Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-02-2014
Ran by Projekt (administrator) on ED on 06-02-2014 20:59:32
Running from C:\Documents and Settings\Projekt\Pulpit
Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) ===================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(OldTimer Tools) C:\Documents and Settings\Projekt\Pulpit\OTL.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\System32\NvCpl.dll [7581696 2006-07-20] (NVIDIA Corporation)
HKLM\...\Run: [NvMediaCenter] - C:\WINDOWS\System32\NvMcTray.dll [86016 2006-07-20] (NVIDIA Corporation)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [995176 2013-08-12] (Microsoft Corporation)
HKU\.DEFAULT\...\Run: [DWQueuedReporting] - C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [434080 2011-07-27] (Microsoft Corporation)
HKU\S-1-5-21-1606980848-1547161642-682003330-1003\...\MountPoints2: {f51db940-2834-11e2-826e-0016368354ff} - E:\LaunchU3.exe -a
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\AutoCAD Startup Accelerator.lnk
ShortcutTarget: AutoCAD Startup Accelerator.lnk -> C:\Program Files\Common Files\Autodesk Shared\acstart17.exe (Autodesk, Inc)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.awesomehp.com/?type=sc&ts=1391513730&from=smt&uid=WDCXWD3200BEVT-00A0RT0_WD-WXQ1A301248812488
SearchScopes: HKLM - DefaultScope value is missing.
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\System32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-1_5_0_18-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_18-windows-i586.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Projekt\Dane aplikacji\Mozilla\Firefox\Profiles\u2jc0120.default
FF SearchEngineOrder.user_pref("browser.search.order.1", "");: user_pref("browser.search.order.1", "");
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "");: user_pref("browser.search.order.1,S", "");
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: LSNPAPI - C:\Program Files\nplightshot\3.4.0.55\npLightshot.dll (Skillbrains)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Documents and Settings\Projekt\Dane aplikacji\Mozilla\Firefox\Profiles\u2jc0120.default\searchplugins\utorrentcontrol2-customized-web-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\fastestwebsearch.xml
FF Extension: SearchNewTab - C:\Documents and Settings\Projekt\Dane aplikacji\Mozilla\Firefox\Profiles\u2jc0120.default\Extensions\klua3xo-1hvzh@p-aoealh.co.uk [2013-10-08]
FF Extension: DownloaD. KKeeEper - C:\Documents and Settings\Projekt\Dane aplikacji\Mozilla\Firefox\Profiles\u2jc0120.default\Extensions\vxsf_gszm@auo-.co.uk [2013-10-08]
FF Extension: Discount Dragon - C:\Documents and Settings\Projekt\Dane aplikacji\Mozilla\Firefox\Profiles\u2jc0120.default\Extensions\{D8A30808-3888-E608-3AA4-A2CEA2623402} [2014-02-06]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-08-09]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-01-22]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-08-09]

Chrome: 
=======
CHR Extension: (Discount Dragon) - C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nikdaiaidiiiogaidkkekcmokcgcdeac [2014-02-06]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-04-21]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2011-12-12]

========================== Services (Whitelisted) =================

R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-08-12] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R3 HdAudAddService; C:\WINDOWS\System32\drivers\CHDAud.sys [581632 2006-07-27] (Conexant Systems Inc.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2008-10-29] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2008-10-29] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2008-10-29] (HP)
R3 HSFHWAZL; C:\WINDOWS\System32\DRIVERS\HSFHWAZL.sys [208384 2006-08-29] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.sys [990592 2006-08-29] (Conexant Systems, Inc.)
S2 Kmm4xNT; C:\WINDOWS\system32\Drivers\Kmm4xNT.sys [95484 2002-04-26] (DATOM Dariusz Cielebąk)
R0 MpFilter; C:\WINDOWS\System32\DRIVERS\MpFilter.sys [211560 2013-06-18] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [99584 2006-01-26] (NVIDIA Corporation)
R0 nvatabus; C:\WINDOWS\System32\DRIVERS\nvatabus.sys [99584 2006-01-26] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [34176 2006-03-02] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13056 2006-03-02] (NVIDIA Corporation)
S2 adfs; No ImagePath
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 UIUSys; System32\DRIVERS\UIUSYS.SYS [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-06 20:59 - 2014-02-06 20:59 - 00000000 ____D () C:\Documents and Settings\Projekt\Pulpit\FRST-OlderVersion
2014-02-06 18:22 - 2014-02-06 20:54 - 00065980 _____ () C:\Documents and Settings\Projekt\Pulpit\Extras.Txt
2014-02-06 18:21 - 2014-02-06 20:54 - 00092100 _____ () C:\Documents and Settings\Projekt\Pulpit\OTL.Txt
2014-02-06 16:26 - 2014-02-06 16:32 - 00034951 _____ () C:\Documents and Settings\Projekt\Pulpit\Addition.txt
2014-02-06 16:25 - 2014-02-06 20:59 - 00010581 _____ () C:\Documents and Settings\Projekt\Pulpit\FRST.txt
2014-02-06 16:25 - 2014-02-06 20:59 - 00000000 ____D () C:\FRST
2014-02-06 16:11 - 2014-02-06 16:10 - 00987425 _____ () C:\Documents and Settings\Projekt\Pulpit\SecurityCheck.exe
2014-02-06 16:10 - 2014-02-06 16:10 - 00001201 _____ () C:\Documents and Settings\Projekt\Pulpit\Stij_OTL_2.txt
2014-02-06 16:09 - 2014-02-06 16:09 - 00001241 _____ () C:\Documents and Settings\Projekt\Pulpit\Stij_OTL.txt
2014-02-06 16:08 - 2014-02-06 20:59 - 01136640 _____ (Farbar) C:\Documents and Settings\Projekt\Pulpit\FRST.exe
2014-02-06 16:02 - 2014-02-06 16:02 - 00000705 _____ () C:\Documents and Settings\Projekt\Pulpit\DRAGON_OTL.txt
2014-02-06 16:00 - 2014-02-06 16:00 - 00000705 _____ () C:\Documents and Settings\Projekt\Moje dokumenty\DRAGON_OTL.txt
2014-02-06 15:54 - 2014-02-06 15:54 - 00000000 ____D () C:\_OTL
2014-02-06 15:53 - 2014-02-06 14:15 - 01166132 _____ () C:\Documents and Settings\Projekt\Pulpit\adwcleaner.exe
2014-02-06 15:53 - 2014-02-06 14:06 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Projekt\Pulpit\OTL.exe
2014-02-06 14:15 - 2014-02-06 14:35 - 00000000 ____D () C:\AdwCleaner
2014-02-06 12:56 - 2014-02-06 12:56 - 00000604 _____ () C:\Documents and Settings\Projekt\Moje dokumenty\cc_20140206_125632.reg
2014-02-06 08:56 - 2014-02-06 08:56 - 00000860 __RSH () C:\Documents and Settings\All Users\ntuser.pol
2014-02-06 08:56 - 2014-02-06 08:56 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2014-02-06 08:56 - 2014-02-06 08:56 - 00000000 ____D () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\BenchUpdater
2014-02-06 08:55 - 2014-02-06 20:58 - 00000336 _____ () C:\WINDOWS\Tasks\bench-S-1-5-21-1606980848-1547161642-682003330-1003.job
2014-02-06 08:55 - 2014-02-06 17:09 - 00000336 _____ () C:\WINDOWS\Tasks\bench-sys.job
2014-02-06 08:55 - 2014-02-06 08:56 - 00000000 ____D () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\Discount Dragon
2014-02-06 08:55 - 2014-02-06 08:55 - 00000000 ____D () C:\Program Files\Bench
2014-02-05 13:11 - 2014-02-05 13:11 - 05556104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2014-02-05 12:29 - 2014-02-05 12:29 - 00014466 _____ () C:\Documents and Settings\Projekt\Moje dokumenty\cc_20140205_122919.reg
2014-02-04 15:19 - 2014-02-04 15:19 - 00000000 ____D () C:\Documents and Settings\Projekt\Dane aplikacji\driver
2014-02-04 12:36 - 2014-02-04 15:52 - 00000000 ____D () C:\Documents and Settings\Projekt\Dane aplikacji\awesomehp
2014-02-04 12:36 - 2014-02-04 15:50 - 00000000 ____D () C:\Program Files\SimilarProducts
2014-02-04 12:36 - 2014-02-04 12:36 - 00000000 ____D () C:\Program Files\SupTab
2014-02-04 12:36 - 2014-02-04 12:36 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\WPM
2014-02-04 12:36 - 2014-02-04 12:36 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\IePluginService
2014-02-04 12:33 - 2014-02-06 11:52 - 00000000 ____D () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\fst_pl_41
2014-02-04 12:33 - 2014-02-04 12:33 - 00000000 ____D () C:\Program Files\fst_pl_41
2014-02-04 12:33 - 2014-02-04 12:33 - 00000000 ____D () C:\Documents and Settings\Projekt\Menu Start\Programy\Start Lollipop
2014-01-31 11:45 - 2014-02-06 17:02 - 00028249 _____ () C:\WINDOWS\setupapi.log
2014-01-29 21:23 - 2014-01-29 21:30 - 00000000 ____D () C:\MATS
2014-01-29 21:18 - 2014-02-04 14:47 - 00001084 _____ () C:\WINDOWS\spupdsvc.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00006712 _____ () C:\WINDOWS\iis6.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00006183 _____ () C:\WINDOWS\FaxSetup.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00002956 _____ () C:\WINDOWS\ocgen.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00002829 _____ () C:\WINDOWS\tsoc.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00002059 _____ () C:\WINDOWS\comsetup.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00001936 _____ () C:\WINDOWS\msmqinst.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00001247 _____ () C:\WINDOWS\ntdtcsetup.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00001083 _____ () C:\WINDOWS\netfxocm.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00000425 _____ () C:\WINDOWS\MedCtrOC.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00000386 _____ () C:\WINDOWS\ocmsn.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00000319 _____ () C:\WINDOWS\tabletoc.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00000309 _____ () C:\WINDOWS\msgsocm.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Windows PowerShell 1.0
2014-01-29 21:17 - 2014-02-04 14:44 - 00065536 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-01-29 21:17 - 2014-01-29 21:18 - 00032874 _____ () C:\WINDOWS\KB926139-v2.log
2014-01-29 21:17 - 2014-01-29 21:17 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB926139-v2$
2014-01-29 21:17 - 2014-01-29 21:17 - 00000000 ____D () C:\WINDOWS\system32\windowspowershell
2014-01-29 20:53 - 2014-01-29 20:53 - 00000000 ____D () C:\Documents and Settings\Projekt\Dane aplikacji\Sun
2014-01-29 20:32 - 2014-01-29 20:32 - 00000000 ____D () C:\WINDOWS\system32\Adobe
2014-01-23 23:39 - 2014-02-04 12:03 - 00000210 _____ () C:\WINDOWS\setupact.log
2014-01-23 23:39 - 2014-01-23 23:39 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-01-23 20:48 - 2014-01-23 20:49 - 00043582 _____ () C:\Documents and Settings\Projekt\Moje dokumenty\cc_20140123_204854.reg
2014-01-23 17:35 - 2014-01-23 17:37 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-01-21 10:26 - 2014-01-21 10:26 - 00000000 ____D () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\PCHealth
2014-01-16 12:44 - 2014-01-16 12:44 - 00108292 _____ () C:\Documents and Settings\Projekt\Moje dokumenty\Mercedes-Benz W 123 KLASYK Sprzedam lub zamienię. Warszawa Mokotów • Tablica.pl.htm
2014-01-16 12:44 - 2014-01-16 12:44 - 00000000 ____D () C:\Documents and Settings\Projekt\Moje dokumenty\Mercedes-Benz W 123 KLASYK Sprzedam lub zamienię. Warszawa Mokotów • Tablica.pl_files
2014-01-16 12:37 - 2014-01-16 12:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-01-10 20:21 - 2014-01-10 20:21 - 00000478 _____ () C:\LOG18A3.log
2014-01-07 20:13 - 2014-01-07 20:13 - 00000478 _____ () C:\LOG11F8.log
2014-01-07 08:58 - 2014-01-07 08:58 - 00000478 _____ () C:\LOG1052.log

==================== One Month Modified Files and Folders =======

2014-02-06 20:59 - 2014-02-06 20:59 - 00000000 ____D () C:\Documents and Settings\Projekt\Pulpit\FRST-OlderVersion
2014-02-06 20:59 - 2014-02-06 16:25 - 00010581 _____ () C:\Documents and Settings\Projekt\Pulpit\FRST.txt
2014-02-06 20:59 - 2014-02-06 16:25 - 00000000 ____D () C:\FRST
2014-02-06 20:59 - 2014-02-06 16:08 - 01136640 _____ (Farbar) C:\Documents and Settings\Projekt\Pulpit\FRST.exe
2014-02-06 20:59 - 2012-08-07 04:29 - 00000000 ____D () C:\Documents and Settings\Projekt\Pulpit
2014-02-06 20:58 - 2014-02-06 08:55 - 00000336 _____ () C:\WINDOWS\Tasks\bench-S-1-5-21-1606980848-1547161642-682003330-1003.job
2014-02-06 20:54 - 2014-02-06 18:22 - 00065980 _____ () C:\Documents and Settings\Projekt\Pulpit\Extras.Txt
2014-02-06 20:54 - 2014-02-06 18:21 - 00092100 _____ () C:\Documents and Settings\Projekt\Pulpit\OTL.Txt
2014-02-06 20:14 - 2013-10-22 10:03 - 00001036 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-06 20:11 - 2013-10-01 23:55 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-06 18:58 - 2013-10-18 17:44 - 00000406 ____H () C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2014-02-06 18:50 - 2012-08-07 13:11 - 00051048 _____ () C:\WINDOWS\system32\nvapps.xml
2014-02-06 18:49 - 2012-08-07 14:39 - 01105710 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-06 18:48 - 2013-10-22 10:03 - 00001032 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-06 18:48 - 2013-09-18 16:24 - 00000260 _____ () C:\WINDOWS\Tasks\WGASetup.job
2014-02-06 18:48 - 2012-08-07 04:05 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-06 18:48 - 2012-08-07 00:27 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-02-06 18:48 - 2012-08-07 00:27 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-02-06 18:36 - 2013-03-18 14:45 - 00000380 _____ () C:\WINDOWS\Tasks\update-S-1-5-21-1606980848-1547161642-682003330-1003.job
2014-02-06 18:13 - 2013-03-18 14:45 - 00000380 _____ () C:\WINDOWS\Tasks\update-sys.job
2014-02-06 17:09 - 2014-02-06 08:55 - 00000336 _____ () C:\WINDOWS\Tasks\bench-sys.job
2014-02-06 17:02 - 2014-01-31 11:45 - 00028249 _____ () C:\WINDOWS\setupapi.log
2014-02-06 16:32 - 2014-02-06 16:26 - 00034951 _____ () C:\Documents and Settings\Projekt\Pulpit\Addition.txt
2014-02-06 16:21 - 2012-08-07 04:29 - 00000188 ___SH () C:\Documents and Settings\Projekt\ntuser.ini
2014-02-06 16:21 - 2012-08-07 04:28 - 00032608 _____ () C:\WINDOWS\SchedLgU.Txt
2014-02-06 16:10 - 2014-02-06 16:11 - 00987425 _____ () C:\Documents and Settings\Projekt\Pulpit\SecurityCheck.exe
2014-02-06 16:10 - 2014-02-06 16:10 - 00001201 _____ () C:\Documents and Settings\Projekt\Pulpit\Stij_OTL_2.txt
2014-02-06 16:09 - 2014-02-06 16:09 - 00001241 _____ () C:\Documents and Settings\Projekt\Pulpit\Stij_OTL.txt
2014-02-06 16:02 - 2014-02-06 16:02 - 00000705 _____ () C:\Documents and Settings\Projekt\Pulpit\DRAGON_OTL.txt
2014-02-06 16:00 - 2014-02-06 16:00 - 00000705 _____ () C:\Documents and Settings\Projekt\Moje dokumenty\DRAGON_OTL.txt
2014-02-06 16:00 - 2012-08-07 04:29 - 00000000 ___RD () C:\Documents and Settings\Projekt\Moje dokumenty
2014-02-06 15:54 - 2014-02-06 15:54 - 00000000 ____D () C:\_OTL
2014-02-06 15:21 - 2012-08-07 14:40 - 00101384 _____ () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2014-02-06 15:21 - 2012-08-07 00:25 - 02234136 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-06 14:35 - 2014-02-06 14:15 - 00000000 ____D () C:\AdwCleaner
2014-02-06 14:18 - 2012-08-07 04:29 - 00000000 __RHD () C:\Documents and Settings\Projekt\Dane aplikacji
2014-02-06 14:18 - 2012-08-07 04:29 - 00000000 ___RD () C:\Documents and Settings\Projekt\Menu Start\Programy
2014-02-06 14:18 - 2012-08-07 04:29 - 00000000 ___HD () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji
2014-02-06 14:17 - 2012-08-07 04:29 - 00000000 ____D () C:\Documents and Settings\Projekt
2014-02-06 14:17 - 2012-08-07 00:26 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy
2014-02-06 14:17 - 2012-08-07 00:25 - 00000000 __RHD () C:\Documents and Settings\All Users\Dane aplikacji
2014-02-06 14:15 - 2014-02-06 15:53 - 01166132 _____ () C:\Documents and Settings\Projekt\Pulpit\adwcleaner.exe
2014-02-06 14:06 - 2014-02-06 15:53 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Projekt\Pulpit\OTL.exe
2014-02-06 13:33 - 2013-09-15 20:16 - 00001919 _____ () C:\WINDOWS\epplauncher.mif
2014-02-06 12:56 - 2014-02-06 12:56 - 00000604 _____ () C:\Documents and Settings\Projekt\Moje dokumenty\cc_20140206_125632.reg
2014-02-06 11:52 - 2014-02-04 12:33 - 00000000 ____D () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\fst_pl_41
2014-02-06 10:33 - 2013-12-23 12:24 - 00000000 ____D () C:\Documents and Settings\Projekt\Moje dokumenty\muza
2014-02-06 09:30 - 2012-08-07 05:27 - 00000000 ____D () C:\D
2014-02-06 08:56 - 2014-02-06 08:56 - 00000860 __RSH () C:\Documents and Settings\All Users\ntuser.pol
2014-02-06 08:56 - 2014-02-06 08:56 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2014-02-06 08:56 - 2014-02-06 08:56 - 00000000 ____D () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\BenchUpdater
2014-02-06 08:56 - 2014-02-06 08:55 - 00000000 ____D () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\Discount Dragon
2014-02-06 08:55 - 2014-02-06 08:55 - 00000000 ____D () C:\Program Files\Bench
2014-02-06 04:48 - 2002-09-28 23:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-02-05 18:22 - 2012-08-07 04:34 - 00125952 _____ () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-05 13:11 - 2014-02-05 13:11 - 05556104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2014-02-05 13:11 - 2012-08-09 00:14 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-05 13:11 - 2012-08-09 00:14 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-02-05 12:29 - 2014-02-05 12:29 - 00014466 _____ () C:\Documents and Settings\Projekt\Moje dokumenty\cc_20140205_122919.reg
2014-02-05 05:07 - 2013-03-18 13:41 - 00000000 ____D () C:\My Web Sites
2014-02-04 15:55 - 2012-08-09 21:59 - 00002871 _____ () C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
2014-02-04 15:54 - 2013-10-18 15:47 - 00001316 _____ () C:\Documents and Settings\Projekt\Pulpit\Wyczyść rejestr za darmo!.lnk
2014-02-04 15:54 - 2012-08-07 00:26 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit
2014-02-04 15:53 - 2013-01-07 18:47 - 00001492 _____ () C:\Documents and Settings\All Users\Pulpit\Opera.lnk
2014-02-04 15:53 - 2012-11-06 18:11 - 00001819 _____ () C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
2014-02-04 15:53 - 2012-08-07 14:43 - 00000724 _____ () C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
2014-02-04 15:53 - 2012-08-07 04:29 - 00000803 _____ () C:\Documents and Settings\Projekt\Menu Start\Programy\Internet Explorer.lnk
2014-02-04 15:52 - 2014-02-04 12:36 - 00000000 ____D () C:\Documents and Settings\Projekt\Dane aplikacji\awesomehp
2014-02-04 15:52 - 2013-01-07 18:47 - 00001498 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Opera.lnk
2014-02-04 15:52 - 2012-08-07 14:43 - 00000730 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
2014-02-04 15:50 - 2014-02-04 12:36 - 00000000 ____D () C:\Program Files\SimilarProducts
2014-02-04 15:23 - 2012-08-07 14:26 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-02-04 15:19 - 2014-02-04 15:19 - 00000000 ____D () C:\Documents and Settings\Projekt\Dane aplikacji\driver
2014-02-04 14:47 - 2014-01-29 21:18 - 00001084 _____ () C:\WINDOWS\spupdsvc.log
2014-02-04 14:44 - 2014-01-29 21:17 - 00065536 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-02-04 12:36 - 2014-02-04 12:36 - 00000000 ____D () C:\Program Files\SupTab
2014-02-04 12:36 - 2014-02-04 12:36 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\WPM
2014-02-04 12:36 - 2014-02-04 12:36 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\IePluginService
2014-02-04 12:33 - 2014-02-04 12:33 - 00000000 ____D () C:\Program Files\fst_pl_41
2014-02-04 12:33 - 2014-02-04 12:33 - 00000000 ____D () C:\Documents and Settings\Projekt\Menu Start\Programy\Start Lollipop
2014-02-04 12:03 - 2014-01-23 23:39 - 00000210 _____ () C:\WINDOWS\setupact.log
2014-02-03 19:50 - 2013-10-03 16:04 - 00000000 ____D () C:\Program Files\Ss-Helper
2014-01-29 23:03 - 2012-08-07 05:29 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-01-29 21:30 - 2014-01-29 21:23 - 00000000 ____D () C:\MATS
2014-01-29 21:18 - 2014-01-29 21:18 - 00006712 _____ () C:\WINDOWS\iis6.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00006183 _____ () C:\WINDOWS\FaxSetup.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00002956 _____ () C:\WINDOWS\ocgen.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00002829 _____ () C:\WINDOWS\tsoc.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00002059 _____ () C:\WINDOWS\comsetup.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00001936 _____ () C:\WINDOWS\msmqinst.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00001247 _____ () C:\WINDOWS\ntdtcsetup.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00001083 _____ () C:\WINDOWS\netfxocm.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00000425 _____ () C:\WINDOWS\MedCtrOC.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00000386 _____ () C:\WINDOWS\ocmsn.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00000319 _____ () C:\WINDOWS\tabletoc.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00000309 _____ () C:\WINDOWS\msgsocm.log
2014-01-29 21:18 - 2014-01-29 21:18 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Windows PowerShell 1.0
2014-01-29 21:18 - 2014-01-29 21:17 - 00032874 _____ () C:\WINDOWS\KB926139-v2.log
2014-01-29 21:17 - 2014-01-29 21:17 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB926139-v2$
2014-01-29 21:17 - 2014-01-29 21:17 - 00000000 ____D () C:\WINDOWS\system32\windowspowershell
2014-01-29 20:53 - 2014-01-29 20:53 - 00000000 ____D () C:\Documents and Settings\Projekt\Dane aplikacji\Sun
2014-01-29 20:32 - 2014-01-29 20:32 - 00000000 ____D () C:\WINDOWS\system32\Adobe
2014-01-23 23:45 - 2012-08-07 04:37 - 00000000 ____D () C:\torrent
2014-01-23 23:39 - 2014-01-23 23:39 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-01-23 23:38 - 2012-08-07 14:44 - 00000000 ____D () C:\Documents and Settings\Projekt\Moje dokumenty\Pobieranie
2014-01-23 23:30 - 2012-08-09 20:28 - 00000000 ____D () C:\Documents and Settings\Projekt\Dane aplikacji\uTorrent
2014-01-23 23:07 - 2012-08-07 00:26 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
2014-01-23 20:49 - 2014-01-23 20:48 - 00043582 _____ () C:\Documents and Settings\Projekt\Moje dokumenty\cc_20140123_204854.reg
2014-01-23 18:59 - 2012-12-26 18:59 - 00000000 ____D () C:\WINDOWS\Minidump
2014-01-23 17:37 - 2014-01-23 17:35 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-01-21 15:02 - 2012-08-07 14:57 - 00000000 ____D () C:\Documents and Settings\Projekt\Dane aplikacji\Adobe
2014-01-21 10:26 - 2014-01-21 10:26 - 00000000 ____D () C:\Documents and Settings\Projekt\Ustawienia lokalne\Dane aplikacji\PCHealth
2014-01-19 08:32 - 2013-09-15 20:19 - 00231584 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-01-16 12:46 - 2013-10-18 15:55 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-01-16 12:44 - 2014-01-16 12:44 - 00108292 _____ () C:\Documents and Settings\Projekt\Moje dokumenty\Mercedes-Benz W 123 KLASYK Sprzedam lub zamienię. Warszawa Mokotów • Tablica.pl.htm
2014-01-16 12:44 - 2014-01-16 12:44 - 00000000 ____D () C:\Documents and Settings\Projekt\Moje dokumenty\Mercedes-Benz W 123 KLASYK Sprzedam lub zamienię. Warszawa Mokotów • Tablica.pl_files
2014-01-16 12:39 - 2013-10-18 15:55 - 83425928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-16 12:37 - 2014-01-16 12:37 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2914368$
2014-01-10 20:34 - 2012-11-11 18:19 - 00000000 ____D () C:\Documents and Settings\Projekt\Dane aplikacji\U3
2014-01-10 20:21 - 2014-01-10 20:21 - 00000478 _____ () C:\LOG18A3.log
2014-01-07 20:13 - 2014-01-07 20:13 - 00000478 _____ () C:\LOG11F8.log
2014-01-07 08:58 - 2014-01-07 08:58 - 00000478 _____ () C:\LOG1052.log

Files to move or delete:
====================
C:\Documents and Settings\Projekt\FLVPlayerSetup_2.0.25(dobreprogramy.pl).exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2002-09-28 23:00] - [2008-04-14 21:51] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\WINDOWS\system32\winlogon.exe
[2002-09-28 23:00] - [2008-04-14 21:51] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\WINDOWS\system32\svchost.exe
[2002-09-28 23:00] - [2008-04-14 21:51] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\WINDOWS\system32\services.exe
[2002-09-28 23:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\WINDOWS\system32\User32.dll
[2002-09-28 23:00] - [2008-04-14 21:50] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\WINDOWS\system32\userinit.exe
[2002-09-28 23:00] - [2008-04-14 21:51] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\WINDOWS\system32\rpcss.dll
[2002-09-28 23:00] - [2009-02-09 11:53] - 0401408 ____A (Microsoft Corporation) a37311d9d628c1042a2836731787f0f3 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2002-09-28 23:00] - [2008-04-14 20:31] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================