Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-11-2013 01
Ran by AMD (administrator) on AMD-KOMPUTER on 11-11-2013 00:07:49
Running from C:\Users\AMD\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: Polish
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2014\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Anvisoft) E:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDSrv.exe
() C:\Windows\SysWOW64\ASGT.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgemca.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Anvisoft) E:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDTray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7982112 2009-07-29] (Realtek Semiconductor)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [19875432 2013-06-21] (Skype Technologies S.A.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [Anvi Smart Defender] - E:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDTray.exe [1635048 2013-08-12] (Anvisoft)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [AVG_UI] - C:\Program Files (x86)\AVG\AVG2014\avgui.exe [4908592 2013-10-07] (AVG Technologies CZ, s.r.o.)
HKU\Iza\...\Run: [IPLA!] - C:\Program Files (x86)\ipla\ipla.exe [21205088 2013-09-12] (Redefine Sp z o.o.)
HKU\Iza\...\Run: [Gadu-Gadu 10] - D:\Program Files (x86)\Gadu-Gadu 10\gg.exe [12477024 2010-07-22] (GG Network S.A.)
HKU\Iza\...\Run: [Softonic for Windows] - D:\users\Iza\AppData\Local\Softonic\Softonic.exe [4095472 2013-10-01] (Softonic)
HKU\Iza\...\Run: [NTRedirect] - C:\Windows\SysWOW64\rundll32.exe "C:\Users\Iza\AppData\Roaming\BabSolution\Shared\NTRedirect.dll",Run <===== ATTENTION
AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll [97280 2009-07-14] ()
AppInit_DLLs-x32:   [ ] ()
Startup: C:\Users\AMD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Powiadomienia monitorowania tuszu - HP Deskjet 1050 J410 series.lnk
ShortcutTarget: Powiadomienia monitorowania tuszu - HP Deskjet 1050 J410 series.lnk -> C:\Program Files\HP\HP Deskjet 1050 J410 series\bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

URLSearchHook: HKCU - SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll No File
SearchScopes: HKLM-x32 - {89D0EF7D-2254-4133-AAD8-29E20DF679DF} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD
SearchScopes: HKCU - {89D0EF7D-2254-4133-AAD8-29E20DF679DF} URL = http://uk.search.yahoo.com/search?p={searchTerms}&fr=chr-devicevm&type=IEBD
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: dokotoolbar Helper Object - {3B9F6E59-04CA-43FF-92DF-F6E66D3A8D82} - C:\Program Files (x86)\Doko-Toolbar\dokotoolbar\1.8.26.9\bh\dokotoolbar.dll No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: BHO Class - {DD92DE22-ED91-4560-B788-DEE2B26612E6} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\IEHelper.dll No File
Toolbar: HKLM-x32 - dokotoolbar Toolbar - {339E1B37-76D3-4A64-A988-E81425DF831C} - C:\Program Files (x86)\Doko-Toolbar\dokotoolbar\1.8.26.9\dokotoolbarTlbr.dll No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.355.0\BingExt.dll (Microsoft Corporation.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: 127.0.0.1	localhost
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

Chrome: 
=======
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchURL: (Doko Search) - http://www.doko-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=9AB0001BFC7325A4&affID=125839&tsp=5037
CHR DefaultSuggestURL: (Doko Search) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Extension: (New Tab) - C:\Users\AMD\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcendgajlhoaiiccpijilcpmgphfflnj\9.4_1
CHR Extension: (Google Wallet) - C:\Users\AMD\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR HKLM\...\Chrome\Extension: [kcendgajlhoaiiccpijilcpmgphfflnj] - C:\Users\AMD\AppData\Local\newhb.crx
CHR HKLM-x32\...\Chrome\Extension: [kcendgajlhoaiiccpijilcpmgphfflnj] - C:\Users\AMD\AppData\Local\newhb.crx

==================== Services (Whitelisted) =================

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 asdsrv; E:\Program Files (x86)\Anvisoft\Anvi Smart Defender\ASDSrv.exe [742120 2013-08-12] (Anvisoft)
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] ()
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3538480 2013-10-03] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [301152 2013-09-25] (AVG Technologies CZ, s.r.o.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)

==================== Drivers (Whitelisted) ====================

S1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21544 2010-04-22] ()
R1 asdrm; C:\Windows\System32\DRIVERS\asdrm.sys [18768 2012-11-07] (Anvisoft)
R2 asdrs; C:\Windows\system32\DRIVERS\asdrs.sys [23376 2012-11-07] (Anvisoft)
R2 asdws; C:\Windows\system32\DRIVERS\asdws.sys [17232 2012-11-07] ()
R3 Atc002; C:\Windows\System32\DRIVERS\l260x64.sys [34304 2009-06-10] (Atheros Communications, Inc.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [148792 2013-09-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [241464 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [192824 2013-09-02] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [212280 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [294712 2013-09-02] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123704 2013-08-20] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31544 2013-09-08] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [251192 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-11-10] (AVG Technologies)
R4 IOMap; C:\Windows\system32\drivers\IOMap64.sys [23680 2010-02-23] (ASUSTeK Computer Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2013-11-10] ()
S3 FXDrv32; \??\F:\Strery mati\FXDrv64.sys [x]
S3 gdrv; \??\C:\Windows\gdrv.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-11 00:07 - 2013-11-11 00:07 - 01957590 _____ (Farbar) C:\Users\AMD\Downloads\FRST64.exe
2013-11-11 00:07 - 2013-11-11 00:07 - 00000000 ____D C:\FRST
2013-11-11 00:06 - 2013-11-11 00:06 - 01090275 _____ (Farbar) C:\Users\AMD\Downloads\FRST.exe
2013-11-11 00:01 - 2013-11-11 00:01 - 00095460 _____ C:\Users\AMD\Downloads\OTL.Txt
2013-11-10 23:41 - 2013-11-10 23:41 - 00002142 _____ C:\Users\AMD\Desktop\RKreport[0]_D_11102013_234109.txt
2013-11-10 23:41 - 2013-11-10 23:41 - 00001033 _____ C:\Users\AMD\Desktop\RKreport[0]_H_11102013_234122.txt
2013-11-10 23:40 - 2013-11-10 23:40 - 00002058 _____ C:\Users\AMD\Desktop\RKreport[0]_S_11102013_234055.txt
2013-11-10 23:33 - 2013-11-10 23:41 - 00000000 ____D C:\Users\AMD\Desktop\RK_Quarantine
2013-11-10 23:33 - 2013-11-10 23:33 - 03538944 _____ C:\Users\AMD\Downloads\RogueKiller.exe
2013-11-10 23:32 - 2013-11-10 23:32 - 00448512 _____ (OldTimer Tools) C:\Users\AMD\Downloads\TFC (2).exe
2013-11-10 23:24 - 2013-11-10 23:24 - 00448512 _____ (OldTimer Tools) C:\Users\AMD\Downloads\TFC (1).exe
2013-11-10 23:23 - 2013-11-10 23:23 - 00448512 _____ (OldTimer Tools) C:\Users\AMD\Downloads\TFC.exe
2013-11-10 22:54 - 2013-11-10 23:12 - 00000000 ____D C:\AdwCleaner
2013-11-10 22:52 - 2013-11-10 22:53 - 01073262 _____ C:\Users\AMD\Downloads\AdwCleaner.exe
2013-11-10 21:32 - 2013-11-10 21:32 - 00000000 ____D C:\Users\AMD\AppData\Roaming\AVG2014
2013-11-10 21:31 - 2013-11-10 21:31 - 00003230 _____ C:\Windows\System32\Tasks\SidebarExecute
2013-11-10 21:30 - 2013-11-10 21:30 - 00000995 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-11-10 21:30 - 2013-11-10 21:30 - 00000000 ____D C:\Users\AMD\AppData\Roaming\TuneUp Software
2013-11-10 21:30 - 2013-11-10 21:29 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-11-10 21:27 - 2013-11-10 22:00 - 00000000 ____D C:\ProgramData\AVG2014
2013-11-10 21:27 - 2013-11-10 21:27 - 00000000 ___HD C:\$AVG
2013-11-10 21:26 - 2013-11-10 21:26 - 00000000 ____D C:\Program Files (x86)\AVG
2013-11-10 21:14 - 2013-11-10 21:43 - 00000000 ____D C:\Users\AMD\AppData\Local\Avg2014
2013-11-10 21:14 - 2013-11-10 21:42 - 00000000 ____D C:\ProgramData\MFAData
2013-11-10 21:14 - 2013-11-10 21:14 - 00000000 ____D C:\Users\AMD\AppData\Local\MFAData
2013-11-10 20:42 - 2013-11-10 21:10 - 138319136 _____ (AVG Technologies) C:\Users\AMD\Downloads\avg_free_x86_all_2014_4158a6730.exe
2013-11-10 20:21 - 2013-11-10 20:23 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\AMD\Downloads\mbam-setup-1.75.0.1300 (1).exe
2013-11-10 19:06 - 2013-11-10 19:07 - 00000000 ____D C:\Users\Iza\AppData\Roaming\HpUpdate
2013-11-10 18:50 - 2013-11-10 18:50 - 00000000 ____D C:\Users\Iza\AppData\Local\HP
2013-11-10 16:09 - 2013-11-10 16:09 - 00000000 ____D C:\Program Files (x86)\PlayReady
2013-11-10 15:36 - 2013-11-10 15:36 - 00702928 _____ C:\Users\Iza\Downloads\DownloadManagerSetup.exe
2013-11-10 15:19 - 2013-11-10 15:19 - 00053975 _____ C:\Users\AMD\Desktop\krzysiu-to-nie-imie-krzysiu-to-pijok-pl-ffffff
2013-11-10 14:41 - 2013-11-10 14:41 - 00001995 _____ C:\Users\Public\Desktop\HP Photo Creations.lnk
2013-11-10 14:41 - 2013-11-10 14:41 - 00000000 ____D C:\ProgramData\Visan
2013-11-10 14:41 - 2013-11-10 14:41 - 00000000 ____D C:\ProgramData\HP Photo Creations
2013-11-10 14:41 - 2013-11-10 14:41 - 00000000 ____D C:\Program Files (x86)\HP Photo Creations
2013-11-10 14:40 - 2013-11-10 14:40 - 00003622 _____ C:\Windows\System32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series
2013-11-10 14:40 - 2013-11-10 14:40 - 00002272 _____ C:\Users\Public\Desktop\HP Deskjet 1050 J410 series.lnk
2013-11-10 14:40 - 2013-11-10 14:40 - 00001194 _____ C:\Users\Public\Desktop\Zakup materiałów eksploatacyjnych - HP Deskjet 1050 J410 series.lnk
2013-11-10 14:40 - 2013-11-10 14:40 - 00000000 ____D C:\Users\AMD\AppData\Roaming\HpUpdate
2013-11-10 14:39 - 2013-11-10 14:45 - 00000000 ____D C:\Users\AMD\AppData\Local\HP
2013-11-10 14:39 - 2013-11-10 14:40 - 00000000 ____D C:\Program Files (x86)\HP
2013-11-10 14:39 - 2013-11-10 14:39 - 00000057 _____ C:\ProgramData\Ament.ini
2013-11-10 14:39 - 2013-11-10 14:39 - 00000000 ____D C:\ProgramData\HP
2013-11-10 14:39 - 2013-11-10 14:39 - 00000000 ____D C:\Program Files\HP
2013-11-10 11:15 - 2013-11-11 00:04 - 00051778 _____ C:\Users\AMD\Downloads\Extras.Txt
2013-11-10 10:35 - 2013-11-10 10:35 - 00602112 _____ (OldTimer Tools) C:\Users\AMD\Downloads\OTL.exe
2013-11-06 12:40 - 2013-11-06 13:36 - 00002432 _____ C:\Users\Iza\AppData\Local\TempzM2292.html
2013-11-06 12:40 - 2013-11-06 13:36 - 00002089 _____ C:\Users\Iza\AppData\Local\TemphU2292.html
2013-11-06 11:49 - 2013-11-06 11:49 - 00002432 _____ C:\Users\Iza\AppData\Local\TempuJ2828.html
2013-11-06 11:49 - 2013-11-06 11:49 - 00002089 _____ C:\Users\Iza\AppData\Local\TempcO2828.html
2013-11-06 10:41 - 2013-11-06 10:41 - 00506968 _____ (Company #1) C:\Users\AMD\Downloads\cs_1.6_4554_revEMU_v2 (1).exe
2013-11-06 10:38 - 2013-11-06 10:38 - 00007853 _____ C:\Users\AMD\Downloads\Niepotwierdzony 261979.crdownload
2013-11-06 10:17 - 2013-11-10 23:24 - 00000406 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2013-11-06 10:17 - 2013-11-10 23:18 - 00002828 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2013-11-06 10:17 - 2013-11-10 23:17 - 00016152 _____ C:\Windows\system32\Drivers\SWDUMon.sys
2013-11-06 10:16 - 2013-11-06 10:16 - 00002467 _____ C:\Users\Public\Desktop\SlimDrivers.lnk
2013-11-06 10:16 - 2013-11-06 10:16 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2013-11-06 10:16 - 2013-11-06 10:16 - 00000000 ____D C:\Users\AMD\AppData\Local\SlimWare Utilities Inc
2013-11-06 10:14 - 2013-11-06 10:14 - 00858432 _____ (SlimWare Utilities, Inc.) C:\Users\AMD\Downloads\SlimDrivers-setup.exe
2013-11-03 22:05 - 2013-11-03 22:06 - 02195968 _____ C:\Users\Iza\Downloads\Rybczynska_Anna.pps
2013-11-03 19:38 - 2013-11-03 19:38 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-11-03 19:38 - 2013-11-03 19:38 - 00000000 ____D C:\ProgramData\AVG
2013-11-03 19:08 - 2013-11-03 19:39 - 00000000 ____D C:\Users\Iza\Desktop\after party
2013-10-29 20:22 - 2013-10-29 21:08 - 00002432 _____ C:\Users\Iza\AppData\Local\TempCMf736.html
2013-10-29 20:22 - 2013-10-29 21:08 - 00002089 _____ C:\Users\Iza\AppData\Local\TempFBl736.html
2013-10-28 20:20 - 2013-10-28 21:15 - 00002432 _____ C:\Users\Iza\AppData\Local\TempMD5784.html
2013-10-28 20:20 - 2013-10-28 21:15 - 00002089 _____ C:\Users\Iza\AppData\Local\Tempww5784.html
2013-10-28 17:06 - 2013-10-28 17:14 - 00002432 _____ C:\Users\Iza\AppData\Local\TemprX5088.html
2013-10-28 17:06 - 2013-10-28 17:14 - 00002089 _____ C:\Users\Iza\AppData\Local\TempzX5088.html
2013-10-27 17:40 - 2013-10-27 17:40 - 00000342 _____ C:\Users\Iza\Desktop\staż.txt
2013-10-27 16:13 - 2013-10-27 18:20 - 00002432 _____ C:\Users\Iza\AppData\Local\TempvI3284.html
2013-10-27 16:13 - 2013-10-27 18:20 - 00002089 _____ C:\Users\Iza\AppData\Local\TempuP3284.html
2013-10-26 18:28 - 2013-10-26 18:38 - 00002432 _____ C:\Users\Iza\AppData\Local\TempqI2496.html
2013-10-26 18:28 - 2013-10-26 18:38 - 00002089 _____ C:\Users\Iza\AppData\Local\TempMb2496.html
2013-10-26 13:21 - 2013-10-26 13:22 - 00000000 ____D C:\Users\AMD\Desktop\Nowy folder (2)
2013-10-22 21:50 - 2013-10-22 21:50 - 00000000 ____D C:\Users\Iza\AppData\Roaming\Malwarebytes
2013-10-22 17:59 - 2013-10-22 17:59 - 00002432 _____ C:\Users\Iza\AppData\Local\Tempfk1780.html
2013-10-20 17:49 - 2013-10-20 18:57 - 00002432 _____ C:\Users\Iza\AppData\Local\TempPW4476.html
2013-10-20 17:49 - 2013-10-20 18:57 - 00002089 _____ C:\Users\Iza\AppData\Local\TempEw4476.html
2013-10-16 21:59 - 2013-10-16 21:59 - 00002390 _____ C:\Users\Iza\Desktop\pd z fr.txt
2013-10-16 20:43 - 2013-10-16 21:59 - 00002432 _____ C:\Users\Iza\AppData\Local\Temprv7668.html
2013-10-16 20:43 - 2013-10-16 21:59 - 00002089 _____ C:\Users\Iza\AppData\Local\TempaG7668.html
2013-10-16 17:03 - 2013-10-16 17:03 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-16 17:03 - 2013-10-16 17:03 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-16 17:01 - 2013-10-16 17:01 - 38966928 _____ (Adobe Systems Incorporated) C:\Users\Iza\Downloads\AdbeRdr11000_pl_PL.exe
2013-10-16 16:51 - 2013-10-16 16:51 - 00685248 _____ C:\Users\Iza\Downloads\Adobe-Reader-XI(21590).exe
2013-10-16 16:49 - 2013-10-16 16:49 - 01071568 _____ (Solid State Networks) C:\Users\Iza\Downloads\install_reader11_pl_mssa_awc_aih.exe
2013-10-16 16:23 - 2013-10-16 16:23 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-10-16 15:40 - 2013-10-16 15:40 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-10-16 15:39 - 2013-10-16 16:23 - 00001931 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-10-16 15:39 - 2013-10-16 15:39 - 00000000 ____D C:\ProgramData\McAfee
2013-10-15 17:57 - 2013-10-16 16:54 - 00000000 ____D C:\Users\Iza\AppData\Local\Adobe

==================== One Month Modified Files and Folders =======

2013-11-11 00:07 - 2013-11-11 00:07 - 01957590 _____ (Farbar) C:\Users\AMD\Downloads\FRST64.exe
2013-11-11 00:07 - 2013-11-11 00:07 - 00000000 ____D C:\FRST
2013-11-11 00:06 - 2013-11-11 00:06 - 01090275 _____ (Farbar) C:\Users\AMD\Downloads\FRST.exe
2013-11-11 00:04 - 2013-11-10 11:15 - 00051778 _____ C:\Users\AMD\Downloads\Extras.Txt
2013-11-11 00:01 - 2013-11-11 00:01 - 00095460 _____ C:\Users\AMD\Downloads\OTL.Txt
2013-11-10 23:41 - 2013-11-10 23:41 - 00002142 _____ C:\Users\AMD\Desktop\RKreport[0]_D_11102013_234109.txt
2013-11-10 23:41 - 2013-11-10 23:41 - 00001033 _____ C:\Users\AMD\Desktop\RKreport[0]_H_11102013_234122.txt
2013-11-10 23:41 - 2013-11-10 23:33 - 00000000 ____D C:\Users\AMD\Desktop\RK_Quarantine
2013-11-10 23:41 - 2013-07-10 10:22 - 00001042 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-10 23:40 - 2013-11-10 23:40 - 00002058 _____ C:\Users\AMD\Desktop\RKreport[0]_S_11102013_234055.txt
2013-11-10 23:33 - 2013-11-10 23:33 - 03538944 _____ C:\Users\AMD\Downloads\RogueKiller.exe
2013-11-10 23:32 - 2013-11-10 23:32 - 00448512 _____ (OldTimer Tools) C:\Users\AMD\Downloads\TFC (2).exe
2013-11-10 23:29 - 2002-01-01 00:28 - 01192435 _____ C:\Windows\WindowsUpdate.log
2013-11-10 23:24 - 2013-11-10 23:24 - 00448512 _____ (OldTimer Tools) C:\Users\AMD\Downloads\TFC (1).exe
2013-11-10 23:24 - 2013-11-06 10:17 - 00000406 _____ C:\Windows\Tasks\SlimDrivers Startup.job
2013-11-10 23:24 - 2009-07-14 18:55 - 00697674 _____ C:\Windows\system32\perfh015.dat
2013-11-10 23:24 - 2009-07-14 18:55 - 00134784 _____ C:\Windows\system32\perfc015.dat
2013-11-10 23:24 - 2009-07-14 06:13 - 01549696 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-10 23:23 - 2013-11-10 23:23 - 00448512 _____ (OldTimer Tools) C:\Users\AMD\Downloads\TFC.exe
2013-11-10 23:23 - 2002-01-01 00:56 - 00000000 ____D C:\Users\AMD\AppData\Roaming\GG
2013-11-10 23:18 - 2013-11-06 10:17 - 00002828 _____ C:\Windows\System32\Tasks\SlimDrivers Startup
2013-11-10 23:18 - 2013-08-02 07:17 - 00000000 ____D C:\Users\AMD\AppData\Roaming\Skype
2013-11-10 23:17 - 2013-11-06 10:17 - 00016152 _____ C:\Windows\system32\Drivers\SWDUMon.sys
2013-11-10 23:17 - 2013-07-10 10:22 - 00001038 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-10 23:16 - 2013-07-09 23:04 - 00153000 _____ C:\Windows\PFRO.log
2013-11-10 23:16 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-10 23:16 - 2002-01-01 00:45 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-10 23:16 - 2002-01-01 00:37 - 00047627 _____ C:\Windows\setupact.log
2013-11-10 23:14 - 2009-07-14 05:45 - 00010144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-10 23:14 - 2009-07-14 05:45 - 00010144 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-10 23:12 - 2013-11-10 22:54 - 00000000 ____D C:\AdwCleaner
2013-11-10 23:11 - 2013-10-08 17:01 - 00000000 ____D C:\Users\Iza\AppData\Roaming\Uniblue
2013-11-10 23:11 - 2013-10-08 17:01 - 00000000 ____D C:\Program Files (x86)\Uniblue
2013-11-10 23:11 - 2002-01-01 00:38 - 00000000 ____D C:\Users\AMD
2013-11-10 22:53 - 2013-11-10 22:52 - 01073262 _____ C:\Users\AMD\Downloads\AdwCleaner.exe
2013-11-10 22:00 - 2013-11-10 21:27 - 00000000 ____D C:\ProgramData\AVG2014
2013-11-10 21:43 - 2013-11-10 21:14 - 00000000 ____D C:\Users\AMD\AppData\Local\Avg2014
2013-11-10 21:42 - 2013-11-10 21:14 - 00000000 ____D C:\ProgramData\MFAData
2013-11-10 21:32 - 2013-11-10 21:32 - 00000000 ____D C:\Users\AMD\AppData\Roaming\AVG2014
2013-11-10 21:31 - 2013-11-10 21:31 - 00003230 _____ C:\Windows\System32\Tasks\SidebarExecute
2013-11-10 21:30 - 2013-11-10 21:30 - 00000995 _____ C:\Users\Public\Desktop\AVG 2014.lnk
2013-11-10 21:30 - 2013-11-10 21:30 - 00000000 ____D C:\Users\AMD\AppData\Roaming\TuneUp Software
2013-11-10 21:29 - 2013-11-10 21:30 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys
2013-11-10 21:27 - 2013-11-10 21:27 - 00000000 ___HD C:\$AVG
2013-11-10 21:26 - 2013-11-10 21:26 - 00000000 ____D C:\Program Files (x86)\AVG
2013-11-10 21:14 - 2013-11-10 21:14 - 00000000 ____D C:\Users\AMD\AppData\Local\MFAData
2013-11-10 21:10 - 2013-11-10 20:42 - 138319136 _____ (AVG Technologies) C:\Users\AMD\Downloads\avg_free_x86_all_2014_4158a6730.exe
2013-11-10 20:23 - 2013-11-10 20:21 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\AMD\Downloads\mbam-setup-1.75.0.1300 (1).exe
2013-11-10 20:17 - 2013-07-24 15:54 - 00001368 _____ C:\Users\AMD\Desktop\Wyczyść rejestr za darmo!.lnk
2013-11-10 20:15 - 2002-01-01 00:03 - 00000000 ____D C:\Users\AMD\AppData\Roaming\AIMP3
2013-11-10 19:07 - 2013-11-10 19:06 - 00000000 ____D C:\Users\Iza\AppData\Roaming\HpUpdate
2013-11-10 18:50 - 2013-11-10 18:50 - 00000000 ____D C:\Users\Iza\AppData\Local\HP
2013-11-10 16:09 - 2013-11-10 16:09 - 00000000 ____D C:\Program Files (x86)\PlayReady
2013-11-10 16:09 - 2013-07-13 15:05 - 00000000 ____D C:\ProgramData\ipla
2013-11-10 15:49 - 2013-07-22 15:57 - 00001368 _____ C:\Users\Iza\Desktop\Wyczyść rejestr za darmo!.lnk
2013-11-10 15:47 - 2013-07-13 15:05 - 00000000 ____D C:\Users\Iza\AppData\Roaming\ipla
2013-11-10 15:36 - 2013-11-10 15:36 - 00702928 _____ C:\Users\Iza\Downloads\DownloadManagerSetup.exe
2013-11-10 15:19 - 2013-11-10 15:19 - 00053975 _____ C:\Users\AMD\Desktop\krzysiu-to-nie-imie-krzysiu-to-pijok-pl-ffffff
2013-11-10 14:45 - 2013-11-10 14:39 - 00000000 ____D C:\Users\AMD\AppData\Local\HP
2013-11-10 14:45 - 2002-01-01 00:38 - 00000000 ___RD C:\Users\AMD\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-10 14:41 - 2013-11-10 14:41 - 00001995 _____ C:\Users\Public\Desktop\HP Photo Creations.lnk
2013-11-10 14:41 - 2013-11-10 14:41 - 00000000 ____D C:\ProgramData\Visan
2013-11-10 14:41 - 2013-11-10 14:41 - 00000000 ____D C:\ProgramData\HP Photo Creations
2013-11-10 14:41 - 2013-11-10 14:41 - 00000000 ____D C:\Program Files (x86)\HP Photo Creations
2013-11-10 14:40 - 2013-11-10 14:40 - 00003622 _____ C:\Windows\System32\Tasks\HPCustParticipation HP Deskjet 1050 J410 series
2013-11-10 14:40 - 2013-11-10 14:40 - 00002272 _____ C:\Users\Public\Desktop\HP Deskjet 1050 J410 series.lnk
2013-11-10 14:40 - 2013-11-10 14:40 - 00001194 _____ C:\Users\Public\Desktop\Zakup materiałów eksploatacyjnych - HP Deskjet 1050 J410 series.lnk
2013-11-10 14:40 - 2013-11-10 14:40 - 00000000 ____D C:\Users\AMD\AppData\Roaming\HpUpdate
2013-11-10 14:40 - 2013-11-10 14:39 - 00000000 ____D C:\Program Files (x86)\HP
2013-11-10 14:39 - 2013-11-10 14:39 - 00000057 _____ C:\ProgramData\Ament.ini
2013-11-10 14:39 - 2013-11-10 14:39 - 00000000 ____D C:\ProgramData\HP
2013-11-10 14:39 - 2013-11-10 14:39 - 00000000 ____D C:\Program Files\HP
2013-11-10 12:49 - 2013-08-11 19:41 - 00000452 ____H C:\Windows\Tasks\Norton Security Scan for Magda.job
2013-11-10 10:35 - 2013-11-10 10:35 - 00602112 _____ (OldTimer Tools) C:\Users\AMD\Downloads\OTL.exe
2013-11-10 09:57 - 2002-01-01 02:35 - 00000000 ____D C:\Users\AMD\AppData\Roaming\Opera Software
2013-11-10 09:57 - 2002-01-01 02:35 - 00000000 ____D C:\Users\AMD\AppData\Local\Opera Software
2013-11-10 09:57 - 2002-01-01 02:34 - 00000000 ____D C:\Program Files (x86)\Opera
2013-11-10 09:53 - 2013-07-27 00:00 - 00000109 _____ C:\Users\AMD\AppData\Roaming\WB.CFG
2013-11-10 09:53 - 2002-01-01 02:00 - 00000006 _____ C:\Users\AMD\AppData\Roaming\WBPU-TTL.DAT
2013-11-09 12:50 - 2013-07-15 12:09 - 00003934 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{4E148ADD-0DD3-42D0-809C-BCC2A2DE3692}
2013-11-06 13:36 - 2013-11-06 12:40 - 00002432 _____ C:\Users\Iza\AppData\Local\TempzM2292.html
2013-11-06 13:36 - 2013-11-06 12:40 - 00002089 _____ C:\Users\Iza\AppData\Local\TemphU2292.html
2013-11-06 11:49 - 2013-11-06 11:49 - 00002432 _____ C:\Users\Iza\AppData\Local\TempuJ2828.html
2013-11-06 11:49 - 2013-11-06 11:49 - 00002089 _____ C:\Users\Iza\AppData\Local\TempcO2828.html
2013-11-06 11:10 - 2002-01-01 00:51 - 00003974 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{7CD2E144-E12A-4B65-924C-A4B682EDCA14}
2013-11-06 10:41 - 2013-11-06 10:41 - 00506968 _____ (Company #1) C:\Users\AMD\Downloads\cs_1.6_4554_revEMU_v2 (1).exe
2013-11-06 10:38 - 2013-11-06 10:38 - 00007853 _____ C:\Users\AMD\Downloads\Niepotwierdzony 261979.crdownload
2013-11-06 10:16 - 2013-11-06 10:16 - 00002467 _____ C:\Users\Public\Desktop\SlimDrivers.lnk
2013-11-06 10:16 - 2013-11-06 10:16 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2013-11-06 10:16 - 2013-11-06 10:16 - 00000000 ____D C:\Users\AMD\AppData\Local\SlimWare Utilities Inc
2013-11-06 10:14 - 2013-11-06 10:14 - 00858432 _____ (SlimWare Utilities, Inc.) C:\Users\AMD\Downloads\SlimDrivers-setup.exe
2013-11-06 09:29 - 2009-07-14 04:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2013-11-03 22:06 - 2013-11-03 22:05 - 02195968 _____ C:\Users\Iza\Downloads\Rybczynska_Anna.pps
2013-11-03 19:39 - 2013-11-03 19:08 - 00000000 ____D C:\Users\Iza\Desktop\after party
2013-11-03 19:38 - 2013-11-03 19:38 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2013-11-03 19:38 - 2013-11-03 19:38 - 00000000 ____D C:\ProgramData\AVG
2013-11-03 19:36 - 2013-07-15 10:59 - 00000000 ____D C:\Users\Iza\AppData\Roaming\PhotoScape
2013-11-03 19:33 - 2013-09-01 13:45 - 00000000 ____D C:\Users\Iza\Desktop\iza
2013-11-03 19:32 - 2013-07-15 10:53 - 00000000 ____D C:\Program Files (x86)\PhotoScape
2013-11-03 19:31 - 2013-10-08 17:05 - 00001035 _____ C:\Users\Iza\Desktop\PhotoScape.lnk
2013-10-29 21:08 - 2013-10-29 20:22 - 00002432 _____ C:\Users\Iza\AppData\Local\TempCMf736.html
2013-10-29 21:08 - 2013-10-29 20:22 - 00002089 _____ C:\Users\Iza\AppData\Local\TempFBl736.html
2013-10-28 21:15 - 2013-10-28 20:20 - 00002432 _____ C:\Users\Iza\AppData\Local\TempMD5784.html
2013-10-28 21:15 - 2013-10-28 20:20 - 00002089 _____ C:\Users\Iza\AppData\Local\Tempww5784.html
2013-10-28 17:14 - 2013-10-28 17:06 - 00002432 _____ C:\Users\Iza\AppData\Local\TemprX5088.html
2013-10-28 17:14 - 2013-10-28 17:06 - 00002089 _____ C:\Users\Iza\AppData\Local\TempzX5088.html
2013-10-27 18:20 - 2013-10-27 16:13 - 00002432 _____ C:\Users\Iza\AppData\Local\TempvI3284.html
2013-10-27 18:20 - 2013-10-27 16:13 - 00002089 _____ C:\Users\Iza\AppData\Local\TempuP3284.html
2013-10-27 18:12 - 2013-10-06 14:05 - 00000000 ____D C:\Users\Iza\Desktop\Francja
2013-10-27 17:40 - 2013-10-27 17:40 - 00000342 _____ C:\Users\Iza\Desktop\staż.txt
2013-10-27 15:13 - 2002-01-01 00:38 - 00000000 ____D C:\Users\AMD\.gstreamer-0.10
2013-10-26 18:38 - 2013-10-26 18:28 - 00002432 _____ C:\Users\Iza\AppData\Local\TempqI2496.html
2013-10-26 18:38 - 2013-10-26 18:28 - 00002089 _____ C:\Users\Iza\AppData\Local\TempMb2496.html
2013-10-26 13:22 - 2013-10-26 13:21 - 00000000 ____D C:\Users\AMD\Desktop\Nowy folder (2)
2013-10-22 21:50 - 2013-10-22 21:50 - 00000000 ____D C:\Users\Iza\AppData\Roaming\Malwarebytes
2013-10-22 17:59 - 2013-10-22 17:59 - 00002432 _____ C:\Users\Iza\AppData\Local\Tempfk1780.html
2013-10-20 18:57 - 2013-10-20 17:49 - 00002432 _____ C:\Users\Iza\AppData\Local\TempPW4476.html
2013-10-20 18:57 - 2013-10-20 17:49 - 00002089 _____ C:\Users\Iza\AppData\Local\TempEw4476.html
2013-10-20 13:55 - 2013-08-02 07:16 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-20 13:54 - 2013-08-02 07:16 - 00000000 ____D C:\ProgramData\Skype
2013-10-18 04:47 - 2013-07-10 10:41 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-17 14:50 - 2009-07-14 06:08 - 00032592 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-16 21:59 - 2013-10-16 21:59 - 00002390 _____ C:\Users\Iza\Desktop\pd z fr.txt
2013-10-16 21:59 - 2013-10-16 20:43 - 00002432 _____ C:\Users\Iza\AppData\Local\Temprv7668.html
2013-10-16 21:59 - 2013-10-16 20:43 - 00002089 _____ C:\Users\Iza\AppData\Local\TempaG7668.html
2013-10-16 17:05 - 2002-01-01 02:19 - 00000000 ____D C:\ProgramData\Adobe
2013-10-16 17:04 - 2013-07-10 09:47 - 00000000 ____D C:\Users\Iza\AppData\Roaming\Adobe
2013-10-16 17:03 - 2013-10-16 17:03 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-10-16 17:03 - 2013-10-16 17:03 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-10-16 17:01 - 2013-10-16 17:01 - 38966928 _____ (Adobe Systems Incorporated) C:\Users\Iza\Downloads\AdbeRdr11000_pl_PL.exe
2013-10-16 16:54 - 2013-10-15 17:57 - 00000000 ____D C:\Users\Iza\AppData\Local\Adobe
2013-10-16 16:51 - 2013-10-16 16:51 - 00685248 _____ C:\Users\Iza\Downloads\Adobe-Reader-XI(21590).exe
2013-10-16 16:49 - 2013-10-16 16:49 - 01071568 _____ (Solid State Networks) C:\Users\Iza\Downloads\install_reader11_pl_mssa_awc_aih.exe
2013-10-16 16:23 - 2013-10-16 16:23 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-10-16 16:23 - 2013-10-16 15:39 - 00001931 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk
2013-10-16 15:40 - 2013-10-16 15:40 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-10-16 15:39 - 2013-10-16 15:39 - 00000000 ____D C:\ProgramData\McAfee
2013-10-15 18:58 - 2013-07-29 11:21 - 00001368 _____ C:\Users\Magda\Desktop\Wyczyść rejestr za darmo!.lnk

Some content of TEMP:
====================
C:\Users\AMD\AppData\Local\Temp\ntdll_dump.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-10 00:23

==================== End Of Log ============================