Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-09-2014 Ran by Piotr (administrator) on PIOTR-KOMPUTER on 01-10-2014 14:46:05 Running from C:\Users\Piotr\Desktop\programy i logi Loaded Profile: Piotr (Available profiles: Piotr) Platform: Windows 7 Home Premium (X64) OS Language: Polski (Polska) Internet Explorer Version 8 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe () C:\Windows\SysWOW64\PnkBstrA.exe () C:\Windows\SysWOW64\PnkBstrB.exe (DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgrsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] () HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5188112 2014-08-25] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun HKU\S-1-5-21-1959858145-1054192195-1966703569-1001\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-1959858145-1054192195-1966703569-1001\...\MountPoints2: {828a561c-2861-11e4-ad5f-5442492a2cd2} - H:\Startme.exe HKU\S-1-5-21-1959858145-1054192195-1966703569-1001\...\MountPoints2: {bc54d871-08c2-11e4-b44b-5442492a2cd2} - F:\NokiaPCIA_Autorun.exe ShellIconOverlayIdentifiers: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\system32\EhStorShell.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\Windows\system32\ntshrui.dll (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\SysWOW64\EhStorShell.dll (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\Windows\SysWOW64\ntshrui.dll (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 62.179.1.61 62.179.1.63 FireFox: ======== FF ProfilePath: C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\7eqzjksm.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll () FF Plugin: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll () FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Piotr\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF Extension: Adblock Plus - C:\Users\Piotr\AppData\Roaming\Mozilla\Firefox\Profiles\7eqzjksm.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-06-19] Chrome: ======= ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-04-29] (Advanced Micro Devices, Inc.) [File not signed] R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3242000 2014-08-25] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-08-25] (AVG Technologies CZ, s.r.o.) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-06-26] () R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [189248 2014-06-26] () R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [728328 2014-03-31] (DEVGURU Co., LTD.) S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [833728 2014-09-23] (Valve Corporation) [File not signed] S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [758224 2013-11-06] (Tunngle.net GmbH) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices) R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [244504 2014-07-21] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.) R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [235800 2014-06-17] (AVG Technologies CZ, s.r.o.) R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.) R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-08-06] (AVG Technologies CZ, s.r.o.) R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.) R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [269080 2014-06-17] (AVG Technologies CZ, s.r.o.) S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [206080 2014-03-31] (DEVGURU Co., LTD.(www.devguru.co.kr)) S3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net) S3 WinRing0_1_2_0; C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [14544 2010-11-01] (OpenLibSys.org) R4 sptd; \SystemRoot\System32\Drivers\sptd.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-10-01 14:45 - 2014-10-01 14:46 - 00000000 ____D () C:\FRST 2014-10-01 14:43 - 2014-10-01 14:46 - 00000000 ____D () C:\Users\Piotr\Desktop\programy i logi 2014-10-01 14:15 - 2014-10-01 14:16 - 05582345 _____ (Swearware) C:\Users\Piotr\Desktop\ComboFix.exe 2014-09-30 18:30 - 2014-09-30 18:30 - 00002094 _____ () C:\Users\Public\Desktop\Sleeping Dogs.lnk 2014-09-30 18:30 - 2014-09-30 18:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Square Enix 2014-09-30 18:00 - 2014-09-30 18:00 - 00000000 ____D () C:\Program Files (x86)\Square Enix 2014-09-29 17:22 - 2014-09-29 17:24 - 00000000 ____D () C:\Users\Piotr\Downloads\Sleeping.Dogs-SKIDROW 2014-09-29 17:20 - 2014-09-29 17:20 - 00047751 _____ () C:\Users\Piotr\Downloads\[kickass.to]sleeping.dogs.skidrow.torrent 2014-09-29 17:10 - 2014-09-29 17:16 - 00000000 ____D () C:\Users\Piotr\Downloads\FIFA 15-ULTIMATE TEAM EDITION-SC 2014-09-28 09:21 - 2014-09-28 09:21 - 00001369 _____ () C:\Users\Piotr\Desktop\The Vanishing of Ethan Carter.lnk 2014-09-28 09:21 - 2014-09-28 09:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab 2014-09-28 09:09 - 2014-09-28 09:21 - 00000000 ____D () C:\Program Files (x86)\The Vanishing of Ethan Carter 2014-09-27 19:36 - 2014-09-27 19:36 - 00026028 _____ () C:\Users\Piotr\Downloads\[kickass.to]the.vanishing.of.ethan.carter.black.box.torrent 2014-09-26 21:52 - 2014-09-26 21:52 - 00014059 _____ () C:\Users\Piotr\Downloads\[kickass.to]the.vanishing.of.ethan.carter.eng.ger.repack.xatab.by.punisher.torrent 2014-09-25 12:50 - 2014-09-25 12:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2014-09-24 16:38 - 2014-09-24 16:42 - 294543980 _____ () C:\Users\Piotr\Downloads\The_Long_Dark_v1.19.zip 2014-09-24 16:38 - 2014-09-24 16:38 - 00011948 _____ () C:\Users\Piotr\Downloads\[kickass.to]the.long.dark.v1.19.windows.viruz.torrent 2014-09-24 15:32 - 2014-09-24 15:32 - 00014751 _____ () C:\Users\Piotr\Downloads\[www.tnt24.info] Saga Zmierzch Księżyc w Nowiu - The Twilight Saga New Moon _2009_ [DVDRip.XviD] [Lektor PL].torrent 2014-09-23 18:47 - 2014-09-24 16:44 - 00000000 ____D () C:\Users\Piotr\Desktop\The Long Dark 2014-09-23 18:41 - 2014-09-23 18:46 - 253655859 _____ () C:\Users\Piotr\Downloads\The_Long_Dark_v1.07.zip 2014-09-23 18:40 - 2014-09-23 18:41 - 00020068 _____ () C:\Users\Piotr\Downloads\[kickass.to]the.long.dark.v1.07.windows.viruz.torrent 2014-09-20 18:16 - 2014-09-20 18:17 - 08646824 _____ (CyberGhost S.R.L. ) C:\Users\Piotr\Downloads\CG_5.0.13.17.exe 2014-09-20 14:58 - 2014-09-20 14:58 - 00001290 _____ () C:\Users\Piotr\Desktop\Car Mechanic Simulator 2014.lnk 2014-09-20 14:58 - 2014-09-20 14:58 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\Car Mechanic Simulator 2014 2014-09-20 11:59 - 2014-09-20 11:59 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1 2014-09-18 18:58 - 2014-09-18 18:58 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\FastStone 2014-09-18 18:56 - 2014-09-18 18:56 - 00001109 _____ () C:\Users\Public\Desktop\FastStone Image Viewer.lnk 2014-09-18 18:56 - 2014-09-18 18:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer 2014-09-18 18:56 - 2014-09-18 18:56 - 00000000 ____D () C:\Program Files (x86)\FastStone Image Viewer 2014-09-18 18:52 - 2014-09-18 18:53 - 05621527 _____ () C:\Users\Piotr\Downloads\FSViewerSetup51.exe 2014-09-18 18:44 - 2014-09-18 18:44 - 00001241 _____ () C:\Users\Piotr\Desktop\AVS Image Converter.lnk 2014-09-18 18:44 - 2014-09-18 18:44 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU 2014-09-18 18:44 - 2014-09-18 18:44 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\AVS4YOU 2014-09-18 18:44 - 2014-09-18 18:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU 2014-09-18 18:44 - 2014-09-18 18:44 - 00000000 ____D () C:\ProgramData\AVS4YOU 2014-09-18 18:44 - 2014-09-18 18:44 - 00000000 ____D () C:\Program Files (x86)\AVS4YOU 2014-09-18 18:44 - 2012-10-29 11:51 - 01700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll 2014-09-18 18:44 - 2012-10-29 11:51 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll 2014-09-18 18:39 - 2014-09-18 18:43 - 22652744 _____ (Online Media Technologies Ltd. ) C:\Users\Piotr\Downloads\AVSImageConverter.exe 2014-09-16 18:36 - 2014-09-16 18:37 - 80206308 _____ () C:\Users\Piotr\Desktop\play station.psb 2014-09-16 18:27 - 2014-09-16 18:27 - 25348744 _____ () C:\Users\Piotr\Documents\Bez nazwy-2.psd 2014-09-16 17:50 - 2014-09-16 17:50 - 00003514 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-Piotr-Komputer-Piotr 2014-09-16 17:47 - 2014-09-16 17:47 - 00001075 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6 (64 Bit).lnk 2014-09-16 17:47 - 2014-09-16 17:47 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe 2014-09-16 17:46 - 2014-09-16 17:46 - 00001211 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS6.lnk 2014-09-16 17:45 - 2014-09-16 17:46 - 00000000 ____D () C:\Program Files\Adobe 2014-09-16 17:45 - 2014-09-16 17:45 - 00001037 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6 (64bit).lnk 2014-09-16 17:44 - 2014-09-16 17:44 - 00001173 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS6.lnk 2014-09-16 17:42 - 2014-09-16 17:42 - 00001523 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk 2014-09-16 17:42 - 2014-09-16 17:42 - 00001357 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS6.lnk 2014-09-16 17:38 - 2014-09-16 17:46 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2014-09-16 16:42 - 2014-09-16 16:42 - 00002266 _____ () C:\Users\Piotr\AppData\Local\recently-used.xbel 2014-09-16 16:39 - 2014-09-16 16:39 - 00000000 ____D () C:\Users\Piotr\AppData\Local\gtk-2.0 2014-09-16 16:39 - 2014-09-16 16:39 - 00000000 ____D () C:\Users\Piotr\.thumbnails 2014-09-16 16:15 - 2014-09-16 16:47 - 00000000 ____D () C:\Users\Piotr\.gimp-2.8 2014-09-16 16:15 - 2014-09-16 16:15 - 00000000 ____D () C:\Users\Piotr\AppData\Local\gegl-0.2 2014-09-16 16:14 - 2014-09-16 16:14 - 00000892 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk 2014-09-16 16:13 - 2014-09-16 16:14 - 00000000 ____D () C:\Program Files\GIMP 2 2014-09-15 21:21 - 2014-09-15 21:21 - 00000000 ____D () C:\Users\Piotr\AppData\Local\GIANTS Editor 5.0.1 2014-09-15 21:21 - 2014-09-15 21:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIANTS Software 2014-09-15 21:21 - 2014-09-15 21:21 - 00000000 ____D () C:\Program Files (x86)\GIANTS Software 2014-09-15 20:14 - 2014-09-15 20:21 - 68498513 _____ () C:\Users\Piotr\Downloads\aForestMod.zip 2014-09-15 18:03 - 2014-09-15 18:08 - 140963200 _____ (GIANTS Software ) C:\Users\Piotr\Downloads\FarmingSimulator2013Patch2.1PLb.exe 2014-09-14 11:36 - 2014-09-14 11:36 - 00000000 ____D () C:\Users\Piotr\Documents\Telltale Games 2014-09-14 11:34 - 2014-09-14 11:34 - 00001356 _____ () C:\Users\Piotr\Desktop\The Walking Dead - Season 2.lnk 2014-09-14 11:34 - 2014-09-14 11:34 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\The Walking Dead - Season 2 2014-09-13 17:51 - 2014-09-13 18:35 - 00000000 ____D () C:\Users\Piotr\Downloads\[R.G. Mechanics] The Walking Dead - Season 2 2014-09-12 17:37 - 2012-11-19 18:47 - 00000000 ____D () C:\Users\Piotr\Desktop\Fs2013-CRACK 2014-09-10 17:20 - 2014-09-12 17:28 - 516890287 _____ () C:\Users\Piotr\Downloads\FarmingSimulator2013INT_ESD.rar 2014-09-10 15:44 - 2014-09-10 15:44 - 00004668 _____ () C:\Users\Piotr\Desktop\29.rar 2014-09-10 15:35 - 2014-09-10 15:35 - 01710234 _____ () C:\Users\Piotr\Downloads\Szablony Aukcji.rar 2014-09-10 15:32 - 2014-09-10 15:32 - 00000000 ____D () C:\Users\Piotr\Desktop\Zestaw ktory pomoże wam w zrobieniu własnej EXTRA aukcji 2014-09-10 15:31 - 2014-09-10 15:31 - 00000000 ____D () C:\Users\Piotr\Desktop\szablony allegro 2014-09-10 15:21 - 2014-09-10 15:21 - 00165873 _____ () C:\Users\Piotr\Downloads\16.rar 2014-09-10 15:17 - 2014-09-10 15:17 - 00001758 _____ () C:\Users\Piotr\Downloads\28.rar 2014-09-10 14:36 - 2014-09-10 14:36 - 03284780 _____ () C:\Users\Piotr\Documents\RecordMorphOutput.wav 2014-09-10 14:31 - 2014-09-10 14:32 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\Screaming Bee 2014-09-10 14:31 - 2014-09-10 14:32 - 00000000 ____D () C:\ProgramData\Screaming Bee 2014-09-10 14:28 - 2014-09-10 14:29 - 05156712 _____ () C:\Users\Piotr\Downloads\MorphVOXPro4_Install-1.exe 2014-09-09 20:56 - 2014-09-09 20:56 - 00001798 _____ () C:\Users\Piotr\Desktop\Surgeon Simulator 2013 Steam Edition Game Two.lnk 2014-09-09 20:56 - 2014-09-09 20:56 - 00001759 _____ () C:\Users\Piotr\Desktop\Cat-A-Cat GAMES.lnk 2014-09-09 20:56 - 2014-09-09 20:56 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Surgeon Simulator 2013 Steam Edition 1.0 2014-09-09 20:23 - 2014-09-09 20:26 - 00000000 ____D () C:\Users\Piotr\AppData\Local\Microsoft Games 2014-09-09 20:17 - 2014-09-09 20:53 - 403326231 _____ (Cat-A-Cat ) C:\Users\Piotr\Downloads\Surgeon_Simulator_2013_Steam_Edition_ENG.exe 2014-09-09 18:01 - 2014-09-09 18:01 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\Landwirt2014 2014-09-09 17:58 - 2014-09-09 17:58 - 00002263 _____ () C:\Users\Public\Desktop\Professional Farmer 2014.lnk 2014-09-09 17:58 - 2014-09-09 17:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UIG Entertainment 2014-09-09 17:54 - 2014-09-09 17:54 - 00000000 ____D () C:\Program Files (x86)\UIG Entertainment 2014-09-09 17:41 - 2014-09-09 17:41 - 00661504 _____ () C:\Users\Piotr\Desktop\KreatorAukcji.exe 2014-09-09 14:51 - 2014-09-09 17:52 - 1307617280 _____ () C:\Users\Piotr\Downloads\t-p f20 14.iso 2014-09-07 20:10 - 2014-09-07 20:10 - 00019017 _____ () C:\Users\Piotr\Downloads\[www.tnt24.info] Symulator Oddzialu Chirurgicznego 2011 [PL].torrent 2014-09-06 12:13 - 2014-09-06 12:13 - 00466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll 2014-09-06 12:13 - 2014-09-06 12:13 - 00444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll 2014-09-06 12:13 - 2014-09-06 12:13 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll 2014-09-06 12:13 - 2014-09-06 12:13 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll 2014-09-06 12:13 - 2014-09-06 12:13 - 00000000 ____D () C:\Program Files (x86)\OpenAL 2014-09-06 12:12 - 2014-09-06 12:12 - 00001196 _____ () C:\Users\Piotr\Desktop\Symulator Jazdy 2.lnk 2014-09-06 12:12 - 2014-09-06 12:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symulator Jazdy 2 2014-09-06 12:11 - 2014-09-06 12:11 - 00000000 ____D () C:\Program Files (x86)\Symulator Jazdy 2 2014-09-06 11:58 - 2014-09-06 11:58 - 00012272 _____ () C:\Users\Piotr\Downloads\[www.tnt24.info] Symulator Jazdy 2 (2010) [PL] [.iso].torrent 2014-09-06 10:38 - 2014-09-06 10:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_WinUsb_01009.Wdf 2014-09-05 21:40 - 2014-09-05 21:40 - 00273896 _____ () C:\Windows\Minidump\090514-44819-01.dmp 2014-09-01 12:56 - 2014-09-01 12:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2014-09-01 12:56 - 2014-09-01 12:56 - 00000000 ____D () C:\Program Files\Microsoft Silverlight 2014-09-01 12:56 - 2014-09-01 12:56 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight 2014-09-01 12:55 - 2014-09-01 12:55 - 13087456 _____ (Microsoft Corporation) C:\Users\Piotr\Downloads\Silverlight_x64.exe ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-10-01 14:13 - 2014-08-03 10:23 - 00000000 ____D () C:\Users\Piotr\AppData\Local\Adobe 2014-10-01 14:11 - 2009-07-14 06:45 - 00014592 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-10-01 14:11 - 2009-07-14 06:45 - 00014592 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-10-01 14:08 - 2014-06-02 13:30 - 00000000 ____D () C:\ProgramData\MFAData 2014-10-01 14:05 - 2014-06-17 14:02 - 00000410 _____ () C:\Windows\Tasks\SlimDrivers Startup.job 2014-10-01 14:04 - 2014-06-17 14:02 - 00002836 _____ () C:\Windows\System32\Tasks\SlimDrivers Startup 2014-10-01 14:03 - 2014-06-02 13:17 - 00067388 _____ () C:\Windows\PFRO.log 2014-10-01 14:03 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-10-01 14:03 - 2009-07-14 06:51 - 00048676 _____ () C:\Windows\setupact.log 2014-09-30 21:13 - 2014-06-01 14:35 - 00000000 ____D () C:\ProgramData\Origin 2014-09-30 20:34 - 2014-06-01 14:39 - 00000000 ____D () C:\Program Files (x86)\Origin Games 2014-09-30 20:26 - 2014-06-01 14:38 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\Origin 2014-09-30 20:21 - 2014-06-01 14:34 - 00000000 ____D () C:\Program Files (x86)\Origin 2014-09-30 18:43 - 2014-06-03 19:40 - 00000000 ____D () C:\Users\Piotr\AppData\Local\SKIDROW 2014-09-30 18:37 - 2014-06-02 13:32 - 00000000 ____D () C:\ProgramData\AVG2014 2014-09-30 17:26 - 2014-06-03 18:25 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\uTorrent 2014-09-29 19:31 - 2014-08-26 15:10 - 00000000 ____D () C:\Users\Piotr\AppData\Local\CrashDumps 2014-09-29 18:23 - 2014-06-02 17:05 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\Adobe 2014-09-28 16:17 - 2014-06-01 14:15 - 00000000 ____D () C:\Users\Piotr 2014-09-28 11:02 - 2014-06-04 19:47 - 00000000 ____D () C:\Program Files (x86)\Steam 2014-09-28 09:24 - 2014-06-17 14:39 - 00000000 ____D () C:\Users\Piotr\Documents\My Games 2014-09-28 09:22 - 2014-06-14 15:18 - 00000000 ___HD () C:\Windows\msdownld.tmp 2014-09-28 09:21 - 2014-06-02 19:26 - 00000000 ____D () C:\Windows\SysWOW64\directx 2014-09-28 09:05 - 2014-06-30 18:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics 2014-09-28 09:05 - 2014-06-30 18:36 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics 2014-09-28 09:04 - 2014-06-09 23:39 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2014-09-28 09:04 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2014-09-28 09:03 - 2014-08-17 16:31 - 00000000 ____D () C:\Users\Piotr\Documents\Electronic Arts 2014-09-25 18:17 - 2014-06-19 21:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2014-09-24 15:42 - 2009-07-14 19:55 - 00717708 _____ () C:\Windows\system32\perfh015.dat 2014-09-24 15:42 - 2009-07-14 19:55 - 00146526 _____ () C:\Windows\system32\perfc015.dat 2014-09-24 15:42 - 2009-07-14 07:13 - 01607264 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-09-17 13:54 - 2014-06-23 13:59 - 00000000 ____D () C:\ProgramData\Adobe 2014-09-17 12:55 - 2009-07-14 06:45 - 04893776 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-09-16 17:48 - 2014-06-01 14:31 - 00057944 _____ () C:\Users\Piotr\AppData\Local\GDIPFONTCACHEV1.DAT 2014-09-16 17:45 - 2014-06-23 13:59 - 00000000 ____D () C:\Program Files (x86)\Adobe 2014-09-14 10:25 - 2014-06-14 15:19 - 00000000 ____D () C:\ProgramData\Package Cache 2014-09-14 10:25 - 2014-06-01 14:09 - 02015275 _____ () C:\Windows\WindowsUpdate.log 2014-09-14 10:24 - 2014-08-10 20:15 - 00000000 ____D () C:\Users\Piotr\Documents\4A Games 2014-09-14 10:23 - 2014-06-29 15:01 - 00000000 ____D () C:\2-click run 2014-09-14 10:22 - 2014-08-12 13:32 - 00000000 ____D () C:\Program Files (x86)\Cenega 2014-09-09 20:55 - 2014-06-06 21:46 - 00000000 ____D () C:\Games 2014-09-09 20:31 - 2014-08-10 11:01 - 00000000 ____D () C:\Users\Piotr\Desktop\Muzyka 2014-09-07 12:49 - 2014-07-21 19:18 - 00000000 ____D () C:\Users\Piotr\AppData\Roaming\GarenaPlus 2014-09-07 12:49 - 2014-07-21 19:17 - 00000000 ____D () C:\ProgramData\GarenaMessenger 2014-09-05 21:40 - 2014-06-05 20:52 - 00000000 ____D () C:\Windows\Minidump 2014-09-04 15:13 - 2014-06-02 13:33 - 00000995 _____ () C:\Users\Public\Desktop\AVG 2014.lnk 2014-09-04 15:13 - 2014-06-02 13:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Some content of TEMP: ==================== C:\Users\Piotr\AppData\Local\Temp\13-9-legacy_vista_win7_64_dd_ccc_whql.exe C:\Users\Piotr\AppData\Local\Temp\AutoRun.exe C:\Users\Piotr\AppData\Local\Temp\AutoRunGUI.dll C:\Users\Piotr\AppData\Local\Temp\bitool.dll C:\Users\Piotr\AppData\Local\Temp\eauninstall.exe C:\Users\Piotr\AppData\Local\Temp\First15.exe C:\Users\Piotr\AppData\Local\Temp\GLF85F.EXE C:\Users\Piotr\AppData\Local\Temp\GLFFF69.EXE C:\Users\Piotr\AppData\Local\Temp\swt-win32-3349.dll C:\Users\Piotr\AppData\Local\Temp\The Sims 2_uninst.exe C:\Users\Piotr\AppData\Local\Temp\VP6Install.exe C:\Users\Piotr\AppData\Local\Temp\VP6VFW.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-09-26 14:37 ==================== End Of Log ============================