Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-01-2014 01
Ran by Katarzyna (administrator) on Z96S on 30-01-2014 21:00:46
Running from D:\Moje dokumenty\Pobieranie
Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Program Files\Mobogenie\MgAssist.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(SafetyNut Inc.) C:\Program Files\Movies Toolbar\SafetyNut\SafetyNutManager.exe
() C:\Program Files\DiVapton\updateDiVapton.exe
(SafetyNut Inc.) C:\Program Files\Movies Toolbar\SafetyNut\SafetyNutManager.exe
(SafetyNut Inc.) C:\Program Files\Movies Toolbar\SafetyNut\safetynut.exe
() C:\Program Files\Mobogenie\DaemonProcess.exe
(Microsoft Corporation) C:\Program Files\Zune\ZuneBusEnum.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
() C:\WINDOWS\ATK0100\HControl.exe
(Motorola Inc.) C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Zune\ZuneLauncher.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(MindSpark) C:\Program Files\Allin1Convert_8h\bar\1.bin\8hSrchMn.exe
(VER_COMPANY_NAME) C:\Program Files\Allin1Convert_8h\bar\1.bin\8hbrmon.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcBoot.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe
(Somoto) C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\FilesFrog Update Checker\update_checker.exe
() C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\WebPlayer\AppsHat\WebPlayer.exe
() C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\WebPlayer\FLV Player\WebPlayer.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe
() C:\WINDOWS\ATK0100\ATKOSD.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
() C:\Program Files\DiVapton\bin\utilDiVapton.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [15517472 2013-01-31] (NVIDIA Corporation)
HKLM\...\Run: [NvMediaCenter] - C:\WINDOWS\system32\NvMcTray.dll [108832 2013-01-31] (NVIDIA Corporation)
HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [20065936 2012-06-06] (Realtek Semiconductor Corp.)
HKLM\...\Run: [HControl] - C:\WINDOWS\ATK0100\HControl.exe [110592 2006-10-14] ()
HKLM\...\Run: [SMSERIAL] - C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [638976 2007-01-29] (Motorola Inc.)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [BluetoothAuthenticationAgent] - rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
HKLM\...\Run: [NeroFilterCheck] - C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG)
HKLM\...\Run: [Zune Launcher] - C:\Program Files\Zune\ZuneLauncher.exe [159456 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Allin1Convert Search Scope Monitor] - C:\Program Files\Allin1Convert_8h\bar\1.bin\8hSrchMn.exe [44784 2013-09-23] (MindSpark)
HKLM\...\Run: [Allin1Convert_8h Browser Plugin Loader] - C:\Program Files\Allin1Convert_8h\bar\1.bin\8hbrmon.exe [30096 2013-09-23] (VER_COMPANY_NAME)
HKLM\...\Run: [ControlCenter4] - C:\Program Files\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM\...\Run: [BrStsMon00] - C:\Program Files\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM\...\Run: [mobilegeni daemon] - C:\Program Files\Mobogenie\DaemonProcess.exe [761024 2013-12-13] ()
HKCU\...\Run: [SDP] - C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\FilesFrog Update Checker\update_checker.exe [201808 2013-01-31] (Somoto)
HKCU\...\Run: [AppsHat] - C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\WebPlayer\AppsHat\WebPlayer.exe [202752 2012-10-26] ()
HKCU\...\Run: [FLV Player] - C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\WebPlayer\FLV Player\WebPlayer.exe [202752 2012-10-26] ()
HKCU\...\Run: [Apps Hat] - C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\WebPlayer\AppsHat\WebPlayer.exe [202752 2012-10-26] ()
HKCU\...\Run: [NextLive] - C:\Documents and Settings\Katarzyna\Dane aplikacji\newnext.me\nengine.dll [1283584 2013-11-14] (NewNextDotMe)
MountPoints2: {48aa2cd5-8b58-11e2-a049-bd8cf93df324} - F:\AutoRun.exe
AppInit_DLLs: C:\DOCUME~1\ALLUSE~1\DANEAP~1\Wincert\WIN32C~1.DLL => C:\Documents and Settings\All Users\Dane aplikacji\Wincert\win32cert.dll [7168 2013-09-22] ()
AppInit_DLLs: C:\PROGRA~1\MOVIES~1\SAFETY~1\SAFETY~2.DLL => C:\Program Files\Movies Toolbar\SafetyNut\safetyldr.dll [18952 2013-10-09] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
HKLM\...\AppCertDlls: [x86] -> C:\Program Files\Movies Toolbar\SafetyNut\safetycrt.dll [485384 2013-10-09] ()
HKLM\...\AppCertDlls: [x64] -> c:\program files\movies toolbar\safetynut\x64\safetycrt.dll

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.tb.ask.com/index.jhtml?n=77FD35DB&p2=^AYY^xdm007^S06949^pl&ptb=322A4F43-A7A0-4CAB-AC4A-BAF924795321&si=CM73ws3O4bkCFche3god9x8A-g
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
URLSearchHook: HKCU - (No Name) - {5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} - C:\Program Files\Allin1Convert_8h\bar\1.bin\8hSrcAs.dll (MindSpark)
SearchScopes: HKLM - DefaultScope {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = http://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^xdm007^S06949^pl&si=CM73ws3O4bkCFche3god9x8A-g&ptb=322A4F43-A7A0-4CAB-AC4A-BAF924795321&ind=2013092309&n=77fd59d5&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKLM - {52db1893-8a90-4192-aede-08e00b8f8473} URL = http://dts.search.ask.com/sr?src=ieb&gct=ds&appid=102&systemid=473&v=n9602-149&apn_uid=8305672278134416&apn_dtid=BND473&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKLM - {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = http://search.tb.ask.com/search/GGmain.jhtml?p2=^AYY^xdm007^S06949^pl&si=CM73ws3O4bkCFche3god9x8A-g&ptb=322A4F43-A7A0-4CAB-AC4A-BAF924795321&ind=2013092309&n=77fd59d5&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKCU - {52db1893-8a90-4192-aede-08e00b8f8473} URL = 
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
SearchScopes: HKCU - {75b4241f-171e-44a3-bf44-23613b6e3e03} URL = 
BHO: Apps Hat Mini - {11111111-1111-1111-1111-110511031101} - C:\Program Files\Apps Hat Mini\Apps Hat Mini-bho.dll (Nero)
BHO: Movies Toolbar (Dist. by Somoto Ltd.) - {3444c3c5-6c56-4a16-a453-832b05bf6ea4} - C:\Program Files\Movies Toolbar\SafetyNut\SRTOOL~1\IE\searchresultsDx.dll ()
BHO: DiVapton - {3bf42771-1b8a-4910-b3dc-eb330e40020a} - C:\Program Files\DiVapton\DiVaptonBHO.dll (DiVapton)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Search Assistant BHO - {a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} - C:\Program Files\Allin1Convert_8h\bar\1.bin\8hSrcAs.dll (MindSpark)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Toolbar BHO - {fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} - C:\Program Files\Allin1Convert_8h\bar\1.bin\8hbar.dll (MindSpark)
Toolbar: HKLM - Allin1Convert - {cd1a63ba-a08c-431b-9a34-f240aadc728d} - C:\Program Files\Allin1Convert_8h\bar\1.bin\8hbar.dll (MindSpark)
Toolbar: HKLM - Movies Toolbar (Dist. by Somoto Ltd.) - {3444c3c5-6c56-4a16-a453-832b05bf6ea4} - C:\Program Files\Movies Toolbar\SafetyNut\SRTOOL~1\IE\searchresultsDx.dll ()
Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - Allin1Convert - {CD1A63BA-A08C-431B-9A34-F240AADC728D} - C:\Program Files\Allin1Convert_8h\bar\1.bin\8hbar.dll (MindSpark)
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1363124629406
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1363124681140
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Katarzyna\Dane aplikacji\Mozilla\Firefox\Profiles\2lypv8d5.default
FF Plugin: @Allin1Convert_8h.com/Plugin - C:\Program Files\Allin1Convert_8h\bar\1.bin\NP8hStub.dll (MindSpark)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Extension: Apps Hat Mini - C:\Documents and Settings\Katarzyna\Dane aplikacji\Mozilla\Firefox\Profiles\2lypv8d5.default\Extensions\a055e456-a200-4197-b11a-b82eb9b5ea1c@e3a45ca0-70b0-44d3-aeb3-0176a65ffa43.com [2014-01-28]
FF Extension: No Name - C:\Documents and Settings\Katarzyna\Dane aplikacji\Mozilla\Firefox\Profiles\2lypv8d5.default\Extensions\staged [2014-01-30]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [8hffxtbr@Allin1Convert_8h.com] - C:\Program Files\Allin1Convert_8h\bar\1.bin
FF Extension: Allin1Convert - C:\Program Files\Allin1Convert_8h\bar\1.bin [2013-09-23]

Chrome: 
=======
CHR DefaultSearchKeyword: babylon.com
CHR DefaultSearchProvider: Babylon Search
CHR DefaultSearchURL: http://search.babylon.com/?q={searchTerms}&babsrc=SP_ss&mntrId=30CE001D60C6B2C5&affID=125055&tsp=5034
CHR DefaultNewTabURL: 
CHR Extension: (DiVapton) - C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\cmfpfjjciophcbhnhnpbadhmdmfgceic [2013-10-13]
CHR Extension: (Babylon Toolbar) - C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb [2013-10-13]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-15]
CHR HKLM\...\Chrome\Extension: [cmfpfjjciophcbhnhnpbadhmdmfgceic] - C:\Program Files\DiVapton\cmfpfjjciophcbhnhnpbadhmdmfgceic.crx [2014-01-29]
CHR HKLM\...\Chrome\Extension: [dhkplhfnhceodhffomolpfigojocbpcb] - C:\Documents and Settings\Katarzyna\Dane aplikacji\BabSolution\CR\BabylonChrome1.crx [2013-10-13]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

S2 Allin1Convert_8hService; C:\Program Files\Allin1Convert_8h\bar\1.bin\8hbarsvc.exe [42504 2013-09-23] (COMPANYVERS_NAME)
R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2013-09-15] (Oracle Corporation)
R2 MgAssistService; C:\Program Files\Mobogenie\MgAssist.exe [63168 2014-01-27] ()
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R2 SafetyNutManager; C:\Program Files\Movies Toolbar\SafetyNut\SafetyNutManager.exe [3422728 2013-10-09] (SafetyNut Inc.)
R2 Update DiVapton; C:\Program Files\DiVapton\updateDiVapton.exe [102168 2014-01-26] ()
R2 Util DiVapton; C:\Program Files\DiVapton\bin\utilDiVapton.exe [103192 2014-01-30] ()
R2 ZuneBusEnum; C:\Program Files\Zune\ZuneBusEnum.exe [57056 2011-08-05] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R3 ASNDIS5; C:\WINDOWS\ATK0100\ASNDIS5.SYS [16269 2004-05-28] (Printing Communications Assoc., Inc. (PCAUSA))
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [604928 2006-10-12] (Broadcom Corporation)
S3 BrScnUsb; C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 massfilter; C:\WINDOWS\System32\drivers\massfilter.sys [9216 2012-05-11] (MBB Incorporated)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R0 MpFilter; C:\WINDOWS\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ATKACPI.sys [5760 2007-08-28] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 SynMini; C:\WINDOWS\System32\Drivers\SynMini.sys [1208064 2006-11-27] ()
R3 SynScan; C:\WINDOWS\System32\Drivers\SynScan.sys [8064 2006-10-04] ()
S3 ZTEusbnet; C:\WINDOWS\System32\DRIVERS\ZTEusbnet.sys [134144 2012-05-11] (ZTE Corporation)
R2 zumbus; C:\WINDOWS\System32\DRIVERS\zumbus.sys [41472 2011-08-05] (Microsoft Corporation)
S4 IntelIde; No ImagePath
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-30 20:59 - 2014-01-30 21:00 - 00000000 ____D C:\FRST
2014-01-30 20:55 - 2014-01-30 20:55 - 00000000 ____D C:\Documents and Settings\Katarzyna\Pulpit
2014-01-29 13:40 - 2014-01-29 13:40 - 00019461 _____ C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\recently-used.xbel
2014-01-28 09:30 - 2014-01-30 20:50 - 00002662 _____ C:\WINDOWS\Tasks\Apps Hat Mini-firefoxinstaller.job
2014-01-28 09:30 - 2014-01-30 20:50 - 00002152 _____ C:\WINDOWS\Tasks\Apps Hat Mini-chromeinstaller.job
2014-01-28 09:30 - 2014-01-30 20:50 - 00001542 _____ C:\WINDOWS\Tasks\Apps Hat Mini-updater.job
2014-01-28 09:30 - 2014-01-30 20:50 - 00001492 _____ C:\WINDOWS\Tasks\Apps Hat Mini-codedownloader.job
2014-01-28 09:30 - 2014-01-30 20:50 - 00001370 _____ C:\WINDOWS\Tasks\Apps Hat Mini-enabler.job
2014-01-28 09:30 - 2014-01-29 13:42 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\Apps Hat Mini
2014-01-28 09:30 - 2014-01-28 09:30 - 00000000 ____D C:\Program Files\Apps Hat Mini
2014-01-22 09:57 - 2014-01-22 09:58 - 00000000 ____D C:\Documents and Settings\Katarzyna\Dane aplikacji\Mozilla
2014-01-22 09:57 - 2014-01-22 09:57 - 00000736 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
2014-01-22 09:57 - 2014-01-22 09:57 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2014-01-22 09:57 - 2014-01-22 09:57 - 00000000 ____D C:\Program Files\Mozilla Firefox
2014-01-22 09:57 - 2014-01-22 09:57 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\Mozilla
2014-01-22 09:57 - 2014-01-22 09:57 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Mozilla
2014-01-22 09:56 - 2014-01-22 09:56 - 00283016 _____ (Mozilla) C:\Documents and Settings\Katarzyna\Firefox Setup Stub 26.0.exe
2014-01-19 13:50 - 2014-01-24 12:21 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\gtk-2.0
2014-01-19 09:40 - 2014-01-29 13:42 - 00000000 ____D C:\Documents and Settings\Katarzyna\.gimp-2.8
2014-01-19 09:37 - 2014-01-19 09:37 - 00000742 _____ C:\Documents and Settings\All Users\Menu Start\Programy\GIMP 2.lnk
2014-01-19 09:34 - 2014-01-19 09:37 - 00000000 ____D C:\Program Files\GIMP 2
2014-01-19 09:28 - 2014-01-30 20:51 - 00000000 ____D C:\Documents and Settings\Katarzyna\Dane aplikacji\newnext.me
2014-01-19 09:28 - 2014-01-29 13:44 - 00006897 _____ C:\Documents and Settings\Katarzyna\daemonprocess.txt
2014-01-19 09:28 - 2014-01-19 13:53 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\Mobogenie
2014-01-19 09:28 - 2014-01-19 09:39 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\cache
2014-01-19 09:28 - 2014-01-19 09:28 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\genienext
2014-01-19 09:28 - 2014-01-19 09:28 - 00000000 ____D C:\Documents and Settings\Katarzyna\.android
2014-01-19 09:27 - 2014-01-27 13:12 - 00000000 ____D C:\Program Files\Mobogenie
2014-01-19 09:27 - 2014-01-19 09:27 - 00000000 ____D C:\Documents and Settings\Katarzyna\Menu Start\Programy\Mobogenie
2014-01-19 09:26 - 2014-01-19 09:26 - 00666648 _____ C:\Documents and Settings\Katarzyna\GIMP(13219).exe
2014-01-15 15:25 - 2014-01-15 15:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2014-01-15 15:24 - 2014-01-15 15:25 - 00005311 _____ C:\WINDOWS\KB2914368.log
2014-01-11 11:03 - 2014-01-30 21:00 - 00000406 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2014-01-11 09:26 - 2014-01-11 09:26 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868626$
2014-01-11 09:23 - 2014-01-11 09:23 - 00014119 _____ C:\WINDOWS\KB2898785-IE8.log
2014-01-11 09:23 - 2014-01-11 09:23 - 00011448 _____ C:\WINDOWS\KB2900986.log
2014-01-11 09:23 - 2014-01-11 09:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2900986$
2014-01-11 09:23 - 2014-01-11 09:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2014-01-11 09:23 - 2014-01-11 09:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$
2014-01-11 09:22 - 2014-01-11 09:23 - 00006790 _____ C:\WINDOWS\KB2862335.log
2014-01-11 09:22 - 2014-01-11 09:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$
2014-01-11 09:19 - 2014-01-11 09:19 - 00006151 _____ C:\WINDOWS\KB2904266.log
2014-01-11 09:19 - 2014-01-11 09:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2014-01-11 09:19 - 2014-01-11 09:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876331$
2014-01-11 09:19 - 2014-01-11 09:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862152$
2014-01-11 09:16 - 2014-01-11 09:16 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2014-01-11 09:15 - 2014-01-11 09:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2014-01-11 09:15 - 2014-01-11 09:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2014-01-11 09:13 - 2014-01-11 09:13 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$
2014-01-10 23:01 - 2014-01-11 09:26 - 00016721 _____ C:\WINDOWS\KB2868626.log
2014-01-10 23:01 - 2014-01-11 09:23 - 00016076 _____ C:\WINDOWS\KB2847311.log
2014-01-10 23:00 - 2014-01-11 09:23 - 00011348 _____ C:\WINDOWS\KB2898715.log
2014-01-10 23:00 - 2014-01-11 09:19 - 00010335 _____ C:\WINDOWS\KB2862152.log
2014-01-10 23:00 - 2014-01-11 09:19 - 00009814 _____ C:\WINDOWS\KB2876331.log
2014-01-10 23:00 - 2013-07-03 03:12 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidparse.sys
2014-01-10 23:00 - 2013-07-03 02:59 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
2014-01-10 22:59 - 2014-01-11 09:16 - 00009139 _____ C:\WINDOWS\KB2893294.log
2014-01-10 22:59 - 2014-01-11 09:15 - 00009563 _____ C:\WINDOWS\KB2893984.log
2014-01-10 22:59 - 2014-01-11 09:15 - 00008294 _____ C:\WINDOWS\KB2892075.log
2014-01-10 22:59 - 2013-08-09 01:55 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbd.sys
2014-01-09 19:20 - 2014-01-09 19:20 - 00012652 _____ C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\recently-used.xbel.5JWX8W
2014-01-07 14:34 - 2014-01-07 14:34 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Google+ Auto Backup
2014-01-06 20:23 - 2014-01-06 20:23 - 04558848 _____ (Google Inc.) C:\WINDOWS\system32\GPhotos.scr

==================== One Month Modified Files and Folders =======

2014-01-30 21:01 - 2013-03-12 18:35 - 01664220 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-30 21:00 - 2014-01-30 20:59 - 00000000 ____D C:\FRST
2014-01-30 21:00 - 2014-01-11 11:03 - 00000406 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2014-01-30 21:00 - 2013-10-28 14:45 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\SafetyNut
2014-01-30 20:55 - 2014-01-30 20:55 - 00000000 ____D C:\Documents and Settings\Katarzyna\Pulpit
2014-01-30 20:55 - 2013-03-12 18:40 - 00000000 ____D C:\Documents and Settings\Katarzyna
2014-01-30 20:51 - 2014-01-19 09:28 - 00000000 ____D C:\Documents and Settings\Katarzyna\Dane aplikacji\newnext.me
2014-01-30 20:50 - 2014-01-28 09:30 - 00002662 _____ C:\WINDOWS\Tasks\Apps Hat Mini-firefoxinstaller.job
2014-01-30 20:50 - 2014-01-28 09:30 - 00002152 _____ C:\WINDOWS\Tasks\Apps Hat Mini-chromeinstaller.job
2014-01-30 20:50 - 2014-01-28 09:30 - 00001542 _____ C:\WINDOWS\Tasks\Apps Hat Mini-updater.job
2014-01-30 20:50 - 2014-01-28 09:30 - 00001492 _____ C:\WINDOWS\Tasks\Apps Hat Mini-codedownloader.job
2014-01-30 20:50 - 2014-01-28 09:30 - 00001370 _____ C:\WINDOWS\Tasks\Apps Hat Mini-enabler.job
2014-01-30 20:50 - 2013-03-13 00:58 - 00001038 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-30 20:50 - 2013-03-12 19:27 - 00000159 _____ C:\WINDOWS\wiadebug.log
2014-01-30 20:50 - 2013-03-12 19:27 - 00000050 _____ C:\WINDOWS\wiaservc.log
2014-01-30 20:50 - 2013-03-12 18:39 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-30 20:49 - 2008-04-15 13:00 - 00012598 _____ C:\WINDOWS\system32\wpa.dbl
2014-01-29 13:44 - 2014-01-19 09:28 - 00006897 _____ C:\Documents and Settings\Katarzyna\daemonprocess.txt
2014-01-29 13:44 - 2013-03-12 18:40 - 00000188 ___SH C:\Documents and Settings\Katarzyna\ntuser.ini
2014-01-29 13:44 - 2013-03-12 18:39 - 00032474 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-29 13:42 - 2014-01-28 09:30 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\Apps Hat Mini
2014-01-29 13:42 - 2014-01-19 09:40 - 00000000 ____D C:\Documents and Settings\Katarzyna\.gimp-2.8
2014-01-29 13:40 - 2014-01-29 13:40 - 00019461 _____ C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\recently-used.xbel
2014-01-29 13:40 - 2013-03-12 18:40 - 00000000 ___HD C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji
2014-01-29 13:33 - 2013-03-13 00:58 - 00001042 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-29 13:30 - 2013-10-13 16:11 - 00000000 ____D C:\Program Files\DiVapton
2014-01-29 12:46 - 2013-03-13 10:24 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-29 12:39 - 2013-03-13 13:30 - 00000069 _____ C:\WINDOWS\NeroDigital.ini
2014-01-28 16:10 - 2013-03-13 11:38 - 00000000 ____D C:\Documents and Settings\Katarzyna\Dane aplikacji\Skype
2014-01-28 09:30 - 2014-01-28 09:30 - 00000000 ____D C:\Program Files\Apps Hat Mini
2014-01-28 09:30 - 2013-10-13 16:11 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\WebPlayer
2014-01-28 09:29 - 2013-03-12 18:40 - 00000000 __RHD C:\Documents and Settings\Katarzyna\Dane aplikacji
2014-01-27 13:54 - 2013-03-12 18:40 - 00000000 ___RD C:\Documents and Settings\Katarzyna\Ulubione
2014-01-27 13:12 - 2014-01-19 09:27 - 00000000 ____D C:\Program Files\Mobogenie
2014-01-24 13:49 - 2013-03-13 13:52 - 00000000 ____D C:\Documents and Settings\Katarzyna\Dane aplikacji\uTorrent
2014-01-24 12:54 - 2013-03-13 13:30 - 00125952 _____ C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-01-24 12:21 - 2014-01-19 13:50 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\gtk-2.0
2014-01-22 09:58 - 2014-01-22 09:57 - 00000000 ____D C:\Documents and Settings\Katarzyna\Dane aplikacji\Mozilla
2014-01-22 09:57 - 2014-01-22 09:57 - 00000736 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
2014-01-22 09:57 - 2014-01-22 09:57 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2014-01-22 09:57 - 2014-01-22 09:57 - 00000000 ____D C:\Program Files\Mozilla Firefox
2014-01-22 09:57 - 2014-01-22 09:57 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\Mozilla
2014-01-22 09:57 - 2014-01-22 09:57 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Mozilla
2014-01-22 09:57 - 2013-03-12 19:24 - 00000000 __RHD C:\Documents and Settings\All Users\Dane aplikacji
2014-01-22 09:57 - 2013-03-12 19:24 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy
2014-01-22 09:57 - 2013-03-12 19:24 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit
2014-01-22 09:56 - 2014-01-22 09:56 - 00283016 _____ (Mozilla) C:\Documents and Settings\Katarzyna\Firefox Setup Stub 26.0.exe
2014-01-21 12:06 - 2013-03-13 11:38 - 00000000 ___RD C:\Program Files\Skype
2014-01-21 12:06 - 2013-03-13 11:37 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Skype
2014-01-19 13:53 - 2014-01-19 09:28 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\Mobogenie
2014-01-19 09:39 - 2014-01-19 09:28 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\cache
2014-01-19 09:37 - 2014-01-19 09:37 - 00000742 _____ C:\Documents and Settings\All Users\Menu Start\Programy\GIMP 2.lnk
2014-01-19 09:37 - 2014-01-19 09:34 - 00000000 ____D C:\Program Files\GIMP 2
2014-01-19 09:28 - 2014-01-19 09:28 - 00000000 ____D C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\genienext
2014-01-19 09:28 - 2014-01-19 09:28 - 00000000 ____D C:\Documents and Settings\Katarzyna\.android
2014-01-19 09:27 - 2014-01-19 09:27 - 00000000 ____D C:\Documents and Settings\Katarzyna\Menu Start\Programy\Mobogenie
2014-01-19 09:27 - 2013-03-12 18:40 - 00000000 ___RD C:\Documents and Settings\Katarzyna\Menu Start\Programy
2014-01-19 09:26 - 2014-01-19 09:26 - 00666648 _____ C:\Documents and Settings\Katarzyna\GIMP(13219).exe
2014-01-19 08:32 - 2013-03-12 22:30 - 00231584 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-01-15 15:27 - 2013-09-15 18:26 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 15:25 - 2014-01-15 15:25 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2014-01-15 15:25 - 2014-01-15 15:24 - 00005311 _____ C:\WINDOWS\KB2914368.log
2014-01-15 15:25 - 2013-08-20 23:07 - 00216404 _____ C:\WINDOWS\FaxSetup.log
2014-01-15 15:25 - 2013-08-20 23:07 - 00103460 _____ C:\WINDOWS\ocgen.log
2014-01-15 15:25 - 2013-08-20 23:07 - 00082849 _____ C:\WINDOWS\tsoc.log
2014-01-15 15:25 - 2013-08-20 23:07 - 00071407 _____ C:\WINDOWS\comsetup.log
2014-01-15 15:25 - 2013-08-20 23:07 - 00043303 _____ C:\WINDOWS\ntdtcsetup.log
2014-01-15 15:25 - 2013-08-20 23:07 - 00034249 _____ C:\WINDOWS\iis6.log
2014-01-15 15:25 - 2013-08-20 23:07 - 00013510 _____ C:\WINDOWS\ocmsn.log
2014-01-15 15:25 - 2013-08-20 23:07 - 00010605 _____ C:\WINDOWS\msgsocm.log
2014-01-15 15:25 - 2013-08-20 23:07 - 00001374 _____ C:\WINDOWS\imsins.log
2014-01-15 15:25 - 2013-03-14 21:15 - 00193698 _____ C:\WINDOWS\setupapi.log
2014-01-15 15:25 - 2013-03-13 00:44 - 83425928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 12:39 - 2013-03-12 18:36 - 00001613 _____ C:\Documents and Settings\All Users\Menu Start\Określ dostęp do programów i ich ustawienia domyślne.lnk
2014-01-11 20:52 - 2013-03-13 12:57 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2014-01-11 09:50 - 2013-03-14 21:10 - 00158752 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-11 09:26 - 2014-01-11 09:26 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2868626$
2014-01-11 09:26 - 2014-01-10 23:01 - 00016721 _____ C:\WINDOWS\KB2868626.log
2014-01-11 09:26 - 2013-09-16 06:12 - 00002944 _____ C:\WINDOWS\COM+.log
2014-01-11 09:26 - 2013-08-20 23:07 - 00015294 _____ C:\WINDOWS\updspapi.log
2014-01-11 09:26 - 2013-08-20 23:07 - 00001374 _____ C:\WINDOWS\imsins.BAK
2014-01-11 09:26 - 2013-03-12 19:25 - 01173420 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-11 09:26 - 2008-04-15 13:00 - 00541908 _____ C:\WINDOWS\system32\perfh015.dat
2014-01-11 09:26 - 2008-04-15 13:00 - 00099268 _____ C:\WINDOWS\system32\perfc015.dat
2014-01-11 09:23 - 2014-01-11 09:23 - 00014119 _____ C:\WINDOWS\KB2898785-IE8.log
2014-01-11 09:23 - 2014-01-11 09:23 - 00011448 _____ C:\WINDOWS\KB2900986.log
2014-01-11 09:23 - 2014-01-11 09:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2900986$
2014-01-11 09:23 - 2014-01-11 09:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2014-01-11 09:23 - 2014-01-11 09:23 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2847311$
2014-01-11 09:23 - 2014-01-11 09:22 - 00006790 _____ C:\WINDOWS\KB2862335.log
2014-01-11 09:23 - 2014-01-10 23:01 - 00016076 _____ C:\WINDOWS\KB2847311.log
2014-01-11 09:23 - 2014-01-10 23:00 - 00011348 _____ C:\WINDOWS\KB2898715.log
2014-01-11 09:22 - 2014-01-11 09:22 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862335$
2014-01-11 09:22 - 2013-03-12 22:05 - 00001912 _____ C:\WINDOWS\epplauncher.mif
2014-01-11 09:22 - 2013-03-12 22:05 - 00001704 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Security Essentials.lnk
2014-01-11 09:22 - 2013-03-12 22:05 - 00000000 ____D C:\Program Files\Microsoft Security Client
2014-01-11 09:19 - 2014-01-11 09:19 - 00006151 _____ C:\WINDOWS\KB2904266.log
2014-01-11 09:19 - 2014-01-11 09:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2014-01-11 09:19 - 2014-01-11 09:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2876331$
2014-01-11 09:19 - 2014-01-11 09:19 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862152$
2014-01-11 09:19 - 2014-01-10 23:00 - 00010335 _____ C:\WINDOWS\KB2862152.log
2014-01-11 09:19 - 2014-01-10 23:00 - 00009814 _____ C:\WINDOWS\KB2876331.log
2014-01-11 09:19 - 2013-03-13 00:43 - 00019304 _____ C:\WINDOWS\system32\TZLog.log
2014-01-11 09:16 - 2014-01-11 09:16 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2014-01-11 09:16 - 2014-01-10 22:59 - 00009139 _____ C:\WINDOWS\KB2893294.log
2014-01-11 09:15 - 2014-01-11 09:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2014-01-11 09:15 - 2014-01-11 09:15 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2014-01-11 09:15 - 2014-01-10 22:59 - 00009563 _____ C:\WINDOWS\KB2893984.log
2014-01-11 09:15 - 2014-01-10 22:59 - 00008294 _____ C:\WINDOWS\KB2892075.log
2014-01-11 09:15 - 2013-03-12 18:34 - 00000000 ____D C:\WINDOWS\Registration
2014-01-11 09:13 - 2014-01-11 09:13 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2862330$
2014-01-09 19:20 - 2014-01-09 19:20 - 00012652 _____ C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Dane aplikacji\recently-used.xbel.5JWX8W
2014-01-07 14:34 - 2014-01-07 14:34 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Google+ Auto Backup
2014-01-07 14:34 - 2013-03-13 00:58 - 00000000 ____D C:\Program Files\Google
2014-01-06 20:23 - 2014-01-06 20:23 - 04558848 _____ (Google Inc.) C:\WINDOWS\system32\GPhotos.scr

Files to move or delete:
====================
C:\Documents and Settings\Katarzyna\Firefox Setup Stub 26.0.exe
C:\Documents and Settings\Katarzyna\GIMP(13219).exe


Some content of TEMP:
====================
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\appshat-distribution.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\BabylonTB.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\DiVapton_sm.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\FLVPlayerSetup.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\ginstall.dll
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\jre-7u40-windows-i586-iftw.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\MoviesToolbarSetup_Somoto_9_10_2013.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\pity2012ngsetup_aktual.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\rad62065.tmp_update.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\SkypeSetup.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\UpdateCheckerSetup.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\vlc-2.0.8-win32.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\_is1D.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\_is2.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\_is21D.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\_is25.exe
C:\Documents and Settings\Katarzyna\Ustawienia lokalne\Temp\{D526A996-C3CB-4F29-B110-3680F09BD868}-GoogleUpdateSetup.exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2008-04-15 13:00] - [2008-04-15 13:00] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\WINDOWS\system32\winlogon.exe
[2008-04-15 13:00] - [2008-04-15 13:00] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\WINDOWS\system32\svchost.exe
[2008-04-15 13:00] - [2008-04-15 13:00] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\WINDOWS\system32\services.exe
[2008-04-15 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\WINDOWS\system32\User32.dll
[2008-04-15 13:00] - [2008-04-15 13:00] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\WINDOWS\system32\userinit.exe
[2008-04-15 13:00] - [2008-04-15 13:00] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\WINDOWS\system32\rpcss.dll
[2008-04-15 13:00] - [2009-02-09 11:53] - 0401408 ____A (Microsoft Corporation) a37311d9d628c1042a2836731787f0f3 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2008-04-15 13:00] - [2008-04-15 13:00] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================