Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014  01 ([color=red]ATTENTION: ====> FRST version is 26 days old and could be outdated[/color])
Ran by ate (administrator) on ATE-PC on 08-04-2014 19:31:31
Running from C:\Documents and Settings\ate\Pulpit\diagn
Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
() C:\Program Files\GNU\GnuPG\dirmngr.exe
() C:\Program Files\Dokan\DokanLibrary\mounter.exe
() C:\WINDOWS\system32\PnkBstrA.exe
() C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
() C:\Program Files\Plantronics\GameCom780\GameCom780.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Opera Software) C:\Program Files\Opera\Opera.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [JMB36X IDE Setup] - C:\WINDOWS\JM\JMInsIDE.exe [36864 2006-10-30] ()
HKLM\...\Run: [36X Raid Configurer] - C:\WINDOWS\System32\JMRaidSetup.exe [1953792 2006-11-16] (JMicron Technology Corp.)
HKLM\...\Run: [AsusStartupHelp] - C:\Program Files\ASUS\AASP\1.00.23\AsRunHelp.exe [363008 2006-12-29] ()
HKLM\...\Run: [Ai Nap] - C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe [1423360 2007-01-11] ()
HKLM\...\Run: [SoundMAXPnP] - C:\Program Files\Analog Devices\Core\smax4pnp.exe [1036288 2007-10-09] (Analog Devices, Inc.)
HKLM\...\Run: [SoundMAX] - C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [864256 2007-10-08] (Analog Devices, Inc.)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-11-04] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [GamecomSound] - C:\Program Files\Plantronics\GameCom780\GameCom780.exe [777448 2011-12-01] ()
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4971024 2014-03-19] (AVG Technologies CZ, s.r.o.)
HKLM\...\Runonce: [AvgRemover] - C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\Opera\Opera\temporary_downloads\avg_remover_stf_x86_2014_4116.exe /run_number=2 /avgdir="C:\Program Files\AVG\AVG2014\" /avgdatadir="C:\Documents and Settings\All Users\Dane aplikacji\AVG2014\" /ndis_nextstep=4
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-21-725345543-1078145449-682003330-1003\...\Run: [uTorrent] - C:\Program Files\uTorrent\uTorrent.exe [802136 2013-05-02] (BitTorrent Inc.)
HKU\S-1-5-21-725345543-1078145449-682003330-1003\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [5625624 2014-01-15] (SUPERAntiSpyware)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://wotreplays.com/site/index
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\System32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab
DPF: {3D3B42C2-11BF-4732-A304-A01384B70D68} http://picasaweb.google.com/s/v/66.30/uploader2.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1010735805622
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1010735780747
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: lid - {5C135180-9973-46D9-ABF4-148267CBB8BF} - C:\WINDOWS\System32\msvidctl.dll (Microsoft Corporation)
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [113024 2011-07-19] (SuperAdBlocker.com)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 62.179.1.63 62.179.1.62
Tcpip\..\Interfaces\{36E359CA-00A6-4E69-8518-F6202E421ADB}: [NameServer]8.8.8.8,8.8.4.4

========================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [116608 2012-07-11] (SUPERAntiSpyware.com)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2008-10-03] ()
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3782672 2014-02-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 DirMngr; C:\Program Files\GNU\GnuPG\dirmngr.exe [224256 2011-03-02] ()
R2 DokanMounter; C:\Program Files\Dokan\DokanLibrary\mounter.exe [25088 2011-01-10] ()
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2014-01-13] (Flexera Software, Inc.)
S4 gupdate1c9f7e0d0838f7d; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2009-06-28] (Google Inc.)
S4 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1385896 2012-08-29] (LogMeIn Inc.)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [75136 2012-12-02] ()
S4 TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [736104 2012-04-19] (Tunngle.net GmbH)

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [12664 2006-10-18] ()
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [281760 2012-02-13] ()
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [120600 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [210712 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [149272 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [22808 2014-01-19] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
S3 axsaki; C:\WINDOWS\System32\DRIVERS\axsaki.sys [102624 2003-03-30] ( )
S3 axskbus; C:\WINDOWS\System32\DRIVERS\axskbus.sys [8640 2003-03-28] ( )
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 cdrbsdrv; C:\WINDOWS\system32\Drivers\cdrbsdrv.sys [13567 2004-03-08] (B.H.A Corporation)
R2 Dokan; C:\WINDOWS\system32\drivers\dokan.sys [91904 2011-01-10] (Windows (R) Win 7 DDK provider)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [218688 2011-05-31] (DT Soft Ltd)
R1 ElbyCDIO; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [24232 2009-02-17] (Elaborate Bytes AG)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] ()
S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R0 JGOGO; C:\WINDOWS\System32\DRIVERS\JGOGO.sys [6912 2006-02-07] (JMicron )
R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [44416 2006-12-06] (JMicron Technology Corp.)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25888 2012-02-13] ()
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 Plantronics_GameCom; C:\WINDOWS\System32\drivers\PLTGC.sys [1825792 2011-10-04] (C-Media Electronics Inc)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SenFiltService; C:\WINDOWS\System32\drivers\Senfilt.sys [392960 2006-03-18] (Sensaura)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [5248 2006-09-24] (Windows (R) 2000 DDK provider)
R3 SPLITCAM; C:\WINDOWS\System32\DRIVERS\splitcam.sys [13824 2010-01-28] (LoteSoft Co.)
S4 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [691696 2010-01-03] (Duplex Secure Ltd.)
S3 tap0901t; C:\WINDOWS\System32\DRIVERS\tap0901t.sys [27136 2009-09-16] (Tunngle.net)
S3 tj2knd5; C:\WINDOWS\System32\DRIVERS\tj2knd5.sys [17616 2002-10-14] (MCCI)
S3 tj2kunic; C:\WINDOWS\System32\DRIVERS\tj2kunic.sys [69680 2002-10-14] (MCCI)
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [248832 2006-07-26] (Marvell)
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-08 19:08 - 2014-04-08 19:27 - 00000021 _____ () C:\WINDOWS\S.dirmngr
2014-04-06 18:10 - 2014-04-06 18:10 - 00094208 _____ () C:\WINDOWS\Minidump\Mini040614-01.dmp
2014-04-06 17:55 - 2014-04-06 17:55 - 00000020 _____ () C:\Documents and Settings\ate\defogger_reenable
2014-04-06 17:52 - 2014-04-08 19:31 - 00000000 ____D () C:\FRST
2014-04-06 16:40 - 2014-04-08 19:31 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\diagn
2014-04-06 11:17 - 2014-04-06 11:17 - 00000000 ____D () C:\Documents and Settings\ate\Dane aplikacji\AVG2014
2014-04-06 11:16 - 2014-04-06 11:16 - 00007839 _____ () C:\WINDOWS\setupapi.log
2014-04-06 11:16 - 2014-04-06 11:16 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\AVG
2014-04-06 11:15 - 2014-04-06 11:15 - 00000000 ___HD () C:\$AVG
2014-04-06 11:14 - 2014-04-08 18:25 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\MFAData
2014-04-06 11:14 - 2014-04-06 11:17 - 00000000 ____D () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\Avg2014
2014-04-06 11:14 - 2014-04-06 11:14 - 00000000 ____D () C:\Program Files\AVG
2014-04-06 11:14 - 2014-04-06 11:14 - 00000000 ____D () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\MFAData
2014-04-06 10:41 - 2014-04-06 10:41 - 00000154 _____ () C:\Documents and Settings\ate\Pulpit\wir.url
2014-04-05 22:54 - 2014-04-05 22:54 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2014-04-05 22:10 - 2014-04-05 22:46 - 00003011 _____ () C:\Documents and Settings\Administrator\avgrep.txt
2014-04-05 22:05 - 2014-04-05 22:54 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-04-05 22:05 - 2014-04-05 22:52 - 00000188 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2014-04-05 22:05 - 2014-04-05 22:09 - 00000000 __RHD () C:\Documents and Settings\Administrator\Dane aplikacji
2014-04-05 22:05 - 2014-04-05 22:08 - 00000000 ___HD () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji
2014-04-05 22:05 - 2014-04-05 22:05 - 00000000 __SHD () C:\Documents and Settings\Administrator\IETldCache
2014-04-05 22:05 - 2014-04-05 22:05 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\Malwarebytes
2014-04-05 22:05 - 2013-01-11 11:54 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\TuneUp Software
2014-04-05 22:05 - 2012-03-31 20:02 - 00001599 _____ () C:\Documents and Settings\Administrator\Menu Start\Programy\Pomoc zdalna.lnk
2014-04-05 22:05 - 2009-12-04 11:00 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\Macromedia
2014-04-05 22:05 - 2002-01-11 08:42 - 00000792 _____ () C:\Documents and Settings\Administrator\Menu Start\Programy\Windows Media Player.lnk
2014-04-05 22:05 - 2002-01-11 08:42 - 00000000 ___RD () C:\Documents and Settings\Administrator\Menu Start\Programy\Akcesoria
2014-04-05 22:05 - 2002-01-11 08:42 - 00000000 ___RD () C:\Documents and Settings\Administrator\Menu Start\Programy
2014-04-05 22:05 - 2002-01-11 08:41 - 00000000 __SHD () C:\Documents and Settings\Administrator\Ustawienia lokalne\Historia
2014-04-05 22:05 - 2002-01-11 08:38 - 00000000 ___HD () C:\Documents and Settings\Administrator\Szablony
2014-04-05 22:05 - 2002-01-11 06:56 - 00000000 ___RD () C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart
2014-04-05 22:05 - 2002-01-11 06:56 - 00000000 ___RD () C:\Documents and Settings\Administrator\Menu Start
2014-04-05 22:05 - 2002-01-11 06:56 - 00000000 ___HD () C:\Documents and Settings\Administrator\Ustawienia lokalne
2014-04-05 22:05 - 2002-01-11 06:56 - 00000000 ____D () C:\Documents and Settings\Administrator\Ulubione
2014-04-05 22:05 - 2002-01-11 06:56 - 00000000 ____D () C:\Documents and Settings\Administrator\Pulpit
2014-04-05 22:05 - 2002-01-11 06:56 - 00000000 ____D () C:\Documents and Settings\Administrator\Moje dokumenty
2014-04-05 21:27 - 2014-04-05 21:27 - 00028416 _____ () C:\Documents and Settings\ate\Moje dokumenty\cc_20140405_212705.reg
2014-04-05 21:24 - 2014-04-05 21:24 - 00000000 ____D () C:\Program Files\ESET
2014-04-05 21:13 - 2014-04-05 21:13 - 05292054 _____ () C:\Documents and Settings\ate\Pulpit\pulpit.bmp
2014-04-05 19:33 - 2014-04-05 20:45 - 00000374 _____ () C:\Documents and Settings\ate\Pulpit\kody.txt
2014-04-05 18:59 - 2014-04-06 11:17 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\AVG2014
2014-04-04 15:39 - 2014-04-04 15:39 - 00000000 ____D () C:\Program Files\Tor Browser
2014-04-04 12:18 - 2014-04-04 12:18 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\konkursy
2014-03-31 22:37 - 2014-03-31 22:37 - 00000153 _____ () C:\Documents and Settings\ate\Pulpit\forum ktm.url
2014-03-31 13:54 - 2014-03-31 13:54 - 00000654 _____ () C:\Documents and Settings\ate\Pulpit\Smellyriver.TankInspector.lnk
2014-03-31 13:51 - 2014-03-31 13:54 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\STI.1.3.0.30
2014-03-30 19:19 - 2014-03-30 19:19 - 00000000 ____D () C:\Program Files\GreenTree Applications
2014-03-13 17:59 - 2014-03-13 17:59 - 00000000 ____D () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\Freejam
2014-03-10 19:46 - 2014-03-29 23:35 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\mapa
2014-03-10 12:55 - 2014-03-10 12:55 - 00000669 _____ () C:\Documents and Settings\All Users\Pulpit\Opera 20.lnk
2014-03-10 12:55 - 2014-03-10 12:55 - 00000669 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Opera 20.lnk
2014-03-10 12:55 - 2014-03-10 12:55 - 00000000 ____D () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\Opera Software
2014-03-10 12:55 - 2014-03-10 12:55 - 00000000 ____D () C:\Documents and Settings\ate\Dane aplikacji\Opera Software

==================== One Month Modified Files and Folders =======

2014-04-08 19:31 - 2014-04-06 17:52 - 00000000 ____D () C:\FRST
2014-04-08 19:31 - 2014-04-06 16:40 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\diagn
2014-04-08 19:29 - 2002-01-11 09:18 - 00196608 _____ () C:\WINDOWS\system32\config\ACEEvent.evt
2014-04-08 19:28 - 2009-04-27 12:48 - 00000000 ____D () C:\Documents and Settings\ate\Dane aplikacji\uTorrent
2014-04-08 19:28 - 2002-01-11 09:56 - 01810519 _____ () C:\WINDOWS\WindowsUpdate.log
2014-04-08 19:27 - 2014-04-08 19:08 - 00000021 _____ () C:\WINDOWS\S.dirmngr
2014-04-08 19:27 - 2011-03-06 01:24 - 00000260 _____ () C:\WINDOWS\Tasks\WGASetup.job
2014-04-08 19:27 - 2011-01-04 22:37 - 00000274 _____ () C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-725345543-1078145449-682003330-1003.job
2014-04-08 19:27 - 2009-07-01 09:37 - 00001032 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-08 19:27 - 2002-01-11 08:42 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-04-08 19:25 - 2002-01-11 08:47 - 00000188 ___SH () C:\Documents and Settings\ate\ntuser.ini
2014-04-08 19:25 - 2002-01-11 08:47 - 00000000 ____D () C:\Documents and Settings\ate
2014-04-08 19:25 - 2002-01-11 08:45 - 00032608 _____ () C:\WINDOWS\SchedLgU.Txt
2014-04-08 19:18 - 2009-06-14 13:29 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-08 19:18 - 2002-01-11 08:47 - 00000000 __RHD () C:\Documents and Settings\ate\Dane aplikacji
2014-04-08 19:18 - 2002-01-11 06:56 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy
2014-04-08 19:14 - 2009-05-03 20:11 - 00000000 ____D () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\Adobe
2014-04-08 19:14 - 2009-05-02 21:34 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-04-08 19:14 - 2009-05-02 21:34 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Adobe
2014-04-08 19:13 - 2009-04-25 09:00 - 00000000 ____D () C:\Documents and Settings\ate\Dane aplikacji\Adobe
2014-04-08 19:06 - 2012-06-11 23:50 - 06422780 _____ () C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-S-1-5-21-725345543-1078145449-682003330-1003-0.dat
2014-04-08 19:06 - 2012-06-11 23:50 - 00407890 _____ () C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\WPFFontCache_v0400-System.dat
2014-04-08 19:06 - 2002-01-11 06:56 - 00000000 __RHD () C:\Documents and Settings\All Users\Dane aplikacji
2014-04-08 19:04 - 2012-04-07 08:53 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-04-08 18:42 - 2009-07-01 09:37 - 00001036 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-08 18:25 - 2014-04-06 11:14 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\MFAData
2014-04-08 16:57 - 2009-06-09 10:21 - 00000116 _____ () C:\WINDOWS\NeroDigital.ini
2014-04-08 16:50 - 2009-04-30 19:43 - 00203264 _____ () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-08 12:34 - 2001-07-22 00:17 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-04-07 20:20 - 2002-01-11 08:47 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit
2014-04-07 17:31 - 2012-12-05 14:46 - 00000000 ____D () C:\Games
2014-04-07 17:30 - 2002-01-11 06:56 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit
2014-04-06 18:10 - 2014-04-06 18:10 - 00094208 _____ () C:\WINDOWS\Minidump\Mini040614-01.dmp
2014-04-06 18:10 - 2009-06-08 20:28 - 00000000 ____D () C:\WINDOWS\Minidump
2014-04-06 17:59 - 2013-07-05 20:46 - 00000494 _____ () C:\Documents and Settings\ate\Pulpit\NASTAWY.txt
2014-04-06 17:55 - 2014-04-06 17:55 - 00000020 _____ () C:\Documents and Settings\ate\defogger_reenable
2014-04-06 11:18 - 2009-04-27 12:53 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\programy i gry
2014-04-06 11:17 - 2014-04-06 11:17 - 00000000 ____D () C:\Documents and Settings\ate\Dane aplikacji\AVG2014
2014-04-06 11:17 - 2014-04-06 11:14 - 00000000 ____D () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\Avg2014
2014-04-06 11:17 - 2014-04-05 18:59 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\AVG2014
2014-04-06 11:16 - 2014-04-06 11:16 - 00007839 _____ () C:\WINDOWS\setupapi.log
2014-04-06 11:16 - 2014-04-06 11:16 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\AVG
2014-04-06 11:15 - 2014-04-06 11:15 - 00000000 ___HD () C:\$AVG
2014-04-06 11:14 - 2014-04-06 11:14 - 00000000 ____D () C:\Program Files\AVG
2014-04-06 11:14 - 2014-04-06 11:14 - 00000000 ____D () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\MFAData
2014-04-06 11:14 - 2002-01-11 08:47 - 00000000 ___HD () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji
2014-04-06 11:05 - 2011-01-04 22:37 - 00000282 _____ () C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-725345543-1078145449-682003330-1003.job
2014-04-06 11:00 - 2002-01-11 07:54 - 00000211 __RSH () C:\boot.ini
2014-04-06 11:00 - 2001-07-22 00:16 - 00000963 _____ () C:\WINDOWS\win.ini
2014-04-06 11:00 - 2001-07-22 00:15 - 00000264 _____ () C:\WINDOWS\System.ini
2014-04-06 10:41 - 2014-04-06 10:41 - 00000154 _____ () C:\Documents and Settings\ate\Pulpit\wir.url
2014-04-06 10:08 - 2012-10-18 14:52 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-04-06 10:04 - 2009-04-26 09:28 - 00000000 ____D () C:\WINDOWS\pss
2014-04-06 10:04 - 2002-01-11 08:47 - 00000000 ___RD () C:\Documents and Settings\ate\Menu Start\Programy\Autostart
2014-04-05 23:11 - 2009-05-04 08:43 - 00000000 ____D () C:\Documents and Settings\ate\Dane aplikacji\Media Player Classic
2014-04-05 22:59 - 2002-01-11 06:56 - 01337130 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-05 22:59 - 2001-10-26 18:15 - 00583684 _____ () C:\WINDOWS\system32\perfh015.dat
2014-04-05 22:59 - 2001-10-26 18:15 - 00120044 _____ () C:\WINDOWS\system32\perfc015.dat
2014-04-05 22:54 - 2014-04-05 22:54 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2014-04-05 22:54 - 2014-04-05 22:05 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-04-05 22:54 - 2002-01-11 08:45 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-04-05 22:54 - 2002-01-11 08:45 - 00000000 __SHD () C:\Documents and Settings\LocalService
2014-04-05 22:52 - 2014-04-05 22:05 - 00000188 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2014-04-05 22:46 - 2014-04-05 22:10 - 00003011 _____ () C:\Documents and Settings\Administrator\avgrep.txt
2014-04-05 22:09 - 2014-04-05 22:05 - 00000000 __RHD () C:\Documents and Settings\Administrator\Dane aplikacji
2014-04-05 22:08 - 2014-04-05 22:05 - 00000000 ___HD () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji
2014-04-05 22:05 - 2014-04-05 22:05 - 00000000 __SHD () C:\Documents and Settings\Administrator\IETldCache
2014-04-05 22:05 - 2014-04-05 22:05 - 00000000 ____D () C:\Documents and Settings\Administrator\Dane aplikacji\Malwarebytes
2014-04-05 21:27 - 2014-04-05 21:27 - 00028416 _____ () C:\Documents and Settings\ate\Moje dokumenty\cc_20140405_212705.reg
2014-04-05 21:27 - 2002-01-11 08:47 - 00000000 ___RD () C:\Documents and Settings\ate\Moje dokumenty
2014-04-05 21:24 - 2014-04-05 21:24 - 00000000 ____D () C:\Program Files\ESET
2014-04-05 21:13 - 2014-04-05 21:13 - 05292054 _____ () C:\Documents and Settings\ate\Pulpit\pulpit.bmp
2014-04-05 21:08 - 2013-07-16 15:53 - 00000000 ____D () C:\Documents and Settings\ate\Dane aplikacji\GG
2014-04-05 21:07 - 2009-06-04 19:55 - 00000000 ____D () C:\Program Files\Cheat Engine
2014-04-05 20:45 - 2014-04-05 19:33 - 00000374 _____ () C:\Documents and Settings\ate\Pulpit\kody.txt
2014-04-05 20:07 - 2014-03-07 16:42 - 00002551 _____ () C:\Documents and Settings\ate\Pulpit\CodeTwo QR Code Desktop Reader.lnk
2014-04-05 09:13 - 2011-10-18 15:30 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\UZ
2014-04-05 02:00 - 2010-07-05 11:40 - 00000338 _____ () C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-ATE-S566MZP1M0Z-ate.job
2014-04-04 15:39 - 2014-04-04 15:39 - 00000000 ____D () C:\Program Files\Tor Browser
2014-04-04 15:38 - 2002-01-11 08:47 - 00000000 __SHD () C:\Documents and Settings\ate\Ustawienia lokalne\Historia
2014-04-04 12:18 - 2014-04-04 12:18 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\konkursy
2014-04-03 13:49 - 2013-07-21 23:56 - 00000000 ____D () C:\Documents and Settings\ate\Dane aplikacji\EurekaLog
2014-04-01 23:21 - 2009-06-14 13:13 - 00000000 ___RD () C:\Documents and Settings\ate\Moje dokumenty\Moje wideo
2014-03-31 22:37 - 2014-03-31 22:37 - 00000153 _____ () C:\Documents and Settings\ate\Pulpit\forum ktm.url
2014-03-31 13:54 - 2014-03-31 13:54 - 00000654 _____ () C:\Documents and Settings\ate\Pulpit\Smellyriver.TankInspector.lnk
2014-03-31 13:54 - 2014-03-31 13:51 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\STI.1.3.0.30
2014-03-31 13:53 - 2011-08-29 19:41 - 00002389 _____ () C:\Documents and Settings\ate\Pulpit\Nowy Dokument tekstowy.txt
2014-03-31 13:52 - 2013-12-25 23:29 - 00000000 ____D () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\Smellyriver
2014-03-30 19:19 - 2014-03-30 19:19 - 00000000 ____D () C:\Program Files\GreenTree Applications
2014-03-29 23:35 - 2014-03-10 19:46 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\mapa
2014-03-26 17:02 - 2002-01-11 09:10 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-03-24 15:56 - 2012-12-01 00:22 - 00001608 _____ () C:\Documents and Settings\ate\Pulpit\Uniwersalny start.lnk
2014-03-24 12:42 - 2002-01-11 08:47 - 00000000 ___RD () C:\Documents and Settings\ate\Menu Start\Programy
2014-03-22 00:01 - 2002-01-11 08:40 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-03-15 23:57 - 2010-04-09 23:12 - 00000000 ____D () C:\Documents and Settings\ate\Dane aplikacji\Youtube Downloader HD
2014-03-15 23:55 - 2010-01-03 16:03 - 00000000 ____D () C:\Program Files\Youtube Downloader HD
2014-03-15 23:55 - 2010-01-03 16:03 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Youtube Downloader HD
2014-03-13 17:59 - 2014-03-13 17:59 - 00000000 ____D () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\Freejam
2014-03-12 11:59 - 2014-02-26 23:35 - 00000000 ____D () C:\Documents and Settings\ate\Pulpit\AKM
2014-03-11 21:04 - 2012-04-07 08:53 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-03-11 21:04 - 2011-05-18 09:32 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-03-10 20:06 - 2010-12-17 21:33 - 00000132 _____ () C:\Documents and Settings\ate\Dane aplikacji\Preferencje Adobe CS5 dla formatu BMP
2014-03-10 12:55 - 2014-03-10 12:55 - 00000669 _____ () C:\Documents and Settings\All Users\Pulpit\Opera 20.lnk
2014-03-10 12:55 - 2014-03-10 12:55 - 00000669 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Opera 20.lnk
2014-03-10 12:55 - 2014-03-10 12:55 - 00000000 ____D () C:\Documents and Settings\ate\Ustawienia lokalne\Dane aplikacji\Opera Software
2014-03-10 12:55 - 2014-03-10 12:55 - 00000000 ____D () C:\Documents and Settings\ate\Dane aplikacji\Opera Software
2014-03-10 12:55 - 2009-04-25 08:50 - 00000000 ____D () C:\Program Files\Opera

==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2001-10-26 19:29] - [2008-04-14 22:51] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\WINDOWS\system32\winlogon.exe
[2001-10-26 19:30] - [2008-04-14 22:51] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\WINDOWS\system32\svchost.exe
[2001-10-26 19:30] - [2008-04-14 22:51] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\WINDOWS\system32\services.exe
[2001-10-26 19:30] - [2009-02-09 13:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\WINDOWS\system32\User32.dll
[2001-10-26 19:29] - [2008-04-14 22:50] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\WINDOWS\system32\userinit.exe
[2001-10-26 19:30] - [2008-04-14 22:51] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\WINDOWS\system32\rpcss.dll
[2001-10-26 19:29] - [2009-02-09 12:53] - 0401408 ____A (Microsoft Corporation) a37311d9d628c1042a2836731787f0f3 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2001-10-26 18:57] - [2008-04-14 21:31] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================