Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-02-2014
Ran by Ja (administrator) on JA-E38F178DD79F on 10-02-2014 20:45:48
Running from C:\Documents and Settings\Ja\Moje dokumenty\Downloads
Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(B.H.A Corporation) C:\WINDOWS\system32\bgsvcgen.exe
() C:\Program Files\Dokan\DokanLibrary\mounter.exe
(ClanServers Hosting LLC) D:\GameTracker\GSInGameService.exe
(LogMeIn Inc.) D:\hamachi-2.exe
(VIA Technologies, Inc.) C:\WINDOWS\system32\KaraokeSer.exe
() C:\WINDOWS\system32\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
() C:\WINDOWS\tsnp2std.exe
(Sonix) C:\WINDOWS\vsnp2std.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(OLYMPUS IMAGING CORP.) C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe
(Ares Development Group) C:\Documents and Settings\Ja\Moje dokumenty\Ares\Ares.exe
(MSI CO.,LTD.) C:\Program Files\MSI\Super-Charger\Super-Charger.exe
(Valve Corporation) D:\Nowy folder\Nowy folder\Steam.exe
(Hewlett-Packard Development Company, L.P.) D:\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Program Files\Windows Desktop Search\WindowsSearch.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(LogMeIn Inc.) D:\hamachi-2-ui.exe
(Hewlett-Packard Development Company, L.P.) D:\Digital Imaging\bin\hpqSTE08.exe
(QuestPRO Software) E:\INTERNET\KDLink32.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Super-Charger] - C:\Program Files\MSI\Super-Charger\StartSuperCharger.exe [303104 2011-07-06] (MSI)
HKLM\...\Run: [HDAudDeck] - C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [41086976 2011-04-01] (VIA Technologies, Inc.)
HKLM\...\Run: [tsnp2std] - C:\WINDOWS\tsnp2std.exe [262144 2006-05-22] ()
HKLM\...\Run: [snp2std] - C:\WINDOWS\vsnp2std.exe [675840 2006-05-15] (Sonix)
HKLM\...\Run: [OM_Monitor] - C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe [40960 2006-05-16] (OLYMPUS IMAGING CORP.)
HKLM\...\Run: [amd_dc_opt] - C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3764024 2014-01-04] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\.DEFAULT\...\Run: [DWQueuedReporting] - C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [437160 2007-02-26] (Microsoft Corporation)
HKU\S-1-5-21-2052111302-823518204-839522115-1004\...\Run: [OM_Monitor] - C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe [57344 2006-05-16] (OLYMPUS IMAGING CORP.)
HKU\S-1-5-21-2052111302-823518204-839522115-1004\...\Run: [ares] - C:\Documents and Settings\Ja\Moje dokumenty\Ares\Ares.exe [3209216 2012-02-02] (Ares Development Group)
HKU\S-1-5-21-2052111302-823518204-839522115-1004\...\Run: [Odkurzacz] - E:\Odkurzacz\odkurzacz.exe [904704 2013-06-13] (FranmoSoftware)
HKU\S-1-5-21-2052111302-823518204-839522115-1004\...\Run: [IVONA ControlCenter] - C:\Program Files\IVONA\IVONA ControlCenter\IVONA ControlCenter.exe [2251128 2013-03-27] (IVONA Software Sp. z o.o.)
HKU\S-1-5-21-2052111302-823518204-839522115-1004\...\Run: [Expressivo] - "E:\Expressivo\expressivo.exe" -t -nosplash
HKU\S-1-5-21-2052111302-823518204-839522115-1004\...\Run: [Steam] - D:\Nowy folder\Nowy folder\Steam.exe [1815976 2014-01-27] (Valve Corporation)
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> D:\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Development Company, L.P.)
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Windows Search.lnk
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1329217602468
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Tcpip\..\Interfaces\{95C8F8CE-2AB0-4DAB-98E1-C4F77C1969EE}: [NameServer]109.197.32.5 213.241.79.38

Chrome: 
=======
CHR HomePage: hxxp://www.google.pl/
CHR RestoreOnStartup: "https://www.google.pl/"
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\PepperFlash\11.9.900.117\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\30.0.1599.69\pdf.dll ()
CHR Plugin: (Battlefield Play4Free Updater) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh\1.0.96.0_0\npBP4FUpdater.dll (EA Digital Illusions CE AB)
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat 6.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Extension: (Angry Birds) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2013-03-18]
CHR Extension: (YouTube) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-02-20]
CHR Extension: (Szukaj w Google) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-02-20]
CHR Extension: (Koszykówka gry) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\feehlipgbhnnkpoekmpbdgfdagkbaifj [2013-03-23]
CHR Extension: (Surgery Games) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\fghbjmjcikmndelglidhaelnboflhipc [2013-03-20]
CHR Extension: (AdBlock) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2013-09-25]
CHR Extension: (Snajper Team) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\hclgbbaloijjnkpigapgmocdpoblnlec [2013-09-28]
CHR Extension: (Magical Kicks) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\idpoobaeonolcoaogfompfokepkfhgon [2013-09-28]
CHR Extension: (Beer Pong 2) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ikefecbhochkfigimjmnagilaojpgnfl [2013-03-19]
CHR Extension: (theHunter) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jangaedeekciafhlanphhnalogmhefmo [2013-03-18]
CHR Extension: (Veggie Ninja) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jfdlimgkgapahbilciacpehdcoajconn [2013-05-16]
CHR Extension: (280 Slides) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jfgfmoonhalhgbpeoffnehkedjhgoeno [2013-03-16]
CHR Extension: (Blackball Pool) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jjkhefodfbgjpcmahghmfggbcpjabnag [2013-03-23]
CHR Extension: (Przerwa The Wall) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\klhfgnobmdkblmbdahcnpajbjnfmknpn [2013-03-20]
CHR Extension: (Little Alchemy) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2013-09-28]
CHR Extension: (Counter Strike Online) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\lmebpghpgkhlphpidpcgnllbjiaoppce [2013-03-16]
CHR Extension: (Spelunky HTML5) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\mhagnkphcmpkmabhocgimoncfaihkpof [2013-09-27]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-05]
CHR Extension: (Handless Millionaire (Deluxe)) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\oenmbkppanhgehniolggeokgbmcdmndj [2013-03-19]
CHR Extension: (Battlefield Play4Free) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2012-10-26]
CHR Extension: (Gmail) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-02-20]
CHR Extension: (Fishing Champion) - C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\plcdplgchgghnahkmoeibomjpbikclka [2013-03-19]

========================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-04] (AVAST Software)
R2 bgsvcgen; C:\WINDOWS\system32\bgsvcgen.exe [86016 2005-04-30] (B.H.A Corporation)
S3 BRSptSvc; C:\Documents and Settings\All Users\Dane aplikacji\BitRaider\BRSptSvc.exe [915736 2013-09-01] (BitRaider, LLC)
R2 DokanMounter; C:\Program Files\Dokan\DokanLibrary\mounter.exe [25088 2011-01-10] ()
R2 GS In-Game Service; D:\GameTracker\GSInGameService.exe [1677080 2013-12-19] (ClanServers Hosting LLC)
R2 Hamachi2Svc; D:\hamachi-2.exe [1373576 2012-02-07] (LogMeIn Inc.)
S3 JavaQuickStarterService; E:\bin\jqs.exe [182696 2013-12-08] (Oracle Corporation)
R2 KaraokeService; C:\WINDOWS\system32\KaraokeSer.exe [88688 2011-03-29] (VIA Technologies, Inc.)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [76888 2012-06-15] ()

==================== Drivers (Whitelisted) ====================

R1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-01-04] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-01-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2013-10-21] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [775952 2014-01-04] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [410528 2014-01-04] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-01-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180248 2014-01-04] ()
S3 BRDriver; c:\documents and settings\all users\dane aplikacji\bitraider\BRDriver.sys [64296 2013-06-05] (BitRaider)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 cdrbsdrv; C:\WINDOWS\system32\Drivers\cdrbsdrv.sys [32256 2005-05-11] (B.H.A Corporation)
R2 Dokan; C:\WINDOWS\system32\drivers\dokan.sys [91904 2011-01-10] (Windows (R) Win 7 DDK provider)
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
R3 L1c; C:\WINDOWS\System32\DRIVERS\l1c51x86.sys [75504 2011-08-11] (Atheros Communications, Inc.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 slabbus; C:\WINDOWS\System32\DRIVERS\slabbus.sys [52384 2004-03-11] (MCCI)
S3 SNP2STD; C:\WINDOWS\System32\DRIVERS\snp2sxp.sys [10305280 2006-06-07] ()
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [324096 2014-01-02] (Duplex Secure Ltd.)
R3 VIAHdAudAddService; C:\WINDOWS\System32\drivers\viahduaa.sys [2799728 2011-03-29] (VIA Technologies, Inc.)
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-10 20:40 - 2014-02-10 20:40 - 00005708 _____ () C:\Documents and Settings\Ja\Pulpit\sc-cleaner.txt
2014-02-10 20:39 - 2014-02-10 20:39 - 00005708 _____ () C:\sc-cleaner.txt
2014-02-10 20:22 - 2014-02-10 20:22 - 00000000 ____D () C:\Documents and Settings\Ja\Dane aplikacji\newnext.me
2014-02-10 19:11 - 2014-02-10 20:45 - 00000000 ____D () C:\FRST
2014-02-10 17:34 - 2014-02-10 18:09 - 00000000 ____D () C:\AdwCleaner
2014-02-10 17:20 - 2014-02-10 17:20 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-02-10 17:05 - 2014-02-10 20:34 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\WPM
2014-02-10 17:05 - 2014-02-10 20:32 - 00000000 ____D () C:\Program Files\SupTab
2014-02-10 17:05 - 2014-02-10 17:05 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\IePluginService
2014-02-07 13:25 - 2014-02-07 14:49 - 11197399 _____ () C:\Documents and Settings\Ja\Moje dokumenty\last_savegame_backup.sav
2014-02-07 09:42 - 2014-02-07 14:49 - 11197399 _____ () C:\Documents and Settings\Ja\Moje dokumenty\sg00.sav
2014-02-06 19:30 - 2014-02-06 19:30 - 00000000 ____D () C:\Documents and Settings\Ja\Moje dokumenty\Mount&Blade Warband Savegames
2014-02-06 19:05 - 2014-02-06 19:05 - 00000000 ____D () C:\Documents and Settings\Ja\Menu Start\Programy\Mount&Blade Warband
2014-02-06 18:51 - 2014-02-06 19:31 - 00000000 ____D () C:\Documents and Settings\Ja\Dane aplikacji\Mount&Blade Warband
2014-02-06 18:48 - 2014-02-07 11:25 - 00000000 ____D () C:\Documents and Settings\Ja\Moje dokumenty\Mount&Blade Warband
2014-02-04 10:19 - 2014-02-04 10:19 - 00000516 _____ () C:\Documents and Settings\All Users\Pulpit\WarThunder.lnk
2014-02-04 10:19 - 2014-02-04 10:19 - 00000000 ____D () C:\Documents and Settings\Ja\Menu Start\Programy\WarThunder

==================== One Month Modified Files and Folders =======

2014-02-10 20:45 - 2014-02-10 19:11 - 00000000 ____D () C:\FRST
2014-02-10 20:45 - 2012-02-14 11:39 - 01695370 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-10 20:43 - 2012-09-05 18:21 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-02-10 20:43 - 2012-02-21 14:12 - 00000000 ____D () C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
2014-02-10 20:42 - 2014-01-05 18:41 - 00000000 ____D () C:\Documents and Settings\LocalService\Dane aplikacji\GameTracker
2014-02-10 20:42 - 2012-02-21 14:12 - 00000000 ____D () C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
2014-02-10 20:42 - 2012-02-14 12:31 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-02-10 20:42 - 2012-02-14 12:31 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-02-10 20:42 - 2012-02-14 11:43 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-10 20:41 - 2012-02-14 13:08 - 00065536 _____ () C:\WINDOWS\system32\config\WindowsPowerShell.evt
2014-02-10 20:41 - 2012-02-14 11:45 - 00000292 ___SH () C:\Documents and Settings\Ja\ntuser.ini
2014-02-10 20:41 - 2012-02-14 11:43 - 00032548 _____ () C:\WINDOWS\SchedLgU.Txt
2014-02-10 20:40 - 2014-02-10 20:40 - 00005708 _____ () C:\Documents and Settings\Ja\Pulpit\sc-cleaner.txt
2014-02-10 20:40 - 2012-02-14 11:45 - 00000000 ____D () C:\Documents and Settings\Ja\Pulpit
2014-02-10 20:39 - 2014-02-10 20:39 - 00005708 _____ () C:\sc-cleaner.txt
2014-02-10 20:39 - 2012-02-20 18:33 - 00001813 _____ () C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
2014-02-10 20:39 - 2012-02-14 11:45 - 00000803 _____ () C:\Documents and Settings\Ja\Menu Start\Programy\Internet Explorer.lnk
2014-02-10 20:34 - 2014-02-10 17:05 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\WPM
2014-02-10 20:33 - 2013-12-20 20:02 - 00000000 ____D () C:\Program Files\WebexpEnhancedV1
2014-02-10 20:32 - 2014-02-10 17:05 - 00000000 ____D () C:\Program Files\SupTab
2014-02-10 20:31 - 2012-02-14 11:45 - 00000000 ___RD () C:\Documents and Settings\Ja\Menu Start\Programy
2014-02-10 20:24 - 2012-02-14 11:45 - 00000000 ___HD () C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji
2014-02-10 20:22 - 2014-02-10 20:22 - 00000000 ____D () C:\Documents and Settings\Ja\Dane aplikacji\newnext.me
2014-02-10 20:22 - 2012-02-14 12:27 - 00000000 __RHD () C:\Documents and Settings\All Users\Dane aplikacji
2014-02-10 20:22 - 2012-02-14 11:45 - 00000000 __RHD () C:\Documents and Settings\Ja\Dane aplikacji
2014-02-10 19:00 - 2012-10-04 17:04 - 00000268 _____ () C:\WINDOWS\Tasks\RMSchedule.job
2014-02-10 18:09 - 2014-02-10 17:34 - 00000000 ____D () C:\AdwCleaner
2014-02-10 18:05 - 2012-02-14 12:28 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy
2014-02-10 17:53 - 2014-01-06 18:59 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0
2014-02-10 17:53 - 2014-01-06 18:59 - 00000000 ____D () C:\Documents and Settings\Gość
2014-02-10 17:53 - 2014-01-06 18:59 - 00000000 ____D () C:\Documents and Settings\ASPNET
2014-02-10 17:53 - 2014-01-06 18:59 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-02-10 17:43 - 2012-02-14 12:28 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit
2014-02-10 17:32 - 2012-04-11 21:02 - 00587179 _____ () C:\WINDOWS\setupapi.log
2014-02-10 17:25 - 2012-02-14 11:45 - 00001599 _____ () C:\Documents and Settings\Ja\Menu Start\Programy\Pomoc zdalna.lnk
2014-02-10 17:24 - 2012-02-14 11:40 - 00001599 ____C () C:\Documents and Settings\Default User\Menu Start\Programy\Pomoc zdalna.lnk
2014-02-10 17:24 - 2012-02-14 11:40 - 00001563 _____ () C:\Documents and Settings\All Users\Menu Start\Określ dostęp do programów i ich ustawienia domyślne.lnk
2014-02-10 17:24 - 2012-02-14 11:40 - 00001507 _____ () C:\Documents and Settings\All Users\Menu Start\Windows Update.lnk
2014-02-10 17:20 - 2014-02-10 17:20 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-02-10 17:05 - 2014-02-10 17:05 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\IePluginService
2014-02-10 14:13 - 2006-03-02 13:00 - 00000777 _____ () C:\WINDOWS\win.ini
2014-02-09 20:27 - 2012-03-18 11:07 - 00000000 ____D () C:\Documents and Settings\Ja\Menu Start\Programy\Roblox
2014-02-09 20:27 - 2012-03-18 11:06 - 00000000 ____D () C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\RobloxVersions
2014-02-09 13:18 - 2013-03-27 15:44 - 00000000 ____D () C:\Documents and Settings\Ja\Moje dokumenty\FIFA 12
2014-02-09 11:09 - 2012-02-14 11:49 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-02-08 13:29 - 2012-09-08 17:58 - 00000000 ____D () C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\PMB Files
2014-02-08 13:29 - 2012-09-08 17:58 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\PMB Files
2014-02-07 14:49 - 2014-02-07 13:25 - 11197399 _____ () C:\Documents and Settings\Ja\Moje dokumenty\last_savegame_backup.sav
2014-02-07 14:49 - 2014-02-07 09:42 - 11197399 _____ () C:\Documents and Settings\Ja\Moje dokumenty\sg00.sav
2014-02-07 14:49 - 2012-02-14 11:45 - 00000000 ___RD () C:\Documents and Settings\Ja\Moje dokumenty
2014-02-07 11:25 - 2014-02-06 18:48 - 00000000 ____D () C:\Documents and Settings\Ja\Moje dokumenty\Mount&Blade Warband
2014-02-06 20:58 - 2014-01-05 18:42 - 00000000 ____D () C:\Documents and Settings\Ja\Dane aplikacji\GameTracker
2014-02-06 20:13 - 2012-04-12 17:03 - 00000000 ____D () C:\Documents and Settings\Ja\Pulpit\Nowy folder
2014-02-06 19:31 - 2014-02-06 18:51 - 00000000 ____D () C:\Documents and Settings\Ja\Dane aplikacji\Mount&Blade Warband
2014-02-06 19:30 - 2014-02-06 19:30 - 00000000 ____D () C:\Documents and Settings\Ja\Moje dokumenty\Mount&Blade Warband Savegames
2014-02-06 19:23 - 2012-07-26 13:36 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-02-06 19:15 - 2013-11-22 17:04 - 00000000 ____D () C:\Documents and Settings\Ja\Ustawienia lokalne\Dane aplikacji\DM
2014-02-06 19:05 - 2014-02-06 19:05 - 00000000 ____D () C:\Documents and Settings\Ja\Menu Start\Programy\Mount&Blade Warband
2014-02-06 19:04 - 2012-02-14 11:39 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-02-06 17:14 - 2006-03-02 13:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-02-04 10:19 - 2014-02-04 10:19 - 00000516 _____ () C:\Documents and Settings\All Users\Pulpit\WarThunder.lnk
2014-02-04 10:19 - 2014-02-04 10:19 - 00000000 ____D () C:\Documents and Settings\Ja\Menu Start\Programy\WarThunder
2014-02-04 10:19 - 2013-06-03 18:53 - 00000000 ____D () C:\Documents and Settings\Ja\Moje dokumenty\My Games
2014-02-04 10:03 - 2012-02-14 12:27 - 00202240 _____ () C:\WINDOWS\setupact.log
2014-02-04 09:39 - 2012-09-15 17:33 - 00632656 ____C (Microsoft Corporation) C:\WINDOWS\system32\msvcr80.dll
2014-02-04 09:39 - 2012-09-15 17:33 - 00554832 ____C (Microsoft Corporation) C:\WINDOWS\system32\msvcp80.dll
2014-02-04 09:39 - 2012-09-15 17:33 - 00479232 ____C (Microsoft Corporation) C:\WINDOWS\system32\msvcm80.dll
2014-02-04 09:39 - 2012-09-15 17:33 - 00001870 ____C () C:\WINDOWS\system32\Microsoft.VC80.CRT.manifest
2014-02-04 09:39 - 2011-06-11 01:58 - 00773968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100.dll
2014-02-04 09:39 - 2011-06-11 01:58 - 00421200 ____C (Microsoft Corporation) C:\WINDOWS\system32\msvcp100.dll
2014-01-15 18:03 - 2013-08-31 16:22 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-01-15 18:00 - 2012-02-14 12:41 - 83425928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 18:00 - 2012-02-14 12:28 - 01443103 _____ () C:\WINDOWS\FaxSetup.log
2014-01-15 18:00 - 2012-02-14 12:28 - 00706255 _____ () C:\WINDOWS\ocgen.log
2014-01-15 18:00 - 2012-02-14 12:28 - 00557152 _____ () C:\WINDOWS\tsoc.log
2014-01-15 18:00 - 2012-02-14 12:28 - 00493920 _____ () C:\WINDOWS\comsetup.log
2014-01-15 18:00 - 2012-02-14 12:28 - 00297870 _____ () C:\WINDOWS\ntdtcsetup.log
2014-01-15 18:00 - 2012-02-14 12:28 - 00228332 _____ () C:\WINDOWS\iis6.log
2014-01-15 18:00 - 2012-02-14 12:28 - 00090229 _____ () C:\WINDOWS\ocmsn.log
2014-01-15 18:00 - 2012-02-14 12:28 - 00072528 _____ () C:\WINDOWS\msgsocm.log
2014-01-15 18:00 - 2012-02-14 12:28 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-01-14 20:14 - 2012-02-21 13:20 - 00000000 ____D () C:\Documents and Settings\Ja\Dane aplikacji\Skype
2014-01-14 16:25 - 2012-02-21 13:20 - 00002267 _____ () C:\Documents and Settings\All Users\Pulpit\Skype.lnk

Files to move or delete:
====================
C:\Documents and Settings\Ja\jagex_cl_runescape_LIVE.dat
C:\Documents and Settings\Ja\random.dat


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2006-03-02 13:00] - [2008-04-14 18:21] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\WINDOWS\system32\winlogon.exe
[2006-03-02 13:00] - [2008-04-14 18:21] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\WINDOWS\system32\svchost.exe
[2006-03-02 13:00] - [2008-04-14 18:21] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\WINDOWS\system32\services.exe
[2006-03-02 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\WINDOWS\system32\User32.dll
[2006-03-02 13:00] - [2008-04-14 18:20] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\WINDOWS\system32\userinit.exe
[2006-03-02 13:00] - [2008-04-14 18:21] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\WINDOWS\system32\rpcss.dll
[2006-03-02 13:00] - [2009-02-09 11:53] - 0401408 ____A (Microsoft Corporation) a37311d9d628c1042a2836731787f0f3 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2006-03-02 13:00] - [2008-04-14 17:01] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================