Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-09-2013 Ran by AS-BUD (administrator) on AS-BUD-KOMPUTER on 06-09-2013 08:47:58 Running from C:\Users\AS-BUD\Desktop\Nowy folder Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Polish Internet Explorer Version 10 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (ABBYY) C:\Program Files\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe (Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe (Microsoft Corporation) C:\Windows\system32\wuauclt.exe (OldTimer Tools) C:\Users\AS-BUD\Desktop\Nowy folder\TFC.exe (Opera Software) C:\Program Files\Opera\opera.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [995176 2013-06-20] (Microsoft Corporation) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.) HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [2238704 2013-02-21] (Logitech, Inc.) HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-18] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [SwitchBoard] - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeCS6ServiceManager] - C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM\...\Run: [Bonus.SSR.FR11] - C:\Program Files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [1348176 2012-09-20] (ABBYY) HKLM\...\Run: [ControlCenter3] - C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) HKLM\...\Run: [BrStsMon00] - C:\Program Files\Browny02\Brother\BrStMonW.exe [2629632 2012-09-25] (Brother Industries, Ltd.) HKCU\...\Run: [ChomikBox] - C:\Program Files\ChomikBox\chomikbox.exe [5979648 2012-11-15] ( ) HKCU\...\Run: [Sony PC Companion] - C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [449248 2013-05-29] (Sony) MountPoints2: {8dfe8d6f-0bb3-11e3-9409-001d6025cfeb} - G:\Startme.exe ==================== Internet (Whitelisted) ==================== BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation) BHO: Logitech SetPoint - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 194.204.152.34 194.204.159.1 Tcpip\..\Interfaces\{41638955-833A-4F1C-AEC7-80F2958A0AA8}: [NameServer]8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 FireFox: ======== FF ProfilePath: C:\Users\AS-BUD\AppData\Roaming\Mozilla\Firefox\Profiles\7dy9jvez.default FF SelectedSearchEngine: Google FF NetworkProxy: "type", 0 FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll () FF Plugin: @java.com/DTPlugin,version=10.15.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.15.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @Motive.com/NpMotive,version=1.0 - C:\Program Files\Common Files\Motive\npMotive.dll (Alcatel-Lucent) FF Plugin: @nokia.com/EnablerPlugin - C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( ) FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} FF HKLM\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt Chrome: ======= CHR HomePage: hxxp://www.google.com CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter} CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\29.0.1547.62\pdf.dll () CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation) CHR Plugin: (LizardTech DjVu) - C:\Program Files\Mozilla Firefox\plugins\npdjvu.dll (LizardTech) CHR Plugin: (QuickTime Plug-in 7.0.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Computer, Inc.) CHR Plugin: (QuickTime Plug-in 7.0.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Computer, Inc.) CHR Plugin: (QuickTime Plug-in 7.0.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Computer, Inc.) CHR Plugin: (QuickTime Plug-in 7.0.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Computer, Inc.) CHR Plugin: (QuickTime Plug-in 7.0.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Computer, Inc.) CHR Plugin: (QuickTime Plug-in 7.0.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Computer, Inc.) CHR Plugin: (QuickTime Plug-in 7.0.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Computer, Inc.) CHR Plugin: (Motive Plugin) - C:\Program Files\Common Files\Motive\npMotive.dll (Alcatel-Lucent) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) CHR Plugin: (Java(TM) Platform SE 7 U15) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) CHR Plugin: (Nokia Suite Enabler Plugin) - C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( ) CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.150.3) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation) CHR Extension: (Angry Birds) - C:\Users\AS-BUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0 CHR Extension: (Google Docs) - C:\Users\AS-BUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\AS-BUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\AS-BUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\AS-BUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Logitech SetPoint) - C:\Users\AS-BUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\edaibbiobngpbmeonadpbfafbkimjbdd\6.52.74_0 CHR Extension: (Google Wallet Service) - C:\Users\AS-BUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.9_0 CHR Extension: (Gmail) - C:\Users\AS-BUD\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 CHR HKLM\...\Chrome\Extension: [edaibbiobngpbmeonadpbfafbkimjbdd] - C:\ProgramData\Logitech\LogiSmoothChromeExt.crx ========================== Services (Whitelisted) ================= R2 ABBYY.Licensing.FineReader.Corporate.11.0; C:\Program Files\Common Files\ABBYY\FineReader\11.00\Licensing\CE\NetworkLicenseServer.exe [821840 2012-07-19] (ABBYY) S4 ABBYY.Licensing.FineReader.ScreenshotReader.9.0; C:\Program Files\ABBYY Screenshot Reader\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-06-20] (Microsoft Corporation) R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295376 2013-06-20] (Microsoft Corporation) S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) ==================== Drivers (Whitelisted) ==================== S3 Andbus; C:\Windows\System32\DRIVERS\lgandbus.sys [14336 2010-12-07] (LG Electronics Inc.) S3 AndDiag; C:\Windows\System32\DRIVERS\lganddiag.sys [20736 2010-12-07] (LG Electronics Inc.) S3 AndGps; C:\Windows\System32\DRIVERS\lgandgps.sys [20096 2010-12-07] (LG Electronics Inc.) S3 ANDModem; C:\Windows\System32\DRIVERS\lgandmodem.sys [25088 2010-12-07] (LG Electronics Inc.) R3 athur; C:\Windows\System32\DRIVERS\athur.sys [1500160 2010-01-05] (Atheros Communications, Inc.) R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation) S2 Kmm4xNT; C:\Windows\System32\Drivers\Kmm4xNT.sys [95484 2002-04-26] (DATOM Dariusz Cielebąk) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [211560 2013-06-18] (Microsoft Corporation) R1 MpKsla92631fd; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{091AD5E6-F9F8-47D4-9209-064CFB05492F}\MpKsla92631fd.sys [29904 2013-09-06] (Microsoft Corporation) S3 MREMP50; C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS [21248 2012-06-07] (Printing Communications Assoc., Inc. (PCAUSA)) S3 MRESP50; C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS [20096 2012-06-07] (Printing Communications Assoc., Inc. (PCAUSA)) R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] () ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-09-05 14:22 - 2013-09-05 14:25 - 00000000 ____D C:\AdwCleaner 2013-09-05 14:21 - 2013-09-05 14:22 - 01037222 _____ C:\Users\AS-BUD\Downloads\adwcleaner.exe 2013-09-05 13:52 - 2013-09-05 13:52 - 00000132 _____ C:\Users\AS-BUD\Desktop\fix.reg 2013-09-05 13:48 - 2013-09-05 13:48 - 00000134 _____ C:\Users\AS-BUD\Desktop\fix.txt 2013-09-05 13:44 - 2013-09-05 13:44 - 00002969 _____ C:\Users\AS-BUD\Desktop\HiJackThis.lnk 2013-09-05 13:44 - 2013-09-05 13:44 - 00000000 ____D C:\Users\AS-BUD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis 2013-09-05 13:44 - 2013-09-05 13:44 - 00000000 ____D C:\Program Files\Trend Micro 2013-08-30 11:52 - 2013-08-30 11:52 - 05198702 _____ (Macrovision Corporation) C:\Users\AS-BUD\Downloads\bal1240000pl.exe 2013-08-30 11:15 - 2013-08-30 11:15 - 00002090 _____ C:\Users\Public\Desktop\Brother Creative Center.lnk 2013-08-30 11:14 - 2013-08-30 11:14 - 00000000 ____D C:\Program Files\Browny02 2013-08-30 11:14 - 2013-08-30 11:14 - 00000000 ____D C:\Brother 2013-08-30 11:14 - 2010-03-08 13:50 - 00003072 ____N (Brother Industries Ltd.) C:\Windows\system32\BrDctF2S.dll 2013-08-30 11:14 - 2010-02-05 11:42 - 00180224 ____N (Brother Industries, Ltd.) C:\Windows\system32\BroSNMP.dll 2013-08-30 11:14 - 2007-12-13 22:16 - 00073728 ____N (Brother Industries Ltd.) C:\Windows\system32\BrDctF2.dll 2013-08-30 11:14 - 2007-12-13 22:16 - 00004608 ____N (Brother Industries Ltd.) C:\Windows\system32\BrDctF2L.dll 2013-08-30 10:59 - 2013-08-30 11:01 - 145679464 _____ (A.I.SOFT,INC.) C:\Users\AS-BUD\Downloads\dcp-j315w-inst-B1-cd5.EXE 2013-08-28 16:30 - 2013-09-06 08:47 - 00000000 ____D C:\Users\AS-BUD\Desktop\Nowy folder 2013-08-26 14:08 - 2012-08-20 06:19 - 01534464 _____ (Brother Industries, Ltd.) C:\Windows\system32\BrWi209c.dll 2013-08-26 14:06 - 2013-08-26 14:06 - 00000000 ____D C:\Users\AS-BUD\Downloads\wlan_wiz 2013-08-26 14:05 - 2013-08-26 14:05 - 00000000 ____D C:\Users\AS-BUD\Downloads\install 2013-08-23 10:33 - 2013-08-23 10:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ggsemc_01009.Wdf 2013-08-23 10:33 - 2013-08-23 10:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ggflt_01009.Wdf 2013-08-23 10:23 - 2013-08-23 10:23 - 00025200 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggsemc.sys 2013-08-23 10:23 - 2013-08-23 10:23 - 00012400 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggflt.sys 2013-08-23 10:23 - 2013-08-23 10:23 - 00000000 ____D C:\ProgramData\Sony Ericsson 2013-08-23 10:22 - 2013-08-23 10:22 - 00000000 ____D C:\Program Files\Sony Ericsson 2013-08-23 09:50 - 2013-08-23 09:52 - 00180600 _____ C:\Windows\DPINST.LOG 2013-08-23 09:49 - 2013-08-23 09:49 - 00002048 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk 2013-08-23 09:49 - 2013-08-23 09:49 - 00000000 ____D C:\ProgramData\Sony 2013-08-23 09:49 - 2013-08-23 09:49 - 00000000 ____D C:\Program Files\Sony 2013-08-16 12:15 - 2013-08-16 12:21 - 00000000 ____D C:\Windows\system32\MRT 2013-08-16 12:10 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-08-16 12:10 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-08-16 12:10 - 2013-07-26 05:13 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-08-16 12:10 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-08-16 12:10 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-08-16 12:10 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-08-16 12:10 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-08-16 12:10 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-08-16 12:10 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-08-16 12:10 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-08-16 12:10 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-08-16 12:10 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-08-16 12:10 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-08-16 12:10 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-08-16 12:10 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-08-16 12:10 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-08-16 08:45 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-08-16 08:45 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2013-08-16 08:45 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2013-08-16 08:45 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-08-16 08:45 - 2013-07-09 06:53 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-08-16 08:45 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2013-08-16 08:45 - 2013-07-09 06:50 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2013-08-16 08:45 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-08-16 08:45 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2013-08-16 08:45 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2013-08-16 08:45 - 2013-07-06 07:05 - 01293760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-08-16 08:45 - 2013-06-15 05:38 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2013-08-14 07:03 - 2013-08-14 07:03 - 01067456 _____ (Solid State Networks) C:\Users\AS-BUD\Downloads\install_flashplayer11x32au_mssd_aaa_aih(2).exe 2013-08-13 17:39 - 2013-08-13 17:39 - 00044924 _____ C:\Users\AS-BUD\Downloads\kosztorys 1 (3).ods 2013-08-13 17:39 - 2013-08-13 17:39 - 00044924 _____ C:\Users\AS-BUD\Downloads\kosztorys 1 (2).ods 2013-08-13 17:38 - 2013-08-13 17:38 - 00044924 _____ C:\Users\AS-BUD\Downloads\kosztorys 1.ods 2013-08-13 17:38 - 2013-08-13 17:38 - 00044924 _____ C:\Users\AS-BUD\Downloads\kosztorys 1 (1).ods ==================== One Month Modified Files and Folders ======= 2013-09-06 08:47 - 2013-08-28 16:30 - 00000000 ____D C:\Users\AS-BUD\Desktop\Nowy folder 2013-09-06 08:11 - 2009-07-14 06:34 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-09-06 08:11 - 2009-07-14 06:34 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-09-06 07:56 - 2013-08-06 15:51 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-09-06 07:52 - 2012-04-02 06:51 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-09-06 07:13 - 2011-04-19 09:14 - 01893949 _____ C:\Windows\WindowsUpdate.log 2013-09-06 07:09 - 2012-12-21 08:13 - 00000000 ____D C:\Users\AS-BUD\AppData\Local\ChomikBox 2013-09-06 07:09 - 2012-12-21 08:13 - 00000000 ____D C:\Users\AS-BUD\.gstreamer-0.10 2013-09-06 07:08 - 2013-08-06 15:51 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-09-06 07:08 - 2013-06-21 19:13 - 00027930 _____ C:\Windows\PFRO.log 2013-09-06 07:08 - 2013-06-21 19:13 - 00021887 _____ C:\Windows\setupact.log 2013-09-06 07:08 - 2012-11-20 08:59 - 00000000 ____D C:\ProgramData\NVIDIA 2013-09-06 07:08 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-09-05 17:07 - 2013-06-21 15:59 - 00202228 _____ C:\Windows\msxml4-KB954430-enu.LOG 2013-09-05 16:12 - 2013-09-05 16:12 - 00000000 ____D C:\FRST 2013-09-05 14:26 - 2012-04-26 06:23 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2013-09-05 14:25 - 2013-09-05 14:22 - 00000000 ____D C:\AdwCleaner 2013-09-05 14:25 - 2011-10-25 15:25 - 00000925 _____ C:\Users\Public\Desktop\Opera.lnk 2013-09-05 14:25 - 2011-04-27 15:14 - 00001011 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-09-05 14:25 - 2011-04-19 09:32 - 00001156 _____ C:\Users\AS-BUD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-09-05 14:22 - 2013-09-05 14:21 - 01037222 _____ C:\Users\AS-BUD\Downloads\adwcleaner.exe 2013-09-05 14:21 - 2011-04-19 09:28 - 01663412 _____ C:\Windows\system32\PerfStringBackup.INI 2013-09-05 14:21 - 2009-07-14 10:07 - 00737942 _____ C:\Windows\system32\perfh015.dat 2013-09-05 14:21 - 2009-07-14 10:07 - 00154630 _____ C:\Windows\system32\perfc015.dat 2013-09-05 14:20 - 2013-05-24 10:36 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-09-05 13:52 - 2013-09-05 13:52 - 00000132 _____ C:\Users\AS-BUD\Desktop\fix.reg 2013-09-05 13:48 - 2013-09-05 13:48 - 00000134 _____ C:\Users\AS-BUD\Desktop\fix.txt 2013-09-05 13:44 - 2013-09-05 13:44 - 00002969 _____ C:\Users\AS-BUD\Desktop\HiJackThis.lnk 2013-09-05 13:44 - 2013-09-05 13:44 - 00000000 ____D C:\Users\AS-BUD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis 2013-09-05 13:44 - 2013-09-05 13:44 - 00000000 ____D C:\Program Files\Trend Micro 2013-09-05 13:03 - 2013-08-06 15:52 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-09-03 16:22 - 2013-08-02 15:25 - 00000000 ____D C:\Users\AS-BUD\Desktop\PLIKI WORD 2013-09-03 07:43 - 2011-04-26 10:09 - 00000000 ____D C:\Users\AS-BUD\AppData\Roaming\Adobe 2013-09-02 09:46 - 2013-03-20 13:29 - 00000000 ____D C:\Users\AS-BUD\Desktop\NEKTARYNKA GOTOWE 2013-08-30 11:56 - 2011-06-09 15:04 - 00000000 ____D C:\Program Files\Brother 2013-08-30 11:56 - 2011-04-26 08:52 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2013-08-30 11:52 - 2013-08-30 11:52 - 05198702 _____ (Macrovision Corporation) C:\Users\AS-BUD\Downloads\bal1240000pl.exe 2013-08-30 11:50 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF 2013-08-30 11:15 - 2013-08-30 11:15 - 00002090 _____ C:\Users\Public\Desktop\Brother Creative Center.lnk 2013-08-30 11:14 - 2013-08-30 11:14 - 00000000 ____D C:\Program Files\Browny02 2013-08-30 11:14 - 2013-08-30 11:14 - 00000000 ____D C:\Brother 2013-08-30 11:14 - 2011-06-09 15:04 - 00000404 _____ C:\Windows\BRWMARK.INI 2013-08-30 11:14 - 2011-06-09 15:04 - 00000050 _____ C:\Windows\system32\BRIDF10A.DAT 2013-08-30 11:01 - 2013-08-30 10:59 - 145679464 _____ (A.I.SOFT,INC.) C:\Users\AS-BUD\Downloads\dcp-j315w-inst-B1-cd5.EXE 2013-08-26 14:06 - 2013-08-26 14:06 - 00000000 ____D C:\Users\AS-BUD\Downloads\wlan_wiz 2013-08-26 14:05 - 2013-08-26 14:05 - 00000000 ____D C:\Users\AS-BUD\Downloads\install 2013-08-26 12:34 - 2013-07-30 13:46 - 00000000 ____D C:\FreeOCR 2013-08-23 12:37 - 2013-08-06 13:39 - 00000000 ____D C:\Users\AS-BUD\Desktop\PROJEKT JAROCINSKA 2013-08-23 10:33 - 2013-08-23 10:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ggsemc_01009.Wdf 2013-08-23 10:33 - 2013-08-23 10:33 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ggflt_01009.Wdf 2013-08-23 10:23 - 2013-08-23 10:23 - 00025200 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggsemc.sys 2013-08-23 10:23 - 2013-08-23 10:23 - 00012400 _____ (Sony Ericsson Mobile Communications) C:\Windows\system32\Drivers\ggflt.sys 2013-08-23 10:23 - 2013-08-23 10:23 - 00000000 ____D C:\ProgramData\Sony Ericsson 2013-08-23 10:22 - 2013-08-23 10:22 - 00000000 ____D C:\Program Files\Sony Ericsson 2013-08-23 09:52 - 2013-08-23 09:50 - 00180600 _____ C:\Windows\DPINST.LOG 2013-08-23 09:49 - 2013-08-23 09:49 - 00002048 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk 2013-08-23 09:49 - 2013-08-23 09:49 - 00000000 ____D C:\ProgramData\Sony 2013-08-23 09:49 - 2013-08-23 09:49 - 00000000 ____D C:\Program Files\Sony 2013-08-23 07:17 - 2011-06-13 13:34 - 00002155 _____ C:\Windows\epplauncher.mif 2013-08-23 07:16 - 2011-06-13 13:34 - 00000000 ____D C:\Program Files\Microsoft Security Client 2013-08-22 12:17 - 2012-06-21 07:47 - 00047104 _____ C:\Users\AS-BUD\Desktop\Liczniki.xls 2013-08-21 11:39 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache 2013-08-21 10:54 - 2012-04-02 06:51 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2013-08-21 10:54 - 2011-06-04 11:48 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2013-08-20 09:58 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET 2013-08-19 16:05 - 2013-01-03 18:00 - 00000000 ____D C:\Users\AS-BUD\AppData\Local\ABBYY 2013-08-16 14:53 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\pl-PL 2013-08-16 12:21 - 2013-08-16 12:15 - 00000000 ____D C:\Windows\system32\MRT 2013-08-16 12:15 - 2011-04-28 06:54 - 75778376 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-08-14 17:13 - 2013-07-17 16:05 - 00000000 ____D C:\Users\AS-BUD\Desktop\KUPONY 2013-08-14 07:03 - 2013-08-14 07:03 - 01067456 _____ (Solid State Networks) C:\Users\AS-BUD\Downloads\install_flashplayer11x32au_mssd_aaa_aih(2).exe 2013-08-13 17:39 - 2013-08-13 17:39 - 00044924 _____ C:\Users\AS-BUD\Downloads\kosztorys 1 (3).ods 2013-08-13 17:39 - 2013-08-13 17:39 - 00044924 _____ C:\Users\AS-BUD\Downloads\kosztorys 1 (2).ods 2013-08-13 17:38 - 2013-08-13 17:38 - 00044924 _____ C:\Users\AS-BUD\Downloads\kosztorys 1.ods 2013-08-13 17:38 - 2013-08-13 17:38 - 00044924 _____ C:\Users\AS-BUD\Downloads\kosztorys 1 (1).ods 2013-08-13 15:53 - 2009-07-14 06:53 - 00032604 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2013-08-08 07:23 - 2013-05-15 08:20 - 00000000 ____D C:\Program Files\Mozilla Thunderbird ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-09-02 09:04 ==================== End Of Log ============================