Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-01-2014 01 Ran by Michaś ^^ (administrator) on MICHAS-KOMPUTER on 12-01-2014 22:19:28 Running from C:\Users\Michaś ^^\Downloads Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polish Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\WTabletServiceCon.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Microsoft Corporation) C:\Windows\System32\wisptis.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUS) C:\Program Files\P4G\BatteryLife.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe () C:\ProgramData\DatacardService\HWDeviceService64.exe () C:\Windows\SysWOW64\srvany.exe () C:\Windows\KMService.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe () C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe () C:\Windows\SysWOW64\PnkBstrA.exe (Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe (arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Realtek) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe (Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe (Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe () C:\Windows\System32\WTMKM.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe (ASUS) C:\Windows\AsScrPro.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (Virage Logic Corporation / Sonic Focus) C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ASUS) C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe () C:\Program Files (x86)\PLAY ONLINE\UIExec.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe () C:\Windows\System32\atwtusb.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE () C:\Windows\System32\atwtusb.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TabletUser.exe (Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (Wacom Technology) C:\Program Files\Tablet\Pen\WacomHost.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_Tablet.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Pen\Pen_TouchUser.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (Google Inc.) C:\Users\Michaś ^^\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Michaś ^^\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Users\Michaś ^^\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2589992 2011-04-12] (ELAN Microelectronics Corp.) HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [617120 2011-03-13] (Atheros Communications) HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379552 2011-03-13] (Atheros Commnucations) HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4156 2010-04-17] () HKLM\...\Run: [] - [x] HKLM\...\Run: [MacroKeyManager] - C:\Windows\system32\WTMKM.exe [3207840 2009-04-24] () HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2226280 2011-05-17] (Realtek Semiconductor) HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [ASUSPRP] - C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2018032 2011-04-01] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [SonicMasterTray] - C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Virage Logic Corporation / Sonic Focus) HKLM-x32\...\Run: [ATKOSD2] - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUS) HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS) HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-24] () HKLM-x32\...\Run: [UIExec] - C:\Program Files (x86)\PLAY ONLINE\UIExec.exe [138584 2011-05-31] () HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.) HKLM-x32\...\Run: [AdobeCS5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated) HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-09-27] (Apple Inc.) HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.) HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.) HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software) HKLM-x32\...\Run: [DataCardMonitor] - C:\Program Files (x86)\blueconnect\DataCardMonitor.exe [259424 2013-10-10] (Huawei Technologies Co., Ltd.) HKLM-x32\...\Run: [AdobeCS6ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKCU\...\Run: [Facebook Update] - C:\Users\Michaś ^^\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook Inc.) HKCU\...\Run: [HW_OPENEYE_OUC_blueconnect] - C:\Program Files (x86)\blueconnect\UpdateDog\ouc.exe [116064 2011-03-26] (Huawei Technologies Co., Ltd.) HKCU\...\Run: [AdobeBridge] - [x] MountPoints2: F - F:\AutoRun.exe MountPoints2: G - G:\AutoRun.exe MountPoints2: {a2a34240-2600-11e2-948b-806e6f6e6963} - I:\Installer.exe MountPoints2: {a7723d6a-79e5-11e3-882d-0008ca26d9e9} - F:\AutoRun.exe MountPoints2: {aad8dde2-8a1f-11e1-9ef8-0008ca26d9e9} - F:\LaunchU3.exe -a MountPoints2: {af3f947b-b9b3-11e2-b453-0008ca26d9e9} - F:\Setup.exe MountPoints2: {b1e59232-409a-11e3-b338-0008ca26d9e9} - G:\AutoRun.exe MountPoints2: {d4621a5a-8319-11e2-a4c5-0008ca26d9e9} - F:\Setup.exe MountPoints2: {e3ef1f9a-573c-11e3-a570-0008ca26d9e9} - F:\AutoRun.exe MountPoints2: {e3ef1fab-573c-11e3-a570-0008ca26d9e9} - F:\AutoRun.exe MountPoints2: {ec0b5679-31b8-11e3-9ab2-0008ca26d9e9} - F:\AutoRun.exe MountPoints2: {ec0b5688-31b8-11e3-9ab2-0008ca26d9e9} - G:\AutoRun.exe MountPoints2: {f90350a2-7456-11e3-822a-0008ca26d9e9} - F:\AutoRun.exe AppInit_DLLs: C:\Windows\system32\nvinitx.dll [226920 2011-05-10] (NVIDIA Corporation) AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [193128 2011-05-10] (NVIDIA Corporation) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://aartemis.com/?type=hp&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://aartemis.com/?type=hp&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com/web/?type=ds&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://aartemis.com/?type=hp&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://aartemis.com/?type=hp&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com/web/?type=ds&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.aartemis.com/web/?type=ds&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://aartemis.com/?type=hp&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://aartemis.com/?type=hp&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.aartemis.com/web/?type=ds&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP&q={searchTerms} StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://aartemis.com/?type=sc&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP&q={searchTerms} SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP&q={searchTerms} SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP&q={searchTerms} SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://www.aartemis.com/web/?type=ds&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP&q={searchTerms} SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.) BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) DPF: HKLM-x32 {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab DPF: HKLM-x32 {8AD9C840-044E-11D1-B3E9-00805F499D93} http://javadl-esd.sun.com/update/1.4.1/jinstall-1_4_1-windows-i586.cab DPF: HKLM-x32 {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} https://www.bph.pl/sezam/components/SignActivX.cab Tcpip\Parameters: [DhcpNameServer] 155.158.99.2 Chrome: ======= CHR HomePage: hxxp://www.google.com/ CHR RestoreOnStartup: "https://www.facebook.com/" CHR Plugin: (Remoting Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Users\Micha\u015B ^^\AppData\Local\Google\Chrome\Application\26.0.1410.43\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Users\Micha\u015B ^^\AppData\Local\Google\Chrome\Application\26.0.1410.43\pdf.dll No File CHR Plugin: (Shockwave Flash) - C:\Users\Micha\u015B ^^\AppData\Local\Google\Chrome\Application\26.0.1410.43\gcswf32.dll No File CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File CHR Plugin: (StartSearch Video plug-in) - C:\Users\Micha\u015B ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\bildoibdboopgomcbiplincneeicgipj\1.3_0\chvsharetvplg.dll No File CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File CHR Plugin: (Zeon Plus) - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation) CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Micha\u015B ^^\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File CHR Plugin: (Google Update) - C:\Users\Micha\u015B ^^\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File CHR Extension: (YouTube) - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 [2013-04-11] CHR Extension: (http://www.asp.lodz.pl/index.php?option=com_c) - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\cdlojajofjejdlmfeellhjfokblkamhk\2012.10.4.52079_0 [2012-10-04] CHR Extension: (Extended Protection) - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0 [2014-01-02] CHR Extension: (Google Search) - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 [2013-03-28] CHR Extension: (http://www.facebook.com/) - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnknkgccldocdogpnhbaddbdhhjiindo\2012.10.4.52091_0 [2012-10-04] CHR Extension: (http://poczta.wp.pl/d646/index.html) - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehbpkbknllcedgmgjajopgenjggjgdb\2012.10.4.52087_0 [2012-10-04] CHR Extension: (Music Player for Google Drive) - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfeekfpnjbdmelcapngdgkjnhgijjkh\1.4_0 [2014-01-02] CHR Extension: (http://devilpage.pl/) - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\labamhkhplbpibgpbjofengomfcblilg\2012.10.4.52083_0 [2012-10-04] CHR Extension: (DVDVideoSoft) - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.3.0.0_0 [2013-11-24] CHR Extension: (Gmail) - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 [2012-11-10] CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2013-11-24] CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx [2014-01-02] CHR StartMenuInternet: Google Chrome - C:\Users\Michaś ^^\AppData\Local\Google\Chrome\Application\chrome.exe http://aartemis.com/?type=sc&ts=1388691044&from=cor&uid=ST9500325AS_S2W6WXJPXXXXS2W6WXJP ==================== Services (Whitelisted) ================= R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-03-13] (Atheros) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software) R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] () R2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2013-10-03] () R2 mi-raysat_3dsmax2012_64; C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe [86016 2011-02-22] () R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2012-03-16] () R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc) R2 Realtek11nSU; C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek) S2 UI Assistant Service; C:\Program Files (x86)\PLAY ONLINE\AssistantServices.exe [260976 2011-05-31] () R2 WTabletServiceCon; C:\Program Files\Tablet\Pen\WTabletServiceCon.exe [619904 2012-11-14] (Wacom Technology, Corp.) R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [621336 2013-12-04] (Wacom Technology, Corp.) R2 WTService; C:\Windows\System32\atwtusb.exe [660128 2009-04-24] () ==================== Drivers (Whitelisted) ==================== R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-08-30] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] () R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [88480 2013-03-31] () R3 BthMtpEnum; C:\Windows\System32\DRIVERS\BthMtpEnum.sys [64512 2009-07-14] (Microsoft Corporation) R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( ) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [46400 2013-03-31] () R3 moufiltr; C:\Windows\System32\DRIVERS\moufiltr.sys [7680 2009-03-08] (Windows (R) Codename Longhorn DDK provider) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564792 2012-11-03] (Duplex Secure Ltd.) R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-17] () R3 vhidmini; C:\Windows\System32\DRIVERS\walvhid.sys [7808 2009-04-16] (Windows (R) Codename Longhorn DDK provider) S3 wacommousefilter; system32\DRIVERS\wacommousefilter.sys [x] S3 wacomvhid; system32\DRIVERS\wacomvhid.sys [x] U3 afrdrpoc; \??\C:\Users\MICHA^~1\AppData\Local\Temp\afrdrpoc.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-01-12 22:17 - 2014-01-12 22:17 - 00132662 _____ C:\Users\Michaś ^^\Desktop\Extras.Txt 2014-01-12 22:16 - 2014-01-12 22:16 - 00137142 _____ C:\Users\Michaś ^^\Desktop\OTL.Txt 2014-01-12 21:59 - 2014-01-12 21:59 - 00216930 _____ C:\Users\Michaś ^^\Desktop\gmer.txt 2014-01-12 21:04 - 2014-01-12 21:04 - 00377856 _____ C:\Users\Michaś ^^\Downloads\slh707zl.exe 2014-01-12 20:43 - 2014-01-12 22:19 - 00022648 _____ C:\Users\Michaś ^^\Downloads\FRST.txt 2014-01-12 20:42 - 2014-01-12 20:42 - 00000000 ____D C:\FRST 2014-01-12 20:39 - 2014-01-12 20:41 - 02075136 _____ (Farbar) C:\Users\Michaś ^^\Downloads\FRST64.exe 2014-01-12 20:34 - 2014-01-12 22:14 - 00132662 _____ C:\Users\Michaś ^^\Downloads\Extras.Txt 2014-01-12 20:31 - 2014-01-12 22:13 - 00137142 _____ C:\Users\Michaś ^^\Downloads\OTL.Txt 2014-01-12 20:10 - 2014-01-12 20:11 - 00602112 _____ (OldTimer Tools) C:\Users\Michaś ^^\Downloads\OTL.exe 2014-01-12 17:29 - 2014-01-12 17:30 - 00000000 ____D C:\Windows\_ISTMP1.DIR 2014-01-12 11:48 - 2014-01-12 11:48 - 01415888 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_arm.exe 2014-01-12 11:47 - 2014-01-12 11:47 - 06498200 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x86.exe 2014-01-12 11:35 - 2014-01-12 11:41 - 07188536 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x64.exe 2014-01-12 11:30 - 2014-01-12 11:30 - 00003188 _____ C:\Windows\System32\Tasks\{CC51BCB3-8299-44F8-BEAB-FD57F3F25B9A} 2014-01-12 11:23 - 2014-01-12 11:25 - 05073240 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x86_2010.exe 2014-01-12 11:21 - 2014-01-12 11:22 - 03215280 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x64_2005_sp1_atl_4053.exe 2014-01-12 11:21 - 2014-01-12 11:21 - 04216840 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x86_2008_sp1.exe 2014-01-12 11:17 - 2014-01-12 11:18 - 05718872 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x64_2010.exe 2014-01-12 11:06 - 2014-01-12 11:06 - 00687804 _____ C:\Users\Michaś ^^\Downloads\witamina.exe 2014-01-11 15:21 - 2014-01-11 18:03 - 61203096 _____ C:\Users\Michaś ^^\Desktop\hiob.psd 2014-01-11 13:19 - 2014-01-11 13:19 - 86874986 _____ C:\Users\Michaś ^^\Desktop\GALERIA URBAN FORMS _ BEZT.mp4 2014-01-11 03:54 - 2014-01-11 03:54 - 00000000 ____D C:\Users\Michaś ^^\Desktop\dtp 2014-01-11 03:51 - 2014-01-11 03:53 - 30449068 _____ C:\Users\Michaś ^^\Downloads\dtp_ppdd.zip 2014-01-09 18:26 - 2014-01-09 18:33 - 00000000 ____D C:\ProgramData\Corel Painter Lite 2014-01-09 12:32 - 2014-01-11 04:23 - 00000000 ____D C:\Users\Michaś ^^\Desktop\wlepy 2014-01-09 12:23 - 2014-01-09 12:23 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_wacomrouterfilter_01009.Wdf 2014-01-09 12:22 - 2013-12-04 17:35 - 01945880 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Tablet.dll 2014-01-09 12:22 - 2013-12-04 17:35 - 01938712 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Touch_Tablet.dll 2014-01-09 12:22 - 2013-12-04 17:35 - 01604376 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Tablet.dll 2014-01-09 12:22 - 2013-12-04 17:35 - 01596696 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Touch_Tablet.dll 2014-01-09 02:25 - 2014-01-09 02:26 - 00000000 ____D C:\Users\Michaś ^^\Desktop\jazz 2014-01-08 13:28 - 2014-01-08 13:38 - 08279739 _____ C:\Users\Michaś ^^\Desktop\portfolio2.swf 2014-01-07 12:02 - 2014-01-07 12:02 - 144773949 _____ C:\Users\Michaś ^^\Desktop\czaq2.psd 2014-01-07 11:42 - 2014-01-07 11:47 - 153822918 _____ C:\Users\Michaś ^^\Desktop\czaq1.psd 2014-01-06 13:47 - 2014-01-06 14:22 - 456764435 _____ C:\Users\Michaś ^^\Desktop\czaq.psd 2014-01-03 22:45 - 2014-01-03 22:46 - 00000000 ____D C:\Users\Michaś ^^\Desktop\lito książka 2014-01-03 22:36 - 2014-01-03 22:44 - 80654959 _____ C:\Users\Michaś ^^\Downloads\Nowy folder.rar 2014-01-02 20:43 - 2014-01-02 20:43 - 00001124 _____ C:\Users\Michaś ^^\Desktop\EVEREST Ultimate Edition.lnk 2014-01-02 20:43 - 2014-01-02 20:43 - 00000000 ____D C:\Program Files (x86)\Lavalys 2014-01-02 20:42 - 2014-01-02 20:42 - 10255080 _____ (Lavalys, Inc. ) C:\Users\Michaś ^^\Downloads\everestultimate550.exe 2014-01-02 20:27 - 2014-01-02 20:28 - 00643880 _____ C:\Users\Michaś ^^\Downloads\everestultimate550_Downloader.exe 2014-01-02 19:35 - 2014-01-03 13:45 - 00000000 ____D C:\Users\Michaś ^^\Desktop\warsztat 2014-01-02 16:23 - 2014-01-02 16:23 - 01389691 _____ C:\Users\Michaś ^^\Desktop\Beznazwy-asfadf.cdr 2013-12-29 19:49 - 2014-01-11 14:37 - 00000000 ____D C:\Users\Michaś ^^\Desktop\brzytwa 2013-12-29 19:44 - 2013-12-30 00:33 - 00000000 ____D C:\Users\Michaś ^^\Desktop\cyfrowa 2013-12-27 16:27 - 2013-12-27 23:25 - 00000000 ____D C:\Users\Michaś ^^\Desktop\przerwa świąteczna 2013-12-23 13:38 - 2013-12-23 13:40 - 00000000 ____D C:\Users\Michaś ^^\Desktop\zdjęcia cieszyn 2013-12-23 00:29 - 2013-12-27 23:34 - 00000000 ____D C:\Users\Michaś ^^\Downloads\ALBWhispers 2013-12-23 00:27 - 2013-12-23 00:28 - 157259635 _____ (Sony Music Entertainment France (SAS)) C:\Users\Michaś ^^\Downloads\ALB_Whispers.exe 2013-12-22 14:33 - 2013-12-22 14:33 - 00025328 _____ C:\Users\Michaś ^^\Downloads\FuturaTOT-BoldCond.otf 2013-12-22 14:04 - 2014-01-08 12:32 - 00000000 ____D C:\Users\Michaś ^^\Desktop\portfolio 2013-12-17 16:23 - 2013-12-17 16:23 - 00000000 ____D C:\Users\Michaś ^^\Desktop\animacja 2013-12-17 10:13 - 2014-01-09 12:34 - 00000000 ____D C:\Users\Michaś ^^\Desktop\Family of the Year 2013-12-15 23:45 - 2013-12-16 17:18 - 00000000 ____D C:\Users\Michaś ^^\Desktop\Anthony Lister 2013-12-15 17:45 - 2013-12-16 14:20 - 00000000 ____D C:\Users\Michaś ^^\Desktop\komiks 2013-12-15 17:02 - 2014-01-04 11:44 - 00000000 ____D C:\Users\Michaś ^^\Desktop\illustracion 2013-12-13 16:02 - 2013-12-13 16:02 - 00034928 _____ C:\Users\Michaś ^^\Downloads\cwg_sans.zip 2013-12-13 16:01 - 2013-12-13 16:01 - 00059574 _____ C:\Users\Michaś ^^\Downloads\london_between.zip 2013-12-13 16:01 - 2013-12-13 16:01 - 00010791 _____ C:\Users\Michaś ^^\Downloads\ever_after.zip 2013-12-13 16:01 - 2013-12-13 16:01 - 00006343 _____ C:\Users\Michaś ^^\Downloads\dock_11.zip 2013-12-13 15:59 - 2013-12-13 15:59 - 00111464 _____ C:\Users\Michaś ^^\Downloads\sf_movie_poster.zip 2013-12-13 15:59 - 2013-12-13 15:59 - 00010746 _____ C:\Users\Michaś ^^\Downloads\basic_title_font.zip 2013-12-13 15:58 - 2013-12-13 15:58 - 00039095 _____ C:\Users\Michaś ^^\Downloads\neou.zip 2013-12-13 15:57 - 2013-12-13 15:57 - 00147718 _____ C:\Users\Michaś ^^\Downloads\carnevalee_freakshow.zip 2013-12-13 15:57 - 2013-12-13 15:57 - 00145331 _____ C:\Users\Michaś ^^\Downloads\nashville.zip 2013-12-13 15:57 - 2013-12-13 15:57 - 00089935 _____ C:\Users\Michaś ^^\Downloads\bleeding_cowboys.zip 2013-12-13 15:57 - 2013-12-13 15:57 - 00085269 _____ C:\Users\Michaś ^^\Downloads\white_vinegar.zip 2013-12-13 15:55 - 2013-12-13 15:55 - 00076754 _____ C:\Users\Michaś ^^\Downloads\k22_ambelyn_condensed.zip 2013-12-13 15:54 - 2013-12-13 15:54 - 00107533 _____ C:\Users\Michaś ^^\Downloads\alpha_wood.zip 2013-12-13 15:52 - 2013-12-13 15:52 - 01011097 _____ C:\Users\Michaś ^^\Downloads\brannboll.zip 2013-12-13 15:52 - 2013-12-13 15:52 - 00212052 _____ C:\Users\Michaś ^^\Downloads\marcelle.zip 2013-12-13 15:29 - 2013-12-13 15:29 - 00050280 _____ C:\Users\Michaś ^^\Downloads\Helvetica.ttf ==================== One Month Modified Files and Folders ======= 2014-01-12 22:19 - 2014-01-12 20:43 - 00022648 _____ C:\Users\Michaś ^^\Downloads\FRST.txt 2014-01-12 22:18 - 2011-11-15 17:51 - 01712192 _____ C:\Windows\WindowsUpdate.log 2014-01-12 22:17 - 2014-01-12 22:17 - 00132662 _____ C:\Users\Michaś ^^\Desktop\Extras.Txt 2014-01-12 22:16 - 2014-01-12 22:16 - 00137142 _____ C:\Users\Michaś ^^\Desktop\OTL.Txt 2014-01-12 22:14 - 2014-01-12 20:34 - 00132662 _____ C:\Users\Michaś ^^\Downloads\Extras.Txt 2014-01-12 22:13 - 2014-01-12 20:31 - 00137142 _____ C:\Users\Michaś ^^\Downloads\OTL.Txt 2014-01-12 21:59 - 2014-01-12 21:59 - 00216930 _____ C:\Users\Michaś ^^\Desktop\gmer.txt 2014-01-12 21:47 - 2012-10-20 18:37 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-01-12 21:05 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-01-12 21:05 - 2009-07-14 05:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-01-12 21:04 - 2014-01-12 21:04 - 00377856 _____ C:\Users\Michaś ^^\Downloads\slh707zl.exe 2014-01-12 20:55 - 2013-10-03 08:27 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2014-01-12 20:55 - 2009-07-14 03:34 - 00000593 _____ C:\Windows\win.ini 2014-01-12 20:54 - 2013-03-31 18:15 - 00118148 _____ C:\Windows\setupact.log 2014-01-12 20:54 - 2012-10-20 18:37 - 00001050 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-01-12 20:54 - 2011-11-15 18:15 - 00045056 _____ C:\Windows\system32\acovcnt.exe 2014-01-12 20:54 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2014-01-12 20:53 - 2013-10-19 22:49 - 00000000 ____D C:\Program Files (x86)\qualitink 2014-01-12 20:53 - 2013-03-31 18:14 - 00437424 _____ C:\Windows\PFRO.log 2014-01-12 20:44 - 2011-02-19 06:31 - 00752084 _____ C:\Windows\system32\perfh015.dat 2014-01-12 20:44 - 2011-02-19 06:31 - 00159966 _____ C:\Windows\system32\perfc015.dat 2014-01-12 20:44 - 2009-07-14 06:13 - 01701278 _____ C:\Windows\system32\PerfStringBackup.INI 2014-01-12 20:42 - 2014-01-12 20:42 - 00000000 ____D C:\FRST 2014-01-12 20:41 - 2014-01-12 20:39 - 02075136 _____ (Farbar) C:\Users\Michaś ^^\Downloads\FRST64.exe 2014-01-12 20:11 - 2014-01-12 20:10 - 00602112 _____ (OldTimer Tools) C:\Users\Michaś ^^\Downloads\OTL.exe 2014-01-12 17:30 - 2014-01-12 17:29 - 00000000 ____D C:\Windows\_ISTMP1.DIR 2014-01-12 17:14 - 2012-03-27 13:02 - 00000000 ____D C:\ProgramData\Protexis64 2014-01-12 11:48 - 2014-01-12 11:48 - 01415888 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_arm.exe 2014-01-12 11:48 - 2013-07-11 15:12 - 00000000 ____D C:\ProgramData\Package Cache 2014-01-12 11:47 - 2014-01-12 11:47 - 06498200 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x86.exe 2014-01-12 11:41 - 2014-01-12 11:35 - 07188536 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x64.exe 2014-01-12 11:30 - 2014-01-12 11:30 - 00003188 _____ C:\Windows\System32\Tasks\{CC51BCB3-8299-44F8-BEAB-FD57F3F25B9A} 2014-01-12 11:25 - 2014-01-12 11:23 - 05073240 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x86_2010.exe 2014-01-12 11:22 - 2014-01-12 11:21 - 03215280 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x64_2005_sp1_atl_4053.exe 2014-01-12 11:21 - 2014-01-12 11:21 - 04216840 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x86_2008_sp1.exe 2014-01-12 11:18 - 2014-01-12 11:17 - 05718872 _____ (Microsoft Corporation) C:\Users\Michaś ^^\Downloads\vcredist_x64_2010.exe 2014-01-12 11:14 - 2013-02-20 19:31 - 00000000 ____D C:\Program Files\Adobe 2014-01-12 11:06 - 2014-01-12 11:06 - 00687804 _____ C:\Users\Michaś ^^\Downloads\witamina.exe 2014-01-12 10:13 - 2013-10-25 18:58 - 00000000 ____D C:\Users\Michaś ^^\Desktop\Mark Weaver 2014-01-11 18:03 - 2014-01-11 15:21 - 61203096 _____ C:\Users\Michaś ^^\Desktop\hiob.psd 2014-01-11 14:37 - 2013-12-29 19:49 - 00000000 ____D C:\Users\Michaś ^^\Desktop\brzytwa 2014-01-11 13:19 - 2014-01-11 13:19 - 86874986 _____ C:\Users\Michaś ^^\Desktop\GALERIA URBAN FORMS _ BEZT.mp4 2014-01-11 12:07 - 2013-12-06 16:27 - 00000000 ____D C:\Users\Michaś ^^\Desktop\KOREKTA 2014-01-11 11:56 - 2013-12-04 15:50 - 00000000 ____D C:\Users\Michaś ^^\Desktop\ILUSTRACJE 2014-01-11 04:23 - 2014-01-09 12:32 - 00000000 ____D C:\Users\Michaś ^^\Desktop\wlepy 2014-01-11 03:54 - 2014-01-11 03:54 - 00000000 ____D C:\Users\Michaś ^^\Desktop\dtp 2014-01-11 03:53 - 2014-01-11 03:51 - 30449068 _____ C:\Users\Michaś ^^\Downloads\dtp_ppdd.zip 2014-01-09 18:33 - 2014-01-09 18:26 - 00000000 ____D C:\ProgramData\Corel Painter Lite 2014-01-09 18:31 - 2012-03-27 12:57 - 00000000 ____D C:\Program Files\Corel 2014-01-09 18:31 - 2012-03-19 17:39 - 00000000 ____D C:\ProgramData\Corel 2014-01-09 16:41 - 2011-11-15 18:15 - 00001556 _____ C:\Windows\system32\ServiceFilter.ini 2014-01-09 12:34 - 2013-12-17 10:13 - 00000000 ____D C:\Users\Michaś ^^\Desktop\Family of the Year 2014-01-09 12:23 - 2014-01-09 12:23 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_wacomrouterfilter_01009.Wdf 2014-01-09 12:23 - 2012-12-30 13:38 - 00000000 ____D C:\Program Files\TabletPlugins 2014-01-09 12:23 - 2012-12-30 13:20 - 00000000 ____D C:\Program Files (x86)\TabletPlugins 2014-01-09 12:23 - 2012-12-30 13:19 - 00000000 ____D C:\Program Files\Tablet 2014-01-09 11:45 - 2013-11-15 17:14 - 00000000 ____D C:\Users\Michaś ^^\Desktop\foto 2014-01-09 02:26 - 2014-01-09 02:25 - 00000000 ____D C:\Users\Michaś ^^\Desktop\jazz 2014-01-08 14:26 - 2013-11-04 14:41 - 00000000 ____D C:\Users\Michaś ^^\Desktop\sony 2014-01-08 13:38 - 2014-01-08 13:28 - 08279739 _____ C:\Users\Michaś ^^\Desktop\portfolio2.swf 2014-01-08 12:32 - 2013-12-22 14:04 - 00000000 ____D C:\Users\Michaś ^^\Desktop\portfolio 2014-01-07 12:02 - 2014-01-07 12:02 - 144773949 _____ C:\Users\Michaś ^^\Desktop\czaq2.psd 2014-01-07 11:47 - 2014-01-07 11:42 - 153822918 _____ C:\Users\Michaś ^^\Desktop\czaq1.psd 2014-01-07 09:15 - 2013-12-05 18:33 - 00000000 ____D C:\Users\Michaś ^^\Desktop\Fotografia 2014-01-06 14:22 - 2014-01-06 13:47 - 456764435 _____ C:\Users\Michaś ^^\Desktop\czaq.psd 2014-01-06 12:11 - 2012-09-15 17:28 - 00000000 ____D C:\Users\Michaś ^^\Desktop\wszystko i różne 2014-01-05 16:53 - 2012-03-21 16:49 - 00000000 ____D C:\Users\Michaś ^^\Desktop\prace, race i leginsy 2014-01-04 11:44 - 2013-12-15 17:02 - 00000000 ____D C:\Users\Michaś ^^\Desktop\illustracion 2014-01-03 22:46 - 2014-01-03 22:45 - 00000000 ____D C:\Users\Michaś ^^\Desktop\lito książka 2014-01-03 22:44 - 2014-01-03 22:36 - 80654959 _____ C:\Users\Michaś ^^\Downloads\Nowy folder.rar 2014-01-03 18:37 - 2013-11-27 12:42 - 00000000 ____D C:\Users\Michaś ^^\Desktop\LINO 2014-01-03 17:33 - 2013-10-26 17:44 - 00000000 ____D C:\Users\Michaś ^^\Desktop\praca wre 2014-01-03 16:42 - 2013-12-06 14:23 - 00000000 ____D C:\Users\Michaś ^^\Desktop\PRACE 2014-01-03 13:45 - 2014-01-02 19:35 - 00000000 ____D C:\Users\Michaś ^^\Desktop\warsztat 2014-01-02 20:43 - 2014-01-02 20:43 - 00001124 _____ C:\Users\Michaś ^^\Desktop\EVEREST Ultimate Edition.lnk 2014-01-02 20:43 - 2014-01-02 20:43 - 00000000 ____D C:\Program Files (x86)\Lavalys 2014-01-02 20:42 - 2014-01-02 20:42 - 10255080 _____ (Lavalys, Inc. ) C:\Users\Michaś ^^\Downloads\everestultimate550.exe 2014-01-02 20:28 - 2014-01-02 20:27 - 00643880 _____ C:\Users\Michaś ^^\Downloads\everestultimate550_Downloader.exe 2014-01-02 16:23 - 2014-01-02 16:23 - 01389691 _____ C:\Users\Michaś ^^\Desktop\Beznazwy-asfadf.cdr 2014-01-02 01:26 - 2013-02-06 14:54 - 00000000 ____D C:\Users\Michaś ^^\Desktop\muzyka z pulpitu 2013-12-31 14:27 - 2013-03-29 15:56 - 00000000 ____D C:\Users\Michaś ^^\Desktop\filmy 2013-12-30 00:33 - 2013-12-29 19:44 - 00000000 ____D C:\Users\Michaś ^^\Desktop\cyfrowa 2013-12-27 23:34 - 2013-12-23 00:29 - 00000000 ____D C:\Users\Michaś ^^\Downloads\ALBWhispers 2013-12-27 23:25 - 2013-12-27 16:27 - 00000000 ____D C:\Users\Michaś ^^\Desktop\przerwa świąteczna 2013-12-23 13:40 - 2013-12-23 13:38 - 00000000 ____D C:\Users\Michaś ^^\Desktop\zdjęcia cieszyn 2013-12-23 00:28 - 2013-12-23 00:27 - 157259635 _____ (Sony Music Entertainment France (SAS)) C:\Users\Michaś ^^\Downloads\ALB_Whispers.exe 2013-12-22 14:33 - 2013-12-22 14:33 - 00025328 _____ C:\Users\Michaś ^^\Downloads\FuturaTOT-BoldCond.otf 2013-12-17 16:23 - 2013-12-17 16:23 - 00000000 ____D C:\Users\Michaś ^^\Desktop\animacja 2013-12-16 17:18 - 2013-12-15 23:45 - 00000000 ____D C:\Users\Michaś ^^\Desktop\Anthony Lister 2013-12-16 14:20 - 2013-12-15 17:45 - 00000000 ____D C:\Users\Michaś ^^\Desktop\komiks 2013-12-14 09:24 - 2009-07-14 05:45 - 05221912 _____ C:\Windows\system32\FNTCACHE.DAT 2013-12-14 01:22 - 2013-11-19 00:46 - 00000000 ____D C:\Users\Michaś ^^\Desktop\koma 2013-12-13 16:02 - 2013-12-13 16:02 - 00034928 _____ C:\Users\Michaś ^^\Downloads\cwg_sans.zip 2013-12-13 16:01 - 2013-12-13 16:01 - 00059574 _____ C:\Users\Michaś ^^\Downloads\london_between.zip 2013-12-13 16:01 - 2013-12-13 16:01 - 00010791 _____ C:\Users\Michaś ^^\Downloads\ever_after.zip 2013-12-13 16:01 - 2013-12-13 16:01 - 00006343 _____ C:\Users\Michaś ^^\Downloads\dock_11.zip 2013-12-13 15:59 - 2013-12-13 15:59 - 00111464 _____ C:\Users\Michaś ^^\Downloads\sf_movie_poster.zip 2013-12-13 15:59 - 2013-12-13 15:59 - 00010746 _____ C:\Users\Michaś ^^\Downloads\basic_title_font.zip 2013-12-13 15:58 - 2013-12-13 15:58 - 00039095 _____ C:\Users\Michaś ^^\Downloads\neou.zip 2013-12-13 15:57 - 2013-12-13 15:57 - 00147718 _____ C:\Users\Michaś ^^\Downloads\carnevalee_freakshow.zip 2013-12-13 15:57 - 2013-12-13 15:57 - 00145331 _____ C:\Users\Michaś ^^\Downloads\nashville.zip 2013-12-13 15:57 - 2013-12-13 15:57 - 00089935 _____ C:\Users\Michaś ^^\Downloads\bleeding_cowboys.zip 2013-12-13 15:57 - 2013-12-13 15:57 - 00085269 _____ C:\Users\Michaś ^^\Downloads\white_vinegar.zip 2013-12-13 15:55 - 2013-12-13 15:55 - 00076754 _____ C:\Users\Michaś ^^\Downloads\k22_ambelyn_condensed.zip 2013-12-13 15:54 - 2013-12-13 15:54 - 00107533 _____ C:\Users\Michaś ^^\Downloads\alpha_wood.zip 2013-12-13 15:52 - 2013-12-13 15:52 - 01011097 _____ C:\Users\Michaś ^^\Downloads\brannboll.zip 2013-12-13 15:52 - 2013-12-13 15:52 - 00212052 _____ C:\Users\Michaś ^^\Downloads\marcelle.zip 2013-12-13 15:29 - 2013-12-13 15:29 - 00050280 _____ C:\Users\Michaś ^^\Downloads\Helvetica.ttf ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\rpcss.dll => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2014-01-09 00:49 ==================== End Of Log ============================