Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-03-2015 01 Ran by Kamil (administrator) on KAMIL-KOMPUTER on 07-03-2015 22:27:27 Running from D:\Chrome Download Loaded Profiles: Kamil (Available profiles: Kamil) Platform: Windows 7 Ultimate (X64) OS Language: Polski (Polska) Internet Explorer Version 8 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Innova Co S.a r.l.) C:\Program Files (x86)\4game\4game-service.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe (Corsair) C:\Program Files (x86)\Corsair SSD Toolbox\CSSDTService.exe () C:\Program Files (x86)\SpeedyDrive\mounter.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Steganos Software GmbH) C:\Program Files (x86)\OkayFreedom\OkayFreedomService.exe () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe () C:\Windows\System32\PnkBstrA.exe (Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRService.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Software Updater\SSUService.exe (StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe () C:\Program Files (x86)\Anti DDoS Guardian 3.0\StopBruteForceService.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TomTom) E:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe (VMware, Inc.) C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRServer.exe (Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (VMware, Inc.) C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\cfosspeed.exe (VMware, Inc.) C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe (Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Spotify Ltd) C:\Users\Kamil\AppData\Roaming\Spotify\spotify.exe (Steganos Software GmbH) C:\Program Files (x86)\OkayFreedom\OkayFreedomClient.exe (Spotify Ltd) C:\Users\Kamil\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Overwolf LTD) C:\Program Files (x86)\Overwolf\Overwolf.exe (CyberGhost S.R.L) C:\Program Files\CyberGhost 5\Service.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (FNet Co., Ltd.) C:\Program Files (x86)\XFastUsb\XFastUsb.exe (NVIDIA Corporation) C:\Users\Kamil\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Splashtop Inc.) C:\Program Files (x86)\Splashtop\Splashtop Remote\Server\SRFeature.exe (Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe () C:\Users\Kamil\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Kamil\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Kamil\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Kamil\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Overwolf LTD) C:\Program Files (x86)\Overwolf\0.83.62.0\OverwolfBrowser.exe (Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.83.62.0\OverwolfHelper.exe (Overwolf LTD) C:\Program Files (x86)\Common Files\Overwolf\0.83.62.0\OverwolfHelper64.exe (Overwolf LTD) C:\Program Files (x86)\Overwolf\0.83.62.0\Purplizer\Purplizer.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11860072 2011-06-09] (Realtek Semiconductor) HKLM\...\Run: [XFast LAN] => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe [1441152 2011-07-04] (cFos Software GmbH) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-03-15] (Adobe Systems Incorporated) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2531472 2014-12-13] (NVIDIA Corporation) HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595336 2014-10-01] (ESET) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM-x32\...\Run: [XFastUsb] => C:\Program Files (x86)\XFastUsb\XFastUsb.exe [4942336 2013-01-13] (FNet Co., Ltd.) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-641998691-1714207209-795494551-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [2874048 2015-02-19] (Valve Corporation) HKU\S-1-5-21-641998691-1714207209-795494551-1000\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3631448 2015-02-28] (Electronic Arts) HKU\S-1-5-21-641998691-1714207209-795494551-1000\...\Run: [GoogleChromeAutoLaunch_46BF133ACA8BEB7ACDB8F921980892DB] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [843592 2015-02-17] (Google Inc.) HKU\S-1-5-21-641998691-1714207209-795494551-1000\...\Run: [Spotify] => C:\Users\Kamil\AppData\Roaming\Spotify\Spotify.exe [6737976 2015-01-14] (Spotify Ltd) HKU\S-1-5-21-641998691-1714207209-795494551-1000\...\Run: [OKAYFREEDOM_Agent] => C:\Program Files (x86)\OkayFreedom\OkayFreedomClient.exe [6553000 2015-02-18] (Steganos Software GmbH) HKU\S-1-5-21-641998691-1714207209-795494551-1000\...\Run: [Spotify Web Helper] => C:\Users\Kamil\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2015-01-14] (Spotify Ltd) HKU\S-1-5-21-641998691-1714207209-795494551-1000\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\Overwolf.exe [40688 2015-02-25] (Overwolf LTD) HKU\S-1-5-21-641998691-1714207209-795494551-1000\...\Policies\system: [EnableLUA] 0 AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [177624 2015-02-05] (NVIDIA Corporation) AppInit_DLLs: C:\PROGRA~1\LUCIDL~1\VIRTU\appinit_dll.dll => C:\Program Files\Lucidlogix Technologies\VIRTU\appinit_dll.dll [187488 2011-06-19] (Lucidlogix Inc.) AppInit_DLLs-x32: c:\Windows\SysWOW64\nvinit.dll => c:\Windows\SysWOW64\nvinit.dll [164752 2015-02-05] (NVIDIA Corporation) AppInit_DLLs-x32: c:\PROGRA~1\LUCIDL~1\VIRTU\x86\appinit_dll.dll => c:\Program Files\Lucidlogix Technologies\VIRTU\x86\appinit_dll.dll [157792 2011-06-19] (Lucidlogix Inc.) SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll (EldoS Corporation) SSODL-x32: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll (EldoS Corporation) ShellIconOverlayIdentifiers: [EldosIconOverlay] -> {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC} => C:\Windows\system32\CbFsMntNtf3.dll (EldoS Corporation) ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ShellIconOverlayIdentifiers-x32: [EldosIconOverlay] -> {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC} => C:\Windows\SysWOW64\CbFsMntNtf3.dll (EldoS Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-641998691-1714207209-795494551-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-641998691-1714207209-795494551-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-641998691-1714207209-795494551-1000\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com?cid={65BF88AC-B73B-4142-8A6F-8C87689E5C41}&mid=0f0753dc35634476845e301be403545e-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=pl&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-11-13 00:59:55&v=4.0.6.10&pid=wtu&sg=&sap=hp SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-02-28] (Google Inc.) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation) BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.10.11023.1534\swg64.dll [2015-02-28] (Google Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-27] (Oracle Corporation) BHO-x32: Microsoft Web Test Recorder 10.0 Helper -> {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} -> E:\Program Files\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2012-07-26] (Microsoft Corporation) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-02-28] (Google Inc.) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation) BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.10.11023.1534\swg.dll [2015-02-28] (Google Inc.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-27] (Oracle Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-02-28] (Google Inc.) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-02-28] (Google Inc.) Toolbar: HKU\S-1-5-21-641998691-1714207209-795494551-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-02-28] (Google Inc.) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\757bmmrl.default-1421710130668 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-05] () FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB) FF Plugin: @java.com/DTPlugin,version=10.10.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-01] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @4game.com/plugin -> C:\Program Files (x86)\4game\npplugin4game.dll [2013-03-15] (Innova Co S.a r.l.) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-05] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB) FF Plugin-x32: @esn/npbattlelog,version=2.3.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll [2013-11-21] (EA Digital Illusions CE AB) FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB) FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2013-07-22] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-27] (Oracle Corporation) FF Plugin-x32: @mcafee.com/McAfeeMssPlugin -> C:\Program Files\McAfee Security Scan\3.8.141\npMcAfeeMss.dll [2014-01-16] (McAfee, Inc.) FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll [2012-04-11] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-05] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-05] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-641998691-1714207209-795494551-1000: @onlive.com/OnLiveGameClientDetector,version=1.0.0 -> C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll [2014-12-17] (OnLive) FF Extension: OkayFreedom - C:\Users\Kamil\AppData\Roaming\Mozilla\Firefox\Profiles\757bmmrl.default-1421710130668\Extensions\{DB981CCA-088E-4731-A4A2-2FE218703C0E}.xpi [2015-02-21] FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-03-05] FF HKU\S-1-5-21-641998691-1714207209-795494551-1000\...\Firefox\Extensions: [support@mozilla.com] - C:\Users\Kamil\AppData\Roaming\support@mozilla.com FF Extension: Firefox Extension Manager - C:\Users\Kamil\AppData\Roaming\support@mozilla.com [2012-12-22] FF HKU\S-1-5-21-641998691-1714207209-795494551-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com CHR StartupUrls: Default -> "hxxp://www.google.com", "hxxp://metromsn.pl?pc=UP21&ocid=UP21DHP&dt=022013", "hxxp://mysearch.avg.com/?cid={D5C85F26-466A-4507-9B6C-1C6EB9C17361}&mid=0f0753dc35634476845e301be403545e-ad1491be2ce6c122f6b66faa90e70c2decf7d34c&lang=en&ds=ad011&pr=sa&d=2013-07-30 22:04:38&v=15.4.0.5&pid=safeguard&sg=0&sap=hp" CHR DefaultSuggestURL: Default -> https://toolbar.avg.com/acp?q={searchTerms}&o=1 CHR Profile: C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Drive) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-12-22] CHR Extension: (OkayFreedom) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\bckipplcmnfhblnpibpbehenelnkpecd [2015-02-21] CHR Extension: (YouTube) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-12-22] CHR Extension: (Google Search) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-12-22] CHR Extension: (AdBlock) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2012-12-22] CHR Extension: (Planner 5D) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjfkgdpkecnmfcgfpfibpcnkeakahllc [2013-06-08] CHR Extension: (Download Link Checker) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmbafpbabjejfhopjnmjanilieamiic [2014-11-04] CHR Extension: (IDM Integration) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm [2012-12-22] CHR Extension: (NoPremium.pl) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfjkakeeljjehllbdjjamgabdjpmdogc [2013-12-16] CHR Extension: (Skype Click to Call) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-10-30] CHR Extension: (Quick Note) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\mijlebbfndhelmdpmllgcfadlkankhok [2013-01-16] CHR Extension: (Google Wallet) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22] CHR Extension: (NoPremium.pl) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\odoifhkonjdigafpmeljolamnmijeamb [2012-12-23] CHR Extension: (Gmail) - C:\Users\Kamil\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-12-22] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 4game-service; C:\Program Files (x86)\4game\4game-service.exe [1107456 2013-03-15] (Innova Co S.a r.l.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.) S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team) S2 BeeThinkBlockerService; C:\Program Files (x86)\Anti DDoS Guardian 3.0\BlockerService.exe [98304 2013-06-09] () [File not signed] S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [395416 2012-07-23] (BlueStack Systems, Inc.) [File not signed] R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [383128 2012-07-23] (BlueStack Systems, Inc.) [File not signed] R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation) R2 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-07-04] (cFos Software GmbH) R2 CGVPNCliService; C:\Program Files\CyberGhost 5\Service.exe [64616 2014-11-03] (CyberGhost S.R.L) R2 CorsairSSDToolBox; C:\Program Files (x86)\Corsair SSD Toolbox\CSSDTService.exe [1864808 2014-08-12] (Corsair) R2 DokanMounter; C:\Program Files (x86)\SpeedyDrive\mounter.exe [14848 2012-02-11] () [File not signed] R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2014-10-01] (ESET) S3 fussvc; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [139776 2012-07-25] (Microsoft Corporation) [File not signed] R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2014-12-13] (NVIDIA Corporation) S3 GSService; C:\Windows\SysWOW64\GSService.exe [505056 2013-09-09] () R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-09-03] (Nero AG) S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2012-12-22] () [File not signed] S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1701520 2014-12-13] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19823248 2014-12-13] (NVIDIA Corporation) R2 OkayFreedom VPN Starter Service; C:\Program Files (x86)\OkayFreedom\OkayFreedomService.exe [326072 2015-02-18] (Steganos Software GmbH) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1910640 2015-02-28] (Electronic Arts) S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [998640 2015-02-25] (Overwolf LTD) R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed] R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2015-02-12] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-12-03] () R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed] R2 StopBruteForceService; C:\Program Files (x86)\Anti DDoS Guardian 3.0\StopBruteForceService.exe [69632 2013-05-21] () [File not signed] S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [126976 2012-07-25] (Microsoft Corporation) [File not signed] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5405456 2014-11-12] (TeamViewer GmbH) R2 TomTomHOMEService; E:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [93072 2013-08-27] (TomTom) R2 vmware-converter-agent; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe [423536 2011-08-19] (VMware, Inc.) R2 vmware-converter-server; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [423536 2011-08-19] (VMware, Inc.) R2 vmware-converter-worker; C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [423536 2011-08-19] (VMware, Inc.) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation) S2 vToolbarUpdater18.3.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.3.0\ToolbarUpdater.exe [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R3 anvsnddrv; C:\Windows\System32\drivers\anvsnddrv.sys [33872 2011-11-28] (AnvSoft Inc.) S3 bmdrvr; C:\Windows\SysWow64\drivers\bmdrvr.sys [74352 2011-03-15] (VMware, Inc.) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [72856 2012-07-23] (BlueStack Systems) [File not signed] R3 cbfs3; C:\Windows\System32\DRIVERS\cbfs3.sys [352144 2012-04-09] (EldoS Corporation) R2 Dokan; C:\Windows\system32\drivers\dokan.sys [120408 2012-02-11] (Windows (R) Win 7 DDK provider) R3 DrmRAudio; C:\Windows\System32\drivers\DrmRAudio.sys [34528 2013-09-09] (Windows (R) Win 7 DDK provider) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-08-18] (ESET) U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-08-18] (ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-08-18] (ESET) R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [158968 2014-09-18] (ESET) S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [31808 2013-01-23] (FNet Co., Ltd.) R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [15936 2013-01-13] (FNet Co., Ltd.) S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-08] (QUALCOMM Incorporated) R1 NBlocker; C:\Windows\System32\DRIVERS\nblocker.sys [36256 2013-05-28] (BeeThink SoftWare, Inc.) S3 NTIOLib_1_0_4; C:\Program Files (x86)\MSI\Live Update 5\NTIOLib_X64.sys [14136 2010-10-22] (MSI) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2014-12-13] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited) S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13480 2014-06-10] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-12-23] (Duplex Secure Ltd.) S3 VSPerfDrv110; E:\Program Files\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [70264 2012-07-13] (Microsoft Corporation) S3 WsAudio_Device(3); C:\Windows\System32\drivers\VirtualAudio3.sys [31080 2013-01-25] (Wondershare) S3 WsAudio_Device(4); C:\Windows\System32\drivers\VirtualAudio4.sys [31080 2013-01-25] (Wondershare) S3 WsAudio_Device(5); C:\Windows\System32\drivers\VirtualAudio5.sys [31080 2013-01-25] (Wondershare) U3 aajgonw4; C:\Windows\System32\Drivers\aajgonw4.sys [0 ] (Advanced Micro Devices) <==== ATTENTION (zero size file/folder) S3 AxtuDrv; \??\C:\Windows\SysWOW64\Drivers\AxtuDrv.sys [X] S3 Frost_6_8_1_3; \??\D:\Games\LineageII PL\Frost\frost.sys [X] S3 HTCAND64; System32\Drivers\ANDROIDUSB.sys [X] S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X] S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-03-07 22:27 - 2015-03-07 22:27 - 00000000 ____D () C:\FRST 2015-03-07 22:25 - 2015-03-07 22:25 - 00000143 _____ () C:\Users\Kamil\Desktop\otl.txt 2015-03-07 13:04 - 2014-12-20 17:33 - 27661937 _____ (DBV TEAM) C:\Users\Kamil\Desktop\DBVictory - World [S1] (v2.45).exe 2015-03-05 22:28 - 2015-03-05 22:28 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2015-03-04 23:48 - 2015-03-04 23:48 - 00000000 ____D () C:\Users\Kamil\Desktop\Tibia Loader 1.0 2015-03-03 00:32 - 2015-03-03 00:36 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\ZezeniaOnline 2015-03-01 11:52 - 2015-03-07 22:25 - 00000944 _____ () C:\Windows\PFRO.log 2015-02-28 22:13 - 2015-03-07 22:26 - 00000000 ____D () C:\Users\Kamil\AppData\Local\Purplizer 2015-02-28 22:00 - 2015-03-07 22:26 - 00000000 ____D () C:\Users\Kamil\AppData\Local\Overwolf 2015-02-28 22:00 - 2015-03-05 20:23 - 00000000 ____D () C:\Program Files (x86)\Overwolf 2015-02-28 22:00 - 2015-02-28 22:01 - 00000000 ____D () C:\ProgramData\Overwolf 2015-02-28 22:00 - 2015-02-28 22:00 - 00003728 _____ () C:\Windows\System32\Tasks\Overwolf Updater Task 2015-02-28 22:00 - 2015-02-28 22:00 - 00001971 _____ () C:\Users\Public\Desktop\Overwolf.lnk 2015-02-28 22:00 - 2015-02-28 22:00 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf 2015-02-28 21:21 - 2015-02-28 21:21 - 00000000 ____D () C:\ProgramData\SystemRequirementsLab 2015-02-27 20:39 - 2015-02-27 20:39 - 00000000 ____D () C:\ProgramData\xml_param 2015-02-27 00:15 - 2015-02-27 00:15 - 00000000 ____D () C:\Windows\Sun 2015-02-27 00:14 - 2015-02-27 00:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-02-27 00:14 - 2013-07-22 21:36 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll 2015-02-27 00:14 - 2013-07-22 21:36 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll 2015-02-27 00:13 - 2015-02-27 00:13 - 00000000 ____D () C:\ProgramData\Oracle 2015-02-26 21:43 - 2015-02-05 18:57 - 00621384 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2015-02-26 21:42 - 2015-02-05 22:01 - 32106640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 20466496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 17253848 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 13294528 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 13208200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 10773704 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 10713256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 10284872 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-02-26 21:42 - 2015-02-05 22:01 - 03610768 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 03247248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 01895240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434752.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434752.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 00995248 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 00969872 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 00943760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 00929936 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 00908104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 00877816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 00353224 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 00305136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 00195728 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-02-26 21:42 - 2015-02-05 22:01 - 00177624 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-02-26 21:42 - 2015-02-05 22:01 - 00030536 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-02-24 23:23 - 2015-03-02 21:57 - 00000126 _____ () C:\Users\Kamil\Desktop\Passy Wirus.txt 2015-02-24 01:35 - 2015-02-24 01:35 - 00000023 _____ () C:\Users\Kamil\Desktop\tsik.txt 2015-02-23 19:46 - 2015-02-23 19:46 - 00000000 ____D () C:\Users\Kamil\AppData\Local\ESET 2015-02-22 13:43 - 2015-02-22 17:59 - 00000009 _____ () C:\Windows\pbase.dat 2015-02-22 13:43 - 2015-02-22 17:59 - 00000008 _____ () C:\Windows\npbase.dat 2015-02-22 13:43 - 2015-02-22 17:59 - 00000003 _____ () C:\Windows\ver.dat 2015-02-22 01:35 - 2015-02-22 01:35 - 00017513 _____ () C:\Windows\DirectX.log 2015-02-21 22:22 - 2015-03-07 22:26 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Steganos VPN 2015-02-21 22:22 - 2015-02-23 14:22 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Steganos 2015-02-21 22:22 - 2015-02-21 22:22 - 00001073 _____ () C:\Users\Public\Desktop\OkayFreedom.lnk 2015-02-21 22:22 - 2015-02-21 22:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OkayFreedom 2015-02-21 22:22 - 2015-02-21 22:22 - 00000000 ____D () C:\Program Files (x86)\OkayFreedom 2015-02-21 19:02 - 2015-02-21 19:02 - 00001753 _____ () C:\Users\Public\Desktop\iTunes.lnk 2015-02-21 19:02 - 2015-02-21 19:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2015-02-21 19:02 - 2015-02-21 19:02 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 2015-02-21 19:02 - 2015-02-21 19:02 - 00000000 ____D () C:\Program Files\iTunes 2015-02-21 19:02 - 2015-02-21 19:02 - 00000000 ____D () C:\Program Files\iPod 2015-02-21 19:02 - 2015-02-21 19:02 - 00000000 ____D () C:\Program Files (x86)\iTunes 2015-02-20 16:11 - 2015-02-20 16:11 - 00000000 ____D () C:\Users\Kamil\AppData\Local\Steam 2015-02-19 00:13 - 2015-03-05 21:19 - 00003557 _____ () C:\Users\Kamil\Desktop\BF3Settings.ini 2015-02-19 00:08 - 2015-03-05 20:58 - 00000149 _____ () C:\Windows\Datastorage 2015-02-18 23:59 - 2015-02-18 23:59 - 00883275 _____ () C:\Users\Kamil\Desktop\nxloader.79.exe 2015-02-18 23:11 - 2015-02-18 23:11 - 00001645 _____ () C:\Users\Kamil\Desktop\thira retsamu.txt 2015-02-18 20:41 - 2015-03-07 22:26 - 00007364 _____ () C:\Windows\setupact.log 2015-02-18 20:41 - 2015-02-18 20:41 - 00000000 _____ () C:\Windows\setuperr.log 2015-02-18 18:53 - 2015-02-18 18:53 - 00003006 _____ () C:\Windows\System32\Tasks\Open Chrome 2015-02-18 18:53 - 2015-02-18 18:53 - 00000688 _____ () C:\Windows\Tasks\Open Chrome.job 2015-02-17 18:49 - 2015-02-17 18:49 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab 2015-02-17 17:55 - 2015-02-22 13:16 - 00000000 ____D () C:\Users\Kamil\Desktop\CHLS 2015-02-16 23:21 - 2015-02-16 23:21 - 00000286 _____ () C:\Windows\game.ini 2015-02-16 23:21 - 2015-02-16 23:21 - 00000000 __SHD () C:\Windows\ftpcache 2015-02-16 23:21 - 2015-02-16 23:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision 2015-02-16 23:20 - 2015-02-16 23:20 - 00000000 ____D () C:\Program Files (x86)\Activision 2015-02-16 00:34 - 2015-02-16 00:45 - 00000000 ____D () C:\Users\Kamil\Documents\OnLive App 2015-02-16 00:34 - 2015-02-16 00:34 - 00001849 _____ () C:\Users\Public\Desktop\OnLive.lnk 2015-02-16 00:34 - 2015-02-16 00:34 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\OnLive App 2015-02-16 00:34 - 2015-02-16 00:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OnLive 2015-02-16 00:34 - 2015-02-16 00:34 - 00000000 ____D () C:\Program Files (x86)\OnLive 2015-02-15 12:40 - 2015-02-15 12:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET 2015-02-15 12:40 - 2015-02-15 12:40 - 00000000 ____D () C:\ProgramData\ESET 2015-02-15 12:40 - 2015-02-15 12:40 - 00000000 ____D () C:\Program Files\ESET 2015-02-15 12:36 - 2015-02-15 12:37 - 00000000 ____D () C:\Users\Kamil\Desktop\RESZTA 2015-02-15 12:36 - 2015-02-15 12:36 - 00000000 ____D () C:\Users\Kamil\Desktop\Word 2015-02-15 12:34 - 2015-03-07 21:58 - 00000000 ____D () C:\Users\Kamil\Desktop\Program 2015-02-15 12:26 - 2015-02-15 12:26 - 11231944 _____ (ESET) C:\Users\Kamil\Downloads\avremover_nt64_enu.exe 2015-02-14 21:38 - 2015-02-14 21:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud 2015-02-12 22:24 - 2015-02-12 22:24 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe 2015-02-12 22:19 - 2015-02-12 22:19 - 01533584 _____ () C:\Users\Kamil\Downloads\battlelog-web-plugins_2.6.2_157.exe 2015-02-12 22:17 - 2015-02-12 22:17 - 07301718 _____ () C:\Users\Kamil\Downloads\RTSSSetup510-[Guru3D.com].exe 2015-02-06 19:42 - 2015-02-06 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image Writer 2015-02-06 19:42 - 2015-02-06 19:42 - 00000000 ____D () C:\Program Files (x86)\ImageWriter ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-03-07 22:26 - 2013-12-30 23:30 - 00000000 ____D () C:\Program Files (x86)\Anti DDoS Guardian 3.0 2015-03-07 22:26 - 2013-11-18 13:44 - 00000000 ____D () C:\ProgramData\Origin 2015-03-07 22:26 - 2013-10-07 18:48 - 00000000 ____D () C:\Users\Kamil\AppData\Local\HTC MediaHub 2015-03-07 22:26 - 2012-12-25 16:44 - 00000000 ____D () C:\Program Files (x86)\Steam 2015-03-07 22:26 - 2012-12-22 15:47 - 00001044 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-03-07 22:26 - 2012-12-22 14:05 - 00000000 ____D () C:\ProgramData\NVIDIA 2015-03-07 22:26 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-03-07 22:25 - 2014-11-02 00:23 - 00000000 ____D () C:\ProgramData\TEMP 2015-03-07 22:25 - 2013-01-11 20:29 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\TS3Client 2015-03-07 22:25 - 2012-12-22 13:23 - 01952427 _____ () C:\Windows\WindowsUpdate.log 2015-03-07 22:06 - 2012-12-22 15:47 - 00001048 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-03-07 22:05 - 2009-07-14 05:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-03-07 22:05 - 2009-07-14 05:45 - 00014224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-03-07 22:04 - 2009-07-14 18:55 - 00742598 _____ () C:\Windows\system32\perfh015.dat 2015-03-07 22:04 - 2009-07-14 18:55 - 00156112 _____ () C:\Windows\system32\perfc015.dat 2015-03-07 22:04 - 2009-07-14 06:13 - 01676054 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-03-07 22:03 - 2015-01-14 22:06 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Spotify 2015-03-07 21:58 - 2014-10-19 00:37 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormFall 2015-03-07 21:58 - 2014-10-19 00:37 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sparta 2015-03-07 21:58 - 2013-09-30 14:18 - 00000000 ____D () C:\AdwCleaner 2015-03-07 21:58 - 2013-02-19 22:23 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2015-03-07 21:46 - 2012-12-22 14:42 - 00000930 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-03-07 21:15 - 2012-12-22 21:34 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Tibia 2015-03-07 21:07 - 2014-06-08 22:45 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\DBNS1 2015-03-07 20:44 - 2014-06-14 10:13 - 00002054 ____H () C:\Users\Kamil\Documents\Default.rdp 2015-03-07 15:19 - 2012-12-22 21:34 - 00000000 ___RD () C:\Users\Kamil\Desktop\GRY 2015-03-07 13:05 - 2013-07-29 22:51 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\DBV 2015-03-07 12:41 - 2014-04-14 21:12 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\GG 2015-03-05 23:34 - 2014-10-26 18:51 - 00000000 ____D () C:\Users\Kamil\AppData\Local\JDownloader v2.0 2015-03-05 21:33 - 2014-10-19 19:07 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Mp3tag 2015-03-05 20:59 - 2012-12-23 13:02 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr 2015-03-05 20:59 - 2012-12-23 13:02 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.exe 2015-03-05 20:55 - 2012-12-23 13:02 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0 2015-03-02 22:28 - 2014-08-21 22:50 - 00000000 ____D () C:\Program Files (x86)\RivaTuner Statistics Server 2015-03-02 22:28 - 2012-12-22 21:53 - 01693320 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2015-03-02 22:23 - 2012-12-23 10:57 - 00000000 ____D () C:\Windows\SysWOW64\directx 2015-03-01 00:09 - 2013-02-20 19:24 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Skype 2015-02-28 14:53 - 2013-11-18 13:44 - 00000000 ____D () C:\Program Files (x86)\Origin 2015-02-27 00:14 - 2013-07-22 21:36 - 00000000 ____D () C:\Program Files (x86)\Java 2015-02-27 00:13 - 2013-07-22 21:36 - 00272296 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2015-02-27 00:13 - 2013-07-22 21:36 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2015-02-27 00:13 - 2013-07-22 21:36 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2015-02-27 00:13 - 2013-07-22 21:36 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2015-02-26 21:46 - 2012-12-23 12:21 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Media Player Classic 2015-02-26 21:43 - 2012-12-22 16:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-02-25 23:32 - 2015-01-14 22:07 - 00000000 ____D () C:\Users\Kamil\AppData\Local\Spotify 2015-02-24 00:00 - 2014-04-14 21:12 - 00000000 ____D () C:\Users\Kamil\AppData\Local\GG 2015-02-23 22:52 - 2013-01-14 22:57 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe 2015-02-23 22:52 - 2012-12-23 14:39 - 00000000 ____D () C:\Users\Kamil\AppData\Local\Adobe 2015-02-23 22:50 - 2014-11-02 09:40 - 00000000 ____D () C:\Program Files (x86)\ElfBot NG 854_2 2015-02-22 13:43 - 2012-12-23 13:02 - 00000000 ____D () C:\Users\Kamil\AppData\Local\PunkBuster 2015-02-22 01:35 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-02-21 19:02 - 2013-04-01 15:01 - 00000000 ____D () C:\Program Files\Common Files\Apple 2015-02-18 20:41 - 2013-05-21 22:09 - 00307200 ___SH () C:\Users\Kamil\Desktop\Thumbs.db 2015-02-18 18:55 - 2014-10-30 23:05 - 00105032 _____ () C:\Users\Kamil\cssdt.log 2015-02-18 18:52 - 2012-12-25 15:18 - 00000000 ____D () C:\Windows\pss 2015-02-18 18:50 - 2013-01-05 07:29 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\Vso 2015-02-18 18:26 - 2013-02-22 18:15 - 00000000 ____D () C:\Users\Kamil\AppData\Local\screenSHU 2015-02-16 23:36 - 2012-12-22 14:33 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2015-02-15 13:49 - 2013-12-11 14:32 - 00000000 ____D () C:\Users\Kamil\Documents\My Games 2015-02-15 13:32 - 2014-06-10 21:03 - 00000000 ____D () C:\Users\Kamil\AppData\Local\DM 2015-02-15 13:06 - 2013-10-27 23:25 - 00000000 ____D () C:\Program Files (x86)\Spider 2015-02-15 12:42 - 2015-02-02 19:41 - 00000000 ____D () C:\Users\Kamil\AppData\Roaming\app 2015-02-15 12:32 - 2014-11-13 00:59 - 00000000 ____D () C:\Program Files (x86)\AVG Web TuneUp 2015-02-13 00:52 - 2013-12-03 22:56 - 00001269 _____ () C:\Users\Kamil\Documents\ax_files.xml 2015-02-12 22:19 - 2013-11-18 22:27 - 00000000 ____D () C:\Program Files (x86)\Battlelog Web Plugins 2015-02-10 22:38 - 2014-10-16 20:27 - 00000000 ____D () C:\Users\Kamil\Documents\Assetto Corsa 2015-02-10 22:12 - 2013-06-27 18:22 - 00000000 ____D () C:\ProgramData\Package Cache 2015-02-05 22:01 - 2014-10-26 06:26 - 24768144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-02-05 22:01 - 2014-10-26 06:26 - 16017040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-02-05 22:01 - 2014-09-20 09:43 - 18575880 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-02-05 22:01 - 2014-09-20 09:43 - 14119744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-02-05 22:01 - 2014-09-20 09:43 - 03299512 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-02-05 22:01 - 2014-09-20 09:43 - 02902784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-02-05 22:01 - 2014-01-12 13:24 - 01540240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2015-02-05 22:01 - 2012-12-22 14:05 - 00164752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-02-05 22:01 - 2012-12-22 14:05 - 00027441 _____ () C:\Windows\system32\nvinfo.pb 2015-02-05 20:46 - 2012-12-22 14:42 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-02-05 20:46 - 2012-12-22 14:42 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-02-05 20:46 - 2012-12-22 14:42 - 00003868 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-02-05 20:07 - 2012-12-22 15:55 - 02558792 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-02-05 20:07 - 2012-12-22 14:05 - 06861128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-02-05 20:07 - 2012-12-22 14:05 - 03517584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-02-05 20:07 - 2012-12-22 14:05 - 00935056 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-02-05 20:07 - 2012-12-22 14:05 - 00062792 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-02-05 20:06 - 2012-12-22 14:05 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-02-05 13:50 - 2012-12-22 14:05 - 04236870 _____ () C:\Windows\system32\nvcoproc.bin ==================== Files in the root of some directories ======= 2013-07-30 19:37 - 2013-07-30 19:38 - 0015227 _____ (Wookash) C:\Program Files (x86)\Common Files\logonInit.dll 2013-01-21 01:29 - 2013-01-21 01:29 - 0000132 _____ () C:\Users\Kamil\AppData\Roaming\Adobe BMP Format CS5 Prefs 2013-05-20 23:50 - 2013-05-20 23:50 - 0000027 _____ () C:\Users\Kamil\AppData\Roaming\ArmaFP.ini 2013-02-17 19:07 - 2013-02-17 19:07 - 0000065 _____ () C:\Users\Kamil\AppData\Roaming\bynacam_config.ini 2013-01-05 07:29 - 2013-01-05 07:29 - 0007859 _____ () C:\Users\Kamil\AppData\Roaming\pcouffin.cat 2013-01-05 07:29 - 2013-01-05 07:29 - 0001167 _____ () C:\Users\Kamil\AppData\Roaming\pcouffin.inf 2013-01-05 07:29 - 2013-01-05 07:29 - 0000055 _____ () C:\Users\Kamil\AppData\Roaming\pcouffin.log 2013-01-05 07:29 - 2013-01-05 07:29 - 0082816 _____ (VSO Software) C:\Users\Kamil\AppData\Roaming\pcouffin.sys 2013-05-20 23:49 - 2013-05-20 23:49 - 0000026 _____ () C:\Users\Kamil\AppData\Roaming\Signature.txt 2013-01-21 01:29 - 2014-11-16 18:10 - 0001456 _____ () C:\Users\Kamil\AppData\Local\Adobe Save for Web 12.0 Prefs 2014-11-14 21:53 - 2014-11-14 21:53 - 0000000 ___SH () C:\Users\Kamil\AppData\Local\LumaEmu 2013-01-13 00:16 - 2013-01-13 00:16 - 0000003 _____ () C:\Users\Kamil\AppData\Local\user_data.ini Some content of TEMP: ==================== C:\Users\Kamil\AppData\Local\Temp\ggdrive-menu.exe C:\Users\Kamil\AppData\Local\Temp\ggdrive-overlay.exe C:\Users\Kamil\AppData\Local\Temp\installstats.exe C:\Users\Kamil\AppData\Local\Temp\nvSCPAPI.dll C:\Users\Kamil\AppData\Local\Temp\nvStInst.exe C:\Users\Kamil\AppData\Local\Temp\proxy_vole7144345952689033135.dll C:\Users\Kamil\AppData\Local\Temp\Quarantine.exe C:\Users\Kamil\AppData\Local\Temp\sqlite3.dll C:\Users\Kamil\AppData\Local\Temp\SRLDetectionLibrary2534870371697182150.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-03-05 19:14 ==================== End Of Log ============================