Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-07-2013 Ran by Admin (administrator) on 06-07-2013 12:04:21 Running from C:\Users\Admin\Desktop\Nowy folder (2) Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polish Internet Explorer Version 9 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe () C:\Windows\SysWOW64\PnkBstrA.exe (VIA Technologies, Inc.) C:\Windows\system32\viakaraokesrv.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe () C:\Program Files (x86)\Vtune\TBPANEL.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (Creative Technology Ltd) C:\Program Files (x86)\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe (Macrovision Europe Ltd.) C:\Users\Admin\AppData\Local\Temp\Sound_Blaster_X-Fi_MB_Cleanup.0001 (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Creative Labs) C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe (Farbar) C:\Users\Admin\Desktop\Nowy folder (2)\FRST64(2).exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RunDLLEntry] C:\Windows\system32\RunDLL32.exe C:\Windows\system32\AmbRunE.dll,RunDLLEntry [17920 2009-02-26] (Creative Technology Ltd.) HKCU\...\Run: [TBPanel] C:\Program Files (x86)\Vtune\TBPanel.exe /A [2158592 2010-10-22] () HKCU\...\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [1475584 2010-11-20] (Microsoft Corporation) HKCU\...\Run: [Google Update] "C:\Users\Admin\AppData\Local\Google\Update\GoogleUpdate.exe" /c [136176 2011-05-14] (Google Inc.) HKCU\...\Policies\system: [LogonHoursAction] 2 HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 HKLM-x32\...\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r [3019376 2011-02-22] (VIA) HKLM-x32\...\Run: [CTSyncService] C:\Program Files (x86)\InstallShield Installation Information\{F3D9AC82-30F4-4BB9-B9AB-8697637568C1}\AMBSPISyncService.exe /StartRunKey [1233195 2009-07-08] (Creative Technology Ltd) HKLM-x32\...\Run: [VolPanel] "C:\Program Files (x86)\Creative\SB X-Fi MB\Volume Panel\VolPanlu.exe" /r [241789 2009-05-04] (Creative Technology Ltd) HKLM-x32\...\Run: [UpdReg] C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59720 2013-04-21] (Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2013-05-01] (Apple Inc.) HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-05-11] (Adobe Systems Incorporated) HKLM-x32\...\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4858968 2013-05-09] (AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation) HKU\gość2\...\Policies\system: [LogonHoursAction] 2 HKU\gość2\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com HKCU SearchScopes: DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=ASRK BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Pomocnik logowania za pomocą konta Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\eatq7soj.default FF Homepage: hxxp://www.google.pl/ FF NetworkProxy: "type", 0 FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll () FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin-x32: @ganymede/GanymedeNetPlugin,version=1.0 - C:\Program Files (x86)\Ganymede\Plugins\npganymedenet.dll No File FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Admin\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Admin\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Extension: DoNotTrackMe - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\eatq7soj.default\Extensions\donottrackplus@abine.com FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: No Name - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: No Name - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 Chrome: ======= CHR HomePage: hxxp://www.google.com/ CHR DefaultSearchURL: (Google) - {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms} CHR Plugin: (Shockwave Flash) - C:\Users\Admin\AppData\Local\Google\Chrome\Application\20.0.1132.47\gcswf32.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File CHR Plugin: (Java Deployment Toolkit 6.0.250.6) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File CHR Plugin: (Java(TM) Platform SE 6 U25) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Users\Admin\AppData\Local\Google\Chrome\Application\20.0.1132.47\pdf.dll No File CHR Plugin: (Chrome NaCl) - C:\Users\Admin\AppData\Local\Google\Chrome\Application\20.0.1132.47\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Google Gears 0.5.33.0) - C:\Users\Admin\AppData\Local\Google\Chrome\Application\20.0.1132.47\gears.dll No File CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File CHR Plugin: (GanymedeNet.Detector) - C:\Program Files (x86)\Mozilla Firefox\plugins\npganymedenet.dll ( ) CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) CHR Plugin: (Google Update) - C:\Users\Admin\AppData\Local\Google\Update\1.3.21.53\npGoogleUpdate3.dll No File CHR Plugin: (Default Plug-in) - default_plugin No File CHR Extension: (Skype Extension) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.5.0.7896_0 ==================== Services (Whitelisted) ================= R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software) R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [66872 2011-06-23] () R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-02-17] (VIA Technologies, Inc.) ==================== Drivers (Whitelisted) ==================== R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software) R1 aswKbd; C:\Windows\System32\Drivers\aswKbd.sys [19600 2012-08-21] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software) R1 AswRdr; C:\Windows\System32\Drivers\AswRdr.sys [59144 2013-05-09] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-28] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-28] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-28] () R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2012-08-05] () R3 DCamUSBVM; C:\Windows\System32\Drivers\usbVM31b.sys [142336 2005-09-19] (Vimicro Corporation) S3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [31808 2011-06-25] (FNet Co., Ltd.) R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [15936 2011-05-06] (FNet Co., Ltd.) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2012-08-05] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2013-07-01] () S3 TBPanel; No ImagePath ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-06 12:01 - 2013-07-06 12:01 - 00000000 ____D C:\Users\Admin\Desktop\Nowy folder (2) 2013-07-05 18:06 - 2013-07-05 18:06 - 22603488 ____A (Mozilla) C:\Users\Admin\Downloads\Firefox Setup 22.0.exe 2013-07-02 22:34 - 2013-06-21 14:06 - 27781920 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 25256224 ____A (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 21102368 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 17560352 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 15144928 ____A (NVIDIA Corporation) C:\Windows\System32\nvd3dumx.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 12427240 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 11235104 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys 2013-07-02 22:34 - 2013-06-21 14:06 - 09239344 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 07687592 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 07641832 ____A (NVIDIA Corporation) C:\Windows\System32\nvopencl.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 06324360 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 02953504 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 02777888 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 02363680 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvenc.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 02002720 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 01832224 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispco6432049.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 01511712 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispgenco6432049.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 00925648 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 00572704 ____A (NVIDIA Corporation) C:\Windows\System32\NvFBC64.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 00570656 ____A (NVIDIA Corporation) C:\Windows\System32\NvIFR64.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 00467232 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 00465184 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 00266448 ____A (NVIDIA Corporation) C:\Windows\System32\nvinitx.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 00218592 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglshim64.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 00214448 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2013-07-02 22:34 - 2013-06-21 14:06 - 00181488 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2013-07-02 22:34 - 2013-02-25 07:27 - 00194848 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvhda64v.sys 2013-07-02 22:34 - 2013-02-25 07:27 - 00031520 ____A (NVIDIA Corporation) C:\Windows\System32\nvhdap64.dll 2013-07-02 22:34 - 2013-01-29 10:35 - 01510176 ____A (NVIDIA Corporation) C:\Windows\System32\nvhdagenco6420103.dll 2013-07-02 22:23 - 2013-07-02 22:31 - 229594432 ____A (NVIDIA Corporation) C:\Users\Admin\Downloads\320.49-desktop-win8-win7-winvista-64bit-international-whql.exe 2013-07-01 22:00 - 2013-07-05 21:20 - 00000000 ___AD C:\Kaspersky Rescue Disk 10.0 2013-07-01 20:24 - 2013-07-01 20:23 - 00096168 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-07-01 20:18 - 2013-07-01 20:18 - 00903080 ____A (Oracle Corporation) C:\Users\Admin\Downloads\jxpiinstall(5).exe 2013-07-01 19:17 - 2013-07-01 19:17 - 00834544 ____A C:\Windows\System32\Drivers\sptd.sys 2013-07-01 19:16 - 2013-07-01 19:16 - 00000000 ____D C:\Program Files (x86)\LSoft Technologies 2013-07-01 19:14 - 2013-07-01 19:15 - 05053696 ____A (Macrovision Corporation) C:\Users\Admin\Downloads\IsoBurner-Setup.exe 2013-06-29 21:31 - 2013-06-29 21:31 - 00903080 ____A (Oracle Corporation) C:\Users\Admin\Downloads\jxpiinstall(4).exe 2013-06-29 21:15 - 2013-06-29 21:15 - 00000000 ____D C:\_OTL 2013-06-29 15:29 - 2013-06-29 15:29 - 04396440 ____A (Piriform Ltd) C:\Users\Admin\Downloads\ccsetup403.exe 2013-06-29 12:15 - 2013-06-29 12:15 - 00000000 ____D C:\FRST 2013-06-29 12:14 - 2013-06-29 12:14 - 01933572 ____A (Farbar) C:\FRST64.exe 2013-06-28 20:52 - 2013-06-28 20:52 - 00015740 ____A C:\Users\Admin\Desktop\Bez tytułu 12.odt 2013-06-28 20:39 - 2013-06-28 20:39 - 00007534 ____A C:\Users\Admin\Desktop\hitmanpro.txt 2013-06-28 20:25 - 2013-06-28 20:25 - 00093494 ____A C:\Users\Admin\Desktop\OTL.Txt 2013-06-28 20:25 - 2013-06-28 20:25 - 00057136 ____A C:\Users\Admin\Desktop\Extras.Txt 2013-06-28 20:18 - 2013-06-28 20:19 - 00000000 ____D C:\Users\Admin\Desktop\otl 2013-06-28 19:46 - 2013-07-06 11:45 - 00002376 ____A C:\Users\Admin\Desktop\Google Chrome.lnk 2013-06-28 19:12 - 2013-06-28 19:15 - 00576774 ____A C:\Users\Admin\Downloads\avgremover.log 2013-06-28 19:12 - 2013-06-28 19:12 - 03529160 ____A (AVG Technologies CZ, s.r.o.) C:\Users\Admin\Downloads\avg_remover_stf_x64_2013_3341.exe 2013-06-28 19:07 - 2013-06-28 19:07 - 00378944 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys 2013-06-28 19:07 - 2013-06-28 19:07 - 00001922 ____A C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-06-28 19:07 - 2013-06-28 19:07 - 00000175 ____A C:\Windows\System32\Drivers\aswVmm.sys.sum 2013-06-28 19:07 - 2013-06-28 19:07 - 00000175 ____A C:\Windows\System32\Drivers\aswSP.sys.sum 2013-06-28 19:07 - 2013-06-28 19:07 - 00000175 ____A C:\Windows\System32\Drivers\aswSnx.sys.sum 2013-06-28 19:07 - 2013-05-09 10:59 - 00059144 ____A (AVAST Software) C:\Windows\System32\Drivers\aswRdr.sys 2013-06-28 19:07 - 2013-05-09 10:59 - 00033400 ____A (AVAST Software) C:\Windows\System32\Drivers\aswFsBlk.sys 2013-06-28 19:06 - 2013-06-28 19:07 - 01030952 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys 2013-06-28 19:06 - 2013-06-28 19:07 - 00189936 ____A C:\Windows\System32\Drivers\aswVmm.sys 2013-06-28 19:06 - 2013-06-28 19:06 - 00000000 ____D C:\Program Files\AVAST Software 2013-06-28 19:06 - 2013-05-09 10:59 - 00080816 ____A (AVAST Software) C:\Windows\System32\Drivers\aswMonFlt.sys 2013-06-28 19:06 - 2013-05-09 10:59 - 00065336 ____A C:\Windows\System32\Drivers\aswRvrt.sys 2013-06-28 19:06 - 2013-05-09 10:59 - 00064288 ____A (AVAST Software) C:\Windows\System32\Drivers\aswTdi.sys 2013-06-28 19:06 - 2013-05-09 10:58 - 00287840 ____A (AVAST Software) C:\Windows\System32\aswBoot.exe 2013-06-28 19:06 - 2013-05-09 10:58 - 00041664 ____A (AVAST Software) C:\Windows\avastSS.scr 2013-06-28 19:05 - 2013-06-28 19:06 - 00000000 ____D C:\ProgramData\AVAST Software 2013-06-28 18:54 - 2013-06-28 18:54 - 00377920 ____A (AVAST Software) C:\Users\Admin\Downloads\aswclear.exe 2013-06-28 18:49 - 2013-06-28 18:49 - 00389952 ____A C:\Users\Admin\Downloads\gg-install.exe 2013-06-28 17:50 - 2013-06-28 17:50 - 00000000 ____D C:\ProgramData\Apple Computer 2013-06-28 17:50 - 2013-06-28 17:50 - 00000000 ____D C:\Program Files (x86)\QuickTime 2013-06-28 17:46 - 2013-06-28 17:48 - 41404760 ____A (Apple Inc.) C:\Users\Admin\Downloads\QuickTimeInstaller(1).exe 2013-06-28 17:42 - 2013-06-28 17:43 - 13081608 ____A (Microsoft Corporation) C:\Users\Admin\Downloads\Silverlight_x64(2).exe 2013-06-28 17:39 - 2013-06-28 17:39 - 06604352 ____A (AVAST Software) C:\Users\Admin\Downloads\avast_free_antivirus_setup_online.exe 2013-06-28 17:38 - 2013-06-28 17:38 - 00009481 ____A C:\Users\Admin\Desktop\Bez tytułu 9.odt 2013-06-28 00:55 - 2013-06-28 00:55 - 00590944 ____A C:\Users\Admin\Downloads\VuuPC_setup.exe 2013-06-28 00:29 - 2013-06-28 00:30 - 00010411 ____A C:\AdwCleaner[S1].txt 2013-06-28 00:27 - 2013-06-28 00:27 - 00648201 ____A C:\Users\Admin\Downloads\adwcleaner(1).exe 2013-06-28 00:03 - 2013-06-28 00:03 - 00015536 ____A C:\Users\Admin\Desktop\Bez tytułu 18.odt 2013-06-27 23:39 - 2013-06-27 23:39 - 00648201 ____A C:\Users\Admin\Downloads\adwcleaner.exe 2013-06-27 22:14 - 2013-06-27 22:14 - 00064920 ____A C:\Windows\System32\GDIPFONTCACHEV1.DAT 2013-06-26 18:43 - 2013-06-26 18:43 - 00012872 ____A (SurfRight B.V.) C:\Windows\System32\bootdelete.exe 2013-06-26 18:40 - 2013-06-26 18:40 - 00015072 ____A C:\Users\Admin\Desktop\HitmanPro_20130626_1840.log 2013-06-26 17:56 - 2013-06-26 18:26 - 00000000 ____D C:\Program Files\HitmanPro 2013-06-26 17:55 - 2013-06-26 18:43 - 00000000 ____D C:\ProgramData\HitmanPro 2013-06-26 17:55 - 2013-06-26 17:55 - 09833328 ____A (SurfRight B.V.) C:\Users\Admin\Downloads\HitmanPro_x64.exe 2013-06-22 14:09 - 2013-06-22 14:09 - 00903080 ____A (Oracle Corporation) C:\Users\Admin\Downloads\jxpiinstall(3).exe 2013-06-22 14:07 - 2013-06-22 14:07 - 01093032 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll 2013-06-22 14:07 - 2013-06-22 14:07 - 00972712 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll 2013-06-22 14:07 - 2013-06-22 14:07 - 00312232 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe 2013-06-22 14:07 - 2013-06-22 14:07 - 00189352 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe 2013-06-22 14:07 - 2013-06-22 14:07 - 00188840 ____A (Oracle Corporation) C:\Windows\System32\java.exe 2013-06-22 14:07 - 2013-06-22 14:07 - 00108968 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll 2013-06-22 14:07 - 2013-06-22 14:07 - 00000000 ____D C:\Program Files\Java 2013-06-22 14:05 - 2013-06-22 14:06 - 33150376 ____A (Oracle Corporation) C:\Users\Admin\Downloads\jre-7u25-windows-x64.exe 2013-06-22 11:29 - 2013-06-22 11:29 - 00000381 ____A C:\Windows\wininit.ini 2013-06-22 11:28 - 2013-06-22 11:29 - 00283562 ____A C:\Users\Admin\Desktop\SpybotSD.Results.txt 2013-06-21 05:16 - 2013-06-21 05:16 - 00566048 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2013-06-20 20:52 - 2013-06-20 20:52 - 00377856 ____A C:\Users\Admin\Downloads\88t52tef.exe 2013-06-20 20:23 - 2013-06-19 18:52 - 00602112 ____A (OldTimer Tools) C:\Users\Admin\Desktop\OTL.exe 2013-06-20 18:30 - 2013-06-20 21:40 - 00029876 ____A C:\Users\Admin\Desktop\Bez tytułu 2.odt 2013-06-20 18:29 - 2013-06-20 18:29 - 00797784 ____A (Duplex Secure Ltd.) C:\Users\Admin\Downloads\SPTDinst-v183-x64.exe 2013-06-19 21:02 - 2013-06-19 21:02 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Windows Live Writer 2013-06-19 21:02 - 2013-06-19 21:02 - 00000000 ____D C:\Users\Admin\AppData\Local\Windows Live Writer 2013-06-19 19:02 - 2013-06-19 20:13 - 00087654 ____A C:\Users\Admin\Downloads\OTL.Txt 2013-06-19 19:02 - 2013-06-19 20:13 - 00058130 ____A C:\Users\Admin\Downloads\Extras.Txt 2013-06-19 18:52 - 2013-06-19 18:52 - 00602112 ____A (OldTimer Tools) C:\Users\Admin\Downloads\OTL.exe 2013-06-18 23:10 - 2013-06-18 23:11 - 13081608 ____A (Microsoft Corporation) C:\Users\Admin\Downloads\Silverlight_x64(1).exe 2013-06-18 22:35 - 2013-06-18 22:35 - 00000000 ____D C:\Users\Admin\AppData\LocalGoogle 2013-06-18 22:33 - 2013-06-18 22:33 - 00000000 ____D C:\Users\Admin\AppData\Roaming\TuneUp Software 2013-06-18 22:32 - 2013-07-06 11:42 - 00001046 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-06-18 22:32 - 2013-07-06 11:23 - 00001042 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-06-18 22:29 - 2013-06-18 22:29 - 150643160 ____A (AVG Technologies) C:\Users\Admin\Downloads\avg_free_x64_all_2013_3345a6382.exe 2013-06-18 22:21 - 2013-06-18 22:21 - 00654960 ____A C:\Users\Admin\Downloads\AVG-AntiVirus-Free-Edition(13206).exe 2013-06-18 21:57 - 2013-06-18 22:17 - 00000002 ____A C:\AvastSetup.log 2013-06-17 21:29 - 2013-06-17 21:48 - 00000000 ____D C:\Users\Admin\Desktop\Andrzej Pisula 2013-06-16 22:01 - 2013-06-18 20:37 - 00000000 ___SD C:\Users\Admin\GG dysk 2013-06-16 22:00 - 2013-06-28 18:51 - 00000000 ____D C:\Users\Admin\AppData\Local\GG 2013-06-16 21:59 - 2013-07-04 20:02 - 00000000 ____D C:\Users\Admin\AppData\Roaming\GG ==================== One Month Modified Files and Folders ======= 2013-07-06 12:02 - 2011-05-14 18:36 - 00001058 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-615732166-2090531956-1015574816-1000UA.job 2013-07-06 12:02 - 2011-05-10 22:12 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps 2013-07-06 12:01 - 2013-07-06 12:01 - 00000000 ____D C:\Users\Admin\Desktop\Nowy folder (2) 2013-07-06 11:55 - 2013-02-16 19:03 - 01133131 ____N C:\Windows\WindowsUpdate.log 2013-07-06 11:45 - 2013-06-28 19:46 - 00002376 ____A C:\Users\Admin\Desktop\Google Chrome.lnk 2013-07-06 11:42 - 2013-06-18 22:32 - 00001046 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-06 11:26 - 2009-07-14 06:45 - 00015344 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-06 11:26 - 2009-07-14 06:45 - 00015344 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-06 11:23 - 2013-06-18 22:32 - 00001042 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-06 11:19 - 2011-05-06 13:30 - 00000000 ____D C:\ProgramData\NVIDIA 2013-07-06 11:19 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT 2013-07-05 23:45 - 2011-05-14 18:36 - 00001006 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-615732166-2090531956-1015574816-1000Core.job 2013-07-05 21:20 - 2013-07-01 22:00 - 00000000 ___AD C:\Kaspersky Rescue Disk 10.0 2013-07-05 18:45 - 2012-07-18 18:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-07-05 18:07 - 2012-07-18 18:41 - 00001147 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-07-05 18:07 - 2011-05-09 22:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-07-05 18:06 - 2013-07-05 18:06 - 22603488 ____A (Mozilla) C:\Users\Admin\Downloads\Firefox Setup 22.0.exe 2013-07-04 20:24 - 2011-07-26 21:57 - 00000000 ____D C:\Users\Admin\Desktop\cv 2013-07-04 20:02 - 2013-06-16 21:59 - 00000000 ____D C:\Users\Admin\AppData\Roaming\GG 2013-07-02 22:52 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF 2013-07-02 22:38 - 2011-05-06 13:30 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-07-02 22:35 - 2011-05-06 13:27 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2013-07-02 22:31 - 2013-07-02 22:23 - 229594432 ____A (NVIDIA Corporation) C:\Users\Admin\Downloads\320.49-desktop-win8-win7-winvista-64bit-international-whql.exe 2013-07-01 20:23 - 2013-07-01 20:24 - 00096168 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-07-01 20:23 - 2012-12-30 18:41 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2013-07-01 20:23 - 2012-12-30 18:41 - 00175016 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2013-07-01 20:23 - 2012-12-30 18:40 - 00263592 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2013-07-01 20:23 - 2012-10-13 19:46 - 00867240 ____A (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll 2013-07-01 20:23 - 2011-05-13 21:03 - 00789416 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll 2013-07-01 20:18 - 2013-07-01 20:18 - 00903080 ____A (Oracle Corporation) C:\Users\Admin\Downloads\jxpiinstall(5).exe 2013-07-01 19:17 - 2013-07-01 19:17 - 00834544 ____A C:\Windows\System32\Drivers\sptd.sys 2013-07-01 19:16 - 2013-07-01 19:16 - 00000000 ____D C:\Program Files (x86)\LSoft Technologies 2013-07-01 19:16 - 2011-05-06 13:09 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-07-01 19:15 - 2013-07-01 19:14 - 05053696 ____A (Macrovision Corporation) C:\Users\Admin\Downloads\IsoBurner-Setup.exe 2013-06-29 21:31 - 2013-06-29 21:31 - 00903080 ____A (Oracle Corporation) C:\Users\Admin\Downloads\jxpiinstall(4).exe 2013-06-29 21:17 - 2009-07-14 07:08 - 00032608 ____A C:\Windows\Tasks\SCHEDLGU.TXT 2013-06-29 21:15 - 2013-06-29 21:15 - 00000000 ____D C:\_OTL 2013-06-29 15:29 - 2013-06-29 15:29 - 04396440 ____A (Piriform Ltd) C:\Users\Admin\Downloads\ccsetup403.exe 2013-06-29 15:29 - 2011-07-24 16:48 - 00000000 ____D C:\Program Files\CCleaner 2013-06-29 12:15 - 2013-06-29 12:15 - 00000000 ____D C:\FRST 2013-06-29 12:14 - 2013-06-29 12:14 - 01933572 ____A (Farbar) C:\FRST64.exe 2013-06-28 20:52 - 2013-06-28 20:52 - 00015740 ____A C:\Users\Admin\Desktop\Bez tytułu 12.odt 2013-06-28 20:39 - 2013-06-28 20:39 - 00007534 ____A C:\Users\Admin\Desktop\hitmanpro.txt 2013-06-28 20:25 - 2013-06-28 20:25 - 00093494 ____A C:\Users\Admin\Desktop\OTL.Txt 2013-06-28 20:25 - 2013-06-28 20:25 - 00057136 ____A C:\Users\Admin\Desktop\Extras.Txt 2013-06-28 20:19 - 2013-06-28 20:18 - 00000000 ____D C:\Users\Admin\Desktop\otl 2013-06-28 19:21 - 2012-08-05 14:32 - 00000000 ____D C:\Program Files (x86)\Wiedźmin 2013-06-28 19:15 - 2013-06-28 19:12 - 00576774 ____A C:\Users\Admin\Downloads\avgremover.log 2013-06-28 19:12 - 2013-06-28 19:12 - 03529160 ____A (AVG Technologies CZ, s.r.o.) C:\Users\Admin\Downloads\avg_remover_stf_x64_2013_3341.exe 2013-06-28 19:07 - 2013-06-28 19:07 - 00378944 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSP.sys 2013-06-28 19:07 - 2013-06-28 19:07 - 00001922 ____A C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-06-28 19:07 - 2013-06-28 19:07 - 00000175 ____A C:\Windows\System32\Drivers\aswVmm.sys.sum 2013-06-28 19:07 - 2013-06-28 19:07 - 00000175 ____A C:\Windows\System32\Drivers\aswSP.sys.sum 2013-06-28 19:07 - 2013-06-28 19:07 - 00000175 ____A C:\Windows\System32\Drivers\aswSnx.sys.sum 2013-06-28 19:07 - 2013-06-28 19:06 - 01030952 ____A (AVAST Software) C:\Windows\System32\Drivers\aswSnx.sys 2013-06-28 19:07 - 2013-06-28 19:06 - 00189936 ____A C:\Windows\System32\Drivers\aswVmm.sys 2013-06-28 19:06 - 2013-06-28 19:06 - 00000000 ____D C:\Program Files\AVAST Software 2013-06-28 19:06 - 2013-06-28 19:05 - 00000000 ____D C:\ProgramData\AVAST Software 2013-06-28 19:06 - 2011-05-09 21:08 - 00000000 ____A C:\Windows\SysWOW64\config.nt 2013-06-28 18:54 - 2013-06-28 18:54 - 00377920 ____A (AVAST Software) C:\Users\Admin\Downloads\aswclear.exe 2013-06-28 18:51 - 2013-06-16 22:00 - 00000000 ____D C:\Users\Admin\AppData\Local\GG 2013-06-28 18:49 - 2013-06-28 18:49 - 00389952 ____A C:\Users\Admin\Downloads\gg-install.exe 2013-06-28 18:38 - 2011-05-09 20:12 - 00000000 ____D C:\Users\Admin\AppData\Local\Adobe 2013-06-28 18:37 - 2011-05-06 13:11 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-06-28 18:32 - 2013-02-05 21:19 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-06-28 18:32 - 2013-02-05 21:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-06-28 17:50 - 2013-06-28 17:50 - 00000000 ____D C:\ProgramData\Apple Computer 2013-06-28 17:50 - 2013-06-28 17:50 - 00000000 ____D C:\Program Files (x86)\QuickTime 2013-06-28 17:48 - 2013-06-28 17:46 - 41404760 ____A (Apple Inc.) C:\Users\Admin\Downloads\QuickTimeInstaller(1).exe 2013-06-28 17:43 - 2013-06-28 17:42 - 13081608 ____A (Microsoft Corporation) C:\Users\Admin\Downloads\Silverlight_x64(2).exe 2013-06-28 17:39 - 2013-06-28 17:39 - 06604352 ____A (AVAST Software) C:\Users\Admin\Downloads\avast_free_antivirus_setup_online.exe 2013-06-28 17:38 - 2013-06-28 17:38 - 00009481 ____A C:\Users\Admin\Desktop\Bez tytułu 9.odt 2013-06-28 00:55 - 2013-06-28 00:55 - 00590944 ____A C:\Users\Admin\Downloads\VuuPC_setup.exe 2013-06-28 00:30 - 2013-06-28 00:29 - 00010411 ____A C:\AdwCleaner[S1].txt 2013-06-28 00:27 - 2013-06-28 00:27 - 00648201 ____A C:\Users\Admin\Downloads\adwcleaner(1).exe 2013-06-28 00:03 - 2013-06-28 00:03 - 00015536 ____A C:\Users\Admin\Desktop\Bez tytułu 18.odt 2013-06-27 23:39 - 2013-06-27 23:39 - 00648201 ____A C:\Users\Admin\Downloads\adwcleaner.exe 2013-06-27 23:17 - 2011-10-29 13:04 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy 2013-06-27 23:12 - 2011-10-29 13:04 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2013-06-27 22:14 - 2013-06-27 22:14 - 00064920 ____A C:\Windows\System32\GDIPFONTCACHEV1.DAT 2013-06-26 18:43 - 2013-06-26 18:43 - 00012872 ____A (SurfRight B.V.) C:\Windows\System32\bootdelete.exe 2013-06-26 18:43 - 2013-06-26 17:55 - 00000000 ____D C:\ProgramData\HitmanPro 2013-06-26 18:40 - 2013-06-26 18:40 - 00015072 ____A C:\Users\Admin\Desktop\HitmanPro_20130626_1840.log 2013-06-26 18:26 - 2013-06-26 17:56 - 00000000 ____D C:\Program Files\HitmanPro 2013-06-26 17:55 - 2013-06-26 17:55 - 09833328 ____A (SurfRight B.V.) C:\Users\Admin\Downloads\HitmanPro_x64.exe 2013-06-22 14:11 - 2011-05-13 21:03 - 00000000 ____D C:\Program Files (x86)\Java 2013-06-22 14:09 - 2013-06-22 14:09 - 00903080 ____A (Oracle Corporation) C:\Users\Admin\Downloads\jxpiinstall(3).exe 2013-06-22 14:07 - 2013-06-22 14:07 - 01093032 ____A (Oracle Corporation) C:\Windows\System32\npDeployJava1.dll 2013-06-22 14:07 - 2013-06-22 14:07 - 00972712 ____A (Oracle Corporation) C:\Windows\System32\deployJava1.dll 2013-06-22 14:07 - 2013-06-22 14:07 - 00312232 ____A (Oracle Corporation) C:\Windows\System32\javaws.exe 2013-06-22 14:07 - 2013-06-22 14:07 - 00189352 ____A (Oracle Corporation) C:\Windows\System32\javaw.exe 2013-06-22 14:07 - 2013-06-22 14:07 - 00188840 ____A (Oracle Corporation) C:\Windows\System32\java.exe 2013-06-22 14:07 - 2013-06-22 14:07 - 00108968 ____A (Oracle Corporation) C:\Windows\System32\WindowsAccessBridge-64.dll 2013-06-22 14:07 - 2013-06-22 14:07 - 00000000 ____D C:\Program Files\Java 2013-06-22 14:06 - 2013-06-22 14:05 - 33150376 ____A (Oracle Corporation) C:\Users\Admin\Downloads\jre-7u25-windows-x64.exe 2013-06-22 11:48 - 2012-10-28 16:08 - 00000000 ___RD C:\Users\Admin\SkyDrive 2013-06-22 11:29 - 2013-06-22 11:29 - 00000381 ____A C:\Windows\wininit.ini 2013-06-22 11:29 - 2013-06-22 11:28 - 00283562 ____A C:\Users\Admin\Desktop\SpybotSD.Results.txt 2013-06-22 11:01 - 2009-07-14 19:55 - 00697896 ____A C:\Windows\System32\perfh015.dat 2013-06-22 11:01 - 2009-07-14 19:55 - 00135006 ____A C:\Windows\System32\perfc015.dat 2013-06-22 11:01 - 2009-07-14 07:13 - 01549932 ____A C:\Windows\System32\PerfStringBackup.INI 2013-06-21 14:06 - 2013-07-02 22:34 - 27781920 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglv64.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 25256224 ____A (NVIDIA Corporation) C:\Windows\System32\nvcompiler.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 21102368 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 17560352 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 15144928 ____A (NVIDIA Corporation) C:\Windows\System32\nvd3dumx.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 12427240 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 11235104 ____A (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys 2013-06-21 14:06 - 2013-07-02 22:34 - 09239344 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuda.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 07687592 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 07641832 ____A (NVIDIA Corporation) C:\Windows\System32\nvopencl.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 06324360 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 02953504 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvid.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 02777888 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 02363680 ____A (NVIDIA Corporation) C:\Windows\System32\nvcuvenc.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 02002720 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 01832224 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispco6432049.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 01511712 ____A (NVIDIA Corporation) C:\Windows\System32\nvdispgenco6432049.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 00925648 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 00572704 ____A (NVIDIA Corporation) C:\Windows\System32\NvFBC64.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 00570656 ____A (NVIDIA Corporation) C:\Windows\System32\NvIFR64.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 00467232 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 00465184 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 00266448 ____A (NVIDIA Corporation) C:\Windows\System32\nvinitx.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 00218592 ____A (NVIDIA Corporation) C:\Windows\System32\nvoglshim64.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 00214448 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2013-06-21 14:06 - 2013-07-02 22:34 - 00181488 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2013-06-21 14:06 - 2012-10-10 22:23 - 01059560 ____A (NVIDIA Corporation) C:\Windows\System32\nvumdshimx.dll 2013-06-21 14:06 - 2011-05-06 13:29 - 00021578 ____A C:\Windows\System32\nvinfo.pb 2013-06-21 14:06 - 2011-05-06 13:28 - 15920536 ____A (NVIDIA Corporation) C:\Windows\System32\nvwgf2umx.dll 2013-06-21 14:06 - 2011-05-06 13:28 - 13411896 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2013-06-21 14:06 - 2011-05-06 13:28 - 02936208 ____A (NVIDIA Corporation) C:\Windows\System32\nvapi64.dll 2013-06-21 14:06 - 2011-05-06 13:28 - 02597856 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2013-06-21 12:23 - 2010-10-19 02:25 - 06496544 ____A (NVIDIA Corporation) C:\Windows\System32\nvcpl.dll 2013-06-21 12:23 - 2010-10-19 02:25 - 03514656 ____A (NVIDIA Corporation) C:\Windows\System32\nvsvc64.dll 2013-06-21 12:23 - 2010-10-19 02:25 - 02555680 ____A (NVIDIA Corporation) C:\Windows\System32\nvsvcr.dll 2013-06-21 12:23 - 2010-10-19 02:25 - 00884512 ____A (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe 2013-06-21 12:23 - 2010-10-19 02:25 - 00237856 ____A (NVIDIA Corporation) C:\Windows\System32\nvmctray.dll 2013-06-21 12:23 - 2010-10-19 02:25 - 00063776 ____A (NVIDIA Corporation) C:\Windows\System32\nvshext.dll 2013-06-21 05:16 - 2013-06-21 05:16 - 00566048 ____A (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2013-06-20 21:40 - 2013-06-20 18:30 - 00029876 ____A C:\Users\Admin\Desktop\Bez tytułu 2.odt 2013-06-20 20:52 - 2013-06-20 20:52 - 00377856 ____A C:\Users\Admin\Downloads\88t52tef.exe 2013-06-20 18:29 - 2013-06-20 18:29 - 00797784 ____A (Duplex Secure Ltd.) C:\Users\Admin\Downloads\SPTDinst-v183-x64.exe 2013-06-20 06:17 - 2012-11-18 19:25 - 03253909 ____A C:\Windows\System32\nvcoproc.bin 2013-06-19 21:02 - 2013-06-19 21:02 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Windows Live Writer 2013-06-19 21:02 - 2013-06-19 21:02 - 00000000 ____D C:\Users\Admin\AppData\Local\Windows Live Writer 2013-06-19 21:01 - 2012-10-28 16:07 - 00000000 ____D C:\Users\Admin\AppData\Local\Windows Live 2013-06-19 21:01 - 2012-01-06 16:12 - 00064920 ____A C:\Windows\SysWOW64\GDIPFONTCACHEV1.DAT 2013-06-19 20:13 - 2013-06-19 19:02 - 00087654 ____A C:\Users\Admin\Downloads\OTL.Txt 2013-06-19 20:13 - 2013-06-19 19:02 - 00058130 ____A C:\Users\Admin\Downloads\Extras.Txt 2013-06-19 18:52 - 2013-06-20 20:23 - 00602112 ____A (OldTimer Tools) C:\Users\Admin\Desktop\OTL.exe 2013-06-19 18:52 - 2013-06-19 18:52 - 00602112 ____A (OldTimer Tools) C:\Users\Admin\Downloads\OTL.exe 2013-06-18 23:11 - 2013-06-18 23:10 - 13081608 ____A (Microsoft Corporation) C:\Users\Admin\Downloads\Silverlight_x64(1).exe 2013-06-18 23:09 - 2012-04-01 13:14 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-06-18 23:09 - 2011-06-04 10:50 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-06-18 22:35 - 2013-06-18 22:35 - 00000000 ____D C:\Users\Admin\AppData\LocalGoogle 2013-06-18 22:35 - 2013-04-13 13:11 - 00000000 ____D C:\Program Files (x86)\Google 2013-06-18 22:35 - 2011-05-14 18:36 - 00000000 ____D C:\Users\Admin\AppData\Local\Google 2013-06-18 22:33 - 2013-06-18 22:33 - 00000000 ____D C:\Users\Admin\AppData\Roaming\TuneUp Software 2013-06-18 22:29 - 2013-06-18 22:29 - 150643160 ____A (AVG Technologies) C:\Users\Admin\Downloads\avg_free_x64_all_2013_3345a6382.exe 2013-06-18 22:21 - 2013-06-18 22:21 - 00654960 ____A C:\Users\Admin\Downloads\AVG-AntiVirus-Free-Edition(13206).exe 2013-06-18 22:17 - 2013-06-18 21:57 - 00000002 ____A C:\AvastSetup.log 2013-06-18 21:55 - 2011-05-06 13:04 - 00000000 ____D C:\users\Admin 2013-06-18 20:52 - 2012-12-25 15:58 - 00000000 ____D C:\Windows\pss 2013-06-18 20:52 - 2012-12-24 20:06 - 00000000 ____D C:\users\gość2 2013-06-18 20:52 - 2012-10-28 16:14 - 00000000 ____D C:\Windows\pl 2013-06-18 20:52 - 2011-06-09 21:05 - 00000000 ____D C:\Windows\System32\SPReview 2013-06-18 20:52 - 2011-06-09 21:05 - 00000000 ____D C:\Windows\System32\EventProviders 2013-06-18 20:52 - 2011-05-13 21:25 - 00000000 ____D C:\Windows\System32\Macromed 2013-06-18 20:52 - 2011-05-10 20:27 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-06-18 20:52 - 2011-05-06 13:09 - 00000000 ____D C:\Windows\SysWOW64\Atheros_L1e 2013-06-18 20:52 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\Offline Web Pages 2013-06-18 20:52 - 2009-07-14 06:45 - 00000000 ____D C:\Windows\Setup 2013-06-18 20:52 - 2009-07-14 05:20 - 00000000 ___HD C:\Windows\System32\GroupPolicy 2013-06-18 20:52 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\TAPI 2013-06-18 20:52 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Recovery 2013-06-18 20:52 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\sysprep 2013-06-18 20:52 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\security 2013-06-18 20:52 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-06-18 20:52 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-06-18 20:52 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\L2Schemas 2013-06-18 20:51 - 2012-12-04 22:36 - 00000000 ____D C:\Users\Admin\AppData\Roaming\BITS 2013-06-18 20:51 - 2012-05-04 15:02 - 00000000 ____D C:\Users\Admin\Desktop\OpenOffice.org 3.3 (pl) Installation Files 2013-06-18 20:51 - 2011-10-26 21:40 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-06-18 20:51 - 2011-07-11 17:27 - 00000000 ____D C:\Windows\Album 2013-06-18 20:51 - 2011-07-11 15:41 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Skype 2013-06-18 20:51 - 2011-05-29 15:09 - 00000000 ____D C:\Program Files (x86)\The KMPlayer 2013-06-18 20:51 - 2011-05-13 20:43 - 00000000 ____D C:\Users\Admin\AppData\Roaming\GanymedeNet 2013-06-18 20:51 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Microsoft Games 2013-06-18 20:51 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help 2013-06-18 20:51 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat 2013-06-18 20:51 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2013-06-18 20:48 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration 2013-06-18 20:37 - 2013-06-16 22:01 - 00000000 ___SD C:\Users\Admin\GG dysk 2013-06-18 20:37 - 2012-06-18 21:17 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Samsung 2013-06-18 20:37 - 2011-05-09 22:10 - 00000000 ____D C:\Users\Admin\AppData\Roaming\Mozilla 2013-06-18 20:37 - 2011-05-09 22:10 - 00000000 ____D C:\Users\Admin\AppData\Local\Mozilla 2013-06-18 20:36 - 2012-06-18 18:21 - 00000000 ____D C:\Users\Admin\AppData\Local\Downloaded Installations 2013-06-18 20:36 - 2011-05-06 13:11 - 00000000 ____D C:\ProgramData\Adobe 2013-06-18 20:27 - 2011-05-06 13:04 - 00000000 __SHD C:\Recovery 2013-06-17 21:48 - 2013-06-17 21:29 - 00000000 ____D C:\Users\Admin\Desktop\Andrzej Pisula 2013-06-13 20:49 - 2011-05-06 19:53 - 00000000 ____D C:\Windows\Panther Files to move or delete: ==================== C:\ProgramData\NTUser.dat ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-07-05 20:35 ==================== End Of Log ============================