Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-09-2014 Ran by Świerszcz (administrator) on CENTRALHOMECOMP on 24-09-2014 12:26:03 Running from C:\Documents and Settings\Świerszcz\Moje dokumenty\Pobrane Platform: Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polski Internet Explorer Version 6 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) () C:\Documents and Settings\All Users\Dane aplikacji\Avg_Update_0814av\AVG-Secure-Search-Update_0814av.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe (Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Logitech Inc.) C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech Inc.) C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.exe (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Logitech Hardware Abstraction Layer] => C:\WINDOWS\KHALMNPR.EXE [56080 2007-04-11] (Logitech Inc.) HKLM\...\Run: [amd_dc_opt] => C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2014\avgui.exe [5188112 2014-08-25] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation) HKU\S-1-5-21-1935655697-1965331169-725345543-1004\...\Run: [AVG-Secure-Search-Update_0814av] => C:\Documents and Settings\Zwierszcz\Dane aplikacji\Avg_Update_0814av\AVG-Secure-Search-Update_0814av.exe /PROMPT /mid=0181fd34b89d4e3887dad00ae870dc6b-48c509dde6808136529a66293ed6d56a3b11f74c /CMPID= (the data entry has 6 more characters). HKU\S-1-5-21-1935655697-1965331169-725345543-1004\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x95000000 HKU\S-1-5-21-1935655697-1965331169-725345543-1004\...\MountPoints2: {abdc7ed5-c6d3-11e3-8442-001e8c0a9299} - F:\Startme.exe HKU\S-1-5-21-1935655697-1965331169-725345543-1004\...\MountPoints2: {fc35c0d4-1347-11e1-b2fc-001e8c0a9299} - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Start.hta Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Logitech SetPoint.lnk ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech Inc.) ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File BootExecute: autocheck autochk * ???????????????????? ????????????? ????? ???????????????????????????? ????????????? ????? ???????? ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm URLSearchHook: HKLM - Default Value = {CCC7B151-1D8C-11E3-B2AD-F3EF3D58318D} SearchScopes: HKCU - {2AE98FCA-4CC0-435F-92E1-66E4287BF439} URL = http://slirsredirect.search.aol.com/redirector/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-winamp-chromesbox-en-us&tb_uuid=20110722090045296&tb_oid=22-07-2011&tb_mrud=22-07-2011 BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation) DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1282235309437 DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_60-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0060-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_60-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_60-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://active.macromedia.com/flash4/cabs/swflash.cab Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Documents and Settings\Świerszcz\Dane aplikacji\Mozilla\Firefox\Profiles\u2zyvnxe.default-1407074558500 FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll () FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1211151.dll (Adobe Systems, Inc.) FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) FF Plugin: @ganymede/GanymedeNetPlugin,version=1.0 -> C:\Program Files\Ganymede\Plugins\npganymedenet.dll ( ) FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @google.com/npPicasa3,version=3.0.0 -> D:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npganymedenet.dll ( ) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Extension: Adblock Plus - C:\Documents and Settings\Świerszcz\Dane aplikacji\Mozilla\Firefox\Profiles\u2zyvnxe.default-1407074558500\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-08-03] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-10-24] FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR NewTab: Default -> "chrome-extension://pelmeidfhdlhlbjimpabfcbnnojbboma/index.html" CHR DefaultSearchKeyword: Default -> istartsurf CHR DefaultSearchProvider: Default -> istartsurf CHR DefaultSearchURL: Default -> http://www.istartsurf.com/web/?type=ds&ts=1410028189&from=ild&uid=SAMSUNGXHD161HJ_S0V3J9CQ109876&q={searchTerms} CHR DefaultSuggestURL: Default -> CHR CustomProfile: C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default CHR Extension: (Dokumenty Google) - C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-02] CHR Extension: (Dysk Google) - C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-02] CHR Extension: (YouTube) - C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-02-03] CHR Extension: (Szukaj w Google) - C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-02] CHR Extension: (Google Wallet) - C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22] CHR Extension: (Gmail) - C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-02] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3242000 2014-08-25] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [289328 2014-08-25] (AVG Technologies CZ, s.r.o.) S3 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] () R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-08-09] (Oracle Corporation) S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2152736 2014-05-04] (IObit) S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative) R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43520 2006-07-01] (Advanced Micro Devices) R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [12664 2006-10-18] () R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [121624 2014-06-30] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriverl; C:\WINDOWS\System32\DRIVERS\avgidsdriverlx.sys [191256 2014-07-21] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [147736 2014-06-17] (AVG Technologies CZ, s.r.o.) R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-17] (AVG Technologies CZ, s.r.o.) R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [188696 2014-06-17] (AVG Technologies CZ, s.r.o.) R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [241944 2014-06-17] (AVG Technologies CZ, s.r.o.) R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [98584 2014-08-06] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-06-17] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [197400 2014-06-17] (AVG Technologies CZ, s.r.o.) R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-05-25] (AVG Technologies) S3 DrvAgent32; C:\WINDOWS\system32\Drivers\DrvAgent32.sys [23456 2012-07-01] (Phoenix Technologies) [File not signed] R3 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2013-12-18] (Disc Soft Ltd) S3 ENTECH; C:\WINDOWS\system32\DRIVERS\ENTECH.sys [21664 2004-10-25] (EnTech Taiwan) [File not signed] S3 ggsomc; C:\WINDOWS\System32\DRIVERS\ggsomc.sys [26328 2014-08-28] (Sony Mobile Communications) R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed] S3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.) S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.) R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-11] () R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [54784 2008-08-01] (NVIDIA Corporation) R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [145952 2008-11-12] (NVIDIA Corporation) R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [22016 2008-08-01] (NVIDIA Corporation) S3 PCANDIS5; C:\WINDOWS\system32\PCANDIS5.SYS [16128 2003-08-04] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed] S3 s0016bus; C:\WINDOWS\System32\DRIVERS\s0016bus.sys [89256 2008-05-16] (MCCI Corporation) S3 s0016mdfl; C:\WINDOWS\System32\DRIVERS\s0016mdfl.sys [15016 2008-05-16] (MCCI Corporation) S3 s0016mdm; C:\WINDOWS\System32\DRIVERS\s0016mdm.sys [120744 2008-05-16] (MCCI Corporation) S3 s0016mgmt; C:\WINDOWS\System32\DRIVERS\s0016mgmt.sys [114216 2008-05-16] (MCCI Corporation) S3 s0016nd5; C:\WINDOWS\System32\DRIVERS\s0016nd5.sys [25512 2008-05-16] (MCCI Corporation) S3 s0016obex; C:\WINDOWS\System32\DRIVERS\s0016obex.sys [110632 2008-05-16] (MCCI Corporation) S3 s0016unic; C:\WINDOWS\System32\DRIVERS\s0016unic.sys [115752 2008-05-16] (MCCI Corporation) R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [15808 2014-06-04] (IObit) R0 speedfan; C:\WINDOWS\System32\speedfan.sys [25240 2011-03-18] (Almico Software) S3 ssudserd; C:\WINDOWS\System32\DRIVERS\ssudserd.sys [181432 2011-10-18] (DEVGURU Co., LTD.(www.devguru.co.kr)) S3 e4usbaw; system32\DRIVERS\e4usbaw.sys [X] S2 IKANLOADER2; System32\Drivers\e4ldr.sys [X] S4 IntelIde; No ImagePath S3 PCAMPR5; \??\C:\WINDOWS\system32\PCAMPR5.SYS [X] S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP4c\WNt500x86\Sandra.sys [X] U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation) U1 WS2IFSL; No ImagePath U3 pgxoapoc; \??\C:\DOCUME~1\WIERSZ~1\USTAWI~1\Temp\pgxoapoc.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-24 12:25 - 2014-09-24 12:25 - 00003298 _____ () C:\Documents and Settings\Świerszcz\Moje dokumenty\log.log 2014-09-24 08:50 - 2014-09-24 12:26 - 00000000 ____D () C:\FRST 2014-09-21 11:29 - 2014-09-21 11:29 - 00003153 _____ () C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\recently-used.xbel 2014-09-20 10:47 - 2014-09-23 22:38 - 00010730 _____ () C:\WINDOWS\setupapi.log 2014-09-20 10:45 - 2014-09-20 10:46 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Pulpit\muzyka NIE KASOWAC NIGDY 2014-09-19 13:10 - 2014-09-23 22:38 - 00000135 _____ () C:\WINDOWS\setupact.log 2014-09-19 13:10 - 2014-09-19 13:10 - 00000000 _____ () C:\WINDOWS\setuperr.log 2014-09-19 09:50 - 2014-09-19 10:17 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-09-19 00:13 - 2014-09-24 12:25 - 00000159 _____ () C:\WINDOWS\wiadebug.log 2014-09-19 00:13 - 2014-09-24 12:25 - 00000050 _____ () C:\WINDOWS\wiaservc.log 2014-09-19 00:13 - 2014-09-19 00:13 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log 2014-09-06 22:17 - 2014-09-06 22:17 - 48885417 _____ () C:\Documents and Settings\Świerszcz\Moje dokumenty\bookshelf.7z 2014-09-06 20:29 - 2014-09-24 09:23 - 00001380 _____ () C:\WINDOWS\Tasks\OGHF.job 2014-09-06 20:28 - 2014-09-24 09:23 - 00001384 _____ () C:\WINDOWS\Tasks\YHSNBE.job 2014-09-05 20:58 - 2014-09-05 18:09 - 37234632 ____N () C:\Documents and Settings\Świerszcz\Pulpit\WP_20140905_019.mp4 2014-09-05 20:57 - 2014-09-05 18:08 - 28431903 ____N () C:\Documents and Settings\Świerszcz\Pulpit\WP_20140905_018.mp4 2014-09-01 10:18 - 2014-09-01 10:18 - 00002086 _____ () C:\Documents and Settings\Świerszcz\Dane aplikacji\OGHF 2014-09-01 10:18 - 2014-09-01 10:18 - 00001248 _____ () C:\Documents and Settings\Świerszcz\Dane aplikacji\YHSNBE 2014-08-31 20:29 - 2014-08-30 16:40 - 91248751 ____N () C:\Documents and Settings\Świerszcz\Pulpit\MOV_0165.mp4 2014-08-29 19:29 - 2014-08-29 19:29 - 01364531 _____ () C:\Documents and Settings\Świerszcz\Pulpit\adwcleaner_3.308.exe 2014-08-29 17:32 - 2014-09-24 09:23 - 00000592 _____ () C:\WINDOWS\Tasks\AVG_SYS_TASK_0814av.job 2014-08-29 17:32 - 2014-09-24 09:23 - 00000460 _____ () C:\WINDOWS\Tasks\AVG_SYS_TASK_0814av_DELETE.job 2014-08-29 17:32 - 2014-08-29 17:32 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Dane aplikacji\Avg_Update_0814av 2014-08-29 17:32 - 2014-08-29 17:32 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Avg_Update_0814av 2014-08-28 11:13 - 2014-08-31 20:22 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Pulpit\wakacje 2014-08-28 09:48 - 2014-08-28 09:48 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ggsomc_01009.Wdf 2014-08-28 09:13 - 2014-08-28 09:13 - 00026328 _____ (Sony Mobile Communications) C:\WINDOWS\system32\Drivers\ggsomc.sys 2014-08-26 11:29 - 2014-08-26 11:29 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\Adobe ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-24 12:26 - 2014-09-24 08:50 - 00000000 ____D () C:\FRST 2014-09-24 12:26 - 2014-06-22 10:29 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Moje dokumenty\Pobrane 2014-09-24 12:26 - 2010-08-19 15:44 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Temp 2014-09-24 12:25 - 2014-09-24 12:25 - 00003298 _____ () C:\Documents and Settings\Świerszcz\Moje dokumenty\log.log 2014-09-24 12:25 - 2014-09-19 00:13 - 00000159 _____ () C:\WINDOWS\wiadebug.log 2014-09-24 12:25 - 2014-09-19 00:13 - 00000050 _____ () C:\WINDOWS\wiaservc.log 2014-09-24 12:25 - 2010-08-19 15:44 - 00000000 ___RD () C:\Documents and Settings\Świerszcz\Moje dokumenty 2014-09-24 11:50 - 2010-12-18 23:03 - 00001042 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-09-24 11:38 - 2014-05-29 17:01 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-09-24 09:27 - 2010-08-19 17:33 - 01258272 ____C () C:\WINDOWS\system32\PerfStringBackup.INI 2014-09-24 09:27 - 2006-03-02 14:00 - 00556122 _____ () C:\WINDOWS\system32\perfh015.dat 2014-09-24 09:27 - 2006-03-02 14:00 - 00105278 _____ () C:\WINDOWS\system32\perfc015.dat 2014-09-24 09:24 - 2014-02-24 21:56 - 00011708 _____ () C:\WINDOWS\system32\nvAppTimestamps 2014-09-24 09:24 - 2012-02-19 12:35 - 01998484 _____ () C:\WINDOWS\WindowsUpdate.log 2014-09-24 09:23 - 2014-09-06 20:29 - 00001380 _____ () C:\WINDOWS\Tasks\OGHF.job 2014-09-24 09:23 - 2014-09-06 20:28 - 00001384 _____ () C:\WINDOWS\Tasks\YHSNBE.job 2014-09-24 09:23 - 2014-08-29 17:32 - 00000592 _____ () C:\WINDOWS\Tasks\AVG_SYS_TASK_0814av.job 2014-09-24 09:23 - 2014-08-29 17:32 - 00000460 _____ () C:\WINDOWS\Tasks\AVG_SYS_TASK_0814av_DELETE.job 2014-09-24 09:23 - 2014-07-08 08:37 - 00000286 _____ () C:\WINDOWS\Tasks\SmartDefrag3_Update.job 2014-09-24 09:23 - 2014-03-15 10:33 - 00000230 _____ () C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job 2014-09-24 09:23 - 2010-12-18 23:03 - 00001038 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-09-24 09:23 - 2010-08-19 15:43 - 00000006 ___HC () C:\WINDOWS\Tasks\SA.DAT 2014-09-24 09:22 - 2010-08-19 15:44 - 00000188 __SHC () C:\Documents and Settings\Świerszcz\ntuser.ini 2014-09-24 09:22 - 2010-08-19 15:43 - 00032596 _____ () C:\WINDOWS\SchedLgU.Txt 2014-09-24 09:12 - 2010-08-19 17:33 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy 2014-09-24 08:52 - 2014-05-23 17:25 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\MFAData 2014-09-23 22:38 - 2014-09-20 10:47 - 00010730 _____ () C:\WINDOWS\setupapi.log 2014-09-23 22:38 - 2014-09-19 13:10 - 00000135 _____ () C:\WINDOWS\setupact.log 2014-09-23 22:38 - 2014-05-29 17:01 - 00701104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2014-09-23 22:38 - 2014-05-29 17:01 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2014-09-23 22:38 - 2013-10-09 10:57 - 03675824 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe 2014-09-23 21:46 - 2010-08-19 15:44 - 00000000 ___RD () C:\Documents and Settings\Świerszcz\Moje dokumenty\Moje obrazy 2014-09-23 16:59 - 2014-08-01 10:32 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\ProductData 2014-09-23 16:59 - 2010-08-19 17:33 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit 2014-09-23 16:57 - 2010-08-20 02:26 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB981349$ 2014-09-23 16:57 - 2006-03-02 14:00 - 00013646 ____C () C:\WINDOWS\system32\wpa.dbl 2014-09-21 19:50 - 2010-08-19 15:44 - 00000000 ___HD () C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji 2014-09-21 13:36 - 2010-08-19 15:44 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Pulpit 2014-09-21 11:29 - 2014-09-21 11:29 - 00003153 _____ () C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\recently-used.xbel 2014-09-21 11:29 - 2012-07-07 23:43 - 00000000 ____D () C:\Documents and Settings\Świerszcz\.gimp-2.8 2014-09-21 11:23 - 2014-06-02 10:14 - 00000000 ____D () C:\Program Files\Microsoft Bootvis 2014-09-21 11:23 - 2010-08-19 15:44 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Menu Start\Programy 2014-09-21 11:21 - 2010-08-19 18:24 - 00000000 ____D () C:\Program Files\Dziobas Rar Player 2014-09-21 01:31 - 2014-04-19 13:37 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Dane aplikacji\Spotify 2014-09-20 23:36 - 2014-04-19 13:38 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\Spotify 2014-09-20 10:46 - 2014-09-20 10:45 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Pulpit\muzyka NIE KASOWAC NIGDY 2014-09-19 13:30 - 2012-11-18 12:00 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Dane aplikacji\foobar2000 2014-09-19 13:12 - 2010-08-19 15:44 - 00000000 ___RD () C:\Documents and Settings\Świerszcz\Moje dokumenty\Moja muzyka 2014-09-19 13:10 - 2014-09-19 13:10 - 00000000 _____ () C:\WINDOWS\setuperr.log 2014-09-19 13:03 - 2010-10-19 22:46 - 00000000 ___RD () C:\Documents and Settings\Świerszcz\Moje dokumenty\Moje wideo 2014-09-19 13:01 - 2012-12-09 17:44 - 00000000 ____D () C:\Program Files\SpeedFan 2014-09-19 12:40 - 2014-08-02 01:17 - 00025992 _____ (Sysinternals - www.sysinternals.com) C:\WINDOWS\system32\pgdfgsvc.exe 2014-09-19 10:17 - 2014-09-19 09:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-09-19 00:13 - 2014-09-19 00:13 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log 2014-09-19 00:10 - 2010-08-19 15:44 - 00000000 ____D () C:\Documents and Settings\Świerszcz 2014-09-19 00:08 - 2011-09-25 14:17 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Dane aplikacji\uTorrent 2014-09-14 03:26 - 2010-08-19 16:07 - 00001324 _____ () C:\WINDOWS\system32\d3d9caps.dat 2014-09-11 10:52 - 2002-01-01 00:12 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-09-11 10:44 - 2010-08-20 02:23 - 98758480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-09-09 12:43 - 2012-07-02 11:55 - 00000000 ____D () C:\Program Files\Common Files\Steam 2014-09-08 18:26 - 2010-10-14 09:21 - 00000116 ____C () C:\WINDOWS\NeroDigital.ini 2014-09-08 01:53 - 2013-12-17 22:27 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Dane aplikacji\Little Inferno 2014-09-06 22:17 - 2014-09-06 22:17 - 48885417 _____ () C:\Documents and Settings\Świerszcz\Moje dokumenty\bookshelf.7z 2014-09-06 20:47 - 2010-08-19 15:44 - 00000000 __RHD () C:\Documents and Settings\Świerszcz\Dane aplikacji 2014-09-06 20:36 - 2006-03-02 14:00 - 00000598 _____ () C:\WINDOWS\win.ini 2014-09-06 20:36 - 2006-03-02 14:00 - 00000227 ____C () C:\WINDOWS\system.ini 2014-09-06 20:33 - 2014-05-29 09:05 - 00000730 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk 2014-09-06 20:33 - 2014-05-29 09:05 - 00000724 _____ () C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk 2014-09-06 20:33 - 2013-09-25 22:48 - 00000000 ____D () C:\AdwCleaner 2014-09-06 20:33 - 2012-12-12 19:48 - 00000885 _____ () C:\Documents and Settings\Świerszcz\Menu Start\Programy\Internet Explorer.lnk 2014-09-06 20:33 - 2011-10-02 13:23 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Google Chrome 2014-09-06 20:33 - 2010-08-19 17:33 - 00000000 __RHD () C:\Documents and Settings\All Users\Dane aplikacji 2014-09-06 20:33 - 2010-08-19 16:46 - 00000917 _____ () C:\Documents and Settings\Świerszcz\Pulpit\Google Chrome.lnk 2014-09-05 18:09 - 2014-09-05 20:58 - 37234632 ____N () C:\Documents and Settings\Świerszcz\Pulpit\WP_20140905_019.mp4 2014-09-05 18:08 - 2014-09-05 20:57 - 28431903 ____N () C:\Documents and Settings\Świerszcz\Pulpit\WP_20140905_018.mp4 2014-09-03 11:21 - 2010-08-19 15:39 - 00000000 ____D () C:\WINDOWS\system32\Macromed 2014-09-03 10:45 - 2014-05-23 17:33 - 00000732 _____ () C:\Documents and Settings\All Users\Pulpit\AVG 2014.lnk 2014-09-03 10:45 - 2014-05-23 17:33 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\AVG 2014-09-01 10:18 - 2014-09-01 10:18 - 00002086 _____ () C:\Documents and Settings\Świerszcz\Dane aplikacji\OGHF 2014-09-01 10:18 - 2014-09-01 10:18 - 00001248 _____ () C:\Documents and Settings\Świerszcz\Dane aplikacji\YHSNBE 2014-08-31 20:22 - 2014-08-28 11:13 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Pulpit\wakacje 2014-08-31 20:05 - 2014-08-04 19:42 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Pulpit\WYPRAWA 2014-08-30 16:40 - 2014-08-31 20:29 - 91248751 ____N () C:\Documents and Settings\Świerszcz\Pulpit\MOV_0165.mp4 2014-08-29 19:29 - 2014-08-29 19:29 - 01364531 _____ () C:\Documents and Settings\Świerszcz\Pulpit\adwcleaner_3.308.exe 2014-08-29 18:56 - 2011-10-12 20:39 - 00000682 ____C () C:\Documents and Settings\All Users\Pulpit\CCleaner.lnk 2014-08-29 18:56 - 2011-04-04 19:48 - 00000000 ____D () C:\WINDOWS\Minidump 2014-08-29 18:56 - 2010-09-17 07:14 - 00000000 ____D () C:\Program Files\CCleaner 2014-08-29 17:32 - 2014-08-29 17:32 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Dane aplikacji\Avg_Update_0814av 2014-08-29 17:32 - 2014-08-29 17:32 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Avg_Update_0814av 2014-08-28 09:48 - 2014-08-28 09:48 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ggsomc_01009.Wdf 2014-08-28 09:13 - 2014-08-28 09:13 - 00026328 _____ (Sony Mobile Communications) C:\WINDOWS\system32\Drivers\ggsomc.sys 2014-08-28 09:13 - 2014-06-30 12:36 - 00013528 _____ (Sony Mobile Communications) C:\WINDOWS\system32\Drivers\ggflt.sys 2014-08-28 09:13 - 2014-06-30 12:35 - 00000000 ____D () C:\Program Files\Sony Mobile 2014-08-28 09:13 - 2014-06-30 12:35 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Sony Mobile 2014-08-28 09:09 - 2014-04-18 12:10 - 00001739 _____ () C:\Documents and Settings\All Users\Pulpit\Sony PC Companion 2.1.lnk 2014-08-28 09:09 - 2014-04-18 12:10 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Sony 2014-08-28 09:09 - 2010-08-19 15:46 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2014-08-26 11:29 - 2014-08-26 11:29 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Dane aplikacji\Adobe 2014-08-25 19:09 - 2010-10-13 14:26 - 00000000 ____D () C:\Documents and Settings\Świerszcz\Dane aplikacji\Media Player Classic Some content of TEMP: ==================== C:\Documents and Settings\Świerszcz\Ustawienia lokalne\Temp\sfamcc00001.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================