Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-11-2013 02
Ran by Robert (administrator) on HOBBYELE-1C151C on 23-11-2013 15:59:28
Running from D:\Robert\Moje dokumenty\Pobieranie
Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Atheros) C:\WINDOWS\system32\acs.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(CrypKey (Canada) Ltd.) C:\WINDOWS\system32\Crypserv.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(Software 2000 Limited) C:\WINDOWS\system32\spool\drivers\w32x86\3\HP1005MC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Clarus, Inc.) C:\Program Files\Clarus\Samsung Drive Manager\SZDrvSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe

==================== Registry (Whitelisted) ==================

Winlogon\Notify\SDWinLogon: C:\Windows\system32\sclgntfy.dll (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Evernote extension - {92EF2EAD-A7CE-4424-B0DB-499CF856608E} - C:\Program Files\Evernote\Evernote\EvernoteIE.dll (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 94.156.58.89 8.8.8.8

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Robert\Dane aplikacji\Mozilla\Firefox\Profiles\dnls3qj7.default-1384517354858
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf - C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products (Canada) Ltd.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Extension: sendtoreader-addon - C:\Documents and Settings\Robert\Dane aplikacji\Mozilla\Firefox\Profiles\dnls3qj7.default-1384517354858\Extensions\sendtoreader-addon@sendtoreader.com.xpi
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff

========================== Services (Whitelisted) =================

R2 ACS; C:\WINDOWS\system32\acs.exe [499796 2011-03-31] (Atheros)
R2 Crypkey License; C:\Windows\System32\crypserv.exe [122880 2008-05-08] (CrypKey (Canada) Ltd.)
S3 jswpsapi; C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [360529 2011-03-31] (wireless)
S2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [235216 2013-09-06] (McAfee, Inc.)
R2 MSSQL$INSERTGT; C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 SZDrvSvc; C:\Program Files\Clarus\Samsung Drive Manager\SZDrvSvc.exe [19456 2012-08-17] (Clarus, Inc.)
R2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"

==================== Drivers (Whitelisted) ====================

R3 Afc; C:\Windows\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.)
S3 AR9271; C:\Windows\System32\DRIVERS\athuw.sys [1763584 2011-07-28] (Atheros Communications, Inc.)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [145280 2012-02-29] (ITE                      )
R3 JSWSCIMD; C:\Windows\System32\DRIVERS\jswscimd.sys [57440 2011-03-31] (Atheros Communications, Inc.)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R3 mdf16; C:\Program Files\Clarus\Samsung Drive Manager\mdf16.sys [18864 2012-06-21] ()
S3 MPE; C:\Windows\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation)
R3 mvd23; C:\Program Files\Clarus\Samsung Drive Manager\mvd23.sys [89008 2012-06-21] ()
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R1 NetworkX; C:\Windows\system32\ckldrv.sys [21638 2008-08-22] ()
R1 PQNTDrv; C:\Windows\System32\Drivers\PQNTDrv.sys [4228 2002-09-16] (PowerQuest Corporation)
S3 pwdrvio; C:\WINDOWS\system32\pwdrvio.sys [16472 2012-01-18] ()
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [11104 2012-01-18] ()
S3 RTL2832UBDA; C:\Windows\System32\drivers\RTL2832UBDA.sys [188520 2011-05-17] (REALTEK SEMICONDUCTOR Corp.)
S3 RTL2832UUSB; C:\Windows\System32\Drivers\RTL2832UUSB.sys [32872 2011-05-17] (REALTEK SEMICONDUCTOR Corp.)
S3 RTL2832U_IRHID; C:\Windows\System32\DRIVERS\RTL2832U_IRHID.sys [42728 2011-06-13] (Realtek)
R1 SAVRKBootTasks; C:\WINDOWS\system32\SAVRKBootTasks.sys [18816 2011-05-12] (Sophos Group)
S3 smsbda; C:\Windows\System32\drivers\smsbda.sys [62976 2011-03-06] (Siano)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [320120 2013-11-16] (Duplex Secure Ltd.)
S1 wceusbsh; C:\Windows\System32\DRIVERS\wceusbsh.sys [31872 2008-04-14] (Microsoft Corporation)
R3 WSIMD; C:\Windows\System32\DRIVERS\wsimd.sys [58208 2011-03-31] (Atheros Communications, Inc.)
S3 catchme; \??\C:\DOCUME~1\Robert\USTAWI~1\Temp\catchme.sys [x]
S3 MEMSWEEP2; \??\C:\WINDOWS\system32\299.tmp [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-23 15:58 - 2013-11-23 15:58 - 00000000 ____D C:\FRST
2013-11-23 14:10 - 2013-11-23 14:10 - 00000000 ____D C:\WINDOWS\CSC
2013-11-23 13:30 - 2013-11-23 13:30 - 00000000 ____D C:\WINDOWS\pss
2013-11-23 13:14 - 2013-11-23 13:15 - 00004215 _____ C:\WINDOWS\setupapi.log
2013-11-22 20:12 - 2013-11-22 20:22 - 00000145 _____ C:\WINDOWS\WINNT32.LOG
2013-11-21 12:49 - 2013-11-22 20:23 - 00057695 _____ C:\WINDOWS\KB952069.log
2013-11-20 18:26 - 2013-11-20 18:26 - 00000000 ____D C:\rsit
2013-11-20 18:26 - 2013-11-20 18:26 - 00000000 ____D C:\Program Files\trend micro
2013-11-20 17:19 - 2013-11-23 15:44 - 00001240 _____ C:\WINDOWS\error.log
2013-11-20 17:18 - 2013-11-23 15:43 - 00000429 _____ C:\WINDOWS\errord.log
2013-11-20 17:01 - 2013-11-20 17:01 - 00000682 _____ C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk
2013-11-20 17:01 - 2013-11-20 17:01 - 00000000 ____D C:\Program Files\CCleaner
2013-11-20 17:01 - 2013-11-20 17:01 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\CCleaner
2013-11-20 15:32 - 2013-11-20 15:32 - 00213481 _____ C:\Documents and Settings\Robert\.recently-used.xbel
2013-11-19 13:39 - 2013-11-23 15:45 - 00000644 _____ C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2013-11-19 13:39 - 2013-11-23 15:42 - 00065536 _____ C:\WINDOWS\system32\config\SpybotSD.evt
2013-11-19 13:39 - 2013-11-19 13:48 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2013-11-19 13:39 - 2013-11-19 13:44 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
2013-11-19 13:39 - 2013-11-19 13:39 - 00001842 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Spybot-S&D Start Center.lnk
2013-11-19 13:39 - 2013-11-19 13:39 - 00001836 _____ C:\Documents and Settings\All Users\Pulpit\Spybot-S&D Start Center.lnk
2013-11-19 13:39 - 2013-11-19 13:39 - 00000616 _____ C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2013-11-19 13:39 - 2013-11-19 13:39 - 00000446 _____ C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job
2013-11-19 13:39 - 2013-11-19 13:39 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Spybot - Search & Destroy 2
2013-11-19 13:39 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean.exe
2013-11-19 11:37 - 2013-11-19 11:37 - 00001777 _____ C:\Documents and Settings\All Users\Pulpit\McAfee Security Scan Plus.lnk
2013-11-19 11:37 - 2013-11-19 11:37 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\McAfee Security Scan Plus
2013-11-18 19:00 - 2013-11-18 19:01 - 00135970 _____ C:\Documents and Settings\Robert\Pulpit\255347.htm
2013-11-18 17:20 - 2011-05-12 14:05 - 00018816 ____N (Sophos Group) C:\WINDOWS\system32\SAVRKBootTasks.sys
2013-11-16 15:49 - 2013-11-16 15:49 - 00000000 ____D C:\Program Files\Sophos
2013-11-16 15:49 - 2013-11-16 15:49 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Sophos
2013-11-16 13:30 - 2013-11-19 13:23 - 00000000 ____D C:\Program Files\ESTsoft
2013-11-16 13:30 - 2013-11-19 13:23 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\ESTsoft
2013-11-16 13:02 - 2013-11-16 15:42 - 00320120 _____ (Duplex Secure Ltd.) C:\WINDOWS\system32\Drivers\sptd.sys
2013-11-16 12:32 - 2013-11-16 12:32 - 00012087 _____ C:\ComboFix.txt
2013-11-16 12:14 - 2013-11-16 12:32 - 00000000 ____D C:\Qoobox
2013-11-16 12:14 - 2013-11-16 12:31 - 00000000 ____D C:\WINDOWS\erdnt
2013-11-16 12:14 - 2011-06-26 07:45 - 00256000 _____ C:\WINDOWS\PEV.exe
2013-11-16 12:14 - 2010-11-07 18:20 - 00208896 _____ C:\WINDOWS\MBR.exe
2013-11-16 12:14 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2013-11-16 12:14 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2013-11-16 12:14 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2013-11-16 12:14 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2013-11-16 12:14 - 2000-08-31 01:00 - 00098816 _____ C:\WINDOWS\sed.exe
2013-11-16 12:14 - 2000-08-31 01:00 - 00080412 _____ C:\WINDOWS\grep.exe
2013-11-16 12:14 - 2000-08-31 01:00 - 00068096 _____ C:\WINDOWS\zip.exe
2013-11-16 11:56 - 2013-11-16 12:33 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-15 15:32 - 2013-11-15 15:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2900986$
2013-11-15 15:32 - 2013-11-15 15:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876331$
2013-11-15 15:32 - 2013-11-15 15:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868626$
2013-11-15 15:32 - 2013-11-15 15:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862152$
2013-11-15 14:25 - 2013-11-15 15:14 - 00065536 _____ C:\WINDOWS\system32\config\Doctor Web.evt
2013-11-15 14:25 - 2013-11-15 15:06 - 00000000 ____D C:\Documents and Settings\Robert\Doctor Web
2013-11-15 13:37 - 2013-11-15 13:37 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-11-15 13:37 - 2013-11-15 13:37 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\Malwarebytes
2013-11-15 13:37 - 2013-11-15 13:37 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
2013-11-15 13:37 - 2013-11-15 13:37 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
2013-11-15 13:37 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-11-15 13:09 - 2013-11-15 13:09 - 00000000 ____D C:\Documents and Settings\Robert\Pulpit\Stare dane programu Firefox
2013-11-14 15:41 - 2013-11-22 18:15 - 00001210 _____ C:\CKINFO.TXT
2013-11-14 15:41 - 2013-11-15 14:06 - 00001680 _____ C:\WINDOWS\system32\esnecil.ind
2013-11-14 15:41 - 2013-11-14 15:42 - 00001680 _____ C:\WINDOWS\system32\esnecil.nlp
2013-11-14 15:41 - 2013-11-14 15:42 - 00000004 _____ C:\WINDOWS\vx86036.dat
2013-11-14 15:41 - 2013-11-14 15:41 - 00000000 ____D C:\Documents and Settings\All Users\CrypKey
2013-11-14 15:23 - 2013-11-14 15:23 - 00000058 _____ C:\WINDOWS\Crypkey.ini
2013-11-14 15:22 - 2013-11-14 15:22 - 00001784 _____ C:\Documents and Settings\All Users\Pulpit\Pacesetter BES Lettering.lnk
2013-11-14 15:22 - 2013-11-14 15:22 - 00000000 ____D C:\Program Files\Pacesetter
2013-11-14 15:22 - 2013-11-14 15:22 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Pacesetter
2013-11-14 15:22 - 2008-08-22 21:14 - 00021638 _____ C:\WINDOWS\system32\Ckldrv.sys
2013-11-14 15:22 - 2008-05-08 00:29 - 00122880 _____ (CrypKey (Canada) Ltd.) C:\WINDOWS\system32\Crypserv.exe
2013-11-14 15:22 - 1999-06-18 21:49 - 00165888 _____ (Kenonic Controls) C:\WINDOWS\Ckconfig.exe
2013-11-14 15:22 - 1996-05-03 17:21 - 00027648 ____R C:\WINDOWS\Setup_ck.exe
2013-11-14 15:22 - 1996-05-03 15:36 - 00018432 _____ C:\WINDOWS\Setup_ck.dll
2013-11-14 15:22 - 1995-07-04 18:33 - 00011776 _____ C:\WINDOWS\Ckrfresh.exe
2013-11-08 16:26 - 2013-11-22 20:07 - 00000000 ____D C:\Documents and Settings\Robert\Pulpit\SELLO
2013-11-08 16:21 - 2013-11-22 19:29 - 00000000 ____D C:\Documents and Settings\Robert\Pulpit\SUBIEKT
2013-11-05 14:09 - 2013-11-05 14:10 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\doPDF 7
2013-11-05 14:09 - 2013-11-05 14:09 - 00000000 ____D C:\Program Files\Softland
2013-11-05 14:09 - 2013-11-05 14:09 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\Softland
2013-11-05 14:09 - 2013-11-05 14:09 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji\Softland
2013-11-05 14:09 - 2013-08-20 13:28 - 00024384 _____ (Softland) C:\WINDOWS\system32\dopdfmn7.dll
2013-11-05 14:09 - 2013-08-20 13:28 - 00021312 _____ (Softland) C:\WINDOWS\system32\dopdfmi7.dll
2013-11-05 14:09 - 2010-11-25 11:41 - 00007549 _____ C:\WINDOWS\system32\dopdf7.ctm
2013-11-05 14:09 - 2010-02-05 15:00 - 01700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2013-10-31 17:21 - 2013-11-20 17:05 - 00000000 ____D C:\WINDOWS\Minidump
2013-10-29 17:48 - 2013-10-29 18:23 - 00048879 _____ C:\Documents and Settings\Robert\Pulpit\rzeczy.xmind

==================== One Month Modified Files and Folders =======

2013-11-23 15:58 - 2013-11-23 15:58 - 00000000 ____D C:\FRST
2013-11-23 15:47 - 2012-02-28 14:37 - 01540776 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-23 15:47 - 2008-09-06 13:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2013-11-23 15:46 - 2012-02-28 14:44 - 00000000 ____D C:\Documents and Settings\Robert\Pulpit
2013-11-23 15:45 - 2013-11-19 13:39 - 00000644 _____ C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job
2013-11-23 15:45 - 2012-02-28 15:29 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-11-23 15:45 - 2012-02-28 15:29 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-11-23 15:44 - 2013-11-20 17:19 - 00001240 _____ C:\WINDOWS\error.log
2013-11-23 15:44 - 2012-02-28 14:42 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-11-23 15:43 - 2013-11-20 17:18 - 00000429 _____ C:\WINDOWS\errord.log
2013-11-23 15:42 - 2013-11-19 13:39 - 00065536 _____ C:\WINDOWS\system32\config\SpybotSD.evt
2013-11-23 15:42 - 2012-02-28 14:44 - 00000188 ___SH C:\Documents and Settings\Robert\ntuser.ini
2013-11-23 14:10 - 2013-11-23 14:10 - 00000000 ____D C:\WINDOWS\CSC
2013-11-23 14:00 - 2013-04-19 12:07 - 00196608 _____ C:\WINDOWS\system32\config\ACS.evt
2013-11-23 14:00 - 2012-02-28 14:42 - 00032628 _____ C:\WINDOWS\SchedLgU.Txt
2013-11-23 13:30 - 2013-11-23 13:30 - 00000000 ____D C:\WINDOWS\pss
2013-11-23 13:30 - 2012-02-28 15:26 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
2013-11-23 13:30 - 2012-02-28 14:44 - 00000000 ___RD C:\Documents and Settings\Robert\Menu Start\Programy\Autostart
2013-11-23 13:28 - 2013-10-15 12:32 - 17635328 _____ C:\Documents and Settings\Robert\Ustawienia lokalne\Dane aplikacji\SageThumbs.db3
2013-11-23 13:15 - 2013-11-23 13:14 - 00004215 _____ C:\WINDOWS\setupapi.log
2013-11-23 13:12 - 2012-03-05 18:46 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\Skype
2013-11-23 13:07 - 2012-04-19 12:17 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-11-22 20:23 - 2013-11-21 12:49 - 00057695 _____ C:\WINDOWS\KB952069.log
2013-11-22 20:22 - 2013-11-22 20:12 - 00000145 _____ C:\WINDOWS\WINNT32.LOG
2013-11-22 20:07 - 2013-11-08 16:26 - 00000000 ____D C:\Documents and Settings\Robert\Pulpit\SELLO
2013-11-22 19:29 - 2013-11-08 16:21 - 00000000 ____D C:\Documents and Settings\Robert\Pulpit\SUBIEKT
2013-11-22 19:23 - 2012-02-29 19:18 - 00000000 ____D C:\tem
2013-11-22 18:15 - 2013-11-14 15:41 - 00001210 _____ C:\CKINFO.TXT
2013-11-22 17:08 - 2012-02-28 15:33 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2013-11-22 16:46 - 2012-02-28 14:44 - 00000000 ___HD C:\Documents and Settings\Robert\Ustawienia lokalne\Dane aplikacji
2013-11-22 16:40 - 2013-04-29 19:08 - 00000690 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Anti-Twin.lnk
2013-11-22 16:40 - 2013-04-29 19:08 - 00000684 _____ C:\Documents and Settings\All Users\Pulpit\Anti-Twin.lnk
2013-11-22 16:40 - 2013-04-29 19:08 - 00000000 ____D C:\Program Files\AntiTwin
2013-11-22 16:35 - 2012-05-30 16:54 - 00012800 _____ C:\Documents and Settings\Robert\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-11-20 21:16 - 2013-02-04 14:55 - 00000000 ____D C:\Documents and Settings\Robert\Ustawienia lokalne\Dane aplikacji\ChomikBox
2013-11-20 20:21 - 2013-02-04 14:55 - 00000000 ____D C:\Documents and Settings\Robert\.gstreamer-0.10
2013-11-20 19:25 - 2012-03-12 17:33 - 00000000 ____D C:\MK
2013-11-20 18:26 - 2013-11-20 18:26 - 00000000 ____D C:\rsit
2013-11-20 18:26 - 2013-11-20 18:26 - 00000000 ____D C:\Program Files\trend micro
2013-11-20 17:08 - 2012-02-28 14:44 - 00000000 ____D C:\Documents and Settings\Robert
2013-11-20 17:06 - 2012-03-06 17:04 - 00000000 ____D C:\Documents and Settings\Robert\.gimp-2.4
2013-11-20 17:05 - 2013-10-31 17:21 - 00000000 ____D C:\WINDOWS\Minidump
2013-11-20 17:01 - 2013-11-20 17:01 - 00000682 _____ C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk
2013-11-20 17:01 - 2013-11-20 17:01 - 00000000 ____D C:\Program Files\CCleaner
2013-11-20 17:01 - 2013-11-20 17:01 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\CCleaner
2013-11-20 17:01 - 2012-02-28 15:26 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit
2013-11-20 17:01 - 2012-02-28 15:26 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy
2013-11-20 16:55 - 2012-03-05 18:46 - 00000000 ___RD C:\Program Files\Skype
2013-11-20 16:55 - 2012-03-05 18:46 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Skype
2013-11-20 15:32 - 2013-11-20 15:32 - 00213481 _____ C:\Documents and Settings\Robert\.recently-used.xbel
2013-11-20 15:32 - 2012-03-06 17:04 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\gtk-2.0
2013-11-19 14:07 - 2012-06-08 10:51 - 00000284 _____ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2013-11-19 13:48 - 2013-11-19 13:39 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2013-11-19 13:44 - 2013-11-19 13:39 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
2013-11-19 13:39 - 2013-11-19 13:39 - 00001842 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Spybot-S&D Start Center.lnk
2013-11-19 13:39 - 2013-11-19 13:39 - 00001836 _____ C:\Documents and Settings\All Users\Pulpit\Spybot-S&D Start Center.lnk
2013-11-19 13:39 - 2013-11-19 13:39 - 00000616 _____ C:\WINDOWS\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2013-11-19 13:39 - 2013-11-19 13:39 - 00000446 _____ C:\WINDOWS\Tasks\Scan the system (Spybot - Search & Destroy).job
2013-11-19 13:39 - 2013-11-19 13:39 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Spybot - Search & Destroy 2
2013-11-19 13:39 - 2012-02-28 15:25 - 00000000 __RHD C:\Documents and Settings\All Users\Dane aplikacji
2013-11-19 13:29 - 2012-08-27 14:33 - 00000000 ____D C:\Program Files\Smart Office
2013-11-19 13:29 - 2012-02-28 14:44 - 00000000 ____D C:\Documents and Settings\Robert\Menu Start\Programy
2013-11-19 13:23 - 2013-11-16 13:30 - 00000000 ____D C:\Program Files\ESTsoft
2013-11-19 13:23 - 2013-11-16 13:30 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\ESTsoft
2013-11-19 11:37 - 2013-11-19 11:37 - 00001777 _____ C:\Documents and Settings\All Users\Pulpit\McAfee Security Scan Plus.lnk
2013-11-19 11:37 - 2013-11-19 11:37 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\McAfee Security Scan Plus
2013-11-19 11:37 - 2013-07-17 10:36 - 00000000 ____D C:\Program Files\McAfee Security Scan
2013-11-19 11:32 - 2012-02-28 14:41 - 00000000 __SHD C:\Documents and Settings\NetworkService
2013-11-18 20:45 - 2012-02-28 16:29 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\InsERT GT
2013-11-18 19:01 - 2013-11-18 19:00 - 00135970 _____ C:\Documents and Settings\Robert\Pulpit\255347.htm
2013-11-16 16:28 - 2013-03-28 13:04 - 00025600 ___SH C:\Documents and Settings\Robert\Pulpit\Thumbs.db
2013-11-16 16:14 - 2012-05-09 13:39 - 00002259 _____ C:\Documents and Settings\Robert\Pulpit\Scan To.lnk
2013-11-16 15:49 - 2013-11-16 15:49 - 00000000 ____D C:\Program Files\Sophos
2013-11-16 15:49 - 2013-11-16 15:49 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Sophos
2013-11-16 15:42 - 2013-11-16 13:02 - 00320120 _____ (Duplex Secure Ltd.) C:\WINDOWS\system32\Drivers\sptd.sys
2013-11-16 15:23 - 2012-08-03 13:22 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-16 13:30 - 2012-02-28 14:44 - 00000000 __RHD C:\Documents and Settings\Robert\Dane aplikacji
2013-11-16 13:29 - 2012-02-29 15:43 - 00000000 ____D C:\Program Files\BlazeVideo
2013-11-16 13:25 - 2012-02-29 15:44 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\BlazeVideo
2013-11-16 13:06 - 2012-08-09 12:14 - 00000000 ____D C:\Program Files\Common Files\ArcSoft
2013-11-16 13:05 - 2012-08-09 12:14 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\ArcSoft
2013-11-16 13:01 - 2012-04-26 13:14 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\DAEMON Tools Pro
2013-11-16 13:01 - 2012-04-26 13:14 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Pro
2013-11-16 12:59 - 2012-03-14 15:43 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\emSzmal 3
2013-11-16 12:55 - 2012-07-04 10:49 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Installations
2013-11-16 12:50 - 2012-07-04 10:52 - 00000000 ____D C:\Program Files\Nokia
2013-11-16 12:33 - 2013-11-16 11:56 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-16 12:32 - 2013-11-16 12:32 - 00012087 _____ C:\ComboFix.txt
2013-11-16 12:32 - 2013-11-16 12:14 - 00000000 ____D C:\Qoobox
2013-11-16 12:32 - 2013-09-14 10:58 - 00000000 ___HD C:\Documents and Settings\Gość\Ustawienia lokalne
2013-11-16 12:32 - 2012-02-28 15:26 - 00000000 __RHD C:\Documents and Settings\Default User\Ustawienia lokalne
2013-11-16 12:32 - 2012-02-28 14:42 - 00000000 ___HD C:\Documents and Settings\LocalService\Ustawienia lokalne
2013-11-16 12:31 - 2013-11-16 12:14 - 00000000 ____D C:\WINDOWS\erdnt
2013-11-16 12:30 - 2008-09-06 13:00 - 00000227 _____ C:\WINDOWS\system.ini
2013-11-16 12:29 - 2008-09-06 13:00 - 00000027 _____ C:\WINDOWS\system32\Drivers\etc\hosts.old
2013-11-15 18:20 - 2012-06-21 16:48 - 00000000 ____D C:\Program Files\XMind
2013-11-15 18:17 - 2012-03-09 15:29 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\vlc
2013-11-15 16:03 - 2012-02-28 15:27 - 01419052 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-15 16:03 - 2008-09-06 13:00 - 00612686 _____ C:\WINDOWS\system32\perfh015.dat
2013-11-15 16:03 - 2008-09-06 13:00 - 00128586 _____ C:\WINDOWS\system32\perfc015.dat
2013-11-15 15:32 - 2013-11-15 15:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2900986$
2013-11-15 15:32 - 2013-11-15 15:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876331$
2013-11-15 15:32 - 2013-11-15 15:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868626$
2013-11-15 15:32 - 2013-11-15 15:32 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862152$
2013-11-15 15:31 - 2013-07-25 17:44 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-11-15 15:27 - 2012-03-01 16:44 - 80340640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-11-15 15:14 - 2013-11-15 14:25 - 00065536 _____ C:\WINDOWS\system32\config\Doctor Web.evt
2013-11-15 15:06 - 2013-11-15 14:25 - 00000000 ____D C:\Documents and Settings\Robert\Doctor Web
2013-11-15 14:06 - 2013-11-14 15:41 - 00001680 _____ C:\WINDOWS\system32\esnecil.ind
2013-11-15 14:06 - 2013-04-12 14:39 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2813170$
2013-11-15 14:03 - 2012-04-17 16:46 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\YTD YouTube Downloader & Converter
2013-11-15 13:37 - 2013-11-15 13:37 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-11-15 13:37 - 2013-11-15 13:37 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\Malwarebytes
2013-11-15 13:37 - 2013-11-15 13:37 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
2013-11-15 13:37 - 2013-11-15 13:37 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
2013-11-15 13:09 - 2013-11-15 13:09 - 00000000 ____D C:\Documents and Settings\Robert\Pulpit\Stare dane programu Firefox
2013-11-14 15:42 - 2013-11-14 15:41 - 00001680 _____ C:\WINDOWS\system32\esnecil.nlp
2013-11-14 15:42 - 2013-11-14 15:41 - 00000004 _____ C:\WINDOWS\vx86036.dat
2013-11-14 15:41 - 2013-11-14 15:41 - 00000000 ____D C:\Documents and Settings\All Users\CrypKey
2013-11-14 15:23 - 2013-11-14 15:23 - 00000058 _____ C:\WINDOWS\Crypkey.ini
2013-11-14 15:22 - 2013-11-14 15:22 - 00001784 _____ C:\Documents and Settings\All Users\Pulpit\Pacesetter BES Lettering.lnk
2013-11-14 15:22 - 2013-11-14 15:22 - 00000000 ____D C:\Program Files\Pacesetter
2013-11-14 15:22 - 2013-11-14 15:22 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Pacesetter
2013-11-09 13:20 - 2012-02-28 15:24 - 00197752 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-11-08 17:14 - 2012-02-28 15:34 - 00038104 _____ C:\Documents and Settings\Robert\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2013-11-08 16:57 - 2012-02-28 15:24 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\InsERT
2013-11-05 14:10 - 2013-11-05 14:09 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\doPDF 7
2013-11-05 14:09 - 2013-11-05 14:09 - 00000000 ____D C:\Program Files\Softland
2013-11-05 14:09 - 2013-11-05 14:09 - 00000000 ____D C:\Documents and Settings\Robert\Dane aplikacji\Softland
2013-11-05 14:09 - 2013-11-05 14:09 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji\Softland
2013-11-05 14:09 - 2012-02-28 14:42 - 00000000 ____D C:\Documents and Settings\LocalService\Dane aplikacji
2013-11-05 13:51 - 2012-03-13 13:27 - 00000084 _____ C:\WINDOWS\InsRpPrint.INI
2013-10-29 18:23 - 2013-10-29 17:48 - 00048879 _____ C:\Documents and Settings\Robert\Pulpit\rzeczy.xmind

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2008-09-06 13:00] - [2008-09-06 13:00] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\Windows\System32\winlogon.exe
[2008-09-06 13:00] - [2008-09-06 13:00] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\Windows\System32\svchost.exe
[2008-09-06 13:00] - [2008-09-06 13:00] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\Windows\System32\services.exe
[2008-09-06 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\Windows\System32\User32.dll
[2008-09-06 13:00] - [2008-09-06 13:00] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\Windows\System32\userinit.exe
[2008-09-06 13:00] - [2008-09-06 13:00] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\Windows\System32\Drivers\volsnap.sys
[2008-09-06 13:00] - [2008-09-06 13:00] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================