Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-02-2014 01
Ran by UserXP (administrator) on PRIVE-D8DBD5EA4 on 16-02-2014 16:22:05
Running from F:\XP\Pobieranie
Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(mst software GmbH, Germany) C:\Program Files\Ashampoo\Ashampoo HDD Control 2\DfsdkS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Windows (R) Codename Longhorn DDK provider) C:\Program Files\UPHClean\uphclean.exe
(TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-26] (AVAST Software)
HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [15677728 2013-06-21] (NVIDIA Corporation)
HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [20065936 2012-06-06] (Realtek Semiconductor Corp.)
HKU\.DEFAULT\...\Policies\Explorer: [NoDriveAutoRun] 0xE0FFFF03
HKU\S-1-5-19\...\Policies\Explorer: [NoDriveAutoRun] 0xE0FFFF03
HKU\S-1-5-20\...\Policies\Explorer: [NoDriveAutoRun] 0xE0FFFF03
HKU\S-1-5-21-484763869-602162358-682003330-1003\...\Policies\Explorer: [NoDriveTypeAutoRun] 0xFF000000
HKU\S-1-5-21-484763869-602162358-682003330-1003\...\Policies\Explorer: [NoDrives] 16
IFEO\javacpl.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\javaw.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\javaws.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe"

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=141
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.google.pl/
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{738F111C-8CF8-45E2-BDBC-39B3B309A86D}: [NameServer]194.204.152.34,194.204.159.1
Tcpip\..\Interfaces\{E794B25F-12FF-4D1C-909C-7D288E05B9BB}: [NameServer]194.204.152.34,194.204.159.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\UserXP\Dane aplikacji\Mozilla\Firefox\F:\XP\FF\Henry
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: Adobe Acrobat - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np_hoem_x.dll ()
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-04-07]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-12-21]

========================== Services (Whitelisted) =================

S3 AHDDC2; C:\Program Files\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe [1518504 2012-07-30] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-26] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [113704 2014-01-26] (AVAST Software)
R2 DfSdkS; C:\Program Files\Ashampoo\Ashampoo HDD Control 2\DfsdkS.exe [406016 2009-08-24] (mst software GmbH, Germany)
S3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [462048 2012-04-20] (Intel(R) Corporation)
S4 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2013-12-18] (Oracle Corporation)
R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1729336 2013-12-10] (TuneUp Software)
R2 UPHClean; C:\Program Files\UPHClean\uphclean.exe [399872 2010-09-13] (Windows (R) Codename Longhorn DDK provider)

==================== Drivers (Whitelisted) ====================

S3 61883; C:\WINDOWS\System32\DRIVERS\61883.sys [48128 2008-04-13] (Microsoft Corporation)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [26136 2013-12-21] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-02-05] (AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2013-12-21] (ALWIL Software)
R0 aswNdis2; C:\WINDOWS\system32\Drivers\aswNdis2.sys [252592 2014-01-26] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-01-26] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2013-12-21] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [775952 2014-01-26] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [410784 2014-01-26] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-01-26] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180248 2013-12-21] ()
S3 BrScnUsb; C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R3 EtronHub3; C:\WINDOWS\System32\Drivers\EtronHub3.sys [51328 2012-08-07] (Etron Technology Inc)
R3 EtronXHCI; C:\WINDOWS\System32\Drivers\EtronXHCI.sys [71552 2012-08-07] (Etron Technology Inc)
R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [22688 2014-01-25] (REALiX(tm))
S3 i81x; C:\WINDOWS\System32\DRIVERS\i81xnt5.sys [161020 2008-04-13] (Intel(R) Corporation)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82320 2010-01-29] (EZB Systems, Inc.)
R3 MEI; C:\WINDOWS\System32\DRIVERS\HECI.sys [55104 2012-07-02] (Intel Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-13] (Microsoft Corporation)
S0 mvs91xx; C:\WINDOWS\System32\DRIVERS\mvs91xx.sys [274736 2011-03-07] (Marvell Semiconductor, Inc.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [128672 2013-02-25] (NVIDIA Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-11-16] (TuneUp Software)
S3 V0260VID; C:\WINDOWS\System32\DRIVERS\V0260Vid.sys [178913 2006-11-04] (Creative Technology Ltd.)
R3 VMHybrid; C:\WINDOWS\System32\DRIVERS\VMHybrid.sys [1060352 2008-11-11] (Compro Technology, Inc.)
S3 gdrv; \??\C:\WINDOWS\gdrv.sys [X]
S3 hocksquw; No ImagePath
S4 IntelIde; No ImagePath
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-16 16:21 - 2014-02-16 16:22 - 00000000 ____D () C:\FRST
2014-02-15 21:56 - 2013-12-10 20:44 - 00030520 _____ (TuneUp Software) C:\WINDOWS\system32\uxtuneup.dll
2014-02-15 21:55 - 2014-02-15 21:55 - 00001767 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013.lnk
2014-02-15 21:55 - 2014-02-15 21:55 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013
2014-02-15 21:55 - 2013-12-10 20:44 - 00032568 _____ (TuneUp Software) C:\WINDOWS\system32\TURegOpt.exe
2014-02-14 15:28 - 2014-02-14 15:28 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-12 10:47 - 2014-02-12 10:47 - 00000000 ____D () C:\Program Files\UPHClean
2014-02-12 09:26 - 2014-02-12 09:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2014-02-12 09:20 - 2014-02-12 09:26 - 00019917 _____ () C:\WINDOWS\iis6.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00018548 _____ () C:\WINDOWS\FaxSetup.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00008868 _____ () C:\WINDOWS\ocgen.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00008487 _____ () C:\WINDOWS\tsoc.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00006183 _____ () C:\WINDOWS\comsetup.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00005754 _____ () C:\WINDOWS\msmqinst.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00003741 _____ () C:\WINDOWS\ntdtcsetup.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00003620 _____ () C:\WINDOWS\updspapi.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00003249 _____ () C:\WINDOWS\netfxocm.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00001275 _____ () C:\WINDOWS\MedCtrOC.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00001158 _____ () C:\WINDOWS\ocmsn.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00000957 _____ () C:\WINDOWS\tabletoc.log
2014-02-12 09:20 - 2014-02-12 09:26 - 00000909 _____ () C:\WINDOWS\msgsocm.log
2014-02-12 09:20 - 2014-02-12 09:20 - 00011167 _____ () C:\WINDOWS\KB2909921-IE8.log
2014-02-12 09:20 - 2014-02-12 09:20 - 00004128 _____ () C:\WINDOWS\KB2909210-IE8.log
2014-02-12 09:20 - 2014-02-12 09:20 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-02-12 09:20 - 2014-02-12 09:20 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-02-12 09:17 - 2014-02-12 09:26 - 00013321 _____ () C:\WINDOWS\KB2916036.log
2014-02-11 11:42 - 2014-02-15 21:56 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2013
2014-02-11 11:42 - 2014-02-15 21:55 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
2014-02-11 11:42 - 2014-02-11 11:42 - 00000000 ____D () C:\Documents and Settings\UserXP\Dane aplikacji\TuneUp Software
2014-02-06 09:31 - 2014-02-06 09:31 - 00000000 ____D () C:\WINDOWS\system32\WebWatch2
2014-02-03 17:29 - 2014-02-16 09:29 - 00058592 _____ () C:\WINDOWS\setupapi.log
2014-02-01 07:03 - 2014-02-01 07:03 - 00000000 ____D () C:\WINDOWS\Plextool
2014-02-01 07:03 - 2014-02-01 07:03 - 00000000 ____D () C:\Program Files\Plextool
2014-02-01 07:03 - 2014-02-01 07:03 - 00000000 ____D () C:\Documents and Settings\UserXP\Menu Start\Programy\Plextool
2014-01-29 22:40 - 2014-01-29 22:40 - 00000022 _____ () C:\WINDOWS\GPU-Z.INI
2014-01-29 22:37 - 2014-01-29 22:37 - 00000000 ____D () C:\Program Files\ASUS
2014-01-29 22:37 - 2014-01-29 22:37 - 00000000 ____D () C:\Documents and Settings\UserXP\Menu Start\Programy\ASUS
2014-01-29 22:37 - 2014-01-29 22:37 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\ASUS
2014-01-25 22:57 - 2014-01-25 22:57 - 00022688 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32.SYS
2014-01-25 22:56 - 2014-01-25 22:56 - 00000000 ____D () C:\Program Files\HWiNFO32
2014-01-25 22:56 - 2014-01-25 22:56 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\HWiNFO32

==================== One Month Modified Files and Folders =======

2014-02-16 16:22 - 2014-02-16 16:21 - 00000000 ____D () C:\FRST
2014-02-16 16:15 - 2013-10-31 19:56 - 00006130 _____ () C:\WINDOWS\system32\nvAppTimestamps
2014-02-16 15:43 - 2013-12-11 18:24 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-02-16 15:41 - 2013-04-08 01:22 - 01259762 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-16 15:41 - 2013-04-02 20:50 - 00557102 _____ () C:\WINDOWS\system32\perfh015.dat
2014-02-16 15:41 - 2013-04-02 20:50 - 00105792 _____ () C:\WINDOWS\system32\perfc015.dat
2014-02-16 15:38 - 2013-12-27 21:29 - 01412784 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-16 15:37 - 2013-07-30 08:45 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-02-16 15:37 - 2013-04-08 01:23 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-02-16 15:37 - 2013-04-07 23:33 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-16 15:37 - 2013-04-02 20:54 - 00012598 _____ () C:\WINDOWS\system32\wpa.dbl
2014-02-16 10:37 - 2013-04-08 00:03 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-02-16 09:29 - 2014-02-03 17:29 - 00058592 _____ () C:\WINDOWS\setupapi.log
2014-02-15 22:50 - 2013-04-07 23:33 - 00032542 _____ () C:\WINDOWS\SchedLgU.Txt
2014-02-15 22:50 - 2013-04-07 20:43 - 00000188 ___SH () C:\Documents and Settings\UserXP\ntuser.ini
2014-02-15 22:50 - 2013-04-07 19:28 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt
2014-02-15 21:58 - 2013-07-29 07:53 - 00000000 __SHD () C:\Documents and Settings\All Users\Dane aplikacji\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2014-02-15 21:58 - 2013-04-08 01:21 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit
2014-02-15 21:58 - 2013-04-07 20:43 - 00000000 ___RD () C:\Documents and Settings\UserXP\Menu Start
2014-02-15 21:56 - 2014-02-11 11:42 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2013
2014-02-15 21:55 - 2014-02-15 21:55 - 00001767 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013.lnk
2014-02-15 21:55 - 2014-02-15 21:55 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013
2014-02-15 21:55 - 2014-02-11 11:42 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software
2014-02-15 21:55 - 2013-04-08 01:21 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy
2014-02-14 16:59 - 2013-04-07 20:43 - 00000000 ____D () C:\Documents and Settings\UserXP
2014-02-14 16:05 - 2013-04-08 00:22 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-14 15:28 - 2014-02-14 15:28 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-14 15:06 - 2013-04-11 07:07 - 00000000 ____D () C:\Documents and Settings\NetworkService\Dane aplikacji\TuneUp Software
2014-02-12 15:36 - 2013-04-09 07:32 - 00000411 _____ () C:\WINDOWS\BRWMARK.INI
2014-02-12 12:48 - 2013-04-08 09:43 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-02-12 10:47 - 2014-02-12 10:47 - 00000000 ____D () C:\Program Files\UPHClean
2014-02-12 09:27 - 2013-04-08 00:00 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help
2014-02-12 09:26 - 2014-02-12 09:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2916036$
2014-02-12 09:26 - 2014-02-12 09:20 - 00019917 _____ () C:\WINDOWS\iis6.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00018548 _____ () C:\WINDOWS\FaxSetup.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00008868 _____ () C:\WINDOWS\ocgen.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00008487 _____ () C:\WINDOWS\tsoc.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00006183 _____ () C:\WINDOWS\comsetup.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00005754 _____ () C:\WINDOWS\msmqinst.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00003741 _____ () C:\WINDOWS\ntdtcsetup.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00003620 _____ () C:\WINDOWS\updspapi.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00003249 _____ () C:\WINDOWS\netfxocm.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00001374 _____ () C:\WINDOWS\imsins.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00001275 _____ () C:\WINDOWS\MedCtrOC.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00001158 _____ () C:\WINDOWS\ocmsn.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00000957 _____ () C:\WINDOWS\tabletoc.log
2014-02-12 09:26 - 2014-02-12 09:20 - 00000909 _____ () C:\WINDOWS\msgsocm.log
2014-02-12 09:26 - 2014-02-12 09:17 - 00013321 _____ () C:\WINDOWS\KB2916036.log
2014-02-12 09:23 - 2013-08-16 11:58 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-12 09:22 - 2013-04-07 20:36 - 85946576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-12 09:20 - 2014-02-12 09:20 - 00011167 _____ () C:\WINDOWS\KB2909921-IE8.log
2014-02-12 09:20 - 2014-02-12 09:20 - 00004128 _____ () C:\WINDOWS\KB2909210-IE8.log
2014-02-12 09:20 - 2014-02-12 09:20 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-02-12 09:20 - 2014-02-12 09:20 - 00000000 _____ () C:\WINDOWS\setupact.log
2014-02-12 09:20 - 2013-08-28 17:43 - 00001374 _____ () C:\WINDOWS\imsins.BAK
2014-02-12 09:20 - 2013-04-07 20:40 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-02-12 09:15 - 2013-04-07 20:07 - 00002321 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Acrobat XI Pro.lnk
2014-02-11 23:58 - 2013-04-08 00:29 - 00065536 _____ () C:\WINDOWS\system32\config\OAlerts.evt
2014-02-11 11:42 - 2014-02-11 11:42 - 00000000 ____D () C:\Documents and Settings\UserXP\Dane aplikacji\TuneUp Software
2014-02-11 11:42 - 2013-04-08 01:21 - 00000000 __RHD () C:\Documents and Settings\All Users\Dane aplikacji
2014-02-11 11:42 - 2013-04-07 20:43 - 00000000 __RHD () C:\Documents and Settings\UserXP\Dane aplikacji
2014-02-11 11:39 - 2013-04-07 20:37 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Ashampoo
2014-02-06 09:45 - 2013-04-07 20:43 - 00000000 ____D () C:\Documents and Settings\UserXP\Pulpit
2014-02-06 09:31 - 2014-02-06 09:31 - 00000000 ____D () C:\WINDOWS\system32\WebWatch2
2014-02-06 04:38 - 2013-04-02 20:53 - 00920064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wininet.dll
2014-02-06 04:38 - 2013-04-02 20:53 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-06 00:08 - 2013-04-07 23:29 - 00759296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vgx.dll
2014-02-06 00:08 - 2013-04-07 20:41 - 00522240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsdbgui.dll
2014-02-06 00:08 - 2013-04-07 20:40 - 11113472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieframe.dll
2014-02-06 00:08 - 2013-04-07 20:40 - 02006016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iertutil.dll
2014-02-06 00:08 - 2013-04-07 20:40 - 00743424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedvtool.dll
2014-02-06 00:08 - 2013-04-07 20:40 - 00630272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeeds.dll
2014-02-06 00:08 - 2013-04-07 20:40 - 00247808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieproxy.dll
2014-02-06 00:08 - 2013-04-07 20:40 - 00055296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2014-02-06 00:08 - 2013-04-07 20:40 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xpshims.dll
2014-02-06 00:08 - 2013-04-02 20:55 - 01216000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\urlmon.dll
2014-02-06 00:08 - 2013-04-02 20:55 - 01216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-06 00:08 - 2013-04-02 20:54 - 06021120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2014-02-06 00:08 - 2013-04-02 20:54 - 06021120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-06 00:08 - 2013-04-02 20:54 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-02-06 00:08 - 2013-04-02 20:54 - 00184320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iepeers.dll
2014-02-06 00:08 - 2013-04-02 20:53 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\url.dll
2014-02-06 00:08 - 2013-04-02 20:53 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\url.dll
2014-02-06 00:08 - 2013-04-02 20:50 - 00206848 ____N (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-02-06 00:08 - 2013-04-02 20:50 - 00206848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\occache.dll
2014-02-06 00:08 - 2013-04-02 20:49 - 00611840 ____N (Microsoft Corporation) C:\WINDOWS\system32\mstime.dll
2014-02-06 00:08 - 2013-04-02 20:49 - 00611840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstime.dll
2014-02-06 00:08 - 2013-04-02 20:49 - 00067072 ____N (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-02-06 00:08 - 2013-04-02 20:49 - 00067072 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtmled.dll
2014-02-06 00:08 - 2013-04-02 20:47 - 01469440 ____N (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-06 00:08 - 2013-04-02 20:47 - 01469440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcpl.cpl
2014-02-06 00:08 - 2013-04-02 20:47 - 00043520 ____N (Microsoft Corporation) C:\WINDOWS\system32\licmgr10.dll
2014-02-06 00:08 - 2013-04-02 20:47 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\licmgr10.dll
2014-02-06 00:08 - 2013-04-02 20:47 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-06 00:08 - 2013-04-02 20:47 - 00025600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jsproxy.dll
2014-02-06 00:08 - 2013-04-02 20:46 - 00387584 ____N (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-02-06 00:08 - 2013-04-02 20:46 - 00387584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedkcs32.dll
2014-02-06 00:08 - 2013-04-02 20:44 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\corpol.dll
2014-02-06 00:08 - 2013-04-02 20:44 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\corpol.dll
2014-02-06 00:08 - 2009-03-08 03:39 - 11113472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-06 00:08 - 2009-03-08 03:32 - 02006016 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-06 00:08 - 2009-03-08 03:32 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-06 00:08 - 2009-03-08 03:31 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll
2014-02-05 23:29 - 2013-04-02 20:46 - 00385024 ____N (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-02-05 23:29 - 2013-04-02 20:46 - 00174592 ____N (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-05 23:29 - 2013-04-02 20:46 - 00174592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ie4uinit.exe
2014-02-05 15:37 - 2013-04-08 00:03 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-02-05 15:37 - 2013-04-08 00:03 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-02-05 14:09 - 2013-12-21 16:50 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-02-01 07:03 - 2014-02-01 07:03 - 00000000 ____D () C:\WINDOWS\Plextool
2014-02-01 07:03 - 2014-02-01 07:03 - 00000000 ____D () C:\Program Files\Plextool
2014-02-01 07:03 - 2014-02-01 07:03 - 00000000 ____D () C:\Documents and Settings\UserXP\Menu Start\Programy\Plextool
2014-02-01 07:03 - 2013-04-07 20:43 - 00000000 ___RD () C:\Documents and Settings\UserXP\Menu Start\Programy
2014-01-29 22:44 - 2013-04-07 18:58 - 01098252 _____ () C:\WINDOWS\system32\nvdrsdb1.bin
2014-01-29 22:44 - 2013-04-07 18:58 - 00000001 _____ () C:\WINDOWS\system32\nvdrssel.bin
2014-01-29 22:43 - 2013-04-07 18:58 - 01098252 _____ () C:\WINDOWS\system32\nvdrsdb0.bin
2014-01-29 22:40 - 2014-01-29 22:40 - 00000022 _____ () C:\WINDOWS\GPU-Z.INI
2014-01-29 22:37 - 2014-01-29 22:37 - 00000000 ____D () C:\Program Files\ASUS
2014-01-29 22:37 - 2014-01-29 22:37 - 00000000 ____D () C:\Documents and Settings\UserXP\Menu Start\Programy\ASUS
2014-01-29 22:37 - 2014-01-29 22:37 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\ASUS
2014-01-29 22:37 - 2013-04-07 23:50 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-01-26 22:40 - 2013-04-21 20:01 - 00001057 _____ () C:\Documents and Settings\UserXP\Dane aplikacji\vso_ts_preview.xml
2014-01-26 22:40 - 2013-04-21 16:02 - 00000000 ____D () C:\Documents and Settings\UserXP\Dane aplikacji\Vso
2014-01-26 07:57 - 2013-12-21 16:50 - 00775952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-26 07:57 - 2013-12-21 16:50 - 00410784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-01-26 07:57 - 2013-12-21 16:50 - 00270240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-01-26 07:57 - 2013-12-21 16:50 - 00252592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys
2014-01-26 07:57 - 2013-12-21 16:50 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-01-26 07:57 - 2013-12-21 16:50 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-01-26 07:57 - 2013-12-21 16:50 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-25 22:57 - 2014-01-25 22:57 - 00022688 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32.SYS
2014-01-25 22:56 - 2014-01-25 22:56 - 00000000 ____D () C:\Program Files\HWiNFO32
2014-01-25 22:56 - 2014-01-25 22:56 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\HWiNFO32
2014-01-22 21:47 - 2013-10-02 18:22 - 00000000 ____D () C:\Documents and Settings\UserXP\Dane aplikacji\Skype
2014-01-21 08:09 - 2013-09-11 09:08 - 00002347 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader XI.lnk
2014-01-17 17:04 - 2013-04-08 01:21 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy\Autostart

==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2013-04-02 20:46] - [2008-04-14 23:51] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\WINDOWS\system32\winlogon.exe
[2013-04-02 20:53] - [2008-04-14 23:51] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\WINDOWS\system32\svchost.exe
[2013-04-02 20:52] - [2008-04-14 23:51] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\WINDOWS\system32\services.exe
[2013-04-02 20:51] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\WINDOWS\system32\User32.dll
[2013-04-02 20:53] - [2008-04-14 23:50] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\WINDOWS\system32\userinit.exe
[2013-04-02 20:53] - [2008-04-14 23:51] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\WINDOWS\system32\rpcss.dll
[2013-04-02 20:51] - [2009-02-09 11:53] - 0401408 ____A (Microsoft Corporation) a37311d9d628c1042a2836731787f0f3 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2013-04-02 20:53] - [2008-04-14 22:31] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================