Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 08-12-2014 Ran by darek (administrator) on ZAQ on 12-12-2014 19:44:35 Running from C:\Documents and Settings\darek\Moje dokumenty Loaded Profile: darek (Available profiles: darek & Administrator) Platform: Microsoft Windows XP Professional Dodatek Service Pack 2 (X86) OS Language: Polski Internet Explorer Version 6 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe () C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe (Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE (NVIDIA Corporation) C:\WINDOWS\system32\nvraidservice.exe (AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe (SAMSUNG) C:\Program Files\SEC\MagicTune3.6\MagicTune.exe (Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SoundMan] => C:\WINDOWS\SOUNDMAN.EXE [77824 2004-12-22] (Realtek Semiconductor Corp.) HKLM\...\Run: [NVRaidService] => C:\WINDOWS\system32\nvraidservice.exe [83968 2004-06-11] (NVIDIA Corporation) HKLM\...\Run: [NeroFilterCheck] => C:\WINDOWS\system32\NeroCheck.exe [155648 2007-08-20] (Ahead Software Gmbh) HKLM\...\Run: [AdslTaskBar] => rundll32.exe stmctrl.dll,TaskBar HKLM\...\Run: [avast5] => C:\Program Files\Alwil Software\Avast5\avastUI.exe [4767304 2013-03-07] (AVAST Software) HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x95000000 HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\Policies\Explorer: [NoRecentDocsMenu] 0 HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\MountPoints2: H - H:\setup.exe -autorun HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\MountPoints2: {039ef48c-2f0c-11e1-a649-000fea385d46} - I:\AutoRun.exe HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\MountPoints2: {4fc7ff07-2fa8-11e1-a650-000fea385d46} - I:\AutoRun.exe HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\MountPoints2: {777bd5fb-2fc0-11e1-a652-000fea385d46} - I:\AutoRun.exe HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\MountPoints2: {7c4a3ce4-80e1-11e1-a6d0-000fea385d46} - I:\AutoRun.exe HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\MountPoints2: {7c4a3ce9-80e1-11e1-a6d0-001e101f89d0} - L:\AutoRun.exe HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\MountPoints2: {9e12ae4c-2f33-11e1-a64e-000fea385d46} - I:\AutoRun.exe HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\MountPoints2: {b8ee3fe0-8655-11e2-bfc7-000fea385d46} - K:\AutoRun.exe HKU\S-1-5-21-1606980848-1284227242-839522115-1003\...\MountPoints2: {ef4c14e1-f4b9-11da-9ba3-000fea385d46} - H:\setup.exe -autorun Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\MagicTune 3.6.lnk ShortcutTarget: MagicTune 3.6.lnk -> C:\Program Files\SEC\MagicTune3.6\MagicTuneTray.exe () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll (AVAST Software) ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\Documents and Settings\All Users\Dane aplikacji\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm HKU\S-1-5-21-1606980848-1284227242-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-1606980848-1284227242-839522115-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ URLSearchHook: HKU\S-1-5-21-1606980848-1284227242-839522115-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation) HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION BHO: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.6.0_05\bin\jp2ssv.dll No File BHO: gFlash Class -> {F156768E-81EF-470C-9057-481BA8380DBA} -> C:\Program Files\FlashGet\getflash.dll () DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.eu/buxus/docs/OnlineScanner.cab DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab Tcpip\..\Interfaces\{0CA3D862-99E8-4413-83CA-E142847C5F30}: [NameServer] 194.204.152.34 194.204.159.1 FireFox: ======== FF ProfilePath: C:\Documents and Settings\darek\Dane aplikacji\Mozilla\Firefox\Profiles\3nqzthhm.default-1418404435000 FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @pandasecurity.com/activescan -> C:\Program Files\Panda Security\ActiveScan 2.0\npwrapper.dll (Panda Security) FF Plugin: @real.com/nppl3260;version=6.0.11.3088 -> C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprpjplug;version=6.0.11.3006 -> C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF Plugin HKU\S-1-5-21-1606980848-1284227242-839522115-1003: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll No File FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\Alwil Software\Avast5\WebRep\FF FF Extension: avast! WebRep - C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011-05-10] FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox 2 Beta 1\firefox.exe Chrome: ======= ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [45248 2013-03-07] (AVAST Software) R2 HWDeviceService.exe; C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe [264704 2010-11-16] () [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 alcan5wn; C:\WINDOWS\System32\DRIVERS\alcan5wn.sys [53600 2003-12-08] (THOMSON) [File not signed] S3 alcaudsl; C:\WINDOWS\System32\DRIVERS\alcaudsl.sys [70688 2003-12-08] (THOMSON) [File not signed] R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2304320 2004-12-22] (Realtek Semiconductor Corp.) R2 aswFsBlk; C:\WINDOWS\system32\Drivers\aswFsBlk.sys [29816 2013-03-07] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-03-07] (AVAST Software) R1 aswRdr; C:\WINDOWS\system32\Drivers\aswRdr.sys [49760 2013-03-07] (AVAST Software) R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49248 2013-03-07] () R1 aswSnx; C:\WINDOWS\system32\Drivers\aswSnx.sys [770784 2014-12-01] (AVAST Software) R1 aswSP; C:\WINDOWS\system32\Drivers\aswSP.sys [368176 2013-03-07] (AVAST Software) R1 aswTdi; C:\WINDOWS\system32\Drivers\aswTdi.sys [62376 2013-03-07] (AVAST Software) S3 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [164736 2013-03-07] () S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2004-08-03] (Microsoft Corporation) S3 dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys [223128 2006-06-05] (DT Soft Ltd.) S3 huawei_cdcacm; C:\WINDOWS\System32\DRIVERS\ew_jucdcacm.sys [85248 2010-11-04] (Huawei Technologies Co., Ltd.) R4 InCDfs; C:\WINDOWS\system32\Drivers\InCDfs.sys [91136 2004-09-07] (Ahead Software AG) [File not signed] R1 InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [28544 2004-09-07] (Ahead Software AG) [File not signed] U1 InCDrec; C:\WINDOWS\system32\Drivers\InCDrec.sys [5760 2004-09-07] (Ahead Software AG) [File not signed] R1 magicpvt; C:\WINDOWS\System32\drivers\magicpvt.sys [9728 2005-06-10] (Samsung Electronics, Inc.) [File not signed] R1 MagicTune; C:\WINDOWS\system32\drivers\MTictwl.sys [13396 2005-10-21] () [File not signed] S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2004-08-03] (Microsoft Corporation) R0 nvatabus; C:\WINDOWS\System32\DRIVERS\nvatabus.sys [79360 2004-06-03] (NVIDIA Corporation) R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [33024 2004-07-28] (NVIDIA Corporation) R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [12928 2004-07-28] (NVIDIA Corporation) R0 nv_agp; C:\WINDOWS\System32\DRIVERS\nv_agp.sys [21760 2004-04-02] (NVIDIA Corporation) R0 pavboot; C:\WINDOWS\System32\drivers\pavboot.sys [28544 2008-06-19] (Panda Security, S.L.) R3 Pcouffin; C:\WINDOWS\System32\Drivers\Pcouffin.sys [47360 2007-04-15] (VSO Software) [File not signed] S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [27440 2004-07-17] () R3 Stmatm; C:\WINDOWS\System32\DRIVERS\stmatm.sys [60255 2008-04-23] (STMicroelectronics ) [File not signed] R3 TaurusUsb; C:\WINDOWS\System32\DRIVERS\torususb.sys [683791 2008-04-23] () [File not signed] S3 wceusbsh; C:\WINDOWS\System32\DRIVERS\wceusbsh.sys [28672 2006-11-06] (Microsoft Corporation) S3 PC Camera ; system32\DRIVERS\pa3106hk.sys [X] S4 IntelIde; No ImagePath U1 WS2IFSL; No ImagePath ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-12-12 19:44 - 2014-12-12 19:44 - 00011742 _____ () C:\Documents and Settings\darek\Moje dokumenty\FRST.txt 2014-12-12 19:10 - 2014-12-12 19:10 - 04840875 _____ (ffdshow ) C:\Documents and Settings\darek\Moje dokumenty\ffdshow_rev4533_20140929_clsid.exe 2014-12-12 18:47 - 2014-12-12 18:47 - 00000000 ____D () C:\WINDOWS\system32\languages 2014-12-12 18:47 - 2014-12-12 18:47 - 00000000 ____D () C:\WINDOWS\system32\custom matrices 2014-12-12 18:14 - 2014-12-12 18:14 - 00000000 ____D () C:\Documents and Settings\darek\Pulpit\Stare dane programu Firefox 2014-12-10 20:10 - 2014-12-10 20:10 - 00000000 ____D () C:\Documents and Settings\darek\Ustawienia lokalne\Dane aplikacji\Thinstall 2014-12-10 18:56 - 2014-12-10 18:58 - 00036281 _____ () C:\Documents and Settings\darek\Pulpit\gmer scan dysk C.txt 2014-12-10 16:53 - 2014-12-10 16:54 - 00035005 _____ () C:\Documents and Settings\darek\Pulpit\gmer szybki skan.txt 2014-12-10 14:44 - 2014-12-10 14:44 - 00000552 _____ () C:\Documents and Settings\darek\Pulpit\Skrót do opera.lnk 2014-12-10 14:37 - 2014-12-10 14:37 - 00522360 _____ (Duplex Secure Ltd.) C:\Documents and Settings\darek\Moje dokumenty\SPTDinst-v186-x86.exe 2014-12-09 22:39 - 2014-12-09 22:39 - 00380416 _____ () C:\Documents and Settings\darek\Moje dokumenty\0p5lvrhc.exe 2014-12-09 16:21 - 2014-12-09 16:21 - 00251224 _____ () C:\Documents and Settings\darek\Moje dokumenty\OS2014229268793.zip 2014-12-08 23:24 - 2014-12-12 19:44 - 00000000 ____D () C:\FRST 2014-12-08 23:24 - 2014-12-08 23:24 - 00001716 _____ () C:\checkup.txt 2014-12-08 22:39 - 2014-12-11 15:45 - 00001391 _____ () C:\prośba.txt 2014-12-08 22:38 - 2014-12-08 17:59 - 00002866 _____ () C:\PandaCloudCleaner.txt 2014-12-08 21:54 - 2014-12-08 21:54 - 00852487 _____ () C:\Documents and Settings\darek\Moje dokumenty\SecurityCheck.exe 2014-12-08 21:40 - 2014-12-08 21:40 - 01111040 _____ (Farbar) C:\Documents and Settings\darek\Moje dokumenty\FRST.exe 2014-12-08 19:45 - 2014-12-08 19:45 - 00000000 ____D () C:\Program Files\ESET 2014-12-08 19:34 - 2014-12-08 19:40 - 00000000 ____D () C:\Documents and Settings\darek\Dane aplikacji\Thunderbird 2014-12-08 19:34 - 2014-12-08 19:34 - 00000000 ____D () C:\Documents and Settings\darek\Ustawienia lokalne\Dane aplikacji\Thunderbird 2014-12-08 17:13 - 2014-12-08 17:16 - 00018764 _____ () C:\Documents and Settings\darek\Moje dokumenty\cc_20141208_171345.reg 2014-12-08 16:20 - 2014-12-08 16:20 - 00000935 _____ () C:\Documents and Settings\All Users\Pulpit\Panda Cloud Cleaner.lnk 2014-12-08 16:20 - 2014-12-08 16:20 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Panda Security 2014-12-08 16:12 - 2014-12-08 20:38 - 00000000 ____D () C:\operausb1217int 2014-12-08 16:12 - 2014-12-08 16:12 - 00000000 ____D () C:\ccsetup500 2014-12-08 16:12 - 2014-12-08 16:12 - 00000000 ____D () C:\!KillBox 2014-12-08 16:11 - 2014-12-08 16:12 - 00000000 ____D () C:\Apple Safari v4.0.4 2014-12-08 16:11 - 2014-12-08 11:15 - 00093696 _____ (Option^Explicit Software vbtechcd@gmail.com) C:\KillBox_[www.programosy.pl].exe 2014-12-06 19:33 - 2014-12-05 12:12 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\darek\Pulpit\OTL.exe 2014-12-05 22:19 - 2014-12-05 22:20 - 00001307 _____ () C:\Malwarebytes Anti-Malware 1.txt 2014-12-05 20:28 - 2014-12-10 14:19 - 00002089 _____ () C:\WINDOWS\setupapi.log 2014-12-04 18:39 - 2014-12-04 18:39 - 00001990 _____ () C:\Malwarebytes Anti-Malware 0.txt 2014-12-04 18:20 - 2014-12-07 15:36 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-12-04 18:19 - 2014-12-04 18:19 - 00000777 _____ () C:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk 2014-12-04 18:19 - 2014-12-04 18:19 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware 2014-12-04 18:19 - 2014-12-04 18:19 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes Anti-Malware 2014-12-04 18:19 - 2014-12-04 18:19 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes 2014-12-04 18:19 - 2014-11-21 06:14 - 00054360 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-12-04 18:19 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys 2014-12-04 18:18 - 2014-12-04 10:26 - 20447072 _____ (Malwarebytes Corporation ) C:\mbam-setup-2.0.4.1028.exe 2014-12-04 16:15 - 2014-12-08 22:36 - 00000000 ____D () C:\Kaspersky Rescue Disk 10.0 2014-12-03 18:16 - 2014-12-03 18:16 - 00000060 _____ () C:\WINDOWS\setupact.log 2014-12-03 18:11 - 2014-12-03 18:11 - 00000000 __SHD () C:\WINDOWS\CSC 2014-12-03 17:03 - 2014-12-12 19:24 - 00000000 ___SD () C:\Documents and Settings\Administrator\Ustawienia lokalne\Historia 2014-12-03 17:03 - 2014-12-12 18:48 - 00000000 ____D () C:\Documents and Settings\Administrator 2014-12-03 17:03 - 2014-12-03 17:04 - 00000188 ___SH () C:\Documents and Settings\Administrator\ntuser.ini 2014-12-03 17:03 - 2006-06-02 23:13 - 00000000 __RHD () C:\Documents and Settings\Administrator\Dane aplikacji 2014-12-03 17:03 - 2006-06-02 23:13 - 00000000 ___RD () C:\Documents and Settings\Administrator\Menu Start\Programy\Autostart 2014-12-03 17:03 - 2006-06-02 23:13 - 00000000 ___RD () C:\Documents and Settings\Administrator\Menu Start 2014-12-03 17:03 - 2006-06-02 23:13 - 00000000 ___HD () C:\Documents and Settings\Administrator\Ustawienia lokalne 2014-12-03 17:03 - 2006-06-02 23:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Ustawienia lokalne\Temp 2014-12-03 17:03 - 2006-06-02 23:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Ulubione 2014-12-03 17:03 - 2006-06-02 23:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Pulpit 2014-12-03 17:03 - 2006-06-02 23:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Moje dokumenty 2014-12-03 17:03 - 2006-06-02 21:23 - 00001599 _____ () C:\Documents and Settings\Administrator\Menu Start\Programy\Pomoc zdalna.lnk 2014-12-03 17:03 - 2006-06-02 21:23 - 00000792 _____ () C:\Documents and Settings\Administrator\Menu Start\Programy\Windows Media Player.lnk 2014-12-03 17:03 - 2006-06-02 21:23 - 00000000 ___RD () C:\Documents and Settings\Administrator\Menu Start\Programy\Akcesoria 2014-12-03 17:03 - 2006-06-02 21:23 - 00000000 ___RD () C:\Documents and Settings\Administrator\Menu Start\Programy 2014-12-03 17:03 - 2006-06-02 21:23 - 00000000 ___HD () C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji 2014-12-03 17:03 - 2006-06-02 21:19 - 00000000 ___HD () C:\Documents and Settings\Administrator\Szablony 2014-12-01 13:03 - 2014-12-01 13:03 - 00000175 _____ () C:\WINDOWS\system32\Drivers\aswSnx.sys.sum ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-12-12 19:44 - 2006-06-02 21:34 - 00000000 ____D () C:\Documents and Settings\darek\Ustawienia lokalne\Temp 2014-12-12 19:44 - 2006-06-02 21:34 - 00000000 ____D () C:\Documents and Settings\darek\Moje dokumenty 2014-12-12 19:29 - 2012-07-16 21:02 - 00000366 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job 2014-12-12 19:28 - 2011-12-10 13:54 - 00000159 _____ () C:\WINDOWS\wiadebug.log 2014-12-12 19:28 - 2011-12-10 13:54 - 00000050 _____ () C:\WINDOWS\wiaservc.log 2014-12-12 19:28 - 2006-10-18 22:37 - 00000016 _____ () C:\WINDOWS\system32\magicpvt.dat 2014-12-12 19:28 - 2006-06-02 23:07 - 00000000 _____ () C:\WINDOWS\MEMORY.DMP 2014-12-12 19:28 - 2006-06-02 21:26 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-12-12 19:27 - 2006-06-02 21:34 - 00000000 ___SD () C:\Documents and Settings\darek\Ustawienia lokalne\Historia 2014-12-12 19:27 - 2006-06-02 21:26 - 00000000 ___SD () C:\Documents and Settings\NetworkService\Ustawienia lokalne\Historia 2014-12-12 19:27 - 2006-06-02 21:26 - 00000000 ___SD () C:\Documents and Settings\LocalService\Ustawienia lokalne\Historia 2014-12-12 19:25 - 2011-11-05 21:51 - 00783351 _____ () C:\WINDOWS\WindowsUpdate.log 2014-12-12 19:25 - 2006-06-02 21:34 - 00000188 ___SH () C:\Documents and Settings\darek\ntuser.ini 2014-12-12 19:25 - 2006-06-02 21:26 - 00032408 _____ () C:\WINDOWS\SchedLgU.Txt 2014-12-12 19:24 - 2006-06-02 23:13 - 00000000 ___SD () C:\Documents and Settings\Default User\Ustawienia lokalne\Historia 2014-12-12 19:24 - 2006-06-02 21:34 - 00000000 ___HD () C:\Documents and Settings\darek\Dane aplikacji 2014-12-12 19:24 - 2006-06-02 21:26 - 00000000 ____D () C:\Documents and Settings\LocalService\Ustawienia lokalne\Temp 2014-12-12 19:23 - 2009-12-25 10:18 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1606980848-1284227242-839522115-1004UA.job 2014-12-12 19:20 - 2014-09-07 12:58 - 00000000 ____D () C:\Documents and Settings\darek\Dane aplikacji\GG 2014-12-12 19:17 - 2006-10-04 15:45 - 00000000 ____D () C:\Program Files\Java 2014-12-12 18:59 - 2008-03-21 13:28 - 00000000 ____D () C:\Program Files\eMule 2014-12-12 18:59 - 2006-06-03 08:40 - 00000116 _____ () C:\WINDOWS\NeroDigital.ini 2014-12-12 18:56 - 2006-06-03 08:40 - 00062464 _____ () C:\Documents and Settings\darek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-12-12 18:48 - 2006-06-02 21:34 - 00000000 ____D () C:\Documents and Settings\darek 2014-12-12 18:48 - 2006-06-02 21:26 - 00000000 __SHD () C:\Documents and Settings\NetworkService 2014-12-12 18:48 - 2006-06-02 21:26 - 00000000 __SHD () C:\Documents and Settings\LocalService 2014-12-12 18:48 - 2006-06-02 21:19 - 00000000 ____D () C:\WINDOWS\Registration 2014-12-12 18:47 - 2006-06-07 18:14 - 00000000 ____D () C:\Program Files\ACE Mega CoDecS Pack 2014-12-12 18:37 - 2001-07-22 01:15 - 00001328 _____ () C:\WINDOWS\SYSTEM.INI 2014-12-12 18:26 - 2006-06-02 21:40 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2014-12-12 18:14 - 2006-06-02 21:34 - 00000000 ____D () C:\Documents and Settings\darek\Pulpit 2014-12-11 21:39 - 2007-06-01 23:11 - 00000000 ____D () C:\Program Files\ARCHPR 2014-12-10 21:00 - 2008-07-06 12:46 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Soulseek 2014-12-10 20:58 - 2014-09-07 12:58 - 00000000 ____D () C:\Documents and Settings\darek\Ustawienia lokalne\Dane aplikacji\GG 2014-12-10 20:10 - 2006-06-02 21:34 - 00000000 ___HD () C:\Documents and Settings\darek\Ustawienia lokalne\Dane aplikacji 2014-12-10 14:55 - 2006-06-02 21:20 - 00000000 ____D () C:\WINDOWS\system32\Restore 2014-12-10 14:19 - 2006-06-05 15:42 - 00000000 ____D () C:\Program Files\DAEMON Tools 2014-12-09 22:07 - 2006-09-03 16:49 - 00000000 ____D () C:\soulseek_donload 2014-12-08 20:36 - 2007-05-28 09:21 - 00000000 ____D () C:\WINDOWS\system32\ActiveScan 2014-12-08 17:19 - 2007-08-01 22:35 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy 2014-12-08 16:20 - 2009-01-04 20:31 - 00000000 ____D () C:\Program Files\Panda Security 2014-12-08 16:20 - 2006-06-02 23:13 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy 2014-12-08 16:20 - 2006-06-02 23:13 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit 2014-12-07 16:05 - 2014-08-24 23:10 - 00000000 ____D () C:\Documents and Settings\darek\Ustawienia lokalne\Dane aplikacji\Skype 2014-12-07 15:06 - 2006-06-02 21:34 - 00000000 ___RD () C:\Documents and Settings\darek\Ulubione 2014-12-07 14:00 - 2006-06-05 18:41 - 00000000 ____D () C:\ET2 2014-12-07 13:00 - 2011-11-28 20:19 - 00000000 ____D () C:\Program Files\Neostrada TP 2014-12-05 20:37 - 2006-06-02 23:11 - 00000212 ___SH () C:\boot.ini 2014-12-05 20:37 - 2001-07-22 01:16 - 00000909 _____ () C:\WINDOWS\win.ini 2014-12-05 20:34 - 2006-06-03 23:33 - 00000000 ____D () C:\WINDOWS\system32\NtmsData 2014-12-05 20:28 - 2006-06-02 23:07 - 00000000 ____D () C:\WINDOWS\repair 2014-12-05 20:24 - 2006-06-03 07:54 - 00043016 ____N () C:\Documents and Settings\darek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT 2014-12-05 20:21 - 2001-07-22 01:17 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl 2014-12-05 17:46 - 2006-06-19 20:25 - 00000000 ____D () C:\dane i programy 2014-12-05 17:32 - 2006-06-02 23:12 - 00192976 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-12-04 22:50 - 2006-06-02 23:07 - 00000000 ____D () C:\WINDOWS\msagent 2014-12-04 18:19 - 2006-06-02 23:13 - 00000000 __RHD () C:\Documents and Settings\All Users\Dane aplikacji 2014-12-02 13:56 - 2006-06-02 21:26 - 00000000 ____D () C:\Documents and Settings\LocalService\Dane aplikacji 2014-12-02 13:43 - 2006-06-03 19:20 - 00000082 _____ () C:\WINDOWS\wininit.ini 2014-12-02 10:23 - 2009-12-25 10:18 - 00001076 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1606980848-1284227242-839522115-1004Core.job 2014-12-01 13:03 - 2011-05-10 21:20 - 00770784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2014-11-24 15:45 - 2006-06-03 19:47 - 00101376 ____N () C:\Documents and Settings\darek\Moje dokumenty\bankowość.xls 2014-11-23 10:52 - 2006-06-03 19:47 - 00000000 ____D () C:\Documents and Settings\darek\Moje dokumenty\prog_edukac 2014-11-21 21:56 - 2006-10-21 21:59 - 00000000 ____D () C:\Program Files\FlashGet 2014-11-21 20:52 - 2007-06-02 23:15 - 02133818 ____N () C:\Documents and Settings\darek\Moje dokumenty\DVD muza.DLC 2014-11-17 21:56 - 2014-06-05 16:51 - 00000352 ____N () C:\Documents and Settings\darek\Menu Start\Programy\Image Eye.lnk 2014-11-17 21:56 - 2006-06-02 21:34 - 00000000 ___RD () C:\Documents and Settings\darek\Menu Start\Programy ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================