows\system32\perfh015.dat
2014-01-24 21:59 - 2011-02-04 18:55 - 00155268 _____ C:\Windows\system32\perfc015.dat
2014-01-24 21:59 - 2009-07-14 06:13 - 01640128 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-23 15:27 - 2013-12-25 00:18 - 00000000 ____D C:\Users\Armani\.gimp-2.8
2014-01-23 14:25 - 2014-01-23 14:25 - 00035706 _____ C:\Users\Armani\AppData\Local\recently-used.xbel
2014-01-23 11:07 - 2014-01-20 19:16 - 00000000 ____D C:\Users\Gość\AppData\Roaming\GanymedeNet
2014-01-22 18:50 - 2014-01-22 18:50 - 00391064 _____ C:\Users\Gość\Downloads\billiards_install_1_0_2_7 (2).exe
2014-01-22 00:12 - 2013-12-25 00:33 - 00000000 ____D C:\Users\Armani\AppData\Local\gtk-2.0
2014-01-21 10:39 - 2014-01-21 10:39 - 00391064 _____ C:\Users\Gość\Downloads\billiards_install_1_0_2_7 (1).exe
2014-01-20 21:09 - 2014-01-20 21:05 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-20 21:08 - 2014-01-20 21:08 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2014-01-20 21:07 - 2014-01-20 21:07 - 00000000 ____D C:\Windows\PCHEALTH
2014-01-20 21:07 - 2014-01-20 21:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2014-01-20 21:07 - 2010-11-21 08:16 - 00000000 ____D C:\Windows\ShellNew
2014-01-20 21:07 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-20 21:06 - 2014-01-20 21:06 - 00000000 ____D C:\Program Files\Microsoft Office
2014-01-20 21:06 - 2014-01-20 21:06 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2014-01-20 21:06 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2014-01-20 21:06 - 2009-07-14 03:34 - 00000478 _____ C:\Windows\win.ini
2014-01-20 21:05 - 2014-01-20 21:05 - 00000000 ____D C:\Users\Armani\AppData\Local\Microsoft Help
2014-01-20 19:13 - 2014-01-20 19:13 - 00391064 _____ C:\Users\Gość\Downloads\billiards_install_1_0_2_7.exe
2014-01-18 17:23 - 2014-01-18 17:23 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Grupa IMAGE
2014-01-18 17:23 - 2014-01-18 17:23 - 00000000 ____D C:\Program Files (x86)\Grupa IMAGE
2014-01-17 15:25 - 2013-12-25 21:53 - 00000000 ____D C:\ProgramData\Adobe
2014-01-16 19:40 - 2013-12-22 17:27 - 00002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-11 22:12 - 2014-01-11 22:12 - 00000000 ____D C:\Users\Gość\Documents\GTA San Andreas User Files
2014-01-05 22:03 - 2014-01-05 22:03 - 00000000 ____D C:\Program Files (x86)\Mumble
2014-01-05 22:01 - 2013-12-27 23:31 - 00000000 ____D C:\Windows\system32\appmgmt
2013-12-31 17:05 - 2013-12-31 17:05 - 00000000 ____D C:\Users\Gość\AppData\Roaming\Unity
2013-12-31 17:04 - 2013-12-31 17:04 - 01050264 _____ (Unity Technologies ApS) C:\Users\Gość\Downloads\UnityWebPlayer.exe
2013-12-31 17:04 - 2013-12-31 17:04 - 00000000 ____D C:\Users\Gość\AppData\Local\Unity
2013-12-31 14:25 - 2013-12-31 14:25 - 00000000 ____D C:\Users\Gość\AppData\Local\Google
2013-12-31 14:23 - 2013-12-31 14:23 - 00001451 _____ C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-31 14:23 - 2013-12-31 14:23 - 00001417 _____ C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2013-12-31 14:23 - 2013-12-31 14:23 - 00000020 ___SH C:\Users\Gość\ntuser.ini
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Ustawienia lokalne
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Szablony
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Moje dokumenty
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Menu Start
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Documents\Moje wideo
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Documents\Moje obrazy
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Documents\Moja muzyka
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\Dane aplikacji
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\AppData\Local\Historia
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 _SHDL C:\Users\Gość\AppData\Local\Dane aplikacji
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 ___RD C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 ___RD C:\Users\Gość\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 ____D C:\Users\Gość\AppData\Roaming\DAEMON Tools Pro
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 ____D C:\Users\Gość\AppData\Local\VirtualStore
2013-12-31 14:23 - 2013-12-31 14:23 - 00000000 ____D C:\Users\Gość
2013-12-27 16:07 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-26 20:28 - 2013-12-26 20:28 - 00000132 _____ C:\Users\Armani\AppData\Roaming\Preferencje formatu BMP CS6 firmy Adobe
2013-12-26 18:47 - 2013-12-26 18:47 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-12-26 14:21 - 2013-12-26 14:15 - 00000000 ____D C:\Users\Armani\AppData\Roaming\TeamViewer
2013-12-26 14:12 - 2013-12-26 14:12 - 00000794 _____ C:\Users\Public\Desktop\TeamViewer 9.lnk
2013-12-26 13:53 - 2013-12-26 13:53 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Apple Computer
2013-12-26 13:53 - 2013-12-26 13:53 - 00000000 ____D C:\Users\Armani\AppData\Local\Apple Computer
2013-12-26 13:47 - 2013-12-26 13:47 - 00000000 ____D C:\Users\Armani\AppData\Local\Apple
2013-12-26 13:47 - 2013-12-26 13:47 - 00000000 ____D C:\ProgramData\Apple Computer
2013-12-26 13:47 - 2013-12-26 13:47 - 00000000 ____D C:\ProgramData\Apple
2013-12-26 13:47 - 2013-12-26 13:47 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-12-26 12:57 - 2013-12-26 12:57 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-26 12:57 - 2013-12-25 22:00 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-26 12:57 - 2013-12-25 21:52 - 00000000 ____D C:\Users\Armani\AppData\Local\Adobe
2013-12-26 12:57 - 2013-12-22 16:30 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Adobe
2013-12-26 11:48 - 2013-12-26 11:48 - 00000607 _____ C:\Users\Armani\Desktop\HD Tune.lnk
2013-12-26 10:42 - 2013-12-26 10:42 - 00000000 ____D C:\Users\Armani\Desktop\Grafika
2013-12-26 10:00 - 2013-12-26 10:00 - 00000000 ____D C:\Users\Armani\AppData\Roaming\Publish Providers
2013-12-26 10:00 - 2013-12-26 09:56 - 00000000 ____D C:\Users\Armani\AppData\Local\Sony
2013-12-26 09:56 - 2013-12-26 09:56 - 00000783 _____ C:\Users\Public\Desktop\Vegas Pro 12.0 (64-bit).lnk
2013-12-26 09:56 - 2013-12-26 09:56 - 00000000 ____D C:\ProgramData\Sony
2013-12-26 09:56 - 2013-12-26 09:56 - 00000000 ____D C:\Program Files (x86)\Sony

Some content of TEMP:
====================
C:\Users\Armani\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-12 16:35

==================== End Of Log ============================