Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-10-2013 Ran by GRAVE70 (administrator) on MILER-7844E661A on 03-11-2013 21:35:43 Running from G:\INSTALATORY Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (Check Point Software Technologies LTD) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (The Within Network, LLC) C:\WINDOWS\UnsignedThemesSvc.exe ( ) G:\INSTALATORY\Ashampoo Magical Defrag 2\bin\aDefragService.exe (Baidu, Inc.) C:\Program Files\Baidu Security\Baidu Antivirus\BAVSvc.exe (Baidu, Inc.) C:\Program Files\Baidu Security\Baidu Antivirus\BHipsSvc.exe () G:\INSTALATORY\Ashampoo Magical Defrag 2\bin\defragActivityMonitor.exe () G:\INSTALATORY\Ashampoo Magical Defrag 2\bin\defragTaskBar.exe (Baidu, Inc.) C:\Program Files\Baidu Security\Baidu Antivirus\BavTray.exe (Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe (Check Point Software Technologies LTD) C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe (Stardock Corporation) C:\Program Files\Stardock\CursorFX\CursorFX.exe (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe (Check Point Software Technologies, Ltd.) C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [DefragTaskBar] - G:\INSTALATORY\Ashampoo Magical Defrag 2\bin\defragTaskBar.exe [173408 2008-10-09] () HKLM\...\Run: [NvCplDaemon] - RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup HKLM\...\Run: [Baidu Antivirus] - C:\Program Files\Baidu Security\Baidu Antivirus\BavTray.exe [693608 2013-10-24] (Baidu, Inc.) HKLM\...\Run: [ZoneAlarm] - C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [73832 2013-10-25] (Check Point Software Technologies LTD) HKLM\...\Run: [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k HKLM\...\Winlogon: [UIHost] C:\WINDOWS\system32\logonui.exe [x ] () HKLM\...\Policies\Explorer: [NoControlPanel] 0 HKLM\...\Policies\Explorer: [NoViewContextMenu] 0 HKLM\...\Policies\Explorer: [NoFind] 0 HKCU\...\Run: [CursorFX] - C:\Program Files\Stardock\CursorFX\CursorFX.exe [417280 2010-03-23] (Stardock Corporation) HKCU\...\Policies\system: [NoDispSettingsPage] 0 HKCU\...\Policies\Explorer: [NoNetHood] 0 HKCU\...\Policies\Explorer: [NoManageMyComputerVerb] 0 HKCU\...\Policies\Explorer: [NoStartMenuPinnedList] 0 HKCU\...\Policies\Explorer: [NoStartMenuMFUprogramsList] 0 HKCU\...\Policies\Explorer: [NoStartMenuSubFolders] 0 HKCU\...\Policies\Explorer: [NoCommonGroups] 0 HKCU\...\Policies\Explorer: [NoRecentDocsMenu] 0 HKCU\...\Policies\Explorer: [NoPrinterTabs] 0 HKCU\...\Policies\Explorer: [NoDeletePrinter] 0 HKCU\...\Policies\Explorer: [NoAddPrinter] 0 HKCU\...\Policies\Explorer: [NoPrinters] 0 HKCU\...\Policies\Explorer: [NoNetworkConnections] 0 HKCU\...\Policies\Explorer: [NoFavoritesMenu] 0 HKCU\...\Policies\Explorer: [NoChangeStartMenu] 0 HKCU\...\Policies\Explorer: [NoFileMenu] 0 HKCU\...\Policies\Explorer: [NoRecentDocsNetHood] 0 HKCU\...\Policies\Explorer: [NoChangeAnimation] 0 HKCU\...\Policies\Explorer: [NoChangeKeyboardNavigationIndicators] 0 HKCU\...\Policies\Explorer: [NoResolveTrack] HKCU\...\Policies\Explorer: [NoCDBurning] 1 HKCU\...\Policies\Explorer: [NoDrives] 0x92FFFF03 HKCU\...\Policies\Explorer: [NoSharedDocuments] 0x00000000 HKCU\...\Policies\Explorer: [NoInstrumentation] 0 AppInit_DLLs: [ ] () Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\StartupFaster () SSODL: 0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - No File BootExecute: autocheck autochk * tpnative ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = HKLM\Software\Microsoft\Internet Explorer\Main,start page = about:blank SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKLM - URL http://search.certified-toolbar.com?si=&st=bs&tid=3623&ver=3.1&ts=1368724761187&tguid=43251-3623-1368724761187-2799417525F5BABC161975A9153D9853&q={searchTerms} SearchScopes: HKLM - SuggestionsURL_JSON http://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=43251&gid=43251-3623-1368724761187-2799417525F5BABC161975A9153D9853&dbCode=1&command={searchTerms} SearchScopes: HKLM - TopResultURLFallback http://search.certified-toolbar.com?si=&st=bs&tid=3623&ver=3.1&ts=1368724761187&tguid=43251-3623-1368724761187-2799417525F5BABC161975A9153D9853&q={searchTerms} SearchScopes: HKCU - URL http://search.certified-toolbar.com?si=43251&st=bs&tid=3623&ver=3.1&ts=1368724761187&tguid=43251-3623-1368724761187-2799417525F5BABC161975A9153D9853&q={searchTerms} SearchScopes: HKCU - SuggestionsURL_JSON http://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=43251&gid=43251-3623-1367951134421-294658&dbCode=1&command={searchTerms} SearchScopes: HKCU - TopResultURLFallback http://search.certified-toolbar.com?si=43251&st=bs&tid=3623&ver=3.1&ts=1368724761187&tguid=43251-3623-1368724761187-2799417525F5BABC161975A9153D9853&q={searchTerms} SearchScopes: HKCU - {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = http://pl.search.yahoo.com/search?p={searchTerms}&fr=chr-comodo BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: IE 4.x-6.x BHO for Internet Download Accelerator - {2A646672-9C3A-4C28-9A7A-1FB0F63F28B6} - G:\INSTALATORY\Internet Download Accelerator Pro 5.15.2._5fantastic.pl_\IDA\idaiehlp.dll (WestByte) BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} http://support.asus.com.tw/common/asusTek_sys_ctrl.cab DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ] ShellExecuteHooks: - {4F07DA45-8170-4859-9B5F-037EF2970034} - No File [ ] Hosts: 127.0.0.1 localhost Tcpip\Parameters: [DhcpNameServer] 80.238.112.12 80.238.112.13 FireFox: ======== FF ProfilePath: C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218 FF Homepage: about:home FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll () FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.) FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.) FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF SearchPlugin: C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\searchplugins\ashampoo-po-customized-web-search.xml FF Extension: Internet Download Accelerator Media Monitor - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\idamm@westbyte.com FF Extension: Internet Download Accelerator Plugin - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\idapluginff@westbyte.com FF Extension: IDA Remote Download - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\idaremote@westbyte.com FF Extension: LavaFox V2 - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\info@djzig(2).com FF Extension: LavaFox V2 - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\info@djzig.com FF Extension: BlackFox V2 - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\zigboom@hotmail(2).com FF Extension: FT DeepDark - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}(2) FF Extension: nasanightlaunch - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\nasanightlaunch@example.com.xpi FF Extension: No Name - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\WTB_GLOBAL.sqlite FF Extension: aios - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi FF Extension: Adblock Plus - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF Extension: dta - C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla\Firefox\Profiles\8nyfwrnn.default-1383404939218\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ Chrome: ======= CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\ppGoogleNaClPluginChrome.dll () CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\30.0.1599.101\pdf.dll () CHR Plugin: (Internet Download Accelerator click monitoring plug-in) - C:\Program Files\Mozilla Firefox\plugins\npida.dll (WestByte) CHR Plugin: (PluginRichmediaplayer) - C:\Program Files\Mozilla Firefox\plugins\nppluginrichmediaplayer.dll () CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation) CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.)) CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation) CHR Plugin: (Unity Player) - C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) CHR Plugin: (Java Deployment Toolkit 7.0.450.18) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) CHR Plugin: (Java(TM) Platform SE 7 U45) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) CHR Plugin: (PDF-XChange Viewer) - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.) CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) CHR Plugin: (Shockwave for Director) - C:\WINDOWS\system32\Adobe\Director\np32dsw_1204144.dll (Adobe Systems, Inc.) CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll () CHR Extension: (Google Docs) - C:\DOCUME~1\GRAVE70\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\DOCUME~1\GRAVE70\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\DOCUME~1\GRAVE70\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\DOCUME~1\GRAVE70\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Internet Download Accelerator) - C:\DOCUME~1\GRAVE70\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\heloeniedaijefpgpikdfhdjpojnndbn\1.2_0 CHR Extension: (IDM Integration Module) - C:\DOCUME~1\GRAVE70\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn\6.17.7_0 CHR Extension: (Ti\u00EBsto) - C:\DOCUME~1\GRAVE70\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mnmeobddjkkgkglnogihcaejaleikhdh\2_0 CHR Extension: (Google Wallet) - C:\DOCUME~1\GRAVE70\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0 CHR Extension: (Gmail) - C:\DOCUME~1\GRAVE70\USTAWI~1\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 CHR HKLM\...\Chrome\Extension: [heloeniedaijefpgpikdfhdjpojnndbn] - G:\INSTALATORY\Internet Download Accelerator Pro 5.15.2._5fantastic.pl_\IDA\ida_chrome.crx ========================== Services (Whitelisted) ================= S4 ADExchange; C:\Program Files\Common Files\ArcSoft\esinter\Bin\eservutil.exe [43072 2012-03-19] (ArcSoft, Inc.) S4 AMService; C:\WINDOWS\system32\setup.exe [23040 2009-07-16] (Microsoft Corporation) R2 AshampooDefragService; G:\INSTALATORY\Ashampoo Magical Defrag 2\bin\aDefragService.exe [750944 2008-10-09] ( ) R2 BAVSvc; C:\Program Files\Baidu Security\Baidu Antivirus\BAVSvc.exe [1832256 2013-10-24] (Baidu, Inc.) R2 BHipsSvc; C:\Program Files\Baidu Security\Baidu Antivirus\BHipsSvc.exe [452248 2013-10-24] (Baidu, Inc.) S3 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.) R2 UnsignedThemes; C:\WINDOWS\UnsignedThemesSvc.exe [21096 2009-07-13] (The Within Network, LLC) S3 VRAID Log Service; C:\Program Files\VIA\RAID\vialogsv.exe [52888 2008-09-24] () R2 vsmon; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2445816 2013-10-25] (Check Point Software Technologies LTD) R2 ZAPrivacyService; C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [50704 2013-10-15] (Check Point Software Technologies, Ltd.) S4 HDDSvc; G:\INSTALATORY\HardDriveInspector.3.95.Build.428.NP.Pro.and.portable\HDInspectorPortable\App\HDInspector\HDDSvc.exe [x] R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf" ==================== Drivers (Whitelisted) ==================== S3 ALCXWDM; C:\Windows\System32\drivers\ALCXWDM.SYS [4122368 2011-04-21] (Realtek Semiconductor Corp.) S1 AmdK8; C:\Windows\System32\DRIVERS\AmdK8.sys [43520 2006-06-18] (Advanced Micro Devices) R1 AmdPPM; C:\Windows\System32\DRIVERS\AmdPPM.sys [33792 2013-08-02] (Advanced Micro Devices) R1 AntiLog32; C:\WINDOWS\system32\drivers\AntiLog32.sys [80104 2013-05-10] (Zemana Ltd.) U3 BdApiUtil; C:\Program Files\Baidu Security\Baidu Antivirus\BdApiUtil.sys [111264 2013-08-20] (Baidu, Inc.) R1 Bfilter; C:\WINDOWS\System32\drivers\Bfilter.sys [42304 2013-08-15] (Baidu, Inc.) R1 Bfmon; C:\WINDOWS\System32\drivers\Bfmon.sys [26432 2013-08-12] (Baidu, Inc.) R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [62048 2013-07-16] (Baidu, Inc.) R1 Bprotect; C:\WINDOWS\System32\drivers\Bprotect.sys [110400 2013-08-20] (Baidu, Inc.) R1 BTOWSFF; C:\WINDOWS\system32\Drivers\BTOWSFF.sys [27648 2013-09-25] (Toolwiz.com) R0 BTOWSVF; C:\Windows\System32\Drivers\BTOWSVF.sys [45952 2013-09-25] (Toolwiz.com) R1 CbFs; C:\WINDOWS\system32\drivers\cbfs.sys [146904 2010-02-16] (EldoS Corporation) S3 DrvAgent32; C:\WINDOWS\system32\Drivers\DrvAgent32.sys [23456 2012-01-25] (Phoenix Technologies) R3 FET5X86V; C:\Windows\System32\DRIVERS\fetnd5bv.sys [43520 2008-09-22] (VIA Technologies, Inc. ) S3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. ) S3 HH10Help.sys; C:\WINDOWS\system32\drivers\HH10Help.sys [13952 2010-03-10] (H+H Software GmbH) R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [40560 2010-02-16] (Paragon Software Group) S3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [13880 2008-11-03] ( ) R0 KSafeDISK; C:\Windows\System32\Drivers\KSafeDISK.sys [48640 2013-09-25] (Toolwiz.com) R3 LKbdFlt2; C:\Windows\System32\DRIVERS\LKbdFlt2.sys [5846 2002-05-21] (Logitech) S3 MidiSyn; C:\Windows\System32\drivers\MidiSyn.sys [235100 2002-09-21] (Analog Devices Inc) R1 PQNTDrv; C:\Windows\System32\Drivers\PQNTDrv.sys [4228 2004-05-05] (PowerQuest Corporation) R2 PStrip; C:\Windows\System32\drivers\pstrip.sys [27992 2007-07-15] (EnTech Taiwan) S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [16472 2010-08-16] () S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [11104 2010-08-16] () S3 REN2CAP_DRIVER; C:\Windows\System32\drivers\ren2cap.sys [39048 2011-11-07] () S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation) S3 s0016mdfl; C:\Windows\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation) S3 s0016mdm; C:\Windows\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation) S3 s0016mgmt; C:\Windows\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation) S3 s0016nd5; C:\Windows\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation) S3 s0016obex; C:\Windows\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation) S3 s0016unic; C:\Windows\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation) R3 senfilt; C:\Windows\System32\drivers\senfilt.sys [381056 2004-04-27] (Sensaura) R0 Si3112; C:\Windows\System32\Drivers\Si3112.sys [62336 2009-07-16] (Silicon Image, Inc.) S0 Si3114r5; C:\Windows\System32\Drivers\Si3114r5.sys [195072 2009-07-16] (Silicon Image, Inc) R0 Si3132; C:\Windows\System32\Drivers\Si3132.sys [74672 2009-07-16] (Silicon Image, Inc.) R0 Si3132r5; C:\Windows\System32\Drivers\Si3132r5.sys [215856 2009-07-16] (Silicon Image, Inc) R0 Si3531; C:\Windows\System32\Drivers\Si3531.sys [212520 2009-07-16] (Silicon Image, Inc) S3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [124976 2012-09-12] (Symantec Corporation) R2 uxpatch; C:\WINDOWS\system32\drivers\uxpatch.sys [25448 2009-07-13] () S1 vdrv1000; C:\Windows\System32\DRIVERS\vdrv1000.sys [186392 2010-05-21] (H+H Software GmbH) R0 viamraid; C:\Windows\System32\DRIVERS\viamraid.sys [116608 2013-08-02] (VIA Technologies inc,.ltd) S3 VIAudio; C:\Windows\System32\drivers\vinyl97.sys [207488 2007-09-19] (VIA Technologies, Inc.) R0 videX32; C:\Windows\System32\DRIVERS\videX32.sys [13976 2010-02-11] (VIA Technologies, Inc.) R1 Vsdatant; C:\Windows\System32\vsdatant.sys [529128 2013-10-25] (Check Point Software Technologies LTD) S4 ATE_PROCMON; No ImagePath S3 avchv; system32\DRIVERS\avchv.sys [x] S3 cpu; No ImagePath S3 fcdabus; system32\DRIVERS\fcdabus.sys [x] U5 FontCache3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [46104 2008-07-29] (Microsoft Corporation) S0 FVXSCSI; system32\DRIVERS\fvxscsi.sys [x] S4 IntelIde; No ImagePath S3 NTProcDrv; No ImagePath U5 Tcpip6; C:\Windows\System32\Drivers\Tcpip6.sys [226880 2010-02-11] (Microsoft Corporation) S4 zumbus; system32\DRIVERS\zumbus.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-11-03 21:35 - 2013-11-03 21:35 - 00123916 _____ C:\Documents and Settings\GRAVE70\Moje dokumenty\OTL.Txt 2013-11-03 21:07 - 2013-11-03 21:07 - 00010057 _____ C:\Documents and Settings\GRAVE70\Pulpit\RKreport[0]_D_11032013_210745.txt 2013-11-03 21:06 - 2013-11-03 21:06 - 00009973 _____ C:\Documents and Settings\GRAVE70\Pulpit\RKreport[0]_S_11032013_210620.txt 2013-11-03 21:06 - 2013-11-03 21:06 - 00001074 _____ C:\Documents and Settings\GRAVE70\Pulpit\RKreport[0]_H_11032013_210657.txt 2013-11-03 21:03 - 2013-11-03 21:08 - 00000000 ____D C:\Documents and Settings\GRAVE70\Pulpit\RK_Quarantine 2013-11-03 19:55 - 2013-11-03 19:56 - 00002829 _____ C:\WINDOWS\setupapi.log 2013-11-03 06:59 - 2013-11-03 06:59 - 00090112 _____ C:\WINDOWS\Minidump\Mini110313-02.dmp 2013-11-03 06:34 - 2013-11-03 20:47 - 00000000 ____D C:\FRST 2013-11-03 06:20 - 2013-11-03 06:20 - 00090112 _____ C:\WINDOWS\Minidump\Mini110313-01.dmp 2013-11-02 17:18 - 2013-11-02 17:18 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Baidu 2013-11-02 16:09 - 2013-11-02 16:09 - 00000000 ____D C:\Documents and Settings\GRAVE70\Pulpit\Stare dane programu Firefox 2013-11-01 19:29 - 2013-11-01 19:29 - 00000879 _____ C:\Documents and Settings\GRAVE70\Pulpit\Skrót do chrome.lnk 2013-11-01 16:28 - 2013-11-01 16:28 - 00010626 _____ C:\WINDOWS\KB942288-v3.log 2013-11-01 14:14 - 2013-11-03 21:11 - 00053773 _____ C:\WINDOWS\WindowsUpdate.log 2013-11-01 12:43 - 2013-11-03 21:05 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-11-01 12:40 - 2013-11-01 16:31 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2013-11-01 12:40 - 2013-11-01 12:40 - 00000736 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk 2013-11-01 12:40 - 2013-11-01 12:40 - 00000730 _____ C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk 2013-10-31 22:09 - 2013-10-31 22:15 - 00417513 _____ C:\WINDOWS\system32\vsconfig.xml 2013-10-31 22:08 - 2013-10-31 22:08 - 00000539 _____ C:\Documents and Settings\All Users\Pulpit\ZoneAlarm Security.lnk 2013-10-31 22:08 - 2013-10-31 22:08 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Check Point 2013-10-31 22:07 - 2013-10-31 22:08 - 00000000 ____D C:\Program Files\CheckPoint 2013-10-31 22:05 - 2013-10-31 22:05 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\CheckPoint 2013-10-31 20:47 - 2013-10-31 20:47 - 00000000 ____D C:\Documents and Settings\All Users\Dokumenty\Baidu Security 2013-10-31 20:40 - 2013-08-20 07:10 - 00110400 _____ (Baidu, Inc.) C:\WINDOWS\system32\Drivers\Bprotect.sys 2013-10-31 20:40 - 2013-08-15 11:10 - 00042304 _____ (Baidu, Inc.) C:\WINDOWS\system32\Drivers\Bfilter.sys 2013-10-31 20:40 - 2013-08-12 20:17 - 00026432 _____ (Baidu, Inc.) C:\WINDOWS\system32\Drivers\Bfmon.sys 2013-10-31 20:40 - 2013-07-16 10:35 - 00062048 _____ (Baidu, Inc.) C:\WINDOWS\system32\Drivers\Bhbase.sys 2013-10-31 20:39 - 2013-10-31 20:39 - 00000863 _____ C:\Documents and Settings\All Users\Pulpit\Baidu Antivirus.lnk 2013-10-31 20:39 - 2013-10-31 20:39 - 00000000 ____D C:\Program Files\Baidu Security 2013-10-31 20:39 - 2013-10-31 20:39 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Baidu Antivirus 2013-10-31 20:24 - 2013-10-31 20:24 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Avg2014 2013-10-31 16:33 - 2013-11-03 21:13 - 00000626 _____ C:\WINDOWS\wiadebug.log 2013-10-31 16:32 - 2013-11-03 21:13 - 00000050 _____ C:\WINDOWS\wiaservc.log 2013-10-31 16:32 - 2013-10-31 16:32 - 00000000 _____ C:\WINDOWS\Sti_Trace.log 2013-10-30 20:38 - 2013-10-30 23:35 - 00065536 _____ C:\WINDOWS\system32\config\Nano.evt 2013-10-30 19:51 - 2013-10-30 20:19 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Safe 2013-10-30 19:51 - 2013-10-30 19:51 - 00000000 ____D C:\SafeRecycle 2013-10-30 18:43 - 2013-10-30 18:43 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\MFAData 2013-10-30 18:16 - 2013-10-30 18:16 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\GFI Software 2013-10-29 20:28 - 2013-10-29 21:07 - 00458741 _____ C:\WINDOWS\system32\kelekmumambu.dbi 2013-10-29 19:12 - 2013-10-29 20:07 - 00065536 _____ C:\WINDOWS\system32\config\KAVEventLog.EVT 2013-10-29 19:02 - 2013-11-03 21:11 - 00032378 _____ C:\WINDOWS\SchedLgU.Txt 2013-10-29 19:01 - 2013-10-29 19:01 - 00104919 _____ C:\Documents and Settings\All Users\Dane aplikacji\1383069643.bdinstall.bin 2013-10-29 18:31 - 2013-10-29 19:09 - 00000000 ____D C:\Program Files\Freemake 2013-10-29 18:31 - 2013-10-29 19:09 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Freemake 2013-10-29 18:31 - 2013-10-29 18:33 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\Freemake 2013-10-27 16:51 - 2013-11-03 06:58 - 00000312 _____ C:\WINDOWS\system32\kisknl.log 2013-10-25 23:07 - 2013-10-25 23:07 - 00529128 _____ (Check Point Software Technologies LTD) C:\WINDOWS\system32\vsdatant.sys 2013-10-20 09:21 - 2013-10-20 09:21 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Unity 2013-10-19 05:49 - 2013-10-19 05:47 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe 2013-10-19 05:49 - 2013-10-19 05:47 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl 2013-10-19 05:48 - 2013-10-19 05:48 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Java 2013-10-19 05:48 - 2013-10-19 05:47 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe 2013-10-19 05:48 - 2013-10-19 05:47 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe 2013-10-19 05:48 - 2013-10-19 05:47 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2013-10-13 16:25 - 2013-10-13 16:25 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\FlashPeak 2013-10-13 16:22 - 2013-10-13 16:22 - 00000574 _____ C:\Documents and Settings\All Users\Pulpit\FlashPeak SlimBoat.lnk 2013-10-13 16:22 - 2013-10-13 16:22 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\FlashPeak SlimBoat 2013-10-13 09:55 - 2013-10-13 09:56 - 30384128 _____ C:\WINDOWS\system32\config\software.regback 2013-10-13 08:31 - 2013-10-13 08:31 - 00000700 _____ C:\Documents and Settings\GRAVE70\Pulpit\Cloud System Booster.lnk 2013-10-13 08:31 - 2013-10-13 08:31 - 00000000 ____D C:\Documents and Settings\GRAVE70\Menu Start\Programy\Anvisoft 2013-10-13 08:31 - 2013-10-13 08:31 - 00000000 ____D C:\Documents and Settings\All Users\Anvisoft 2013-10-13 07:55 - 2013-10-13 07:55 - 00000000 ____D C:\Program Files\LockHunter 2013-10-13 07:55 - 2013-10-13 07:55 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\LockHunter 2013-10-12 17:18 - 2013-10-12 17:18 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\Smideo 2013-10-10 05:47 - 2013-10-10 05:48 - 00000000 ____D C:\Documents and Settings\GRAVE70\Menu Start\Programy\Haali Media Splitter 2013-10-10 05:47 - 2013-10-10 05:47 - 00000000 ____D C:\Program Files\Haali 2013-10-10 05:46 - 2013-10-10 05:47 - 00000000 ____D C:\Program Files\DScaler5 2013-10-10 05:45 - 2013-10-26 13:26 - 00000010 _____ C:\WINDOWS\system32\khackmon.dll.log 2013-10-10 05:45 - 2013-10-10 05:45 - 00001654 _____ C:\Documents and Settings\All Users\Pulpit\Zoom Player MAX.lnk 2013-10-10 05:45 - 2013-10-10 05:45 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Zoom Player 2013-10-06 19:52 - 2013-10-29 18:59 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\Media Player Classic 2013-10-06 12:16 - 2013-10-06 13:07 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\Synei 2013-10-06 12:15 - 2013-10-06 12:15 - 00000642 _____ C:\Documents and Settings\All Users\Pulpit\Synei System Utilities.lnk 2013-10-06 12:15 - 2013-10-06 12:15 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Synei System Utilities 2013-10-06 06:12 - 2013-10-06 06:12 - 00034985 _____ C:\WINDOWS\system32\secl_CAstore.p7b 2013-10-06 06:01 - 2013-10-20 17:43 - 00000000 __SHD C:\KRECYCLE ==================== One Month Modified Files and Folders ======= 2013-11-03 21:35 - 2013-11-03 21:35 - 00123916 _____ C:\Documents and Settings\GRAVE70\Moje dokumenty\OTL.Txt 2013-11-03 21:35 - 2010-09-05 08:06 - 00000000 ___RD C:\Documents and Settings\GRAVE70\Moje dokumenty 2013-11-03 21:33 - 2010-09-05 08:51 - 00000466 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{2DD391B0-C1C7-4E3E-AA6B-3B6019FFB6EF}.job 2013-11-03 21:14 - 2010-09-05 06:03 - 00000188 ___SH C:\Documents and Settings\LocalService\ntuser.ini 2013-11-03 21:13 - 2013-10-31 16:33 - 00000626 _____ C:\WINDOWS\wiadebug.log 2013-11-03 21:13 - 2013-10-31 16:32 - 00000050 _____ C:\WINDOWS\wiaservc.log 2013-11-03 21:13 - 2010-09-18 07:30 - 00180686 _____ C:\WINDOWS\system32\nvapps.xml 2013-11-03 21:12 - 2013-09-08 17:16 - 00000254 _____ C:\WINDOWS\Tasks\JetCleanLoginCheckUpdate.job 2013-11-03 21:12 - 2013-07-29 22:16 - 00000276 _____ C:\WINDOWS\Tasks\Driver Booster Update.job 2013-11-03 21:12 - 2013-07-29 22:16 - 00000274 _____ C:\WINDOWS\Tasks\Driver Booster Scan.job 2013-11-03 21:12 - 2010-09-05 06:03 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2013-11-03 21:11 - 2013-11-01 14:14 - 00053773 _____ C:\WINDOWS\WindowsUpdate.log 2013-11-03 21:11 - 2013-10-29 19:02 - 00032378 _____ C:\WINDOWS\SchedLgU.Txt 2013-11-03 21:11 - 2010-09-05 08:06 - 00000188 ___SH C:\Documents and Settings\GRAVE70\ntuser.ini 2013-11-03 21:11 - 2010-09-05 08:06 - 00000000 ____D C:\Documents and Settings\GRAVE70 2013-11-03 21:08 - 2013-11-03 21:03 - 00000000 ____D C:\Documents and Settings\GRAVE70\Pulpit\RK_Quarantine 2013-11-03 21:07 - 2013-11-03 21:07 - 00010057 _____ C:\Documents and Settings\GRAVE70\Pulpit\RKreport[0]_D_11032013_210745.txt 2013-11-03 21:07 - 2010-09-05 08:06 - 00000000 ____D C:\Documents and Settings\GRAVE70\Pulpit 2013-11-03 21:06 - 2013-11-03 21:06 - 00009973 _____ C:\Documents and Settings\GRAVE70\Pulpit\RKreport[0]_S_11032013_210620.txt 2013-11-03 21:06 - 2013-11-03 21:06 - 00001074 _____ C:\Documents and Settings\GRAVE70\Pulpit\RKreport[0]_H_11032013_210657.txt 2013-11-03 21:05 - 2013-11-01 12:43 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-11-03 20:47 - 2013-11-03 06:34 - 00000000 ____D C:\FRST 2013-11-03 20:47 - 2010-09-05 08:06 - 00000000 ___HD C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji 2013-11-03 20:47 - 2010-09-05 08:06 - 00000000 ___HD C:\Documents and Settings\GRAVE70\Dane aplikacji 2013-11-03 20:47 - 2010-09-05 07:49 - 00000000 ___HD C:\Documents and Settings\All Users\Dane aplikacji 2013-11-03 20:47 - 2010-09-05 07:49 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy 2013-11-03 20:47 - 2010-09-05 06:03 - 00000000 ____D C:\Documents and Settings\NetworkService\Dane aplikacji 2013-11-03 20:11 - 2010-09-05 08:06 - 00000000 ___HD C:\Documents and Settings\GRAVE70\Ustawienia lokalne 2013-11-03 19:56 - 2013-11-03 19:55 - 00002829 _____ C:\WINDOWS\setupapi.log 2013-11-03 18:41 - 2012-01-05 16:38 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\KomaMail 2013-11-03 06:59 - 2013-11-03 06:59 - 00090112 _____ C:\WINDOWS\Minidump\Mini110313-02.dmp 2013-11-03 06:59 - 2011-10-21 19:15 - 00000000 ____D C:\WINDOWS\MiniDump 2013-11-03 06:58 - 2013-10-27 16:51 - 00000312 _____ C:\WINDOWS\system32\kisknl.log 2013-11-03 06:20 - 2013-11-03 06:20 - 00090112 _____ C:\WINDOWS\Minidump\Mini110313-01.dmp 2013-11-03 05:51 - 2013-07-19 21:10 - 00000026 _____ C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\{C916D440-D489-4A79-B306-5FDC1E7932C0}.list 2013-11-03 05:48 - 2010-09-05 08:45 - 00393216 _____ C:\WINDOWS\system32\config\TuneUp.evt 2013-11-03 05:46 - 2010-09-05 08:45 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software 2013-11-03 05:45 - 2010-09-05 07:49 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit 2013-11-03 05:42 - 2010-10-02 05:56 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\DMCache 2013-11-03 05:42 - 2010-09-05 08:06 - 00000000 ___RD C:\Documents and Settings\GRAVE70\Menu Start\Programy 2013-11-02 21:00 - 2012-02-18 15:19 - 00000282 _____ C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job 2013-11-02 17:18 - 2013-11-02 17:18 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Baidu 2013-11-02 17:14 - 2013-08-31 22:34 - 00000000 ____D C:\AdwCleaner 2013-11-02 16:09 - 2013-11-02 16:09 - 00000000 ____D C:\Documents and Settings\GRAVE70\Pulpit\Stare dane programu Firefox 2013-11-02 06:33 - 2010-09-05 09:03 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\Pobieranie 2013-11-01 21:40 - 2012-02-05 09:08 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\FOTKI 2013-11-01 19:29 - 2013-11-01 19:29 - 00000879 _____ C:\Documents and Settings\GRAVE70\Pulpit\Skrót do chrome.lnk 2013-11-01 16:42 - 2013-02-23 06:41 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Google 2013-11-01 16:31 - 2013-11-01 12:40 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2013-11-01 16:28 - 2013-11-01 16:28 - 00010626 _____ C:\WINDOWS\KB942288-v3.log 2013-11-01 16:16 - 2013-04-24 18:58 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\Internet Download Accelerator 2013-11-01 13:24 - 2013-08-05 22:29 - 00001504 _____ C:\Documents and Settings\GRAVE70\Menu Start\Programy\The Bat!.LNK 2013-11-01 13:24 - 2010-09-06 07:46 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\The Bat! 2013-11-01 13:13 - 2012-02-05 09:14 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\FIREFOX KOPIE 2013-11-01 12:40 - 2013-11-01 12:40 - 00000736 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk 2013-11-01 12:40 - 2013-11-01 12:40 - 00000730 _____ C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk 2013-11-01 11:18 - 2013-09-25 20:32 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\ToolwizCareFree 2013-10-31 22:15 - 2013-10-31 22:09 - 00417513 _____ C:\WINDOWS\system32\vsconfig.xml 2013-10-31 22:08 - 2013-10-31 22:08 - 00000539 _____ C:\Documents and Settings\All Users\Pulpit\ZoneAlarm Security.lnk 2013-10-31 22:08 - 2013-10-31 22:08 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Check Point 2013-10-31 22:08 - 2013-10-31 22:07 - 00000000 ____D C:\Program Files\CheckPoint 2013-10-31 22:05 - 2013-10-31 22:05 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\CheckPoint 2013-10-31 22:01 - 2013-08-04 04:59 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\OnlineArmor 2013-10-31 20:47 - 2013-10-31 20:47 - 00000000 ____D C:\Documents and Settings\All Users\Dokumenty\Baidu Security 2013-10-31 20:47 - 2010-09-05 07:49 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty 2013-10-31 20:39 - 2013-10-31 20:39 - 00000863 _____ C:\Documents and Settings\All Users\Pulpit\Baidu Antivirus.lnk 2013-10-31 20:39 - 2013-10-31 20:39 - 00000000 ____D C:\Program Files\Baidu Security 2013-10-31 20:39 - 2013-10-31 20:39 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Baidu Antivirus 2013-10-31 20:24 - 2013-10-31 20:24 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Avg2014 2013-10-31 20:24 - 2010-10-09 20:26 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\MFAData 2013-10-31 20:19 - 2010-09-05 12:56 - 00000000 ____D C:\Program Files\Ashampoo 2013-10-31 20:14 - 2010-09-05 12:56 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Ashampoo 2013-10-31 19:59 - 2010-09-05 08:06 - 00000000 ___RD C:\Documents and Settings\GRAVE70\Menu Start\Programy\Autostart 2013-10-31 16:41 - 2013-08-21 07:53 - 00121136 _____ C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT 2013-10-31 16:32 - 2013-10-31 16:32 - 00000000 _____ C:\WINDOWS\Sti_Trace.log 2013-10-31 16:32 - 2013-08-21 07:53 - 00391976 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2013-10-31 06:27 - 2010-10-22 21:19 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\uTorrent 2013-10-30 23:35 - 2013-10-30 20:38 - 00065536 _____ C:\WINDOWS\system32\config\Nano.evt 2013-10-30 20:22 - 2009-07-16 20:33 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl 2013-10-30 20:20 - 2011-12-10 18:59 - 00000000 ____D C:\Documents and Settings\Administrator 2013-10-30 20:20 - 2010-09-05 06:03 - 00000000 __SHD C:\Documents and Settings\NetworkService 2013-10-30 20:20 - 2010-09-05 06:03 - 00000000 __SHD C:\Documents and Settings\LocalService 2013-10-30 20:20 - 2010-09-05 05:57 - 00000000 ____D C:\WINDOWS\Registration 2013-10-30 20:19 - 2013-10-30 19:51 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Safe 2013-10-30 19:51 - 2013-10-30 19:51 - 00000000 ____D C:\SafeRecycle 2013-10-30 18:43 - 2013-10-30 18:43 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\MFAData 2013-10-30 18:16 - 2013-10-30 18:16 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\GFI Software 2013-10-29 22:50 - 2010-09-05 07:50 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2013-10-29 22:49 - 2010-12-19 08:00 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Downloaded Installations 2013-10-29 21:07 - 2013-10-29 20:28 - 00458741 _____ C:\WINDOWS\system32\kelekmumambu.dbi 2013-10-29 20:07 - 2013-10-29 19:12 - 00065536 _____ C:\WINDOWS\system32\config\KAVEventLog.EVT 2013-10-29 20:03 - 2010-09-27 11:22 - 00000000 ____D C:\Program Files\Unlocker 2013-10-29 19:26 - 2010-09-13 18:41 - 00025992 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\pgdfgsvc.exe 2013-10-29 19:09 - 2013-10-29 18:31 - 00000000 ____D C:\Program Files\Freemake 2013-10-29 19:09 - 2013-10-29 18:31 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Freemake 2013-10-29 19:09 - 2013-05-10 16:13 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\AntiLogger 2013-10-29 19:09 - 2010-09-05 05:57 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne 2013-10-29 19:01 - 2013-10-29 19:01 - 00104919 _____ C:\Documents and Settings\All Users\Dane aplikacji\1383069643.bdinstall.bin 2013-10-29 18:59 - 2013-10-06 19:52 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\Media Player Classic 2013-10-29 18:33 - 2013-10-29 18:31 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\Freemake 2013-10-29 18:28 - 2010-09-05 09:33 - 00000000 ____D C:\WINDOWS\Microsoft.NET 2013-10-29 18:21 - 2009-07-16 20:33 - 00567420 _____ C:\WINDOWS\system32\perfh015.dat 2013-10-29 18:21 - 2009-07-16 20:33 - 00110232 _____ C:\WINDOWS\system32\perfc015.dat 2013-10-29 18:19 - 2010-09-05 07:42 - 00000000 ____D C:\WINDOWS\system32\pl-pl 2013-10-29 17:39 - 2010-09-05 12:57 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\PRZEPISY 2013-10-27 21:13 - 2011-07-10 15:24 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji\TuneUp Software 2013-10-27 13:46 - 2010-09-05 06:03 - 00000000 ___HD C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji 2013-10-27 09:40 - 2010-09-05 07:49 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy\Autostart 2013-10-27 07:24 - 2010-09-05 07:50 - 01319264 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2013-10-26 13:26 - 2013-10-10 05:45 - 00000010 _____ C:\WINDOWS\system32\khackmon.dll.log 2013-10-25 23:07 - 2013-10-25 23:07 - 00529128 _____ (Check Point Software Technologies LTD) C:\WINDOWS\system32\vsdatant.sys 2013-10-25 17:58 - 2010-09-05 08:59 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\Mozilla 2013-10-24 17:23 - 2013-01-16 19:02 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\PGE 2013-10-24 17:23 - 2013-01-13 08:58 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\PRZELEWY 2013-10-20 17:43 - 2013-10-06 06:01 - 00000000 __SHD C:\KRECYCLE 2013-10-20 09:21 - 2013-10-20 09:21 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Unity 2013-10-19 05:48 - 2013-10-19 05:48 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Java 2013-10-19 05:47 - 2013-10-19 05:49 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe 2013-10-19 05:47 - 2013-10-19 05:49 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl 2013-10-19 05:47 - 2013-10-19 05:48 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe 2013-10-19 05:47 - 2013-10-19 05:48 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe 2013-10-19 05:47 - 2013-10-19 05:48 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2013-10-18 17:09 - 2013-07-29 22:15 - 00000837 _____ C:\Documents and Settings\All Users\Pulpit\Driver Booster.lnk 2013-10-18 17:09 - 2013-07-29 22:15 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Driver Booster 2013-10-14 16:49 - 2013-01-10 17:51 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\JMDI 2013-10-13 16:25 - 2013-10-13 16:25 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\FlashPeak 2013-10-13 16:22 - 2013-10-13 16:22 - 00000574 _____ C:\Documents and Settings\All Users\Pulpit\FlashPeak SlimBoat.lnk 2013-10-13 16:22 - 2013-10-13 16:22 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\FlashPeak SlimBoat 2013-10-13 16:13 - 2010-09-05 08:06 - 00000000 __SHD C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Historia 2013-10-13 15:23 - 2010-09-27 21:33 - 00089360 ____H C:\WINDOWS\system32\mlfcache.dat 2013-10-13 15:22 - 2010-09-27 21:33 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\Apple Computer 2013-10-13 12:59 - 2010-09-19 19:03 - 00000000 ____D C:\WINDOWS\system32\Adobe 2013-10-13 09:56 - 2013-10-13 09:55 - 30384128 _____ C:\WINDOWS\system32\config\software.regback 2013-10-13 09:03 - 2010-09-05 17:04 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\TeraCopy 2013-10-13 09:02 - 2013-06-09 09:38 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\install_clap 2013-10-13 08:31 - 2013-10-13 08:31 - 00000700 _____ C:\Documents and Settings\GRAVE70\Pulpit\Cloud System Booster.lnk 2013-10-13 08:31 - 2013-10-13 08:31 - 00000000 ____D C:\Documents and Settings\GRAVE70\Menu Start\Programy\Anvisoft 2013-10-13 08:31 - 2013-10-13 08:31 - 00000000 ____D C:\Documents and Settings\All Users\Anvisoft 2013-10-13 07:55 - 2013-10-13 07:55 - 00000000 ____D C:\Program Files\LockHunter 2013-10-13 07:55 - 2013-10-13 07:55 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\LockHunter 2013-10-13 06:43 - 2013-07-27 12:22 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2013-10-13 06:43 - 2013-07-27 12:22 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2013-10-13 06:43 - 2010-09-06 07:35 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Adobe 2013-10-12 17:32 - 2013-05-13 16:50 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\PS Power Notes 2013-10-12 17:32 - 2010-10-03 08:40 - 00000000 ____D C:\Documents and Settings\GRAVE70\Ustawienia lokalne\Dane aplikacji\Abelssoft 2013-10-12 17:18 - 2013-10-12 17:18 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\Smideo 2013-10-12 17:18 - 2010-09-05 08:06 - 00000000 ___RD C:\Documents and Settings\GRAVE70\Moje dokumenty\Moje obrazy 2013-10-12 17:18 - 2010-09-05 08:06 - 00000000 ___RD C:\Documents and Settings\GRAVE70\Moje dokumenty\Moja muzyka 2013-10-12 05:31 - 2013-01-12 16:10 - 00000000 ____D C:\Documents and Settings\GRAVE70\Moje dokumenty\WSPOLNOTA RADZYMIN 2013-10-10 05:48 - 2013-10-10 05:47 - 00000000 ____D C:\Documents and Settings\GRAVE70\Menu Start\Programy\Haali Media Splitter 2013-10-10 05:47 - 2013-10-10 05:47 - 00000000 ____D C:\Program Files\Haali 2013-10-10 05:47 - 2013-10-10 05:46 - 00000000 ____D C:\Program Files\DScaler5 2013-10-10 05:47 - 2013-03-18 22:36 - 00000000 ____D C:\Program Files\MadVR 2013-10-10 05:47 - 2013-03-18 22:36 - 00000000 ____D C:\Program Files\LAV Filters 2013-10-10 05:47 - 2013-03-18 22:36 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\LAV Filters 2013-10-10 05:47 - 2010-09-05 15:06 - 00000000 ____D C:\Program Files\ffdshow 2013-10-10 05:46 - 2013-03-18 22:37 - 00000000 ____D C:\Program Files\AC3Filter 2013-10-10 05:46 - 2013-03-18 22:37 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\AC3Filter 2013-10-10 05:45 - 2013-10-10 05:45 - 00001654 _____ C:\Documents and Settings\All Users\Pulpit\Zoom Player MAX.lnk 2013-10-10 05:45 - 2013-10-10 05:45 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Zoom Player 2013-10-10 05:45 - 2013-03-18 22:37 - 00000000 ____D C:\Program Files\Zoom Player 2013-10-10 05:45 - 2013-03-18 22:32 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Zoom Player 2013-10-10 05:41 - 2010-09-05 14:32 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\Mipony 2013-10-09 17:11 - 2010-09-05 08:06 - 00000000 ___RD C:\Documents and Settings\GRAVE70\Menu Start 2013-10-06 13:07 - 2013-10-06 12:16 - 00000000 ____D C:\Documents and Settings\GRAVE70\Dane aplikacji\Synei 2013-10-06 12:15 - 2013-10-06 12:15 - 00000642 _____ C:\Documents and Settings\All Users\Pulpit\Synei System Utilities.lnk 2013-10-06 12:15 - 2013-10-06 12:15 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Synei System Utilities 2013-10-06 06:55 - 2013-09-27 17:10 - 00000000 ____D C:\Program Files\diamondata 2013-10-06 06:42 - 2013-08-03 06:53 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\F-Secure 2013-10-06 06:12 - 2013-10-06 06:12 - 00034985 _____ C:\WINDOWS\system32\secl_CAstore.p7b 2013-10-04 17:42 - 2010-09-05 06:00 - 00000000 ___HD C:\WINDOWS\$hf_mig$ Some content of TEMP: ==================== C:\Documents and Settings\GRAVE70\Ustawienia lokalne\temp\ntdll_dump.dll ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe [2009-07-16 20:33] - [2009-07-16 20:33] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a C:\Windows\System32\winlogon.exe [2009-07-16 20:33] - [2009-07-16 20:33] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 C:\Windows\System32\svchost.exe [2009-07-16 20:33] - [2009-07-16 20:33] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce C:\Windows\System32\services.exe [2009-07-16 20:33] - [2009-07-16 20:33] - 0111104 ____A (Microsoft Corporation) 8816e60bf654353e8e0d35ed98875445 C:\Windows\System32\User32.dll [2009-07-16 20:33] - [2009-07-16 20:33] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 C:\Windows\System32\userinit.exe [2009-07-16 20:33] - [2009-07-16 20:33] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 C:\Windows\System32\Drivers\volsnap.sys [2009-07-16 20:33] - [2009-07-16 20:33] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 ==================== End Of Log ============================