Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 26-02-2014 01
Ran by Klaudia (administrator) on KLAUDIA-PC on 27-02-2014 13:48:45
Running from C:\Users\Klaudia\Desktop\logi\frst1
Microsoft® Windows Vista™ Home Premium  Service Pack 1 (X86) OS Language: Polish
Internet Explorer Version 7
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_805f33de\STacSV.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Hewlett-Packard Corporation) C:\Windows\system32\Hpservice.exe
(Validity Sensors, Inc.) C:\Windows\system32\vfsFPService.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpHostW.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_805f33de\aestsrv.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe
() C:\Program Files\SMINST\BLService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
() C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
() C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
(Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe
(Hewlett-Packard) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1316136 2008-06-20] (Synaptics, Inc.)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [446556 2008-09-11] (IDT, Inc.)
HKLM\...\Run: [TSMAgent] - C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1316136 2008-12-25] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer for HP TouchSmart] - C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [189736 2008-12-25] (CyberLink)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [218408 2008-11-14] (CyberLink Corp.)
HKLM\...\Run: [UpdateLBPShortCut] - C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [UpdatePSTShortCut] - C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2008-11-26] (CyberLink Corp.)
HKLM\...\Run: [DpAgent] - C:\Program Files\DigitalPersona\Bin\dpagent.exe [842816 2008-12-10] (DigitalPersona, Inc.)
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [QlbCtrl.exe] - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [206128 2008-10-10] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [UpdatePDIRShortCut] - C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [HP Health Check Scheduler] - c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM\...\Run: [HP Software Update] - C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [54576 2008-12-08] (Hewlett-Packard)
HKLM\...\Run: [WirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [432432 2008-12-08] (Hewlett-Packard)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
Lsa: [Notification Packages] scecli DPPWDFLT
Startup: C:\Users\Klaudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sticky Notes.lnk
ShortcutTarget: Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll (Symantec Corporation)
BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.8.3.6\IPSBHO.DLL (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll (Symantec Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
Handler: symres - {AA1061FE-6C41-421f-9344-69640C9732AB} - C:\Program Files\Norton Internet Security\Engine\16.8.3.6\coIEPlg.dll (Symantec Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 62.179.1.62 62.179.1.63

Chrome: 
=======
CHR HomePage: hxxp://www.google.pl/
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.1.377\_platform_specific\win_x86\widevinecdmadapter.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\33.0.1750.117\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\33.0.1750.117\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\33.0.1750.117\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java Deployment Toolkit 7.0.450.18) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U45) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Dysk Google) - C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-12]
CHR Extension: (YouTube) - C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-12]
CHR Extension: (Adblock Plus) - C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-11-12]
CHR Extension: (Szukaj w Google) - C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-12]
CHR Extension: (Google Wallet) - C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-12]
CHR Extension: (Gmail) - C:\Users\Klaudia\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-12]

========================== Services (Whitelisted) =================

R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-10-09] (Hewlett-Packard)
S2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe [117648 2011-09-22] (Symantec Corporation)
R2 Recovery Service for Windows; C:\Program Files\SMINST\BLService.exe [365952 2008-12-17] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [241734 2008-09-15] ()
R2 TVCapSvc; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [296320 2008-11-26] ()
R2 TVSched; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116096 2008-11-26] ()
S3 usnjsvc; C:\Program Files\MSN Messenger\usnsvc.exe [97136 2007-01-19] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R1 BHDrvx86; C:\Windows\System32\Drivers\NIS\1008030.006\BHDrvx86.sys [259632 2010-01-20] (Symantec Corporation)
R1 ccHP; C:\Windows\System32\Drivers\NIS\1008030.006\ccHPx86.sys [467592 2013-11-13] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [376920 2013-11-19] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [108120 2013-11-19] (Symantec Corporation)
R1 IDSVix86; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20140108.001\IDSvix86.sys [394456 2013-12-12] (Symantec Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
S3 SRTSP; C:\Windows\System32\Drivers\NIS\1008030.006\SRTSP.SYS [308272 2010-01-20] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NIS\1008030.006\SRTSPX.SYS [43696 2010-01-20] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NIS\1008030.006\SYMEFA.SYS [310320 2010-01-20] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [124976 2013-11-12] (Symantec Corporation)
S3 SYMFW; C:\Windows\System32\Drivers\NIS\1008030.006\SYMFW.SYS [89976 2011-09-22] (Symantec Corporation)
R1 SymIM; C:\Windows\System32\DRIVERS\SymIMv.sys [25648 2010-01-20] (Symantec Corporation)
S3 SYMNDISV; C:\Windows\System32\Drivers\NIS\1008030.006\SYMNDISV.SYS [48760 2011-09-22] (Symantec Corporation)
R1 SYMTDI; C:\Windows\System32\Drivers\NIS\1008030.006\SYMTDI.SYS [217464 2011-09-22] (Symantec Corporation)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl [87536 2008-11-28] (CyberLink Corp.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20140108.023\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20140108.023\NAVEX15.SYS [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 SYMDNS; \??\C:\Windows\system32\drivers\NIS\1000000.07D\SYMDNS.SYS [X]
S3 SYMREDRV; \??\C:\Windows\system32\drivers\NIS\1000000.07D\SYMREDRV.SYS [X]
U3 pxliafog; \??\C:\Users\Klaudia\AppData\Local\Temp\pxliafog.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-27 01:18 - 2014-02-27 01:18 - 00448512 _____ (OldTimer Tools) C:\Users\Klaudia\Downloads\TFC.exe
2014-02-26 20:29 - 2014-02-26 20:29 - 00000061 _____ () C:\Users\Klaudia\Documents\link.txt
2014-02-26 16:33 - 2014-02-26 16:34 - 00380416 _____ () C:\Users\Klaudia\Downloads\p378s0bk.exe
2014-02-26 16:26 - 2014-02-27 13:48 - 00000000 ____D () C:\FRST
2014-02-26 16:24 - 2014-02-26 16:24 - 00688992 _____ (Swearware) C:\Users\Klaudia\Downloads\dds.com
2014-02-26 16:23 - 2014-02-27 13:46 - 00000000 ____D () C:\Users\Klaudia\Desktop\logi
2014-02-26 16:11 - 2014-02-26 16:12 - 00602112 _____ (OldTimer Tools) C:\Users\Klaudia\Downloads\OTL (1).exe
2014-02-26 16:11 - 2014-02-26 16:11 - 00602112 _____ (OldTimer Tools) C:\Users\Klaudia\Downloads\OTL.exe
2014-02-26 15:46 - 2014-02-26 15:46 - 00773776 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100.dll
2014-02-26 15:46 - 2014-02-26 15:46 - 00421008 _____ (Microsoft Corporation) C:\Windows\system32\msvcp100.dll
2014-02-26 12:37 - 2014-02-26 16:34 - 00000000 ____D () C:\Users\Klaudia\AppData\Roaming\Audacity
2014-02-26 12:37 - 2014-02-26 12:37 - 00000804 _____ () C:\Users\Public\Desktop\Audacity.lnk
2014-02-26 12:37 - 2014-02-26 12:37 - 00000000 ____D () C:\Program Files\Audacity
2014-02-18 14:03 - 2014-02-26 13:14 - 00001286 _____ () C:\Windows\setupact.log
2014-02-18 14:03 - 2014-02-18 14:03 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-06 10:06 - 2014-02-06 10:06 - 00000266 __RSH () C:\ProgramData\ntuser.pol
2014-02-03 20:32 - 2014-02-18 09:51 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-03 20:32 - 2014-02-03 20:32 - 00000804 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-03 20:31 - 2014-02-03 20:32 - 04721144 _____ (Piriform Ltd) C:\Users\Klaudia\Downloads\ccsetup410pro.exe
2014-02-03 20:00 - 2014-02-03 20:00 - 00000000 ____D () C:\Users\Klaudia\AppData\Roaming\Malwarebytes
2014-02-03 19:59 - 2014-02-03 19:59 - 00000906 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-03 19:59 - 2014-02-03 19:59 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-03 19:59 - 2014-02-03 19:59 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-02-03 19:59 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-03 19:57 - 2014-02-03 19:57 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Klaudia\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-03 19:23 - 2014-02-06 10:11 - 00000000 ____D () C:\AdwCleaner
2014-02-03 18:58 - 2014-02-03 18:58 - 00000000 ____D () C:\Users\Klaudia\AppData\Roaming\DAEMON Tools Ultra
2014-02-03 18:58 - 2014-02-03 18:58 - 00000000 ____D () C:\ProgramData\DAEMON Tools Ultra
2014-01-29 17:16 - 2014-01-29 17:16 - 00000000 _____ () C:\Users\Klaudia\AppData\Local\FnF4.txt
2014-01-28 13:57 - 2014-01-28 13:57 - 00000000 ____D () C:\Users\Public\CyberLink
2014-01-28 13:57 - 2014-01-28 13:57 - 00000000 ____D () C:\Users\Klaudia\AppData\Roaming\CyberLink
2014-01-28 00:32 - 2014-01-28 00:32 - 00260608 _____ () C:\Users\Klaudia\Downloads\innowacje2013-2014.xls

==================== One Month Modified Files and Folders =======

2014-02-27 13:48 - 2014-02-26 16:26 - 00000000 ____D () C:\FRST
2014-02-27 13:48 - 2006-11-02 12:18 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-02-27 13:46 - 2014-02-26 16:23 - 00000000 ____D () C:\Users\Klaudia\Desktop\logi
2014-02-27 13:42 - 2013-11-12 00:17 - 00001038 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-27 12:02 - 2013-11-11 22:50 - 01185274 _____ () C:\Windows\WindowsUpdate.log
2014-02-27 12:01 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-27 12:01 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-27 01:18 - 2014-02-27 01:18 - 00448512 _____ (OldTimer Tools) C:\Users\Klaudia\Downloads\TFC.exe
2014-02-27 01:00 - 2013-11-12 00:19 - 00002279 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-27 01:00 - 2013-11-11 23:58 - 00001251 _____ () C:\Users\Klaudia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-27 01:00 - 2013-11-11 23:45 - 00000000 ____D () C:\Users\Klaudia
2014-02-26 21:42 - 2013-11-12 00:17 - 00001034 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-26 20:29 - 2014-02-26 20:29 - 00000061 _____ () C:\Users\Klaudia\Documents\link.txt
2014-02-26 16:34 - 2014-02-26 16:33 - 00380416 _____ () C:\Users\Klaudia\Downloads\p378s0bk.exe
2014-02-26 16:34 - 2014-02-26 12:37 - 00000000 ____D () C:\Users\Klaudia\AppData\Roaming\Audacity
2014-02-26 16:24 - 2014-02-26 16:24 - 00688992 _____ (Swearware) C:\Users\Klaudia\Downloads\dds.com
2014-02-26 16:12 - 2014-02-26 16:11 - 00602112 _____ (OldTimer Tools) C:\Users\Klaudia\Downloads\OTL (1).exe
2014-02-26 16:11 - 2014-02-26 16:11 - 00602112 _____ (OldTimer Tools) C:\Users\Klaudia\Downloads\OTL.exe
2014-02-26 15:46 - 2014-02-26 15:46 - 00773776 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100.dll
2014-02-26 15:46 - 2014-02-26 15:46 - 00421008 _____ (Microsoft Corporation) C:\Windows\system32\msvcp100.dll
2014-02-26 13:18 - 2009-02-25 12:33 - 00662056 _____ () C:\Windows\system32\perfh015.dat
2014-02-26 13:18 - 2009-02-25 12:33 - 00126908 _____ () C:\Windows\system32\perfc015.dat
2014-02-26 13:18 - 2006-11-02 11:33 - 01468980 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-26 13:14 - 2014-02-18 14:03 - 00001286 _____ () C:\Windows\setupact.log
2014-02-26 12:37 - 2014-02-26 12:37 - 00000804 _____ () C:\Users\Public\Desktop\Audacity.lnk
2014-02-26 12:37 - 2014-02-26 12:37 - 00000000 ____D () C:\Program Files\Audacity
2014-02-26 12:14 - 2006-11-02 14:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-24 23:35 - 2006-11-02 14:01 - 00032544 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-24 23:34 - 2013-11-11 22:50 - 00001076 _____ () C:\Windows\bthservsdp.dat
2014-02-18 14:03 - 2014-02-18 14:03 - 00000000 _____ () C:\Windows\setuperr.log
2014-02-18 09:51 - 2014-02-03 20:32 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-06 10:11 - 2014-02-03 19:23 - 00000000 ____D () C:\AdwCleaner
2014-02-06 10:08 - 2014-01-27 22:14 - 00000000 ____D () C:\Windows\Minidump
2014-02-06 10:08 - 2009-02-25 12:34 - 00000000 ____D () C:\Windows\panther
2014-02-06 10:06 - 2014-02-06 10:06 - 00000266 __RSH () C:\ProgramData\ntuser.pol
2014-02-05 12:32 - 2013-11-11 23:34 - 00000000 ____D () C:\Windows\DPDrv
2014-02-04 09:31 - 2013-11-11 23:59 - 00092880 _____ () C:\Users\Klaudia\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-04 09:29 - 2006-11-02 13:47 - 00351472 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-03 20:32 - 2014-02-03 20:32 - 00000804 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-03 20:32 - 2014-02-03 20:31 - 04721144 _____ (Piriform Ltd) C:\Users\Klaudia\Downloads\ccsetup410pro.exe
2014-02-03 20:00 - 2014-02-03 20:00 - 00000000 ____D () C:\Users\Klaudia\AppData\Roaming\Malwarebytes
2014-02-03 19:59 - 2014-02-03 19:59 - 00000906 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-02-03 19:59 - 2014-02-03 19:59 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-03 19:59 - 2014-02-03 19:59 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-02-03 19:57 - 2014-02-03 19:57 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Klaudia\Downloads\mbam-setup-1.75.0.1300.exe
2014-02-03 18:58 - 2014-02-03 18:58 - 00000000 ____D () C:\Users\Klaudia\AppData\Roaming\DAEMON Tools Ultra
2014-02-03 18:58 - 2014-02-03 18:58 - 00000000 ____D () C:\ProgramData\DAEMON Tools Ultra
2014-01-29 17:16 - 2014-01-29 17:16 - 00000000 _____ () C:\Users\Klaudia\AppData\Local\FnF4.txt
2014-01-28 13:57 - 2014-01-28 13:57 - 00000000 ____D () C:\Users\Public\CyberLink
2014-01-28 13:57 - 2014-01-28 13:57 - 00000000 ____D () C:\Users\Klaudia\AppData\Roaming\CyberLink
2014-01-28 13:57 - 2009-02-25 05:50 - 00000000 ____D () C:\ProgramData\CyberLink
2014-01-28 13:57 - 2006-11-02 12:18 - 00000000 ___RD () C:\Users\Public
2014-01-28 00:32 - 2014-01-28 00:32 - 00260608 _____ () C:\Users\Klaudia\Downloads\innowacje2013-2014.xls

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-27 12:26

==================== End Of Log ============================