Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-10-2013 Ran by Administrator (administrator) on GNIADEK-EE71E1B on 01-11-2013 12:36:14 Running from C:\Documents and Settings\Administrator\Pulpit\Nowy folder Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe (ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe (InterVideo Inc.) C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe (Devguru Co., Ltd.) C:\WINDOWS\system32\dgdersvc.exe (FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenManagerSvc32.exe (Teruten) C:\WINDOWS\system32\FsUsbExService.Exe (LogMeIn Inc.) F:\Gry\LogMeIn Hamachi\hamachi-2.exe (Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe (Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe (Prolific Technology Inc.) C:\WINDOWS\system32\IoctlSvc.exe (HP) C:\WINDOWS\system32\HPZipm12.exe () C:\WINDOWS\system32\PnkBstrA.exe () C:\Program Files\CyberLink\Shared Files\RichVideo.exe (Memeo) C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe (Rocket Division Software) F:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Microsoft Corporation) F:\Program Files\ZuneBusEnum.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-07] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM\...\Run: [QuickTime Task] - F:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation) Winlogon\Notify\AtiExtEvent: C:\Windows\system32\Ati2evxx.dll (ATI Technologies Inc.) HKCU\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000 MountPoints2: {718fb291-0487-11e2-b7bb-001a4d5cbab4} - J:\ICM_Manager.exe MountPoints2: {af5bafab-5702-11e0-8b63-001a4d5cbab4} - I:\LaunchU3.exe -a MountPoints2: {e409ea9e-f4f7-11dd-b180-001a4d5cbab4} - D:\Setupnow.exe HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2008-01-22] (Nero AG) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKCU - {D3B95647-A267-49A6-9C9C-8E72BEE62D34} URL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 BHO: IDM integration (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - F:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - &Tłumaczenie - {2F7DB8D7-9BE7-4666-901E-F380555BCAC7} - F:\Program Files\Russkij Translator\InternetTranslatorRusPol.dll (Techland) Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation) DPF: {00000161-0000-0010-8000-00AA00389B71} http://codecs.microsoft.com/codecs/i386/msaudio.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Handler: vnd.ms.radio - {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - F:\Program Files\Power Video Converter\msdxm.ocx (Microsoft Corporation) Winsock: Catalog9 01 C:\WINDOWS\system32\imon.dll [298104] (Eset ) Winsock: Catalog9 02 C:\WINDOWS\system32\imon.dll [298104] (Eset ) Winsock: Catalog9 03 C:\WINDOWS\system32\imon.dll [298104] (Eset ) Winsock: Catalog9 04 C:\WINDOWS\system32\imon.dll [298104] (Eset ) Winsock: Catalog9 05 C:\WINDOWS\system32\imon.dll [298104] (Eset ) Winsock: Catalog9 11 C:\WINDOWS\system32\imon.dll [298104] (Eset ) FireFox: ======== FF ProfilePath: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll () FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.) FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @real.com/nppl3260;version=6.0.11.3088 - C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprpjplug;version=6.0.11.3006 - C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default\searchplugins\dictionary-1.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default\searchplugins\dodatki-dla-firefox.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default\searchplugins\filmweb.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default\searchplugins\hollywoodcom.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default\searchplugins\SearchOnMe.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default\searchplugins\winamp-search.xml FF SearchPlugin: C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default\searchplugins\wyszukiwanie-filmw-wideo-w-youtube.xml FF Extension: Vividas player plugin - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default\Extensions\player@vividas.com FF Extension: Microsoft .NET Framework Assistant - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} FF Extension: trtransferfill - C:\Documents and Settings\Administrator\Dane aplikacji\Mozilla\Firefox\Profiles\ehvuo97a.default\Extensions\trtransferfill@transferuj.pl.xpi FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF HKLM\...\Firefox\Extensions: [{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}] - F:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\{00ADD29A-66F4-4f22-BCC0-4C1D29DA647B}\ FF HKCU\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Documents and Settings\Administrator\Dane aplikacji\IDM\idmmzcc5 FF Extension: IDM CC - C:\Documents and Settings\Administrator\Dane aplikacji\IDM\idmmzcc5 FF HKCU\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Documents and Settings\Administrator\Dane aplikacji\IDM\idmmzcc5 FF Extension: IDM CC - C:\Documents and Settings\Administrator\Dane aplikacji\IDM\idmmzcc5 ========================== Services (Whitelisted) ================= R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440392 2013-10-07] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-07] (Avira Operations GmbH & Co. KG) S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2008-06-02] () R2 Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [198168 2007-03-06] (InterVideo Inc.) R2 dgdersvc; C:\WINDOWS\system32\dgdersvc.exe [95568 2009-12-22] (Devguru Co., Ltd.) S2 gupdate1c9ca843b104c6c; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2009-05-01] (Google Inc.) R2 Hamachi2Svc; F:\Gry\LogMeIn Hamachi\hamachi-2.exe [1385896 2012-06-27] (LogMeIn Inc.) R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2012-08-08] () R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [241734 2008-02-14] () R2 SeagateDashboardService; C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe [14088 2011-06-01] (Memeo) R2 StarWindServiceAE; F:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968 2007-05-28] (Rocket Division Software) S2 WLSVC; C:\Program Files\Thomson\TG122n\WLSVC.exe [167936 2009-02-11] () S3 WMZuneComm; F:\Program Files\WMZuneComm.exe [268512 2011-08-05] (Microsoft Corporation) R2 ZuneBusEnum; F:\Program Files\ZuneBusEnum.exe [57056 2011-08-05] (Microsoft Corporation) S3 ZuneNetworkSvc; F:\Program Files\ZuneNss.exe [6363872 2011-08-05] (Microsoft Corporation) S3 ZuneWlanCfgSvc; F:\Program Files\ZuneWlanCfgSvc.exe [444640 2011-08-05] (Microsoft Corporation) R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf" ==================== Drivers (Whitelisted) ==================== R2 AegisP; C:\Windows\System32\DRIVERS\AegisP.sys [21361 2011-10-26] (Cisco Systems, Inc.) S2 AMON; C:\Windows\system32\drivers\amon.sys [512096 2008-06-25] (Eset ) R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [20096 2006-09-24] (SlySoft, Inc.) R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdXP3.sys [103040 2012-05-14] (Advanced Micro Devices) R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [279712 2008-09-26] () R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [89376 2013-10-07] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [137208 2013-10-07] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-10-07] (Avira Operations GmbH & Co. KG) R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [26240 2005-01-02] (SlySoft, Inc.) R2 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [8064 2006-04-22] (Elaborate Bytes AG) R3 ElbyDelay; C:\Windows\System32\Drivers\ElbyDelay.sys [4608 2005-04-12] (Elaborate Bytes AG) S3 ENTECH; C:\WINDOWS\system32\DRIVERS\ENTECH.sys [27672 2007-08-20] (EnTech Taiwan) S3 FlashUSB; C:\Windows\System32\DRIVERS\FlashUSB.sys [16896 2010-09-17] (Danish Wireless Design A/S) R3 FsUsbExDisk; C:\WINDOWS\system32\FsUsbExDisk.SYS [36640 2009-12-22] () S3 gdrv; C:\WINDOWS\gdrv.sys [15600 2008-06-24] (Windows (R) 2000 DDK provider) R3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.) S3 HdAudAddService; C:\Windows\System32\drivers\AtiHdAud.sys [84992 2006-12-28] (ATI Research Inc.) S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [51120 2005-03-08] (HP) S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2005-03-08] (HP) S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21744 2005-03-08] (HP) R1 IDMTDI; C:\Windows\System32\DRIVERS\idmtdi.sys [101616 2011-07-06] (Tonec Inc.) R0 JGOGO; C:\Windows\System32\DRIVERS\JGOGO.sys [6912 2006-02-07] (JMicron ) R0 JRAID; C:\Windows\System32\DRIVERS\jraid.sys [44928 2007-02-16] (JMicron Technology Corp.) R3 LgBttPort; C:\Windows\System32\DRIVERS\lgbtport.sys [12160 2009-09-29] (LG Electronics Inc.) R3 lgbusenum; C:\Windows\System32\DRIVERS\lgbtbus.sys [10496 2009-09-29] (LG Electronics Inc.) R3 LGVMODEM; C:\Windows\System32\DRIVERS\lgvmodem.sys [12928 2009-09-29] (LG Electronics Inc.) R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [25888 2008-09-26] () R1 MagicTune; C:\Windows\system32\drivers\MTiCtwl.sys [14336 2010-04-22] (Samsung Electronics, Inc. ) R2 npf; C:\Windows\System32\drivers\npf.sys [50704 2010-01-27] (CACE Technologies, Inc.) R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2006-01-19] (Padus, Inc.) S4 sptd; C:\Windows\System32\Drivers\sptd.sys [716272 2008-07-15] (Duplex Secure Ltd.) R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-04-07] (Avira GmbH) S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI) S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation) S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation) S3 ss_bserd; C:\Windows\System32\DRIVERS\ss_bserd.sys [100224 2009-09-19] (MCCI Corporation) R1 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5632 2008-07-08] () S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [13056 2008-09-04] (LG Electronics Inc.) S3 USBCM; C:\Windows\System32\DRIVERS\Sacm2K.sys [15429 2004-06-10] ( ) S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [19968 2008-09-04] (LG Electronics Inc.) S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [24832 2008-09-04] (LG Electronics Inc.) S3 w200bus; C:\Windows\System32\DRIVERS\w200bus.sys [61504 2006-11-07] (MCCI) S3 w200mdfl; C:\Windows\System32\DRIVERS\w200mdfl.sys [9328 2006-11-07] (MCCI) S3 w200mdm; C:\Windows\System32\DRIVERS\w200mdm.sys [97056 2006-11-07] (MCCI) S3 w200mgmt; C:\Windows\System32\DRIVERS\w200mgmt.sys [88560 2006-11-07] (MCCI) S3 w200obex; C:\Windows\System32\DRIVERS\w200obex.sys [86368 2006-11-07] (MCCI) R2 WLNdis50; C:\Windows\System32\DRIVERS\wlndis50.sys [20480 2008-02-27] () R2 zumbus; C:\Windows\System32\DRIVERS\zumbus.sys [41472 2011-08-05] (Microsoft Corporation) R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B}; C:\Program Files\CyberLink\PowerDVD\000.fcl [61424 2008-05-07] (Cyberlink Corp.) S4 IntelIde; No ImagePath S1 nod32drv; \SystemRoot\system32\drivers\nod32drv.sys [x] U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation) U5 UnlockerDriver5; F:\LG2\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-11-01 12:27 - 2013-11-01 12:27 - 00000000 _____ C:\Documents and Settings\Administrator\Pulpit\Nowy Dokument tekstowy (2).txt 2013-11-01 12:11 - 2013-11-01 12:14 - 00000000 ____D C:\AdwCleaner 2013-11-01 11:17 - 2013-11-01 11:17 - 00000000 ____D C:\FRST 2013-11-01 11:01 - 2013-11-01 12:35 - 00000000 ____D C:\Documents and Settings\Administrator\Pulpit\Nowy folder 2013-11-01 10:51 - 2013-11-01 10:52 - 00000020 _____ C:\Documents and Settings\Administrator\defogger_reenable 2013-10-23 06:57 - 2013-10-23 06:57 - 00000348 _____ C:\Documents and Settings\Administrator\Pulpit\BD.lnk 2013-10-20 19:43 - 2013-10-20 19:43 - 00000000 ____D C:\Program Files\DVDFab 9 2013-10-20 19:43 - 2013-10-20 19:43 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\DVDFab 9 2013-10-20 19:43 - 2013-10-20 19:43 - 00000000 ____D C:\Documents and Settings\Administrator\Dane aplikacji\DVDFab9 2013-10-17 14:13 - 2013-10-17 14:13 - 00000000 ____D C:\Program Files\Common Files\Java 2013-10-17 14:13 - 2013-10-17 14:13 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Java 2013-10-17 14:13 - 2013-10-17 14:12 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe 2013-10-17 14:13 - 2013-10-17 14:12 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe 2013-10-17 14:13 - 2013-10-17 14:12 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe 2013-10-17 14:13 - 2013-10-17 14:12 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2013-10-13 18:46 - 2013-10-28 22:04 - 00000000 ____D C:\Documents and Settings\Administrator\Pulpit\STAR WARS Komiksy 2013-10-11 03:31 - 2013-10-11 03:31 - 00132102 _____ C:\WINDOWS\KB2862335.log 2013-10-11 03:31 - 2013-10-11 03:31 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$ 2013-10-11 03:31 - 2013-10-11 03:31 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$ 2013-10-11 03:19 - 2013-10-11 03:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2884256$ 2013-10-11 03:18 - 2013-10-11 03:19 - 00011058 _____ C:\WINDOWS\KB2884256.log 2013-10-11 03:18 - 2013-10-11 03:18 - 00013184 _____ C:\WINDOWS\KB2868038.log 2013-10-11 03:18 - 2013-10-11 03:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868038$ 2013-10-11 03:12 - 2013-10-11 03:14 - 00013515 _____ C:\WINDOWS\KB2879017-IE8.log 2013-10-11 03:11 - 2013-10-11 03:11 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2883150$ 2013-10-11 03:10 - 2013-10-11 03:10 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$ 2013-10-11 03:09 - 2013-10-20 19:58 - 00058471 _____ C:\WINDOWS\setupapi.log 2013-10-11 01:53 - 2013-10-11 03:31 - 00135988 _____ C:\WINDOWS\KB2847311.log 2013-10-11 01:53 - 2013-07-17 01:58 - 00123008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys 2013-10-11 01:53 - 2013-07-17 01:58 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbaudio.sys 2013-10-11 01:53 - 2013-07-17 01:58 - 00046848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irbus.sys 2013-10-11 01:53 - 2013-07-03 03:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys 2013-10-11 01:52 - 2013-08-09 01:55 - 00144128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbport.sys 2013-10-11 01:52 - 2013-08-09 01:55 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys 2013-10-11 01:52 - 2009-03-18 12:02 - 00030336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbehci.sys 2013-10-09 10:26 - 2013-10-09 11:27 - 17813896 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe 2013-10-06 18:59 - 2013-10-06 18:59 - 99477982 _____ C:\WINDOWS\system32\䚿ၧ吤; 2013-10-06 12:59 - 2013-10-06 12:59 - 99458024 _____ C:\WINDOWS\system32\曤吤; 2013-10-05 07:50 - 2013-10-05 07:52 - 00000103 _____ C:\Documents and Settings\Administrator\Pulpit\Nowy Dokument tekstowy.txt ==================== One Month Modified Files and Folders ======= 2060-08-18 19:02 - 2012-11-24 18:33 - 02023424 ____C (Inprise Corporation) C:\WINDOWS\system32\VCL50.BPL 2060-08-18 19:02 - 2012-11-24 18:33 - 01496064 ____C (Inprise Corporation) C:\WINDOWS\system32\CC3250MT.DLL 2060-08-18 19:02 - 2012-11-24 18:33 - 00248832 ____C (Inprise Corporation) C:\WINDOWS\system32\VCLX50.BPL 2060-08-18 18:40 - 2012-11-24 18:33 - 00909824 ____C (Inprise Corporation) C:\WINDOWS\system32\CP3245MT.DLL 2060-08-18 18:40 - 2012-11-24 18:33 - 00024064 ____C (Inprise Corporation) C:\WINDOWS\system32\BORLNDMM.DLL 2013-11-01 12:35 - 2013-11-01 11:01 - 00000000 ____D C:\Documents and Settings\Administrator\Pulpit\Nowy folder 2013-11-01 12:27 - 2013-11-01 12:27 - 00000000 _____ C:\Documents and Settings\Administrator\Pulpit\Nowy Dokument tekstowy (2).txt 2013-11-01 12:27 - 2008-06-24 18:27 - 00000000 ____D C:\Documents and Settings\Administrator\Pulpit 2013-11-01 12:26 - 2012-04-04 18:59 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2013-11-01 12:25 - 2008-06-24 18:05 - 01243446 _____ C:\WINDOWS\WindowsUpdate.log 2013-11-01 12:21 - 2008-06-24 19:38 - 00000159 _____ C:\WINDOWS\wiadebug.log 2013-11-01 12:21 - 2008-06-24 19:38 - 00000050 _____ C:\WINDOWS\wiaservc.log 2013-11-01 12:20 - 2012-02-24 15:49 - 00000290 _____ C:\WINDOWS\Tasks\Express Files Updater.job 2013-11-01 12:20 - 2009-06-30 08:52 - 00001032 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2013-11-01 12:20 - 2008-06-24 18:27 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2013-11-01 12:17 - 2008-06-24 18:27 - 00032584 _____ C:\WINDOWS\SchedLgU.Txt 2013-11-01 12:17 - 2008-06-24 18:27 - 00000188 ___SH C:\Documents and Settings\Administrator\ntuser.ini 2013-11-01 12:15 - 2008-06-24 18:27 - 00000000 ____D C:\Documents and Settings\Administrator 2013-11-01 12:14 - 2013-11-01 12:11 - 00000000 ____D C:\AdwCleaner 2013-11-01 12:14 - 2008-06-24 19:35 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit 2013-11-01 12:14 - 2008-06-24 18:27 - 00000000 ____D C:\Documents and Settings\Administrator\Dane aplikacji 2013-11-01 12:06 - 2008-06-24 18:27 - 00000000 ____D C:\Documents and Settings\Administrator\Menu Start\Programy 2013-11-01 11:48 - 2009-06-30 08:52 - 00001036 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2013-11-01 11:17 - 2013-11-01 11:17 - 00000000 ____D C:\FRST 2013-11-01 10:52 - 2013-11-01 10:51 - 00000020 _____ C:\Documents and Settings\Administrator\defogger_reenable 2013-11-01 10:52 - 2011-11-07 19:07 - 00000000 ____D C:\Documents and Settings\Administrator\Dane aplikacji\DMCache 2013-11-01 10:45 - 2008-06-25 13:51 - 00000000 ____D C:\Documents and Settings\Administrator\Dane aplikacji\XnView 2013-11-01 10:45 - 2008-06-24 19:35 - 00245380 _____ C:\WINDOWS\setupact.log 2013-11-01 10:23 - 2008-06-28 15:36 - 00003197 _____ C:\WINDOWS\VPlayer.INI 2013-11-01 10:23 - 2008-06-28 15:36 - 00000049 _____ C:\WINDOWS\VplayerINI.vpl 2013-11-01 07:44 - 2008-06-25 13:51 - 00000571 _____ C:\Documents and Settings\Administrator\Dane aplikacji\AutoGK.ini 2013-11-01 01:08 - 2008-06-25 21:39 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\DVD Shrink 2013-10-31 19:23 - 2001-07-22 00:17 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl 2013-10-31 12:45 - 2013-06-20 19:45 - 00000284 _____ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job 2013-10-30 10:28 - 2008-06-27 19:54 - 00000069 _____ C:\WINDOWS\NeroDigital.ini 2013-10-28 22:04 - 2013-10-13 18:46 - 00000000 ____D C:\Documents and Settings\Administrator\Pulpit\STAR WARS Komiksy 2013-10-27 11:49 - 2008-06-24 18:03 - 00000000 ____D C:\WINDOWS\Registration 2013-10-27 07:47 - 2008-06-24 19:36 - 01218794 ____C C:\WINDOWS\system32\PerfStringBackup.INI 2013-10-27 07:47 - 2001-10-26 18:15 - 00541744 _____ C:\WINDOWS\system32\perfh015.dat 2013-10-27 07:47 - 2001-10-26 18:15 - 00099104 _____ C:\WINDOWS\system32\perfc015.dat 2013-10-23 06:57 - 2013-10-23 06:57 - 00000348 _____ C:\Documents and Settings\Administrator\Pulpit\BD.lnk 2013-10-20 20:03 - 2008-06-27 19:55 - 00000128 _____ C:\Documents and Settings\Administrator\default.pls 2013-10-20 19:58 - 2013-10-11 03:09 - 00058471 _____ C:\WINDOWS\setupapi.log 2013-10-20 19:43 - 2013-10-20 19:43 - 00000000 ____D C:\Program Files\DVDFab 9 2013-10-20 19:43 - 2013-10-20 19:43 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\DVDFab 9 2013-10-20 19:43 - 2013-10-20 19:43 - 00000000 ____D C:\Documents and Settings\Administrator\Dane aplikacji\DVDFab9 2013-10-20 19:43 - 2008-06-24 19:35 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy 2013-10-18 19:25 - 2013-09-20 22:57 - 00000000 ____D C:\Documents and Settings\Administrator\Pulpit\nowe tap 2013-10-17 14:13 - 2013-10-17 14:13 - 00000000 ____D C:\Program Files\Common Files\Java 2013-10-17 14:13 - 2013-10-17 14:13 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Java 2013-10-17 14:12 - 2013-10-17 14:13 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe 2013-10-17 14:12 - 2013-10-17 14:13 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe 2013-10-17 14:12 - 2013-10-17 14:13 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe 2013-10-17 14:12 - 2013-10-17 14:13 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2013-10-17 14:12 - 2012-04-09 16:02 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl 2013-10-13 06:59 - 2008-06-24 15:06 - 00000000 ____D C:\WINDOWS\Microsoft.NET 2013-10-11 14:32 - 2008-06-24 19:35 - 00293016 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2013-10-11 14:29 - 2009-04-19 22:28 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2013-10-11 03:31 - 2013-10-11 03:31 - 00132102 _____ C:\WINDOWS\KB2862335.log 2013-10-11 03:31 - 2013-10-11 03:31 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$ 2013-10-11 03:31 - 2013-10-11 03:31 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$ 2013-10-11 03:31 - 2013-10-11 01:53 - 00135988 _____ C:\WINDOWS\KB2847311.log 2013-10-11 03:31 - 2008-06-24 19:36 - 02107547 _____ C:\WINDOWS\FaxSetup.log 2013-10-11 03:31 - 2008-06-24 19:36 - 01016605 _____ C:\WINDOWS\ocgen.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00968295 _____ C:\WINDOWS\tsoc.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00712559 _____ C:\WINDOWS\comsetup.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00663762 _____ C:\WINDOWS\msmqinst.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00429515 _____ C:\WINDOWS\ntdtcsetup.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00369601 _____ C:\WINDOWS\netfxocm.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00301032 _____ C:\WINDOWS\iis6.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00146760 _____ C:\WINDOWS\MedCtrOC.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00131558 _____ C:\WINDOWS\ocmsn.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00109557 _____ C:\WINDOWS\tabletoc.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00105466 _____ C:\WINDOWS\msgsocm.log 2013-10-11 03:31 - 2008-06-24 19:36 - 00001393 _____ C:\WINDOWS\imsins.log 2013-10-11 03:31 - 2008-06-24 16:34 - 00363730 _____ C:\WINDOWS\updspapi.log 2013-10-11 03:28 - 2013-08-15 03:48 - 00000000 ____D C:\WINDOWS\system32\MRT 2013-10-11 03:28 - 2010-07-15 00:27 - 00000000 ____D C:\WINDOWS\system32\MpEngineStore 2013-10-11 03:23 - 2008-06-25 14:00 - 78106760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2013-10-11 03:21 - 2010-06-07 07:15 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Silverlight 2013-10-11 03:19 - 2013-10-11 03:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2884256$ 2013-10-11 03:19 - 2013-10-11 03:18 - 00011058 _____ C:\WINDOWS\KB2884256.log 2013-10-11 03:18 - 2013-10-11 03:18 - 00013184 _____ C:\WINDOWS\KB2868038.log 2013-10-11 03:18 - 2013-10-11 03:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868038$ 2013-10-11 03:14 - 2013-10-11 03:12 - 00013515 _____ C:\WINDOWS\KB2879017-IE8.log 2013-10-11 03:13 - 2009-09-10 13:11 - 00000000 ____D C:\WINDOWS\ie8updates 2013-10-11 03:11 - 2013-10-11 03:11 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2883150$ 2013-10-11 03:10 - 2013-10-11 03:10 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$ 2013-10-09 11:27 - 2013-10-09 10:26 - 17813896 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe 2013-10-09 11:27 - 2012-04-04 18:59 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2013-10-09 11:27 - 2011-06-18 20:45 - 00071048 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2013-10-07 13:35 - 2013-04-07 10:36 - 00137208 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys 2013-10-07 13:35 - 2013-04-07 10:36 - 00089376 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys 2013-10-07 13:35 - 2013-04-07 10:36 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys 2013-10-06 18:59 - 2013-10-06 18:59 - 99477982 _____ C:\WINDOWS\system32\䚿ၧ吤; 2013-10-06 12:59 - 2013-10-06 12:59 - 99458024 _____ C:\WINDOWS\system32\曤吤; 2013-10-05 07:52 - 2013-10-05 07:50 - 00000103 _____ C:\Documents and Settings\Administrator\Pulpit\Nowy Dokument tekstowy.txt 2013-10-05 06:41 - 2012-10-05 12:47 - 00255488 _____ C:\Documents and Settings\Administrator\Pulpit\STAR WARS Książki.xls ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe [2004-08-03 23:44] - [2008-04-14 18:21] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a C:\Windows\System32\winlogon.exe [2004-08-03 23:44] - [2008-04-14 18:21] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 C:\Windows\System32\svchost.exe [2004-08-03 23:44] - [2008-04-14 18:21] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce C:\Windows\System32\services.exe [2004-08-03 23:44] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f C:\Windows\System32\User32.dll [2004-08-03 23:44] - [2008-04-14 18:20] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 C:\Windows\System32\userinit.exe [2004-08-03 23:44] - [2008-04-14 18:21] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 C:\Windows\System32\Drivers\volsnap.sys [2004-08-03 23:36] - [2008-04-14 17:01] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 ==================== End Of Log ============================