Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-08-2013 02
Ran by lukasz (administrator) on 23-08-2013 06:22:37
Running from C:\Users\lukasz\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(ASUSTeK Computer Inc.) C:\Windows\system32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
(Boingo Wireless, Inc.) C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Huawei Technologies Co., Ltd.) C:\Program Files (x86)\blueconnect\DataCardMonitor.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ASUS) C:\Windows\AsScrPro.exe
(Symantec Corporation) C:\Program Files (x86)\Norton AntiVirus\Engine\18.7.1.3\ccSvcHst.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Symantec Corporation) C:\Program Files (x86)\Norton AntiVirus\Engine\18.7.1.3\ccSvcHst.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS CopyProtect\aspg.exe
(ATK) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files (x86)\ASUS\Net4Switch\Net4Switch.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
() C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
() C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
(asus) C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ETDWare] - C:\Program Files\Elantech\ETDCtrl.exe [649608 2010-04-13] (ELAN Microelectronic Corp.)
HKCU\...\Run: [Syncables] - C:\Program Files (x86)\syncables\syncables desktop\Syncables.exe [370480 2010-04-05] (syncables, LLC)
HKCU\...\Run: [Sony PC Companion] - C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony)
HKCU\...\Run: [HW_OPENEYE_OUC_] - C:\Program Files (x86)\blueconnect\UpdateDog\ouc.exe [110592 2009-06-23] (Huawei Technologies Co., Ltd.)
MountPoints2: D - D:\AutoRun.exe
MountPoints2: F - F:\AutoRun.exe
MountPoints2: {35a7a396-9a0c-11e2-a916-20cf3036a21d} - F:\AutoRun.exe
MountPoints2: {478f0909-437f-11e2-a082-20cf3036a21d} - G:\AutoRun.exe
MountPoints2: {849d3f0c-0c45-11e1-9277-20cf3036a21d} - D:\AutoRun.exe
MountPoints2: {99acd9d0-7ac9-11e0-b35f-806e6f6e6963} - G:\AutoRun.exe
MountPoints2: {a0e16f0b-9953-11e2-b8f5-20cf3036a21d} - E:\AutoRun.exe
MountPoints2: {a0e16f22-9953-11e2-b8f5-20cf3036a21d} - F:\AutoRun.exe
MountPoints2: {d2c5567f-3eca-11e2-b2f2-001e101fe70e} - D:\AutoRun.exe /s
MountPoints2: {e830c03c-b857-11e1-a460-001e101f63cf} - D:\Startme.exe
MountPoints2: {ef162a9d-f1c3-11df-910c-20cf3036a21d} - D:\AutoRun.exe
MountPoints2: {ef162ad0-f1c3-11df-910c-20cf3036a21d} - F:\AutoRun.exe
HKLM-x32\...\Run: [UpdateLBPShortCut] - C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [Boingo Wi-Fi] - C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk [2429 2010-08-14] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [102400 2010-04-07] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ATKOSD2] - C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [6806144 2010-06-25] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-05-03] (ASUS)
HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440 2010-07-02] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2011-06-09] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [DataCardMonitor] - C:\Program Files (x86)\blueconnect\DataCardMonitor.exe [253952 2013-03-30] (Huawei Technologies Co., Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk
ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe (Acresso Software Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll (Google Inc.)
BHO-x32: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton AntiVirus\Engine\18.7.1.3\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
BHO-x32: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.67.73

FireFox:
========
FF ProfilePath: C:\Users\lukasz\AppData\Roaming\Mozilla\Firefox\Profiles\ft1uc1n6.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\IPSFFPlgn\
FF Extension: Symantec Intrusion Prevention - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\IPSFFPlgn\

Chrome: 
=======
CHR DefaultSearchURL: (Search the web (Babylon)) - http://search.babylon.com/?q={searchTerms}&affID=114506&tt=5212_7&babsrc=SP_clro&mntrId=bc196f44000000000000001e101fb45e
CHR DefaultSuggestURL: (Search the web (Babylon)) - {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat 5.0 CE\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.300.12) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)
CHR Plugin: (Java(TM) Platform SE 6 U30) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
CHR Extension: (Google Drive) - C:\Users\lukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0
CHR Extension: (YouTube) - C:\Users\lukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0
CHR Extension: (Google Search) - C:\Users\lukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0
CHR Extension: (Gmail) - C:\Users\lukasz\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 NAV; C:\Program Files (x86)\Norton AntiVirus\Engine\18.7.1.3\ccSvcHst.exe [130008 2011-04-17] (Symantec Corporation)
R3 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [125496 2007-08-03] ()

==================== Drivers (Whitelisted) ====================

R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\BASHDefs\20130715.001\BHDrvx64.sys [1393240 2013-05-31] (Symantec Corporation)
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\BASHDefs\20130715.001\BHDrvx64.sys [1393240 2013-05-31] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-08-23] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-08-23] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138912 2013-08-23] (Symantec Corporation)
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [249856 2010-03-24] (Huawei Technologies Co., Ltd.)
R2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [17464 2007-08-03] ()
R2 ghaio; C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [17464 2007-08-03] ()
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114560 2010-03-20] (Huawei Technologies Co., Ltd.)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\IPSDefs\20130821.002\IDSvia64.sys [520280 2013-08-14] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\IPSDefs\20130821.002\IDSvia64.sys [520280 2013-08-14] (Symantec Corporation)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\VirusDefs\20130822.016\ENG64.SYS [126040 2013-05-23] (Symantec Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\VirusDefs\20130822.016\ENG64.SYS [126040 2013-05-23] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\VirusDefs\20130822.016\EX64.SYS [2098776 2013-05-23] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.5.0.125\Definitions\VirusDefs\20130822.016\EX64.SYS [2098776 2013-05-23] (Symantec Corporation)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1800192 2009-08-20] ()
S3 SRTSP; C:\Windows\System32\Drivers\NAVx64\1207010.003\SRTSP64.SYS [744568 2011-03-31] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NAVx64\1207010.003\SRTSPX64.SYS [40568 2011-03-31] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NAVx64\1207010.003\SYMDS64.SYS [450680 2011-01-27] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NAVx64\1207010.003\SYMEFA64.SYS [912504 2011-03-15] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2011-09-01] (Symantec Corporation)
R1 SymIM; C:\Windows\System32\DRIVERS\SymIMv.sys [43640 2011-03-31] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NAVx64\1207010.003\Ironx64.SYS [171128 2010-11-16] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NAVx64\1207010.003\SYMNETS.SYS [386168 2011-04-21] (Symantec Corporation)
U3 tmlwf; 
U3 tmwfp; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-08-23 06:13 - 2013-08-23 04:56 - 00008937 _____ C:\Users\lukasz\Desktop\AdwCleaner[R0].txt
2013-08-23 05:36 - 2013-08-23 05:36 - 00000000 ____D C:\FRST
2013-08-23 05:33 - 2013-08-23 05:34 - 01576476 _____ (Farbar) C:\Users\lukasz\Desktop\FRST64.exe
2013-08-23 05:30 - 2013-08-23 05:30 - 00073248 _____ C:\Users\lukasz\Downloads\Extras.Txt
2013-08-23 05:25 - 2013-08-23 05:25 - 00094404 _____ C:\Users\lukasz\Downloads\OTL.Txt
2013-08-23 04:54 - 2013-08-23 04:56 - 00000000 ____D C:\AdwCleaner
2013-08-23 03:54 - 2013-08-23 03:54 - 00003252 _____ C:\Windows\System32\Tasks\{DDF9F666-C973-428D-A339-655F28F1A0C9}
2013-08-22 19:10 - 2013-08-22 19:10 - 00000000 ____D C:\6fae2fa6da3a6794d5f2c548571dc7ad
2013-08-20 17:51 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-20 17:51 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-20 17:50 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-20 17:50 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-20 17:50 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-20 17:25 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-20 17:20 - 2013-08-20 17:20 - 00602112 _____ (OldTimer Tools) C:\Users\lukasz\Downloads\OTL.exe
2013-08-20 17:07 - 2013-08-20 17:07 - 00000000 ____D C:\$WINDOWS.~BT
2013-08-20 17:06 - 2013-08-20 17:07 - 00002561 _____ C:\Windows\diagwrn.xml
2013-08-20 17:06 - 2013-08-20 17:07 - 00001908 _____ C:\Windows\diagerr.xml
2013-08-20 15:21 - 2013-08-20 15:21 - 00275040 _____ C:\Windows\Minidump\082013-23462-01.dmp
2013-08-14 16:34 - 2013-08-14 16:36 - 00000000 ____D C:\Users\lukasz\AppData\Roaming\WinRAR
2013-08-14 16:34 - 2013-08-14 16:34 - 00000000 ____D C:\Users\lukasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-08-14 16:34 - 2013-08-14 16:34 - 00000000 ____D C:\Program Files\WinRAR
2013-08-07 12:48 - 2011-05-03 17:20 - 00001345 _____ C:\Users\lukasz\Documents\Media Center.lnk
2013-08-06 21:56 - 2013-08-06 22:01 - 00000000 ____D C:\Windows\system32\MRT
2013-08-06 16:01 - 2013-08-06 16:01 - 00001988 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk

==================== One Month Modified Files and Folders =======

2013-08-23 06:08 - 2010-08-14 01:56 - 01889490 _____ C:\Windows\WindowsUpdate.log
2013-08-23 05:49 - 2010-08-14 02:16 - 00001062 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-23 05:36 - 2013-08-23 05:36 - 00000000 ____D C:\FRST
2013-08-23 05:35 - 2013-01-12 14:08 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-23 05:35 - 2013-01-12 14:08 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-23 05:35 - 2013-01-12 14:08 - 00003868 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-23 05:35 - 2013-01-12 14:08 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-23 05:34 - 2013-08-23 05:33 - 01576476 _____ (Farbar) C:\Users\lukasz\Desktop\FRST64.exe
2013-08-23 05:30 - 2013-08-23 05:30 - 00073248 _____ C:\Users\lukasz\Downloads\Extras.Txt
2013-08-23 05:25 - 2013-08-23 05:25 - 00094404 _____ C:\Users\lukasz\Downloads\OTL.Txt
2013-08-23 05:10 - 2009-07-14 06:45 - 00010240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-23 05:10 - 2009-07-14 06:45 - 00010240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-23 04:59 - 2010-11-16 22:58 - 00000000 ___HD C:\ASUS.DAT
2013-08-23 04:59 - 2010-08-14 02:16 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-23 04:58 - 2012-12-25 23:17 - 00001645 _____ C:\Windows\setupact.log
2013-08-23 04:58 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-23 04:56 - 2013-08-23 06:13 - 00008937 _____ C:\Users\lukasz\Desktop\AdwCleaner[R0].txt
2013-08-23 04:56 - 2013-08-23 04:54 - 00000000 ____D C:\AdwCleaner
2013-08-23 04:17 - 2013-03-26 07:05 - 00109638 _____ C:\Windows\PFRO.log
2013-08-23 04:09 - 2010-11-16 23:00 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-08-23 04:09 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-08-23 03:54 - 2013-08-23 03:54 - 00003252 _____ C:\Windows\System32\Tasks\{DDF9F666-C973-428D-A339-655F28F1A0C9}
2013-08-23 03:38 - 2012-12-24 16:01 - 00000000 ____D C:\Users\lukasz\Tracing
2013-08-23 03:17 - 2009-08-03 21:55 - 00698598 _____ C:\Windows\system32\perfh015.dat
2013-08-23 03:17 - 2009-08-03 21:55 - 00135418 _____ C:\Windows\system32\perfc015.dat
2013-08-23 03:17 - 2009-07-14 07:13 - 01571650 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-22 19:11 - 2013-07-12 21:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-22 19:10 - 2013-08-22 19:10 - 00000000 ____D C:\6fae2fa6da3a6794d5f2c548571dc7ad
2013-08-22 18:54 - 2012-08-15 19:50 - 00007617 _____ C:\Users\lukasz\AppData\Local\Resmon.ResmonCfg
2013-08-20 17:20 - 2013-08-20 17:20 - 00602112 _____ (OldTimer Tools) C:\Users\lukasz\Downloads\OTL.exe
2013-08-20 17:07 - 2013-08-20 17:07 - 00000000 ____D C:\$WINDOWS.~BT
2013-08-20 17:07 - 2013-08-20 17:06 - 00002561 _____ C:\Windows\diagwrn.xml
2013-08-20 17:07 - 2013-08-20 17:06 - 00001908 _____ C:\Windows\diagerr.xml
2013-08-20 17:06 - 2012-12-25 23:17 - 00000000 _____ C:\Windows\setuperr.log
2013-08-20 15:21 - 2013-08-20 15:21 - 00275040 _____ C:\Windows\Minidump\082013-23462-01.dmp
2013-08-20 15:21 - 2011-05-29 11:33 - 593550241 _____ C:\Windows\MEMORY.DMP
2013-08-20 15:21 - 2011-05-29 11:33 - 00000000 ____D C:\Windows\Minidump
2013-08-20 15:20 - 2010-08-14 02:39 - 00001318 _____ C:\Windows\system32\ServiceFilter.ini
2013-08-20 15:19 - 2010-08-14 02:39 - 00002172 _____ C:\Windows\system32\AutoRunFilter.ini
2013-08-14 16:36 - 2013-08-14 16:34 - 00000000 ____D C:\Users\lukasz\AppData\Roaming\WinRAR
2013-08-14 16:34 - 2013-08-14 16:34 - 00000000 ____D C:\Users\lukasz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-08-14 16:34 - 2013-08-14 16:34 - 00000000 ____D C:\Program Files\WinRAR
2013-08-08 21:18 - 2013-01-25 13:16 - 00000116 _____ C:\Windows\NeroDigital.ini
2013-08-07 12:52 - 2011-09-02 19:50 - 00000000 ____D C:\Users\lukasz\AppData\Local\CrashDumps
2013-08-06 22:01 - 2013-08-06 21:56 - 00000000 ____D C:\Windows\system32\MRT
2013-08-06 21:37 - 2011-09-01 10:40 - 00000000 ____D C:\ProgramData\Norton
2013-08-06 16:01 - 2013-08-06 16:01 - 00001988 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2013-08-06 16:01 - 2013-01-29 15:30 - 00035670 _____ C:\Windows\DPINST.LOG
2013-08-06 16:01 - 2010-08-14 02:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-08-04 13:08 - 2010-11-16 22:57 - 00000000 ____D C:\Users\lukasz
2013-08-04 12:17 - 2010-12-27 17:50 - 00000000 ____D C:\Gratka
2013-08-04 12:12 - 2013-03-17 18:53 - 00000000 ____D C:\Program Files (x86)\Strzel sobie... 2
2013-08-04 12:11 - 2013-01-24 20:07 - 00000000 ____D C:\Program Files (x86)\Ahead
2013-08-04 12:07 - 2012-03-04 16:35 - 00466944 ___SH C:\Users\lukasz\Desktop\Thumbs.db
2013-08-04 12:01 - 2010-08-14 02:16 - 00000000 ____D C:\Program Files (x86)\ASUS
2013-07-25 11:25 - 2013-08-20 17:51 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-25 10:57 - 2013-08-20 17:51 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-06-30 16:42

==================== End Of Log ============================