Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-07-2013
Ran by Alex (administrator) on 02-07-2013 14:41:13
Running from C:\Users\Alex\Desktop\usb fake
Windows 7 Ultimate (X64) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(ASUSTeK Computer Inc.) C:\Windows\system32\FBAgent.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ASUS) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\syswow64\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\ismagent.exe
() C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\updateui.exe
(Nullsoft) C:\Program Files (x86)\Winamp\winamp.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp [11406608 2011-12-19] (Intel Corporation)
HKLM\...\Run: [ETDCtrl] %ProgramFiles%\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AtherosBtStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" [1014432 2011-12-29] (Atheros Communications)
HKLM\...\Run: [AthBtTray] "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe" [800416 2011-12-29] (Atheros Commnucations)
HKLM\...\Policies\Explorer\Run: [59796] C:\PROGRA~3\LOCALS~1\Temp\ccvkga.exe [126134 2009-07-14] ( (Hause))
HKCU\...\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [1475072 2009-07-14] (Microsoft Corporation)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKCU\...\CurrentVersion\Windows: [Load] C:\Users\Alex\LOCALS~1\Temp\ccbkyui.com
MountPoints2: {0f606896-c3b5-11e2-8ad9-dc85de066766} - F:\Autorun.exe
MountPoints2: {dbd13024-c3c7-11e2-a58a-806e6f6e6963} - E:\InstAll.exe
HKLM-x32\...\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [291608 2012-02-07] (Intel Corporation)
HKLM-x32\...\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2319536 2011-10-18] (ASUS)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [328064 2012-09-14] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [178848 2012-07-17] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
HKU\test\...\Policies\system: [LogonHoursAction] 2
HKU\test\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
AppInit_DLLs: C:\Windows\system32\nvinitx.dll [250504 2013-03-15] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [205184 2013-03-15] (NVIDIA Corporation)
==================== Internet (Whitelisted) ====================
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\v08fqcne.default
FF Homepage: google.pl
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.21.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: No Name - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\v08fqcne.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
FF Extension: No Name - C:\Users\Alex\AppData\Roaming\Mozilla\Firefox\Profiles\v08fqcne.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension:
smartwebprinting@hp.com
4.51
{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
3.0.0.0
3.*.*.*
HP Smart Web Printing
Print what you want, how you want.
hp.com
http://www.hp.com/go/smartwebprinting
chrome://hpsmartwebprinting/content/about.xul
chrome://hpsmartwebprinting/skin/toolbar-icon-normal-24.png
WINNT_x86-msvc
- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension:
smartwebprinting@hp.com
4.51
{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
3.0.0.0
3.*.*.*
HP Smart Web Printing
Print what you want, how you want.
hp.com
http://www.hp.com/go/smartwebprinting
chrome://hpsmartwebprinting/content/about.xul
chrome://hpsmartwebprinting/skin/toolbar-icon-normal-24.png
WINNT_x86-msvc
- C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
==================== Services (Whitelisted) =================
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-21] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-21] (Intel Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-12-29] (Atheros)
==================== Drivers (Whitelisted) ====================
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2012-04-11] (Windows (R) Win 7 DDK provider)
R3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2012-04-11] (Windows (R) Win 7 DDK provider)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-05-24] (Duplex Secure Ltd.)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-02 14:39 - 2013-07-02 14:39 - 00000000 ____D C:\Windows\System32\appmgmt
2013-07-02 13:57 - 2013-07-02 14:35 - 00000000 ____D C:\FRST
2013-07-02 13:51 - 2013-07-02 14:41 - 00000000 ____D C:\Users\Alex\Desktop\usb fake
2013-07-02 13:51 - 2013-07-02 13:51 - 00003079 ____A C:\UsbFix [Listing 1 ] ASUS.txt
2013-07-02 12:23 - 2013-07-02 13:51 - 00000000 ____D C:\UsbFix
2013-07-02 11:55 - 2013-07-02 14:24 - 00000224 ____A C:\Windows\setupact.log
2013-07-02 11:55 - 2013-07-02 13:30 - 00001914 ____A C:\Windows\PFRO.log
2013-07-02 11:55 - 2013-07-02 11:55 - 00000000 ____A C:\Windows\setuperr.log
2013-07-02 11:47 - 2013-07-02 11:47 - 00000000 ____D C:\Program Files\CCleaner
2013-07-01 15:56 - 2013-07-01 15:56 - 00000000 ____D C:\Users\Alex\Desktop\oejzis
2013-07-01 14:13 - 2013-07-01 14:13 - 00001104 ____A C:\Users\Public\Desktop\MixPad Audio Mixer.lnk
2013-07-01 14:12 - 2013-07-01 14:13 - 00769140 ____A C:\Users\Alex\Desktop\NCH.MixPad.Audio.Mixer.v2.52.Incl.Keymaker-DJiNN.rar
2013-06-29 20:52 - 2013-07-02 14:25 - 00000000 ____D C:\Users\Alex\Downloads\Nowy folder
2013-06-27 15:02 - 2013-06-27 15:22 - 00000000 ____D C:\Users\Alex\Downloads\PL
2013-06-26 21:56 - 2013-06-26 22:18 - 00603342 ____A C:\Users\Alex\Documents\Nowy obraz mapy bitowej.bmp
2013-06-26 20:14 - 2013-06-26 20:33 - 01643694 ____A C:\Users\Alex\Documents\Interwały.jpeg
2013-06-26 20:14 - 2013-06-26 20:33 - 01487671 ____A C:\Users\Alex\Documents\GRYF.jpeg
2013-06-26 20:12 - 2013-06-26 20:33 - 02237407 ____A C:\Users\Alex\Documents\Skale.jpeg
2013-06-26 19:52 - 2013-06-26 19:51 - 00727129 ____A C:\Users\Alex\Documents\Wolontariat teatr.jpeg
2013-06-26 19:18 - 2013-06-26 19:17 - 01345947 ____A C:\Users\Alex\Documents\Woltomierz - instrukcja.jpeg
2013-06-26 13:38 - 2013-06-26 13:38 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-06-25 01:20 - 2012-04-13 23:18 - 11270965 ____A C:\Users\Alex\Documents\DLA NAT!_0001.wmv
2013-06-24 20:38 - 2013-06-24 21:02 - 00000000 ____D C:\Users\Alex\Documents\historia
2013-06-24 20:34 - 2013-06-24 21:02 - 00000000 ____D C:\Users\Alex\Documents\wos
2013-06-23 00:50 - 2013-06-23 00:50 - 00000000 ____D C:\ProgramData\APN
2013-06-23 00:16 - 2013-06-23 00:16 - 00000000 ____D C:\Program Files (x86)\Matroska Pack
2013-06-23 00:04 - 2013-06-23 00:04 - 00000000 ____D C:\Users\Alex\AppData\Roaming\NVIDIA
2013-06-21 15:17 - 2013-06-21 15:17 - 00000000 ____D C:\Users\Alex\Documents\Electronic Arts
2013-06-21 13:32 - 2013-06-21 13:32 - 00000000 ____D C:\Program Files (x86)\Microsoft WSE
2013-06-19 13:30 - 2013-07-02 11:49 - 00000000 ____D C:\Users\Alex\AppData\Roaming\BitTorrent
2013-06-19 13:30 - 2013-06-19 13:30 - 00000882 ____A C:\Users\Public\Desktop\BitTorrent.lnk
2013-06-17 21:16 - 2013-06-17 21:17 - 04804228 ____A C:\Users\Alex\Documents\11-09-2011_www_ModBase_PL_Save.rar
2013-06-17 12:30 - 2013-06-17 12:30 - 00000000 ____D C:\Users\Alex\AppData\Roaming\NapiProjekt
2013-06-17 01:18 - 2013-06-17 22:47 - 00000000 ____D C:\Users\Alex\Documents\GTA San Andreas User Files
2013-06-17 00:19 - 2013-06-17 00:19 - 00000000 ____D C:\Users\Alex\Documents\Archiwa z samsunga
2013-06-17 00:15 - 2013-06-17 00:15 - 00000000 ____D C:\Users\Alex\Documents\Nowe Gadu-Gadu
2013-06-13 23:43 - 2013-06-13 23:43 - 00002212 ____A C:\Users\Public\Desktop\Google Earth.lnk
2013-06-13 23:35 - 2013-07-02 14:40 - 00001044 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-06-13 23:35 - 2013-07-02 13:30 - 00001040 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-06-13 23:35 - 2013-06-13 23:43 - 00000000 ____D C:\Users\Alex\AppData\Local\Google
2013-06-13 23:35 - 2013-06-13 23:43 - 00000000 ____D C:\Program Files (x86)\Google
2013-06-13 20:25 - 2013-07-02 13:49 - 00000930 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-10 18:49 - 2013-06-26 19:50 - 00000000 ____D C:\Users\Alex\Documents\Fax
2013-06-10 13:13 - 2013-06-10 13:13 - 00866720 ____A (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-06-10 13:13 - 2013-06-10 13:13 - 00788896 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-06-10 13:13 - 2013-06-10 13:13 - 00263584 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-06-10 13:13 - 2013-06-10 13:13 - 00174496 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-06-10 13:13 - 2013-06-10 13:13 - 00174496 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-06-10 13:13 - 2013-06-10 13:13 - 00095648 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-06-10 13:13 - 2013-06-10 13:13 - 00000000 ____D C:\ProgramData\Sun
2013-06-10 13:13 - 2013-06-10 13:13 - 00000000 ____D C:\Program Files (x86)\Java
2013-06-06 16:41 - 2013-06-07 09:29 - 00000000 ____D C:\Users\Alex\Documents\Chemia
2013-06-03 00:58 - 2013-06-24 21:56 - 00000000 ____D C:\Users\Alex\Documents\Matematyka
2013-06-02 23:43 - 2013-06-03 00:10 - 00000000 ____D C:\Users\Alex\Documents\Fizyka
==================== One Month Modified Files and Folders =======
2013-07-02 14:41 - 2013-07-02 13:51 - 00000000 ____D C:\Users\Alex\Desktop\usb fake
2013-07-02 14:40 - 2013-06-13 23:35 - 00001044 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-02 14:39 - 2013-07-02 14:39 - 00000000 ____D C:\Windows\System32\appmgmt
2013-07-02 14:38 - 2009-07-14 19:55 - 00697912 ____A C:\Windows\System32\perfh015.dat
2013-07-02 14:38 - 2009-07-14 19:55 - 00134990 ____A C:\Windows\System32\perfc015.dat
2013-07-02 14:38 - 2009-07-14 07:13 - 01549696 ____A C:\Windows\System32\PerfStringBackup.INI
2013-07-02 14:35 - 2013-07-02 13:57 - 00000000 ____D C:\FRST
2013-07-02 14:25 - 2013-06-29 20:52 - 00000000 ____D C:\Users\Alex\Downloads\Nowy folder
2013-07-02 14:24 - 2013-07-02 11:55 - 00000224 ____A C:\Windows\setupact.log
2013-07-02 13:54 - 2013-05-23 18:27 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Winamp
2013-07-02 13:53 - 2013-05-23 15:36 - 00000830 ____A C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2013-07-02 13:51 - 2013-07-02 13:51 - 00003079 ____A C:\UsbFix [Listing 1 ] ASUS.txt
2013-07-02 13:51 - 2013-07-02 12:23 - 00000000 ____D C:\UsbFix
2013-07-02 13:49 - 2013-06-13 20:25 - 00000930 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-02 13:37 - 2009-07-14 06:45 - 00013728 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-02 13:37 - 2009-07-14 06:45 - 00013728 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-02 13:30 - 2013-07-02 11:55 - 00001914 ____A C:\Windows\PFRO.log
2013-07-02 13:30 - 2013-06-13 23:35 - 00001040 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-02 13:30 - 2013-05-23 15:36 - 00000828 ____A C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2013-07-02 13:30 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-02 12:15 - 2013-05-23 16:46 - 00000000 ____D C:\Users\Alex\Documents\Sterowniki
2013-07-02 11:55 - 2013-07-02 11:55 - 00000000 ____A C:\Windows\setuperr.log
2013-07-02 11:49 - 2013-06-19 13:30 - 00000000 ____D C:\Users\Alex\AppData\Roaming\BitTorrent
2013-07-02 11:49 - 2013-05-24 11:41 - 00000000 ____D C:\Users\Alex\AppData\Roaming\uTorrent
2013-07-02 11:49 - 2013-05-23 21:35 - 00000000 ____D C:\Users\Alex\AppData\Roaming\DAEMON Tools Lite
2013-07-02 11:49 - 2013-05-23 19:42 - 00000000 ____D C:\Windows\Panther
2013-07-02 11:49 - 2013-05-23 18:07 - 00000000 ____D C:\Users\Alex\AppData\Local\CrashDumps
2013-07-02 11:49 - 2013-05-23 16:15 - 00000000 ____D C:\Windows\Minidump
2013-07-02 11:47 - 2013-07-02 11:47 - 00000000 ____D C:\Program Files\CCleaner
2013-07-02 00:36 - 2013-05-23 20:37 - 00000000 ____D C:\Users\Alex\Desktop\Zdjęcia
2013-07-01 15:56 - 2013-07-01 15:56 - 00000000 ____D C:\Users\Alex\Desktop\oejzis
2013-07-01 15:56 - 2013-05-26 12:09 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Free Audio Editor
2013-07-01 14:13 - 2013-07-01 14:13 - 00001104 ____A C:\Users\Public\Desktop\MixPad Audio Mixer.lnk
2013-07-01 14:13 - 2013-07-01 14:12 - 00769140 ____A C:\Users\Alex\Desktop\NCH.MixPad.Audio.Mixer.v2.52.Incl.Keymaker-DJiNN.rar
2013-07-01 00:33 - 2013-05-23 18:00 - 00000000 ____D C:\Users\Alex\AppData\Roaming\PhotoScape
2013-06-30 13:47 - 2013-05-26 14:26 - 00000000 ____D C:\Users\Alex\AppData\Roaming\NCH Software
2013-06-30 13:47 - 2013-05-26 14:26 - 00000000 ____D C:\ProgramData\NCH Software
2013-06-30 13:47 - 2013-05-26 14:26 - 00000000 ____D C:\Program Files (x86)\NCH Software
2013-06-30 12:14 - 2013-05-23 12:46 - 00000000 ____D C:\users\Alex
2013-06-30 12:13 - 2013-05-23 16:19 - 00001630 ____A C:\Windows\System32\AutoRunFilter.ini
2013-06-29 21:33 - 2013-05-23 16:35 - 00000000 ____D C:\Users\Alex\Desktop\Muzyka
2013-06-27 15:22 - 2013-06-27 15:02 - 00000000 ____D C:\Users\Alex\Downloads\PL
2013-06-26 22:18 - 2013-06-26 21:56 - 00603342 ____A C:\Users\Alex\Documents\Nowy obraz mapy bitowej.bmp
2013-06-26 20:33 - 2013-06-26 20:14 - 01643694 ____A C:\Users\Alex\Documents\Interwały.jpeg
2013-06-26 20:33 - 2013-06-26 20:14 - 01487671 ____A C:\Users\Alex\Documents\GRYF.jpeg
2013-06-26 20:33 - 2013-06-26 20:12 - 02237407 ____A C:\Users\Alex\Documents\Skale.jpeg
2013-06-26 19:51 - 2013-06-26 19:52 - 00727129 ____A C:\Users\Alex\Documents\Wolontariat teatr.jpeg
2013-06-26 19:50 - 2013-06-10 18:49 - 00000000 ____D C:\Users\Alex\Documents\Fax
2013-06-26 19:17 - 2013-06-26 19:18 - 01345947 ____A C:\Users\Alex\Documents\Woltomierz - instrukcja.jpeg
2013-06-26 13:38 - 2013-06-26 13:38 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-06-24 21:56 - 2013-06-03 00:58 - 00000000 ____D C:\Users\Alex\Documents\Matematyka
2013-06-24 21:02 - 2013-06-24 20:38 - 00000000 ____D C:\Users\Alex\Documents\historia
2013-06-24 21:02 - 2013-06-24 20:34 - 00000000 ____D C:\Users\Alex\Documents\wos
2013-06-23 12:40 - 2013-05-23 16:19 - 00001547 ____A C:\Windows\System32\ServiceFilter.ini
2013-06-23 00:50 - 2013-06-23 00:50 - 00000000 ____D C:\ProgramData\APN
2013-06-23 00:16 - 2013-06-23 00:16 - 00000000 ____D C:\Program Files (x86)\Matroska Pack
2013-06-23 00:04 - 2013-06-23 00:04 - 00000000 ____D C:\Users\Alex\AppData\Roaming\NVIDIA
2013-06-21 15:17 - 2013-06-21 15:17 - 00000000 ____D C:\Users\Alex\Documents\Electronic Arts
2013-06-21 13:32 - 2013-06-21 13:32 - 00000000 ____D C:\Program Files (x86)\Microsoft WSE
2013-06-21 13:27 - 2013-05-23 12:53 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-06-21 13:09 - 2013-05-23 16:08 - 00000000 ____D C:\Users\Alex\Documents\Bluetooth Folder
2013-06-19 13:30 - 2013-06-19 13:30 - 00000882 ____A C:\Users\Public\Desktop\BitTorrent.lnk
2013-06-17 22:47 - 2013-06-17 01:18 - 00000000 ____D C:\Users\Alex\Documents\GTA San Andreas User Files
2013-06-17 21:17 - 2013-06-17 21:16 - 04804228 ____A C:\Users\Alex\Documents\11-09-2011_www_ModBase_PL_Save.rar
2013-06-17 12:30 - 2013-06-17 12:30 - 00000000 ____D C:\Users\Alex\AppData\Roaming\NapiProjekt
2013-06-17 00:19 - 2013-06-17 00:19 - 00000000 ____D C:\Users\Alex\Documents\Archiwa z samsunga
2013-06-17 00:15 - 2013-06-17 00:15 - 00000000 ____D C:\Users\Alex\Documents\Nowe Gadu-Gadu
2013-06-16 11:00 - 2013-05-25 12:26 - 00000000 ____D C:\Users\test\Documents\Bluetooth Folder
2013-06-13 23:43 - 2013-06-13 23:43 - 00002212 ____A C:\Users\Public\Desktop\Google Earth.lnk
2013-06-13 23:43 - 2013-06-13 23:35 - 00000000 ____D C:\Users\Alex\AppData\Local\Google
2013-06-13 23:43 - 2013-06-13 23:35 - 00000000 ____D C:\Program Files (x86)\Google
2013-06-13 20:25 - 2013-05-23 16:59 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-13 20:25 - 2013-05-23 16:59 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-12 18:05 - 2013-05-23 17:16 - 00000000 ____D C:\ProgramData\Adobe
2013-06-12 18:04 - 2013-05-23 17:17 - 00000000 ____D C:\Users\Alex\AppData\Local\Adobe
2013-06-12 18:04 - 2013-05-23 17:01 - 00000000 ____D C:\Users\Alex\AppData\Roaming\Adobe
2013-06-10 13:13 - 2013-06-10 13:13 - 00866720 ____A (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-06-10 13:13 - 2013-06-10 13:13 - 00788896 ____A (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-06-10 13:13 - 2013-06-10 13:13 - 00263584 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-06-10 13:13 - 2013-06-10 13:13 - 00174496 ____A (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-06-10 13:13 - 2013-06-10 13:13 - 00174496 ____A (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-06-10 13:13 - 2013-06-10 13:13 - 00095648 ____A (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-06-10 13:13 - 2013-06-10 13:13 - 00000000 ____D C:\ProgramData\Sun
2013-06-10 13:13 - 2013-06-10 13:13 - 00000000 ____D C:\Program Files (x86)\Java
2013-06-07 09:29 - 2013-06-06 16:41 - 00000000 ____D C:\Users\Alex\Documents\Chemia
2013-06-03 00:10 - 2013-06-02 23:43 - 00000000 ____D C:\Users\Alex\Documents\Fizyka
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2009-07-14 01:56] - [2013-05-23 17:10] - 2868224 ____A (Microsoft Corporation) 858397F9C98D6DD1A5547DA39CAD3785
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-06-24 13:18
==================== End Of Log ============================