Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-01-2014
Ran by Zurawski (administrator) on AAA-F4EB14868E7 on 20-01-2014 16:21:33
Running from C:\Documents and Settings\Zurawski\Pulpit
Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 6
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) ===================

(Atheros) C:\WINDOWS\system32\acs.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(VIA Technologies, Inc.) C:\WINDOWS\system32\KaraokeSer.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(VIA Technologies, Inc.) C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
() C:\Program Files\TP-LINK\TP-LINK Wireless Client Utility\TWCU.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HDAudDeck] - C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [41032304 2010-12-27] (VIA Technologies, Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Nvtmru] - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [TWCU] - C:\Program Files\TP-LINK\TP-LINK Wireless Client Utility\TWCU.exe [561263 2009-12-28] ()
HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [54576 2009-11-18] (Hewlett-Packard)
HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [15711008 2013-11-11] (NVIDIA Corporation)
HKLM\...\Run: [NvMediaCenter] - C:\WINDOWS\system32\NvMCTray.dll [209184 2013-11-11] (NVIDIA Corporation)
HKLM\...\Run: [nwiz] - C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2602784 2013-11-11] ()
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [A9B90D] - C:\WINDOWS\system32\29EDD5\A9B90D.EXE
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673696 2013-08-01] (Disc Soft Ltd)
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Program sieciowy dla SAGEM Wi-Fi 11g USB adapter.lnk
ShortcutTarget: Program sieciowy dla SAGEM Wi-Fi 11g USB adapter.lnk -> C:\Program Files\SAGEM WiFi manager\WLANUTL.EXE ( )
Startup: C:\Documents and Settings\Zurawski\Menu Start\Programy\Autostart\A9B90D.lnk
ShortcutTarget: A9B90D.lnk -> C:\WINDOWS\system32\29EDD5\A9B90D.EXE (No File)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKLM - DefaultScope value is missing.
BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Zurawski\Dane aplikacji\Mozilla\Firefox\Profiles\91fzygh6.default-1390230300437
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nullsoft.com/winampDetector;version=1 - C:\Program Files\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} [2013-12-20]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-11-24]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-11-24]

========================== Services (Whitelisted) =================

R2 ACS; C:\WINDOWS\system32\acs.exe [499796 2009-09-21] (Atheros)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-01-13] (Oracle Corporation)
R2 KaraokeService; C:\Windows\system32\KaraokeSer.exe [88688 2010-12-22] (VIA Technologies, Inc.)

==================== Drivers (Whitelisted) ====================

R3 AR9271; C:\Windows\System32\DRIVERS\athuw.sys [1714176 2010-01-04] (Atheros Communications, Inc.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2013-09-14] (Disc Soft Ltd)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49920 2009-08-05] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2009-08-05] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2009-08-05] (HP)
R3 L1c; C:\Windows\System32\DRIVERS\l1c51x86.sys [65136 2011-03-22] (Atheros Communications, Inc.)
R3 NVHDA; C:\Windows\System32\drivers\nvhda32.sys [128672 2013-06-16] (NVIDIA Corporation)
S3 SG762_XP; C:\Windows\System32\DRIVERS\WlanBZXP.sys [450560 2007-01-10] (ZyDAS Technology Corporation)
R3 VIAHdAudAddService; C:\Windows\System32\drivers\viahduaa.sys [2804720 2010-12-22] (VIA Technologies, Inc.)
S3 WinRing0_1_2_0; C:\Program Files\IObit\Game Booster 3\Driver\WinRing0.sys [14416 2010-11-01] (OpenLibSys.org)
R3 WSIMD; C:\Windows\System32\DRIVERS\wsimd.sys [58208 2009-09-21] (Atheros Communications, Inc.)
R3 ZDPSp50; C:\Windows\System32\Drivers\ZDPSp50.sys [17664 2007-01-16] (Printing Communications Assoc., Inc. (PCAUSA))
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-20 16:12 - 2014-01-20 16:14 - 00000000 ____D C:\AdwCleaner
2014-01-20 16:07 - 2014-01-20 16:10 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\Pobieranie
2014-01-20 16:07 - 2014-01-20 16:07 - 02359350 _____ C:\Documents and Settings\Zurawski\Pulpit\111.bmp
2014-01-20 16:05 - 2014-01-20 16:05 - 00000000 ____D C:\Documents and Settings\Zurawski\Pulpit\Stare dane programu Firefox
2014-01-20 16:03 - 2014-01-20 16:18 - 00001084 _____ C:\WINDOWS\spupdsvc.log
2014-01-20 16:03 - 2014-01-20 16:14 - 00065536 _____ C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-01-20 16:03 - 2014-01-20 16:03 - 00006616 _____ C:\WINDOWS\iis6.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00006183 _____ C:\WINDOWS\FaxSetup.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00002956 _____ C:\WINDOWS\ocgen.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00002829 _____ C:\WINDOWS\tsoc.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00002024 _____ C:\WINDOWS\comsetup.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00001918 _____ C:\WINDOWS\msmqinst.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00001374 _____ C:\WINDOWS\imsins.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00001229 _____ C:\WINDOWS\ntdtcsetup.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00001083 _____ C:\WINDOWS\netfxocm.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000425 _____ C:\WINDOWS\MedCtrOC.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000386 _____ C:\WINDOWS\ocmsn.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000319 _____ C:\WINDOWS\tabletoc.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000309 _____ C:\WINDOWS\msgsocm.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000000 ____D C:\WINDOWS\system32\windowspowershell
2014-01-20 16:03 - 2014-01-20 16:03 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Windows PowerShell 1.0
2014-01-20 16:03 - 2014-01-20 16:03 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000000 _____ C:\WINDOWS\setupact.log
2014-01-20 16:02 - 2014-01-20 16:03 - 00043174 _____ C:\WINDOWS\KB926139-v2.log
2014-01-20 16:02 - 2014-01-20 16:03 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB926139-v2$
2014-01-20 16:01 - 2014-01-20 16:01 - 00347816 _____ (Microsoft Corporation) C:\Documents and Settings\Zurawski\Pulpit\MicrosoftFixit.ProgramInstallUninstall.RNP.139313657282593511.1.1.Run.exe
2014-01-20 15:58 - 2014-01-20 15:58 - 00000079 _____ C:\WINDOWS\wininit.ini
2014-01-20 15:57 - 2014-01-20 15:57 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\OTLand
2014-01-20 14:00 - 2014-01-20 14:00 - 00000933 _____ C:\Documents and Settings\All Users\Pulpit\Farming Simulator 2013.lnk
2014-01-20 13:31 - 2014-01-20 13:31 - 00000000 ____D C:\Documents and Settings\Zurawski\Pulpit\Nowy folder
2014-01-19 20:33 - 2014-01-19 20:35 - 91074487 _____ C:\Documents and Settings\Zurawski\Pulpit\Itb.rar
2014-01-19 20:32 - 2014-01-19 20:32 - 00000000 ____D C:\Documents and Settings\Zurawski\Pulpit\Itb
2014-01-19 19:54 - 2014-01-19 19:54 - 00000400 _____ C:\Documents and Settings\Zurawski\Moje dokumenty\spider.sav
2014-01-19 17:59 - 2014-01-19 17:59 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2014-01-19 17:20 - 2014-01-20 14:04 - 00024760 _____ C:\WINDOWS\setupapi.log
2014-01-19 16:20 - 2014-01-19 16:20 - 00003067 _____ C:\Documents and Settings\Zurawski\Pulpit\gmer.txt
2014-01-19 14:57 - 2014-01-19 14:57 - 00379904 _____ C:\Documents and Settings\Zurawski\Pulpit\e3uxrt1r.exe
2014-01-19 14:56 - 2014-01-19 14:56 - 00024087 _____ C:\Documents and Settings\Zurawski\Pulpit\Addition.txt
2014-01-19 14:55 - 2014-01-20 16:21 - 00010210 _____ C:\Documents and Settings\Zurawski\Pulpit\FRST.txt
2014-01-19 14:55 - 2014-01-20 16:21 - 00000000 ____D C:\FRST
2014-01-19 14:54 - 2014-01-19 14:55 - 01221120 _____ (Farbar) C:\Documents and Settings\Zurawski\Pulpit\FRST.exe
2014-01-19 14:52 - 2014-01-19 14:52 - 00091222 _____ C:\Documents and Settings\Zurawski\Pulpit\OTL.Txt
2014-01-19 14:52 - 2014-01-19 14:52 - 00055864 _____ C:\Documents and Settings\Zurawski\Pulpit\Extras.Txt
2014-01-19 14:46 - 2014-01-19 14:46 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Zurawski\Pulpit\OTL.exe
2014-01-19 14:30 - 2014-01-19 14:30 - 00023031 _____ C:\ComboFix.txt
2014-01-19 14:26 - 2014-01-20 16:14 - 00065536 _____ C:\WINDOWS\system32\config\SpybotSD.evt
2014-01-19 14:18 - 2014-01-19 14:18 - 00000000 _RSHD C:\cmdcons
2014-01-19 14:18 - 2013-09-14 12:10 - 00000211 _____ C:\Boot.bak
2014-01-19 14:18 - 2004-08-03 23:00 - 00262400 __RSH C:\cmldr
2014-01-19 14:15 - 2014-01-19 14:30 - 00000000 ____D C:\Qoobox
2014-01-19 14:15 - 2014-01-19 14:29 - 00000000 ____D C:\WINDOWS\erdnt
2014-01-19 14:15 - 2011-06-26 07:45 - 00256000 _____ C:\WINDOWS\PEV.exe
2014-01-19 14:15 - 2010-11-07 18:20 - 00208896 _____ C:\WINDOWS\MBR.exe
2014-01-19 14:15 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2014-01-19 14:15 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2014-01-19 14:15 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2014-01-19 14:15 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2014-01-19 14:15 - 2000-08-31 01:00 - 00098816 _____ C:\WINDOWS\sed.exe
2014-01-19 14:15 - 2000-08-31 01:00 - 00080412 _____ C:\WINDOWS\grep.exe
2014-01-19 14:15 - 2000-08-31 01:00 - 00068096 _____ C:\WINDOWS\zip.exe
2014-01-19 14:11 - 2014-01-20 16:16 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2014-01-19 14:11 - 2014-01-20 15:58 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
2014-01-19 14:11 - 2014-01-19 14:25 - 00065536 _____ C:\WINDOWS\system32\config\Spybot -.evt
2014-01-19 14:03 - 2014-01-19 14:06 - 05167985 ____R (Swearware) C:\Documents and Settings\Zurawski\Pulpit\ComboFix.exe
2014-01-19 13:50 - 2014-01-19 13:50 - 00000000 ____D C:\WINDOWS\pss
2014-01-19 11:03 - 2014-01-20 16:17 - 00000284 _____ C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job
2014-01-19 11:02 - 2014-01-20 09:13 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\IObit
2014-01-19 11:02 - 2014-01-19 11:02 - 00000835 _____ C:\Documents and Settings\All Users\Pulpit\Switch to Gaming Mode.lnk
2014-01-19 11:02 - 2014-01-19 11:02 - 00000823 _____ C:\Documents and Settings\All Users\Pulpit\Game Booster 3.lnk
2014-01-19 11:02 - 2014-01-19 11:02 - 00000000 ____D C:\Program Files\IObit
2014-01-19 11:02 - 2014-01-19 11:02 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Game Booster 3
2014-01-17 13:56 - 2014-01-17 13:56 - 00011537 _____ C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\recently-used.xbel
2014-01-17 13:53 - 2014-01-17 13:56 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\gtk-2.0
2014-01-17 13:53 - 2014-01-17 13:53 - 00000000 ____D C:\Documents and Settings\Zurawski\.thumbnails
2014-01-17 13:40 - 2014-01-17 13:57 - 00000000 ____D C:\Documents and Settings\Zurawski\.gimp-2.8
2014-01-17 13:40 - 2014-01-17 13:40 - 00000736 _____ C:\Documents and Settings\All Users\Menu Start\Programy\GIMP 2.lnk
2014-01-17 13:40 - 2014-01-17 13:40 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\gegl-0.2
2014-01-17 13:37 - 2014-01-17 13:40 - 00000000 ____D C:\Program Files\GIMP 2
2014-01-16 13:44 - 2014-01-16 13:44 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\Sun
2014-01-15 18:08 - 2014-01-15 18:08 - 00000008 _____ C:\Documents and Settings\Zurawski\passyaugust.txt
2014-01-13 09:49 - 2014-01-13 09:49 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-01-13 09:49 - 2014-01-13 09:49 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-01-13 09:49 - 2014-01-13 09:49 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-01-13 09:49 - 2014-01-13 09:49 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-01-13 09:49 - 2014-01-13 09:49 - 00000000 ____D C:\Program Files\Common Files\Java
2014-01-13 09:49 - 2014-01-13 09:49 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Java
2014-01-06 11:47 - 2014-01-06 11:47 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Remere's Map Editor
2014-01-06 11:46 - 2014-01-06 11:47 - 00000000 ____D C:\Program Files\Remere's Map Editor
2013-12-28 15:50 - 2013-12-28 21:21 - 00065536 _____ C:\WINDOWS\system32\config\TuneUp.evt
2013-12-28 15:45 - 2013-12-28 15:45 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Cool Record Edit Pro
2013-12-28 15:44 - 2013-12-28 15:46 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Free Sound Recorder
2013-12-28 15:44 - 2013-12-28 15:44 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\Free Sound Recorder
2013-12-28 15:43 - 2013-12-28 15:43 - 00000000 ____D C:\Program Files\Free Sound Recorder
2013-12-28 15:43 - 2006-03-23 12:56 - 00113486 _____ C:\WINDOWS\system32\NCTWMAProfiles.prx
2013-12-28 15:43 - 2005-05-18 11:52 - 01212416 _____ (Online Media Technologies Ltd.) C:\WINDOWS\system32\NCTAudioInformation2.dll
2013-12-28 15:43 - 2005-05-17 12:37 - 01986560 _____ (NCT Company Ltd.) C:\WINDOWS\system32\NCTAudioFile2.dll
2013-12-28 15:43 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\WINDOWS\system32\NCTAudioRecord2.dll
2013-12-28 15:43 - 2005-04-25 13:01 - 00458752 _____ (Online Media Technologies Ltd.) C:\WINDOWS\system32\NCTAudioPlayer2.dll
2013-12-28 15:43 - 2005-04-15 12:08 - 00880640 _____ (Online Media Technologies Ltd.) C:\WINDOWS\system32\NCTAudioEditor2.dll
2013-12-28 15:43 - 2005-04-04 17:21 - 00602112 _____ (Online Media Technologies Ltd.) C:\WINDOWS\system32\NCTAudioTransform2.dll
2013-12-28 15:43 - 2005-03-28 15:54 - 00479232 _____ (Online Media Technologies Ltd.) C:\WINDOWS\system32\NCTAudioVisualization2.dll
2013-12-28 15:43 - 2005-03-28 15:52 - 00417792 _____ (Online Media Technologies Ltd.) C:\WINDOWS\system32\NCTTextToAudio2.dll
2013-12-28 15:43 - 2005-02-24 11:51 - 00348160 _____ (NCT Company Ltd.) C:\WINDOWS\system32\NCTWMAFile2.dll
2013-12-28 15:43 - 2004-11-04 13:31 - 00835584 _____ (NCT) C:\WINDOWS\system32\NCTAudioCDGrabber2.dll
2013-12-26 10:46 - 2013-12-31 16:14 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\Moje wideo
2013-12-26 10:46 - 2013-12-26 10:46 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\My Podcasts
2013-12-26 10:46 - 2013-12-26 10:46 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\Media Go
2013-12-26 10:45 - 2014-01-19 13:54 - 00000000 ____D C:\Program Files\Common Files\Sony Shared
2013-12-26 10:45 - 2013-12-26 10:45 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\Sony
2013-12-26 10:45 - 2013-12-26 10:45 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Sony Corporation
2013-12-26 10:44 - 2013-12-26 10:44 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\Downloaded Installations
2013-12-26 10:43 - 2014-01-20 16:10 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-26 10:42 - 2013-12-27 10:03 - 00000000 ____D C:\WINDOWS\SxsCaPendDel
2013-12-26 10:41 - 2007-11-30 05:40 - 00019320 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll
2013-12-26 10:40 - 2013-12-26 10:40 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB942288-v3$
2013-12-26 10:38 - 2013-12-26 10:44 - 00000000 ____D C:\Program Files\Sony Media Go Install
2013-12-26 10:38 - 2013-12-26 10:38 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Sony
2013-12-26 10:26 - 2013-12-26 10:26 - 00000000 __HDC C:\WINDOWS\$NtUninstallWMFDist11$
2013-12-26 10:25 - 2013-12-26 10:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallWudf01000$
2013-12-26 10:25 - 2013-12-26 10:25 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2013-12-22 18:07 - 2014-01-18 19:51 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Skype
2013-12-22 18:07 - 2014-01-13 17:02 - 00002267 _____ C:\Documents and Settings\All Users\Pulpit\Skype.lnk
2013-12-22 18:07 - 2013-12-22 18:07 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Skype
2013-12-22 18:06 - 2013-12-22 18:07 - 00000000 ___RD C:\Program Files\Skype
2013-12-22 18:06 - 2013-12-22 18:06 - 00000000 ____D C:\Program Files\Common Files\Skype
2013-12-21 19:22 - 2013-12-21 19:42 - 00002919 _____ C:\Documents and Settings\Zurawski\Pulpit\Dla anonima.txt

==================== One Month Modified Files and Folders =======

2014-01-20 16:21 - 2014-01-19 14:55 - 00010210 _____ C:\Documents and Settings\Zurawski\Pulpit\FRST.txt
2014-01-20 16:21 - 2014-01-19 14:55 - 00000000 ____D C:\FRST
2014-01-20 16:21 - 2013-09-14 12:20 - 00000000 ____D C:\Documents and Settings\Zurawski\Pulpit
2014-01-20 16:20 - 2013-10-01 17:28 - 00022924 _____ C:\WINDOWS\system32\nvAppTimestamps
2014-01-20 16:19 - 2013-09-14 12:15 - 00321784 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-20 16:18 - 2014-01-20 16:03 - 00001084 _____ C:\WINDOWS\spupdsvc.log
2014-01-20 16:17 - 2014-01-19 11:03 - 00000284 _____ C:\WINDOWS\Tasks\Game_Booster_AutoUpdate.job
2014-01-20 16:17 - 2013-11-21 17:23 - 00001036 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-20 16:17 - 2013-09-14 13:58 - 00000159 _____ C:\WINDOWS\wiadebug.log
2014-01-20 16:17 - 2013-09-14 13:58 - 00000050 _____ C:\WINDOWS\wiaservc.log
2014-01-20 16:17 - 2013-09-14 12:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-20 16:16 - 2014-01-19 14:11 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2014-01-20 16:14 - 2014-01-20 16:12 - 00000000 ____D C:\AdwCleaner
2014-01-20 16:14 - 2014-01-20 16:03 - 00065536 _____ C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-01-20 16:14 - 2014-01-19 14:26 - 00065536 _____ C:\WINDOWS\system32\config\SpybotSD.evt
2014-01-20 16:14 - 2013-10-28 17:37 - 00524288 _____ C:\WINDOWS\system32\config\ACS.evt
2014-01-20 16:14 - 2013-09-14 12:20 - 00032428 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-20 16:14 - 2013-09-14 12:20 - 00000188 ___SH C:\Documents and Settings\Zurawski\ntuser.ini
2014-01-20 16:14 - 2013-09-14 12:20 - 00000000 ___HD C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji
2014-01-20 16:10 - 2014-01-20 16:07 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\Pobieranie
2014-01-20 16:10 - 2013-12-26 10:43 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-20 16:07 - 2014-01-20 16:07 - 02359350 _____ C:\Documents and Settings\Zurawski\Pulpit\111.bmp
2014-01-20 16:07 - 2013-09-14 12:20 - 00000000 ___RD C:\Documents and Settings\Zurawski\Moje dokumenty
2014-01-20 16:05 - 2014-01-20 16:05 - 00000000 ____D C:\Documents and Settings\Zurawski\Pulpit\Stare dane programu Firefox
2014-01-20 16:03 - 2014-01-20 16:03 - 00006616 _____ C:\WINDOWS\iis6.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00006183 _____ C:\WINDOWS\FaxSetup.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00002956 _____ C:\WINDOWS\ocgen.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00002829 _____ C:\WINDOWS\tsoc.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00002024 _____ C:\WINDOWS\comsetup.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00001918 _____ C:\WINDOWS\msmqinst.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00001374 _____ C:\WINDOWS\imsins.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00001229 _____ C:\WINDOWS\ntdtcsetup.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00001083 _____ C:\WINDOWS\netfxocm.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000425 _____ C:\WINDOWS\MedCtrOC.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000386 _____ C:\WINDOWS\ocmsn.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000319 _____ C:\WINDOWS\tabletoc.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000309 _____ C:\WINDOWS\msgsocm.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000000 ____D C:\WINDOWS\system32\windowspowershell
2014-01-20 16:03 - 2014-01-20 16:03 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Windows PowerShell 1.0
2014-01-20 16:03 - 2014-01-20 16:03 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-20 16:03 - 2014-01-20 16:03 - 00000000 _____ C:\WINDOWS\setupact.log
2014-01-20 16:03 - 2014-01-20 16:02 - 00043174 _____ C:\WINDOWS\KB926139-v2.log
2014-01-20 16:03 - 2014-01-20 16:02 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB926139-v2$
2014-01-20 16:03 - 2013-09-14 13:55 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy
2014-01-20 16:01 - 2014-01-20 16:01 - 00347816 _____ (Microsoft Corporation) C:\Documents and Settings\Zurawski\Pulpit\MicrosoftFixit.ProgramInstallUninstall.RNP.139313657282593511.1.1.Run.exe
2014-01-20 15:58 - 2014-01-20 15:58 - 00000079 _____ C:\WINDOWS\wininit.ini
2014-01-20 15:58 - 2014-01-19 14:11 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy
2014-01-20 15:58 - 2013-09-14 13:55 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit
2014-01-20 15:57 - 2014-01-20 15:57 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\OTLand
2014-01-20 15:57 - 2013-09-14 15:50 - 00069504 _____ C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2014-01-20 15:51 - 2013-09-14 13:55 - 00000000 __RHD C:\Documents and Settings\All Users\Dane aplikacji
2014-01-20 15:51 - 2013-09-14 12:20 - 00000000 __RHD C:\Documents and Settings\Zurawski\Dane aplikacji
2014-01-20 15:51 - 2013-09-14 12:20 - 00000000 ___RD C:\Documents and Settings\Zurawski\Menu Start\Programy\Autostart
2014-01-20 15:51 - 2013-09-14 12:20 - 00000000 ____D C:\Documents and Settings\Zurawski
2014-01-20 15:35 - 2013-11-21 17:23 - 00001040 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-20 15:28 - 2013-09-14 15:32 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\My Games
2014-01-20 14:51 - 2013-09-14 13:54 - 00270984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-20 14:06 - 2013-09-14 13:40 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\DAEMON Tools Lite
2014-01-20 14:04 - 2014-01-19 17:20 - 00024760 _____ C:\WINDOWS\setupapi.log
2014-01-20 14:00 - 2014-01-20 14:00 - 00000933 _____ C:\Documents and Settings\All Users\Pulpit\Farming Simulator 2013.lnk
2014-01-20 14:00 - 2013-09-14 12:15 - 00000000 ____D C:\WINDOWS\system32\DirectX
2014-01-20 13:31 - 2014-01-20 13:31 - 00000000 ____D C:\Documents and Settings\Zurawski\Pulpit\Nowy folder
2014-01-20 12:41 - 2013-09-15 10:42 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\ChomikBox
2014-01-20 12:29 - 2013-09-15 10:42 - 00000000 ____D C:\Documents and Settings\Zurawski\.gstreamer-0.10
2014-01-20 10:56 - 2013-09-15 10:40 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\MŻ
2014-01-20 09:57 - 2013-09-14 13:28 - 00000000 ____D C:\Documents and Settings\Zurawski\Pulpit\Pobieranie
2014-01-20 09:55 - 2013-09-14 14:18 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\TS3Client
2014-01-20 09:54 - 2013-09-14 12:20 - 00000000 ___RD C:\Documents and Settings\Zurawski\Moje dokumenty\Moje obrazy
2014-01-20 09:47 - 2013-11-24 14:11 - 00000000 ____D C:\Program Files\Microsoft Office
2014-01-20 09:47 - 2013-11-24 14:11 - 00000000 ____D C:\Program Files\Common Files\Designer
2014-01-20 09:47 - 2013-09-20 06:52 - 00000000 ____D C:\Program Files\Microsoft.NET
2014-01-20 09:47 - 2013-09-14 13:55 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2014-01-20 09:46 - 2013-11-04 11:25 - 00000000 ____D C:\Documents and Settings\Zurawski\dwhelper
2014-01-20 09:13 - 2014-01-19 11:02 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\IObit
2014-01-19 20:35 - 2014-01-19 20:33 - 91074487 _____ C:\Documents and Settings\Zurawski\Pulpit\Itb.rar
2014-01-19 20:32 - 2014-01-19 20:32 - 00000000 ____D C:\Documents and Settings\Zurawski\Pulpit\Itb
2014-01-19 19:54 - 2014-01-19 19:54 - 00000400 _____ C:\Documents and Settings\Zurawski\Moje dokumenty\spider.sav
2014-01-19 17:59 - 2014-01-19 17:59 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2014-01-19 17:59 - 2013-12-20 13:38 - 00000000 ____D C:\Program Files\Mozilla Firefox
2014-01-19 17:59 - 2013-09-14 13:28 - 00000730 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
2014-01-19 17:59 - 2013-09-14 13:28 - 00000724 _____ C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
2014-01-19 17:20 - 2013-09-14 13:37 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Winamp
2014-01-19 17:18 - 2013-09-14 12:19 - 00000000 __SHD C:\Documents and Settings\NetworkService
2014-01-19 16:20 - 2014-01-19 16:20 - 00003067 _____ C:\Documents and Settings\Zurawski\Pulpit\gmer.txt
2014-01-19 14:57 - 2014-01-19 14:57 - 00379904 _____ C:\Documents and Settings\Zurawski\Pulpit\e3uxrt1r.exe
2014-01-19 14:56 - 2014-01-19 14:56 - 00024087 _____ C:\Documents and Settings\Zurawski\Pulpit\Addition.txt
2014-01-19 14:55 - 2014-01-19 14:54 - 01221120 _____ (Farbar) C:\Documents and Settings\Zurawski\Pulpit\FRST.exe
2014-01-19 14:52 - 2014-01-19 14:52 - 00091222 _____ C:\Documents and Settings\Zurawski\Pulpit\OTL.Txt
2014-01-19 14:52 - 2014-01-19 14:52 - 00055864 _____ C:\Documents and Settings\Zurawski\Pulpit\Extras.Txt
2014-01-19 14:46 - 2014-01-19 14:46 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Zurawski\Pulpit\OTL.exe
2014-01-19 14:30 - 2014-01-19 14:30 - 00023031 _____ C:\ComboFix.txt
2014-01-19 14:30 - 2014-01-19 14:15 - 00000000 ____D C:\Qoobox
2014-01-19 14:30 - 2013-10-01 17:25 - 00000000 ___HD C:\Documents and Settings\UpdatusUser\Ustawienia lokalne
2014-01-19 14:30 - 2013-09-14 13:55 - 00000000 __RHD C:\Documents and Settings\Default User\Ustawienia lokalne
2014-01-19 14:30 - 2013-09-14 12:20 - 00000000 ___HD C:\Documents and Settings\LocalService\Ustawienia lokalne
2014-01-19 14:30 - 2013-09-14 12:19 - 00000000 ___HD C:\Documents and Settings\NetworkService\Ustawienia lokalne
2014-01-19 14:29 - 2014-01-19 14:15 - 00000000 ____D C:\WINDOWS\erdnt
2014-01-19 14:27 - 2001-07-21 23:15 - 00000227 _____ C:\WINDOWS\system.ini
2014-01-19 14:25 - 2014-01-19 14:11 - 00065536 _____ C:\WINDOWS\system32\config\Spybot -.evt
2014-01-19 14:18 - 2014-01-19 14:18 - 00000000 _RSHD C:\cmdcons
2014-01-19 14:18 - 2013-09-14 13:53 - 00000327 __RSH C:\boot.ini
2014-01-19 14:06 - 2014-01-19 14:03 - 05167985 ____R (Swearware) C:\Documents and Settings\Zurawski\Pulpit\ComboFix.exe
2014-01-19 13:57 - 2013-09-14 12:33 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2014-01-19 13:54 - 2013-12-26 10:45 - 00000000 ____D C:\Program Files\Common Files\Sony Shared
2014-01-19 13:51 - 2013-11-16 15:18 - 00000000 ____D C:\Program Files\Quadriga Games
2014-01-19 13:50 - 2014-01-19 13:50 - 00000000 ____D C:\WINDOWS\pss
2014-01-19 13:48 - 2013-10-25 11:31 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\uTorrent
2014-01-19 13:48 - 2013-09-14 12:20 - 00000000 ___RD C:\Documents and Settings\Zurawski\Menu Start\Programy
2014-01-19 11:02 - 2014-01-19 11:02 - 00000835 _____ C:\Documents and Settings\All Users\Pulpit\Switch to Gaming Mode.lnk
2014-01-19 11:02 - 2014-01-19 11:02 - 00000823 _____ C:\Documents and Settings\All Users\Pulpit\Game Booster 3.lnk
2014-01-19 11:02 - 2014-01-19 11:02 - 00000000 ____D C:\Program Files\IObit
2014-01-19 11:02 - 2014-01-19 11:02 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Game Booster 3
2014-01-19 09:08 - 2001-07-21 23:17 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2014-01-18 19:51 - 2013-12-22 18:07 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Skype
2014-01-18 09:03 - 2013-09-14 13:44 - 00002347 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader XI.lnk
2014-01-17 13:57 - 2014-01-17 13:40 - 00000000 ____D C:\Documents and Settings\Zurawski\.gimp-2.8
2014-01-17 13:56 - 2014-01-17 13:56 - 00011537 _____ C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\recently-used.xbel
2014-01-17 13:56 - 2014-01-17 13:53 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\gtk-2.0
2014-01-17 13:53 - 2014-01-17 13:53 - 00000000 ____D C:\Documents and Settings\Zurawski\.thumbnails
2014-01-17 13:40 - 2014-01-17 13:40 - 00000736 _____ C:\Documents and Settings\All Users\Menu Start\Programy\GIMP 2.lnk
2014-01-17 13:40 - 2014-01-17 13:40 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\gegl-0.2
2014-01-17 13:40 - 2014-01-17 13:37 - 00000000 ____D C:\Program Files\GIMP 2
2014-01-16 13:44 - 2014-01-16 13:44 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\Sun
2014-01-15 18:39 - 2013-11-24 14:14 - 00000000 ____D C:\WINDOWS\SHELLNEW
2014-01-15 18:37 - 2013-12-14 10:55 - 00000000 ____D C:\Program Files\Delivery Truck Simulator
2014-01-15 18:33 - 2013-12-07 18:23 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\RonOTS Client
2014-01-15 18:08 - 2014-01-15 18:08 - 00000008 _____ C:\Documents and Settings\Zurawski\passyaugust.txt
2014-01-13 17:02 - 2013-12-22 18:07 - 00002267 _____ C:\Documents and Settings\All Users\Pulpit\Skype.lnk
2014-01-13 12:33 - 2013-09-30 08:10 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Tibia
2014-01-13 09:49 - 2014-01-13 09:49 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-01-13 09:49 - 2014-01-13 09:49 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-01-13 09:49 - 2014-01-13 09:49 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-01-13 09:49 - 2014-01-13 09:49 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-01-13 09:49 - 2014-01-13 09:49 - 00000000 ____D C:\Program Files\Common Files\Java
2014-01-13 09:49 - 2014-01-13 09:49 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Java
2014-01-13 09:49 - 2013-11-12 10:22 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-01-13 09:49 - 2013-11-12 10:21 - 00000000 ____D C:\Program Files\Java
2014-01-12 21:05 - 2013-10-10 18:38 - 00000000 ____D C:\UOSU
2014-01-06 19:48 - 2013-12-18 14:48 - 00000000 ____D C:\Program Files\Tibia
2014-01-06 19:48 - 2013-12-18 14:48 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Tibia
2014-01-06 11:47 - 2014-01-06 11:47 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Remere's Map Editor
2014-01-06 11:47 - 2014-01-06 11:46 - 00000000 ____D C:\Program Files\Remere's Map Editor
2013-12-31 16:14 - 2013-12-26 10:46 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\Moje wideo
2013-12-31 16:14 - 2013-09-14 12:20 - 00000000 ___RD C:\Documents and Settings\Zurawski\Moje dokumenty\Moja muzyka
2013-12-31 16:14 - 2013-09-14 12:11 - 00000000 ___RD C:\Documents and Settings\All Users\Dokumenty\Moje wideo
2013-12-29 12:57 - 2013-12-19 15:46 - 00000378 _____ C:\Documents and Settings\Zurawski\skrypty.txt
2013-12-28 21:21 - 2013-12-28 15:50 - 00065536 _____ C:\WINDOWS\system32\config\TuneUp.evt
2013-12-28 15:46 - 2013-12-28 15:44 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Free Sound Recorder
2013-12-28 15:45 - 2013-12-28 15:45 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Cool Record Edit Pro
2013-12-28 15:44 - 2013-12-28 15:44 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\Free Sound Recorder
2013-12-28 15:43 - 2013-12-28 15:43 - 00000000 ____D C:\Program Files\Free Sound Recorder
2013-12-27 10:03 - 2013-12-26 10:42 - 00000000 ____D C:\WINDOWS\SxsCaPendDel
2013-12-26 10:46 - 2013-12-26 10:46 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\My Podcasts
2013-12-26 10:46 - 2013-12-26 10:46 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\Media Go
2013-12-26 10:45 - 2013-12-26 10:45 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\Sony
2013-12-26 10:45 - 2013-12-26 10:45 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Sony Corporation
2013-12-26 10:44 - 2013-12-26 10:44 - 00000000 ____D C:\Documents and Settings\Zurawski\Ustawienia lokalne\Dane aplikacji\Downloaded Installations
2013-12-26 10:44 - 2013-12-26 10:38 - 00000000 ____D C:\Program Files\Sony Media Go Install
2013-12-26 10:43 - 2013-09-14 13:40 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-26 10:43 - 2013-09-14 13:40 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-26 10:41 - 2013-09-14 13:47 - 00000000 ____D C:\WINDOWS\system32\mui
2013-12-26 10:40 - 2013-12-26 10:40 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB942288-v3$
2013-12-26 10:38 - 2013-12-26 10:38 - 00000000 ____D C:\Documents and Settings\Zurawski\Dane aplikacji\Sony
2013-12-26 10:32 - 2013-10-07 07:36 - 00000000 ____D C:\Documents and Settings\Zurawski\Pulpit\Pailniaaa ZZ
2013-12-26 10:26 - 2013-12-26 10:26 - 00000000 __HDC C:\WINDOWS\$NtUninstallWMFDist11$
2013-12-26 10:26 - 2013-09-14 12:15 - 00000000 __SHD C:\Documents and Settings\All Users\DRM
2013-12-26 10:25 - 2013-12-26 10:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallWudf01000$
2013-12-26 10:25 - 2013-12-26 10:25 - 00000000 ____D C:\WINDOWS\system32\LogFiles
2013-12-22 18:07 - 2013-12-22 18:07 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Skype
2013-12-22 18:07 - 2013-12-22 18:06 - 00000000 ___RD C:\Program Files\Skype
2013-12-22 18:07 - 2013-09-14 13:49 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Skype
2013-12-22 18:06 - 2013-12-22 18:06 - 00000000 ____D C:\Program Files\Common Files\Skype
2013-12-21 19:42 - 2013-12-21 19:22 - 00002919 _____ C:\Documents and Settings\Zurawski\Pulpit\Dla anonima.txt
2013-12-21 09:39 - 2013-12-08 11:29 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\VirtualDJ
2013-12-21 09:29 - 2013-12-14 10:58 - 00000000 ____D C:\Documents and Settings\Zurawski\Moje dokumenty\Delivery Truck Simulator

Some content of TEMP:
====================
C:\Documents and Settings\Zurawski\Ustawienia lokalne\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2004-08-03 23:44] - [2008-04-14 21:51] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\Windows\System32\winlogon.exe
[2004-08-03 23:44] - [2008-04-14 21:51] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\Windows\System32\svchost.exe
[2004-08-03 23:44] - [2008-04-14 21:51] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\Windows\System32\services.exe
[2004-08-03 23:44] - [2008-04-14 21:51] - 0109056 ____A (Microsoft Corporation) 3e3ae424e27c4cefe4cab368c7b570ea 

C:\Windows\System32\User32.dll
[2004-08-03 23:44] - [2008-04-14 21:50] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\Windows\System32\userinit.exe
[2004-08-03 23:44] - [2008-04-14 21:51] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\Windows\System32\rpcss.dll
[2004-08-03 23:44] - [2008-04-14 21:50] - 0399360 ____A (Microsoft Corporation) 02396dab9dd407b06539981f477f3fec 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\Windows\System32\Drivers\volsnap.sys
[2004-08-03 23:36] - [2008-04-14 20:31] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================