Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 04-01-2015 Ran by STANISŁAW SKRZYPCZAK (administrator) on DOM-GRAZKA on 06-01-2015 18:37:19 Running from C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Pulpit\logi Loaded Profile: STANISŁAW SKRZYPCZAK (Available profiles: STANISŁAW SKRZYPCZAK & GRAŻKA) Platform: Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polski Internet Explorer Version 8 (Default browser: Launcher) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\WINDOWS.1\system32\smss.exe (Microsoft Corporation) C:\WINDOWS.1\system32\winlogon.exe (Microsoft Corporation) C:\WINDOWS.1\system32\services.exe (Microsoft Corporation) C:\WINDOWS.1\system32\lsass.exe (Microsoft Corporation) C:\WINDOWS.1\system32\svchost.exe (Microsoft Corporation) C:\WINDOWS.1\system32\svchost.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\WINDOWS.1\system32\spoolsv.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe (Microsoft Corporation) C:\WINDOWS.1\explorer.exe (Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe (Microsoft Corporation) C:\WINDOWS.1\system32\svchost.exe (Microsoft Corporation) C:\WINDOWS.1\system32\wuauclt.exe (Microsoft Corporation) C:\WINDOWS.1\system32\rundll32.exe (Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\pptd40nt.exe (Nuance Communications, Inc.) C:\Program Files\Nuance\PDF Viewer Plus\pdfPro5Hook.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Microsoft Corporation) C:\WINDOWS.1\system32\ctfmon.exe (Acresso Corporation) C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\FLEXnet\Connect\11\ISUSPM.exe (Microsoft Corporation) C:\WINDOWS.1\system32\svchost.exe (Microsoft Corporation) C:\WINDOWS.1\system32\wbem\unsecapp.exe (Microsoft Corporation) C:\WINDOWS.1\system32\wscntfy.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Cmaudio] => RunDll32 cmicnfg.cpl,CMICtrlWnd HKLM\...\Run: [HPDJ Taskbar Utility] => C:\WINDOWS.1\System32\spool\drivers\w32x86\3\hpztsb08.exe [172032 2003-03-11] (HP) HKLM\...\Run: [IndexSearch] => C:\Program Files\Nuance\PaperPort\IndexSearch.exe [46368 2010-03-08] (Nuance Communications, Inc.) HKLM\...\Run: [PaperPort PTD] => C:\Program Files\Nuance\PaperPort\pptd40nt.exe [29984 2010-03-08] (Nuance Communications, Inc.) HKLM\...\Run: [PPort12reminder] => C:\Program Files\Nuance\PaperPort\Ereg\Ereg.exe [328992 2010-02-09] (Nuance Communications, Inc.) HKLM\...\Run: [PDFHook] => C:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.) HKLM\...\Run: [PDF5 Registry Controller] => C:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.) HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [2621440 2010-06-10] (Brother Industries, Ltd.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2014-12-19] (AVAST Software) HKLM\...\Run: [rec_pl_1] => [X] HKLM\...\Run: [rec_pl_2] => [X] HKLM\...\Winlogon: [Userinit] C:\WINDOWS.1\system32\userinit.exe, HKLM\...\Winlogon: [UIHost] C:\WINDOWS.1\system32\logonui.exe [515072 2008-04-14] (Microsoft Corporation) Winlogon\Notify\crypt32chain: C:\WINDOWS.1\system32\crypt32.dll (Microsoft Corporation) Winlogon\Notify\cryptnet: C:\WINDOWS.1\system32\cryptnet.dll (Microsoft Corporation) Winlogon\Notify\cscdll: C:\WINDOWS.1\system32\cscdll.dll (Microsoft Corporation) Winlogon\Notify\dimsntfy: C:\WINDOWS.1\System32\dimsntfy.dll (Microsoft Corporation) Winlogon\Notify\ScCertProp: C:\WINDOWS.1\system32\wlnotify.dll (Microsoft Corporation) Winlogon\Notify\Schedule: C:\WINDOWS.1\system32\wlnotify.dll (Microsoft Corporation) Winlogon\Notify\sclgntfy: C:\WINDOWS.1\system32\sclgntfy.dll (Microsoft Corporation) Winlogon\Notify\SensLogn: C:\WINDOWS.1\system32\WlNotify.dll (Microsoft Corporation) Winlogon\Notify\termsrv: C:\WINDOWS.1\system32\wlnotify.dll (Microsoft Corporation) Winlogon\Notify\wlballoon: C:\WINDOWS.1\system32\wlnotify.dll (Microsoft Corporation) HKU\S-1-5-19\...\Run: [CTFMON.EXE] => C:\WINDOWS.1\System32\CTFMON.EXE [15360 2008-04-14] (Microsoft Corporation) HKU\S-1-5-20\...\Run: [CTFMON.EXE] => C:\WINDOWS.1\System32\CTFMON.EXE [15360 2008-04-14] (Microsoft Corporation) HKU\S-1-5-21-2052111302-920026266-1177238915-1004\...\Run: [ctfmon.exe] => C:\WINDOWS.1\system32\ctfmon.exe [15360 2008-04-14] (Microsoft Corporation) HKU\S-1-5-21-2052111302-920026266-1177238915-1004\...\Run: [ISUSPM] => C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation) HKU\S-1-5-21-2052111302-920026266-1177238915-1004\...\Run: [eMuleAutoStart] => C:\eMule\emule.exe [5758976 2010-04-07] (http://www.emule-project.net) HKU\S-1-5-21-2052111302-920026266-1177238915-1004\...\MountPoints2: {fa893f62-d951-11df-8b59-00e04caed27f} - "G:\WD SmartWare.exe" autoplay=true HKU\S-1-5-18\...\Run: [CTFMON.EXE] => C:\WINDOWS.1\System32\CTFMON.EXE [15360 2008-04-14] (Microsoft Corporation) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Dane aplikacji\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Dane aplikacji\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Dane aplikacji\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Dane aplikacji\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS.1\system32\blank.htm HKU\S-1-5-21-2052111302-920026266-1177238915-1004\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS.1\system32\blank.htm HKU\S-1-5-21-2052111302-920026266-1177238915-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pl-pl/?ocid=iehp BHO: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - C:\WINDOWS.1\system32\urlmon.dll (Microsoft Corporation) Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} - C:\WINDOWS.1\System32\mshtml.dll (Microsoft Corporation) Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - C:\WINDOWS.1\System32\wiascr.dll (Microsoft Corporation) Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - C:\WINDOWS.1\system32\urlmon.dll (Microsoft Corporation) Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS.1\system32\urlmon.dll (Microsoft Corporation) Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} - C:\WINDOWS.1\system32\SHELL32.dll (Microsoft Corporation) ShellExecuteHooks: URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS.1\system32\shell32.dll [8491520 2012-06-08] (Microsoft Corporation) Winsock: Catalog5 01 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog5 02 C:\WINDOWS.1\system32\winrnr.dll [16896] (Microsoft Corporation) Winsock: Catalog5 03 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 01 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 02 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 03 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 04 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 05 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 06 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 07 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 08 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 09 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 10 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 11 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 12 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 13 C:\WINDOWS.1\system32\mswsock.dll [246784] (Microsoft Corporation) Winsock: Catalog9 14 C:\WINDOWS.1\system32\rsvpsp.dll [92672] (Microsoft Corporation) Winsock: Catalog9 15 C:\WINDOWS.1\system32\rsvpsp.dll [92672] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 FireFox: ======== FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS.1\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll (Sun Microsystems, Inc.) FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2011-05-22] Chrome: ======= CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-19] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S4 Alerter; C:\WINDOWS.1\system32\alrsvc.dll [17408 2008-04-14] (Microsoft Corporation) R3 ALG; C:\WINDOWS.1\System32\alg.exe [44544 2008-04-14] (Microsoft Corporation) S3 aspnet_state; C:\WINDOWS.1\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [34312 2008-07-25] (Microsoft Corporation) R2 AudioSrv; C:\WINDOWS.1\System32\audiosrv.dll [42496 2008-04-14] (Microsoft Corporation) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-19] (AVAST Software) R3 BITS; C:\WINDOWS.1\system32\qmgr.dll [409088 2008-04-14] (Microsoft Corporation) S2 Browser; C:\WINDOWS.1\System32\browser.dll [78336 2012-07-06] (Microsoft Corporation) S3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed] S3 CiSvc; C:\WINDOWS.1\system32\cisvc.exe [5632 2008-04-14] (Microsoft Corporation) S4 ClipSrv; C:\WINDOWS.1\system32\clipsrv.exe [33280 2008-04-14] (Microsoft Corporation) S3 clr_optimization_v2.0.50727_32; C:\WINDOWS.1\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [69632 2008-07-25] (Microsoft Corporation) S3 COMSysApp; C:\WINDOWS.1\System32\dllhost.exe [5120 2008-04-14] (Microsoft Corporation) R2 CryptSvc; C:\WINDOWS.1\System32\cryptsvc.dll [62464 2008-04-14] (Microsoft Corporation) R2 DcomLaunch; C:\WINDOWS.1\system32\rpcss.dll [401408 2009-02-09] (Microsoft Corporation) R2 Dhcp; C:\WINDOWS.1\System32\dhcpcsvc.dll [126464 2008-04-14] (Microsoft Corporation) S3 dmadmin; C:\WINDOWS.1\System32\dmadmin.exe [225280 2008-04-14] (Microsoft Corp., Veritas Software) S3 dmserver; C:\WINDOWS.1\System32\dmserver.dll [24064 2008-04-14] (Microsoft Corp.) R2 Dnscache; C:\WINDOWS.1\System32\dnsrslvr.dll [45568 2009-04-20] (Microsoft Corporation) S3 Dot3svc; C:\WINDOWS.1\System32\dot3svc.dll [133632 2008-04-14] (Microsoft Corporation) S3 EapHost; C:\WINDOWS.1\System32\eapsvc.dll [33792 2008-04-14] (Microsoft Corporation) R2 ERSvc; C:\WINDOWS.1\System32\ersvc.dll [23040 2008-04-14] (Microsoft Corporation) R2 Eventlog; C:\WINDOWS.1\system32\services.exe [111104 2009-02-09] (Microsoft Corporation) R3 EventSystem; C:\WINDOWS.1\System32\es.dll [253952 2008-07-07] (Microsoft Corporation) R3 FastUserSwitchingCompatibility; C:\WINDOWS.1\System32\shsvcs.dll [135680 2009-07-28] (Microsoft Corporation) S3 FontCache3.0.0.0; C:\WINDOWS.1\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [46104 2008-07-29] (Microsoft Corporation) R2 helpsvc; C:\WINDOWS.1\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400 2008-04-14] (Microsoft Corporation) R2 HidServ; C:\WINDOWS.1\System32\hidserv.dll [21504 2008-04-14] (Microsoft Corporation) S3 hkmsvc; C:\WINDOWS.1\System32\kmsvc.dll [61440 2008-04-14] (Microsoft Corporation) R3 HTTPFilter; C:\WINDOWS.1\System32\w3ssl.dll [15872 2008-04-14] (Microsoft Corporation) S3 idsvc; C:\WINDOWS.1\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [881664 2008-07-29] (Microsoft Corporation) S3 ImapiService; C:\WINDOWS.1\System32\imapi.exe [150528 2008-04-14] (Microsoft Corporation) R2 lanmanserver; C:\WINDOWS.1\System32\srvsvc.dll [99840 2010-08-27] (Microsoft Corporation) R2 lanmanworkstation; C:\WINDOWS.1\System32\wkssvc.dll [132096 2009-06-10] (Microsoft Corporation) R2 LmHosts; C:\WINDOWS.1\System32\lmhsvc.dll [13824 2008-04-14] (Microsoft Corporation) S4 Messenger; C:\WINDOWS.1\System32\msgsvc.dll [33792 2008-04-14] (Microsoft Corporation) S3 mnmsrvc; C:\WINDOWS.1\System32\mnmsrvc.exe [32768 2008-04-14] (Microsoft Corporation) S3 MSDTC; C:\WINDOWS.1\System32\msdtc.exe [6144 2008-04-14] (Microsoft Corporation) S3 MSIServer; C:\WINDOWS.1\System32\msiexec.exe [78848 2008-04-14] (Microsoft Corporation) S3 napagent; C:\WINDOWS.1\System32\qagentrt.dll [293376 2008-04-14] (Microsoft Corporation) S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2007-01-15] (Nero AG) [File not signed] S4 NetDDE; C:\WINDOWS.1\system32\netdde.exe [114688 2008-04-14] (Microsoft Corporation) S4 NetDDEdsdm; C:\WINDOWS.1\system32\netdde.exe [114688 2008-04-14] (Microsoft Corporation) S3 Netlogon; C:\WINDOWS.1\System32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) R3 Netman; C:\WINDOWS.1\System32\netman.dll [198144 2008-04-14] (Microsoft Corporation) S4 NetTcpPortSharing; C:\WINDOWS.1\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [132096 2008-07-29] (Microsoft Corporation) R3 Nla; C:\WINDOWS.1\System32\mswsock.dll [246784 2008-06-20] (Microsoft Corporation) S3 NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [266240 2007-01-15] (Nero AG) [File not signed] S3 NtLmSsp; C:\WINDOWS.1\System32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) S3 NtmsSvc; C:\WINDOWS.1\system32\ntmssvc.dll [435712 2008-04-14] (Microsoft Corporation) R2 PDFProFiltSrvPP; C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-08] (Nuance Communications, Inc.) R2 PlugPlay; C:\WINDOWS.1\system32\services.exe [111104 2009-02-09] (Microsoft Corporation) R2 PolicyAgent; C:\WINDOWS.1\System32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) R2 ProtectedStorage; C:\WINDOWS.1\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) S3 RasAuto; C:\WINDOWS.1\System32\rasauto.dll [88576 2008-04-14] (Microsoft Corporation) R3 RasMan; C:\WINDOWS.1\System32\rasmans.dll [186368 2008-04-14] (Microsoft Corporation) S3 RDSessMgr; C:\WINDOWS.1\system32\sessmgr.exe [142336 2008-04-14] (Microsoft Corporation) S4 RemoteAccess; C:\WINDOWS.1\System32\mprdim.dll [53248 2008-04-14] (Microsoft Corporation) S3 RpcLocator; C:\WINDOWS.1\System32\locator.exe [75264 2008-04-14] (Microsoft Corporation) R2 RpcSs; C:\WINDOWS.1\system32\rpcss.dll [401408 2009-02-09] (Microsoft Corporation) S3 RSVP; C:\WINDOWS.1\System32\rsvp.exe [132608 2002-09-23] (Microsoft Corporation) R2 SamSs; C:\WINDOWS.1\system32\lsass.exe [13312 2008-04-14] (Microsoft Corporation) S3 SCardSvr; C:\WINDOWS.1\System32\SCardSvr.exe [98304 2008-04-14] (Microsoft Corporation) R2 Schedule; C:\WINDOWS.1\system32\schedsvc.dll [193536 2008-04-14] (Microsoft Corporation) R2 seclogon; C:\WINDOWS.1\System32\seclogon.dll [18944 2008-04-14] (Microsoft Corporation) R2 SENS; C:\WINDOWS.1\system32\sens.dll [39424 2008-04-14] (Microsoft Corporation) R2 SharedAccess; C:\WINDOWS.1\System32\ipnathlp.dll [330752 2008-04-14] (Microsoft Corporation) R2 ShellHWDetection; C:\WINDOWS.1\System32\shsvcs.dll [135680 2009-07-28] (Microsoft Corporation) R2 Spooler; C:\WINDOWS.1\system32\spoolsv.exe [58880 2010-08-17] (Microsoft Corporation) R2 srservice; C:\WINDOWS.1\System32\srsvc.dll [171520 2008-04-14] (Microsoft Corporation) R3 SSDPSRV; C:\WINDOWS.1\System32\ssdpsrv.dll [71680 2008-04-14] (Microsoft Corporation) R2 stisvc; C:\WINDOWS.1\system32\wiaservc.dll [334336 2008-04-14] (Microsoft Corporation) S3 SwPrv; C:\WINDOWS.1\System32\dllhost.exe [5120 2008-04-14] (Microsoft Corporation) S3 SysmonLog; C:\WINDOWS.1\system32\smlogsvc.exe [91136 2008-04-14] (Microsoft Corporation) R3 TapiSrv; C:\WINDOWS.1\System32\tapisrv.dll [249856 2008-04-14] (Microsoft Corporation) R3 TermService; C:\WINDOWS.1\System32\termsrv.dll [296448 2008-04-14] (Microsoft Corporation) R2 Themes; C:\WINDOWS.1\System32\shsvcs.dll [135680 2009-07-28] (Microsoft Corporation) R2 TrkWks; C:\WINDOWS.1\system32\trkwks.dll [90112 2008-04-14] (Microsoft Corporation) R2 UMWdf; C:\WINDOWS.1\system32\wdfmgr.exe [38912 2004-08-11] (Microsoft Corporation) S3 upnphost; C:\WINDOWS.1\System32\upnphost.dll [186880 2008-04-14] (Microsoft Corporation) S3 UPS; C:\WINDOWS.1\System32\ups.exe [18432 2008-04-14] (Microsoft Corporation) S3 VSS; C:\WINDOWS.1\System32\vssvc.exe [291840 2008-04-14] (Microsoft Corporation) R2 W32Time; C:\WINDOWS.1\System32\w32time.dll [176128 2008-04-14] (Microsoft Corporation) R2 WebClient; C:\WINDOWS.1\System32\webclnt.dll [68096 2008-04-14] (Microsoft Corporation) R2 winmgmt; C:\WINDOWS.1\system32\wbem\WMIsvc.dll [145408 2008-04-14] (Microsoft Corporation) S3 WmdmPmSN; C:\WINDOWS.1\system32\mspmsnsv.dll [25088 2004-08-11] (Microsoft Corporation) S3 WmiApSrv; C:\WINDOWS.1\System32\wbem\wmiapsrv.exe [126464 2008-04-14] (Microsoft Corporation) R2 wscsvc; C:\WINDOWS.1\system32\wscsvc.dll [80896 2008-04-14] (Microsoft Corporation) R2 wuauserv; C:\WINDOWS.1\system32\wuauserv.dll [6656 2008-04-14] (Microsoft Corporation) R2 WZCSVC; C:\WINDOWS.1\System32\wzcsvc.dll [483840 2008-04-14] (Microsoft Corporation) S3 xmlprov; C:\WINDOWS.1\System32\xmlprov.dll [129024 2008-04-14] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R0 ACPI; C:\WINDOWS.1\System32\DRIVERS\ACPI.sys [188544 2008-04-14] (Microsoft Corporation) S4 ACPIEC; C:\WINDOWS.1\system32\Drivers\ACPIEC.sys [12032 2002-09-23] (Microsoft Corporation) S3 aec; C:\WINDOWS.1\System32\drivers\aec.sys [142592 2008-04-13] (Microsoft Corporation) R1 AFD; C:\WINDOWS.1\System32\drivers\afd.sys [138496 2011-08-17] (Microsoft Corporation) R2 aswHwid; C:\WINDOWS.1\system32\drivers\aswHwid.sys [24184 2014-12-19] () R2 aswMonFlt; C:\WINDOWS.1\system32\drivers\aswMonFlt.sys [70384 2014-12-19] (AVAST Software) R1 aswRdr; C:\WINDOWS.1\system32\drivers\aswRdr.sys [55240 2014-12-19] (AVAST Software) R0 aswRvrt; C:\WINDOWS.1\system32\Drivers\aswRvrt.sys [49944 2014-12-19] () R1 aswSnx; C:\WINDOWS.1\system32\drivers\aswSnx.sys [787800 2014-12-19] (AVAST Software) R1 aswSP; C:\WINDOWS.1\system32\drivers\aswSP.sys [423784 2014-12-19] (AVAST Software) R1 aswTdi; C:\WINDOWS.1\system32\drivers\aswTdi.sys [57928 2014-12-19] (AVAST Software) R0 aswVmm; C:\WINDOWS.1\system32\Drivers\aswVmm.sys [206248 2014-12-19] () S3 AsyncMac; C:\WINDOWS.1\System32\DRIVERS\asyncmac.sys [14336 2008-04-13] (Microsoft Corporation) R0 atapi; C:\WINDOWS.1\System32\DRIVERS\atapi.sys [96512 2008-04-13] (Microsoft Corporation) S3 Atmarpc; C:\WINDOWS.1\System32\DRIVERS\atmarpc.sys [59904 2008-04-13] (Microsoft Corporation) R3 audstub; C:\WINDOWS.1\System32\DRIVERS\audstub.sys [3072 2001-08-17] (Microsoft Corporation) R1 Beep; C:\WINDOWS.1\system32\Drivers\Beep.sys [4224 2002-09-23] (Microsoft Corporation) S3 BrScnUsb; C:\WINDOWS.1\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.) S4 cbidf2k; C:\WINDOWS.1\system32\Drivers\cbidf2k.sys [13952 2002-09-23] (Microsoft Corporation) S1 Cdaudio; C:\WINDOWS.1\system32\Drivers\Cdaudio.sys [18688 2002-09-23] (Microsoft Corporation) S4 Cdfs; C:\WINDOWS.1\system32\Drivers\Cdfs.sys [63744 2008-04-13] (Microsoft Corporation) R1 Cdrom; C:\WINDOWS.1\System32\DRIVERS\cdrom.sys [62976 2008-04-13] (Microsoft Corporation) R3 cmuda; C:\WINDOWS.1\System32\drivers\cmuda.sys [1368000 2005-12-15] (C-Media Inc) R0 Disk; C:\WINDOWS.1\System32\DRIVERS\disk.sys [36352 2008-04-13] (Microsoft Corporation) S4 dmboot; C:\WINDOWS.1\System32\drivers\dmboot.sys [800000 2008-04-14] (Microsoft Corp., Veritas Software) S4 dmio; C:\WINDOWS.1\system32\Drivers\dmio.sys [153856 2008-04-14] (Microsoft Corp., Veritas Software) S4 dmload; C:\WINDOWS.1\system32\Drivers\dmload.sys [5888 2002-09-23] (Microsoft Corp., Veritas Software.) S3 DMusic; C:\WINDOWS.1\System32\drivers\DMusic.sys [52864 2008-04-13] (Microsoft Corporation) S3 drmkaud; C:\WINDOWS.1\System32\drivers\drmkaud.sys [2944 2008-04-13] (Microsoft Corporation) R4 Fastfat; C:\WINDOWS.1\system32\Drivers\Fastfat.sys [143744 2008-04-13] (Microsoft Corporation) R3 Fdc; C:\WINDOWS.1\System32\DRIVERS\fdc.sys [27392 2008-04-13] (Microsoft Corporation) R3 FETNDIS; C:\WINDOWS.1\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. ) R1 Fips; C:\WINDOWS.1\system32\Drivers\Fips.sys [44672 2008-04-14] (Microsoft Corporation) R3 Flpydisk; C:\WINDOWS.1\System32\DRIVERS\flpydisk.sys [20480 2008-04-13] (Microsoft Corporation) R0 FltMgr; C:\WINDOWS.1\System32\drivers\fltmgr.sys [129792 2008-04-13] (Microsoft Corporation) U1 Fs_Rec; C:\WINDOWS.1\system32\Drivers\Fs_Rec.sys [7936 2002-09-23] (Microsoft Corporation) R0 Ftdisk; C:\WINDOWS.1\System32\DRIVERS\ftdisk.sys [125568 2002-09-23] (Microsoft Corporation) R3 gameenum; C:\WINDOWS.1\System32\DRIVERS\gameenum.sys [10624 2008-04-13] (Microsoft Corporation) R3 Gpc; C:\WINDOWS.1\System32\DRIVERS\msgpc.sys [35072 2008-04-13] (Microsoft Corporation) S3 hamachi; C:\WINDOWS.1\System32\DRIVERS\hamachi.sys [26176 2010-02-03] (LogMeIn, Inc.) R3 HidUsb; C:\WINDOWS.1\System32\DRIVERS\hidusb.sys [10368 2008-04-13] (Microsoft Corporation) R3 HTTP; C:\WINDOWS.1\System32\Drivers\HTTP.sys [265728 2009-10-20] (Microsoft Corporation) R1 i8042prt; C:\WINDOWS.1\System32\DRIVERS\i8042prt.sys [53248 2008-04-14] (Microsoft Corporation) S1 Imapi; C:\WINDOWS.1\System32\DRIVERS\imapi.sys [42112 2008-04-13] (Microsoft Corporation) R1 intelppm; C:\WINDOWS.1\System32\DRIVERS\intelppm.sys [40448 2008-04-14] (Microsoft Corporation) S3 ip6fw; C:\WINDOWS.1\System32\drivers\ip6fw.sys [36608 2008-04-13] (Microsoft Corporation) S3 IpFilterDriver; C:\WINDOWS.1\System32\DRIVERS\ipfltdrv.sys [32896 2002-09-23] (Microsoft Corporation) S3 IpInIp; C:\WINDOWS.1\System32\DRIVERS\ipinip.sys [20864 2008-04-13] (Microsoft Corporation) R3 IpNat; C:\WINDOWS.1\System32\DRIVERS\ipnat.sys [152832 2008-04-13] (Microsoft Corporation) R1 IPSec; C:\WINDOWS.1\System32\DRIVERS\ipsec.sys [75264 2008-04-13] (Microsoft Corporation) S3 IRENUM; C:\WINDOWS.1\System32\DRIVERS\irenum.sys [11264 2008-04-13] (Microsoft Corporation) R0 isapnp; C:\WINDOWS.1\System32\DRIVERS\isapnp.sys [37632 2008-04-14] (Microsoft Corporation) R1 Kbdclass; C:\WINDOWS.1\System32\DRIVERS\kbdclass.sys [24960 2008-04-14] (Microsoft Corporation) R1 kbdhid; C:\WINDOWS.1\System32\DRIVERS\kbdhid.sys [14720 2008-04-14] (Microsoft Corporation) R3 kmixer; C:\WINDOWS.1\System32\drivers\kmixer.sys [172416 2008-04-13] (Microsoft Corporation) R0 KSecDD; C:\WINDOWS.1\system32\Drivers\KSecDD.sys [92928 2009-06-24] (Microsoft Corporation) R1 mnmdd; C:\WINDOWS.1\system32\Drivers\mnmdd.sys [4224 2002-09-23] (Microsoft Corporation) S3 Modem; C:\WINDOWS.1\system32\Drivers\Modem.sys [30208 2008-04-14] (Microsoft Corporation) R1 Mouclass; C:\WINDOWS.1\System32\DRIVERS\mouclass.sys [23296 2008-04-14] (Microsoft Corporation) R3 mouhid; C:\WINDOWS.1\System32\DRIVERS\mouhid.sys [12160 2001-10-26] (Microsoft Corporation) R0 MountMgr; C:\WINDOWS.1\system32\Drivers\MountMgr.sys [42368 2008-04-13] (Microsoft Corporation) R3 MRxDAV; C:\WINDOWS.1\System32\DRIVERS\mrxdav.sys [180608 2008-04-13] (Microsoft Corporation) R1 MRxSmb; C:\WINDOWS.1\System32\DRIVERS\mrxsmb.sys [456320 2011-07-15] (Microsoft Corporation) R1 Msfs; C:\WINDOWS.1\system32\Drivers\Msfs.sys [19072 2008-04-13] (Microsoft Corporation) S3 MSKSSRV; C:\WINDOWS.1\System32\drivers\MSKSSRV.sys [7552 2008-04-13] (Microsoft Corporation) S3 MSPCLOCK; C:\WINDOWS.1\System32\drivers\MSPCLOCK.sys [5376 2008-04-13] (Microsoft Corporation) S3 MSPQM; C:\WINDOWS.1\System32\drivers\MSPQM.sys [4992 2008-04-13] (Microsoft Corporation) R3 mssmbios; C:\WINDOWS.1\System32\DRIVERS\mssmbios.sys [15488 2008-04-13] (Microsoft Corporation) R3 ms_mpu401; C:\WINDOWS.1\System32\drivers\msmpu401.sys [2944 2001-08-17] (Microsoft Corporation) R0 Mup; C:\WINDOWS.1\system32\Drivers\Mup.sys [105472 2011-04-21] (Microsoft Corporation) R0 NDIS; C:\WINDOWS.1\system32\Drivers\NDIS.sys [182656 2008-04-13] (Microsoft Corporation) R3 NdisTapi; C:\WINDOWS.1\System32\DRIVERS\ndistapi.sys [10496 2011-07-08] (Microsoft Corporation) R3 Ndisuio; C:\WINDOWS.1\System32\DRIVERS\ndisuio.sys [14592 2008-04-13] (Microsoft Corporation) R3 NdisWan; C:\WINDOWS.1\System32\DRIVERS\ndiswan.sys [91520 2008-04-13] (Microsoft Corporation) R3 NDProxy; C:\WINDOWS.1\system32\Drivers\NDProxy.sys [40960 2013-11-27] (Microsoft Corporation) R1 NetBIOS; C:\WINDOWS.1\System32\DRIVERS\netbios.sys [34688 2008-04-13] (Microsoft Corporation) R1 NetBT; C:\WINDOWS.1\System32\DRIVERS\netbt.sys [162816 2008-04-13] (Microsoft Corporation) R1 Npfs; C:\WINDOWS.1\system32\Drivers\Npfs.sys [30848 2008-04-13] (Microsoft Corporation) R4 Ntfs; C:\WINDOWS.1\system32\Drivers\Ntfs.sys [574976 2008-04-13] (Microsoft Corporation) R1 Null; C:\WINDOWS.1\system32\Drivers\Null.sys [2944 2002-09-23] (Microsoft Corporation) S3 NwlnkFlt; C:\WINDOWS.1\System32\DRIVERS\nwlnkflt.sys [12416 2002-09-23] (Microsoft Corporation) S3 NwlnkFwd; C:\WINDOWS.1\System32\DRIVERS\nwlnkfwd.sys [32512 2002-09-23] (Microsoft Corporation) R3 Parport; C:\WINDOWS.1\System32\DRIVERS\parport.sys [80256 2008-04-14] (Microsoft Corporation) R0 PartMgr; C:\WINDOWS.1\system32\Drivers\PartMgr.sys [19712 2008-04-13] (Microsoft Corporation) R2 ParVdm; C:\WINDOWS.1\system32\Drivers\ParVdm.sys [6912 2002-09-23] (Microsoft Corporation) R0 PCI; C:\WINDOWS.1\System32\DRIVERS\pci.sys [68608 2008-04-14] (Microsoft Corporation) S4 Pcmcia; C:\WINDOWS.1\system32\Drivers\Pcmcia.sys [120320 2008-04-14] (Microsoft Corporation) R3 PptpMiniport; C:\WINDOWS.1\System32\DRIVERS\raspptp.sys [48384 2008-04-13] (Microsoft Corporation) S1 Processor; C:\WINDOWS.1\System32\DRIVERS\processr.sys [39936 2008-04-14] (Microsoft Corporation) R3 PSched; C:\WINDOWS.1\System32\DRIVERS\psched.sys [69120 2008-04-13] (Microsoft Corporation) R3 Ptilink; C:\WINDOWS.1\System32\DRIVERS\ptilink.sys [17792 2002-09-23] (Parallel Technologies, Inc.) R0 PxHelp20; C:\WINDOWS.1\System32\Drivers\PxHelp20.sys [43872 2008-11-20] (Sonic Solutions) R1 RasAcd; C:\WINDOWS.1\System32\DRIVERS\rasacd.sys [8832 2002-09-23] (Microsoft Corporation) R3 Rasl2tp; C:\WINDOWS.1\System32\DRIVERS\rasl2tp.sys [51328 2008-04-13] (Microsoft Corporation) R3 RasPppoe; C:\WINDOWS.1\System32\DRIVERS\raspppoe.sys [41472 2008-04-13] (Microsoft Corporation) R3 Raspti; C:\WINDOWS.1\System32\DRIVERS\raspti.sys [16512 2002-09-23] (Microsoft Corporation) R1 Rdbss; C:\WINDOWS.1\System32\DRIVERS\rdbss.sys [175744 2008-04-13] (Microsoft Corporation) R1 RDPCDD; C:\WINDOWS.1\System32\DRIVERS\RDPCDD.sys [4224 2002-09-23] (Microsoft Corporation) S3 RDPWD; C:\WINDOWS.1\system32\Drivers\RDPWD.sys [139784 2012-07-04] (Microsoft Corporation) R1 redbook; C:\WINDOWS.1\System32\DRIVERS\redbook.sys [58880 2008-04-14] (Microsoft Corporation) R3 S3SavageNB; C:\WINDOWS.1\System32\DRIVERS\s3gnbm.sys [166912 2004-08-03] (S3 Graphics, Inc.) S3 Secdrv; C:\WINDOWS.1\System32\DRIVERS\secdrv.sys [20480 2008-04-13] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) R3 serenum; C:\WINDOWS.1\System32\DRIVERS\serenum.sys [15744 2008-04-13] (Microsoft Corporation) R1 Serial; C:\WINDOWS.1\System32\DRIVERS\serial.sys [65280 2008-04-14] (Microsoft Corporation) S1 Sfloppy; C:\WINDOWS.1\system32\Drivers\Sfloppy.sys [11392 2008-04-13] (Microsoft Corporation) S3 splitter; C:\WINDOWS.1\System32\drivers\splitter.sys [6272 2008-04-13] (Microsoft Corporation) R0 sptd; C:\WINDOWS.1\System32\Drivers\sptd.sys [691696 2010-12-30] () [File not signed] R0 sr; C:\WINDOWS.1\System32\DRIVERS\sr.sys [73472 2008-04-14] (Microsoft Corporation) R3 Srv; C:\WINDOWS.1\System32\DRIVERS\srv.sys [357888 2011-02-17] (Microsoft Corporation) R3 swenum; C:\WINDOWS.1\System32\DRIVERS\swenum.sys [4352 2008-04-13] (Microsoft Corporation) S3 swmidi; C:\WINDOWS.1\System32\drivers\swmidi.sys [56576 2008-04-13] (Microsoft Corporation) R3 sysaudio; C:\WINDOWS.1\System32\drivers\sysaudio.sys [60800 2008-04-13] (Microsoft Corporation) S3 tbhsd; C:\WINDOWS.1\System32\drivers\tbhsd.sys [27936 2008-07-15] (RapidSolution Software AG) R1 Tcpip; C:\WINDOWS.1\System32\DRIVERS\tcpip.sys [361600 2008-06-20] (Microsoft Corporation) S3 TDPIPE; C:\WINDOWS.1\system32\Drivers\TDPIPE.sys [12040 2008-04-14] (Microsoft Corporation) S3 TDTCP; C:\WINDOWS.1\system32\Drivers\TDTCP.sys [21896 2008-04-14] (Microsoft Corporation) R1 TermDD; C:\WINDOWS.1\System32\DRIVERS\termdd.sys [40840 2008-04-14] (Microsoft Corporation) S4 Udfs; C:\WINDOWS.1\system32\Drivers\Udfs.sys [66048 2008-04-13] (Microsoft Corporation) R3 Update; C:\WINDOWS.1\System32\DRIVERS\update.sys [384768 2008-04-13] (Microsoft Corporation) R3 usbccgp; C:\WINDOWS.1\System32\DRIVERS\usbccgp.sys [32384 2013-08-09] (Microsoft Corporation) R3 usbehci; C:\WINDOWS.1\System32\DRIVERS\usbehci.sys [30336 2009-03-18] (Microsoft Corporation) R3 usbhub; C:\WINDOWS.1\System32\DRIVERS\usbhub.sys [59520 2008-04-13] (Microsoft Corporation) S3 usbprint; C:\WINDOWS.1\System32\DRIVERS\usbprint.sys [25856 2008-04-13] (Microsoft Corporation) R3 USBSTOR; C:\WINDOWS.1\System32\DRIVERS\USBSTOR.SYS [26368 2008-04-13] (Microsoft Corporation) R3 usbuhci; C:\WINDOWS.1\System32\DRIVERS\usbuhci.sys [20608 2008-04-13] (Microsoft Corporation) S3 USB_RNDIS; C:\WINDOWS.1\System32\DRIVERS\usb8023.sys [12928 2013-02-12] (Microsoft Corporation) S3 usb_rndisx; C:\WINDOWS.1\System32\DRIVERS\usb8023x.sys [12928 2013-02-12] (Microsoft Corporation) R1 VgaSave; C:\WINDOWS.1\System32\drivers\vga.sys [20992 2008-04-13] (Microsoft Corporation) R0 viaagp; C:\WINDOWS.1\System32\DRIVERS\viaagp.sys [42240 2008-04-13] (Microsoft Corporation) R0 ViaIde; C:\WINDOWS.1\System32\DRIVERS\viaide.sys [5376 2008-04-13] (Microsoft Corporation) R0 VolSnap; C:\WINDOWS.1\system32\Drivers\VolSnap.sys [52864 2008-04-14] (Microsoft Corporation) R3 Wanarp; C:\WINDOWS.1\System32\DRIVERS\wanarp.sys [34560 2008-04-13] (Microsoft Corporation) S3 wceusbsh; C:\WINDOWS.1\System32\DRIVERS\wceusbsh.sys [28672 2006-11-06] (Microsoft Corporation) R3 wdmaud; C:\WINDOWS.1\System32\drivers\wdmaud.sys [83072 2008-04-13] (Microsoft Corporation) S3 WpdUsb; C:\WINDOWS.1\System32\Drivers\wpdusb.sys [18944 2004-08-11] (Microsoft Corporation) S1 ccnfd_1_10_0_4; system32\drivers\ccnfd_1_10_0_4.sys [X] S4 IntelIde; No ImagePath U5 ScsiPort; C:\WINDOWS.1\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation) U3 a61jfqej; No ImagePath ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-06 18:15 - 2015-01-06 18:15 - 00000438 _____ () C:\WINDOWS.1\setupapi.log 2015-01-06 17:39 - 2015-01-06 17:39 - 00040151 _____ () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\bookmarks_06.01.2015.html 2015-01-06 17:22 - 2015-01-06 17:22 - 00000000 ____D () C:\Program Files\predm 2015-01-06 16:38 - 2015-01-06 16:38 - 00065536 _____ () C:\WINDOWS.1\Minidump\Mini010615-02.dmp 2015-01-06 16:24 - 2015-01-06 16:24 - 00000000 ___HD () C:\Documents and Settings\Default User.WINDOWS.0 2015-01-06 16:24 - 2015-01-06 16:24 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS.0 2015-01-06 16:20 - 2015-01-06 16:20 - 00065536 _____ () C:\WINDOWS.1\Minidump\Mini010615-01.dmp 2015-01-05 15:38 - 2015-01-05 15:46 - 00001728 _____ () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\2009.6 2014-12-30 13:49 - 2015-01-06 12:57 - 03145782 _____ () C:\WINDOWS.1\STANISŁAW SKRZYPCZAK.bmp 2014-12-29 22:20 - 2014-12-29 22:20 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Pulpit\Grafiki 2014-12-28 14:38 - 2014-12-28 15:30 - 00000000 ____D () C:\AdwCleaner 2014-12-21 14:35 - 2014-12-21 14:35 - 00000000 ____D () C:\WINDOWS.1\system32\dwjobs 2014-12-20 14:54 - 2015-01-06 18:37 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Pulpit\logi 2014-12-20 14:41 - 2015-01-06 18:37 - 00000000 ____D () C:\FRST 2014-12-20 11:33 - 2015-01-06 17:01 - 00000000 ____D () C:\WINDOWS.1\system32\GroupPolicy 2014-12-19 18:54 - 2014-12-19 20:40 - 00000000 ____D () C:\eMule 2014-12-19 18:54 - 2014-12-19 18:54 - 00000497 _____ () C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\eMule.lnk 2014-12-19 18:54 - 2014-12-19 18:54 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy\eMule 2014-12-19 18:54 - 2014-12-19 18:54 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy\eMule 2014-12-19 17:20 - 2014-12-19 17:20 - 00001742 _____ () C:\Documents and Settings\All Users.WINDOWS.1\Pulpit\Avast Free Antivirus.lnk 2014-12-19 17:18 - 2014-12-19 17:17 - 00291352 _____ (AVAST Software) C:\WINDOWS.1\system32\aswBoot.exe 2014-12-19 17:17 - 2014-12-19 17:17 - 00043152 _____ (AVAST Software) C:\WINDOWS.1\avastSS.scr 2014-12-19 15:51 - 2015-01-06 16:53 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Ustawienia lokalne\Dane aplikacji\gmsd_pl_8 2014-12-19 15:51 - 2014-12-19 16:22 - 00000000 ____D () C:\Program Files\gmsd_pl_8 2014-12-19 12:46 - 2015-01-06 17:19 - 00000000 ____D () C:\Program Files\ClickCaption_1.10.0.4 ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-06 18:39 - 2013-04-10 16:55 - 00000364 ____H () C:\WINDOWS.1\Tasks\avast! Emergency Update.job 2015-01-06 18:39 - 2009-01-23 11:19 - 01392306 ____C () C:\WINDOWS.1\WindowsUpdate.log 2015-01-06 18:39 - 2009-01-22 14:38 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Ustawienia lokalne\Temp 2015-01-06 18:33 - 2012-09-27 17:42 - 00000159 ____C () C:\WINDOWS.1\wiadebug.log 2015-01-06 18:33 - 2012-09-27 17:42 - 00000050 ____C () C:\WINDOWS.1\wiaservc.log 2015-01-06 18:33 - 2009-01-22 15:07 - 00000000 ____D () C:\WINDOWS.1\Temp 2015-01-06 18:32 - 2014-03-24 10:01 - 00000256 _____ () C:\WINDOWS.1\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job 2015-01-06 18:32 - 2013-07-23 19:22 - 00001060 ____C () C:\WINDOWS.1\Tasks\GoogleUpdateTaskMachineCore.job 2015-01-06 18:32 - 2009-01-22 14:27 - 00000006 ___HC () C:\WINDOWS.1\Tasks\SA.DAT 2015-01-06 18:31 - 2009-04-14 12:34 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2015-01-06 18:29 - 2009-01-22 14:38 - 00000188 __SHC () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\ntuser.ini 2015-01-06 18:29 - 2009-01-22 14:32 - 00032396 _____ () C:\WINDOWS.1\SchedLgU.Txt 2015-01-06 18:20 - 2011-09-12 15:48 - 00000000 ____D () C:\Microsoft ActiveSync 2015-01-06 18:20 - 2009-01-22 15:07 - 00000000 ____D () C:\WINDOWS.1\Help 2015-01-06 18:20 - 2009-01-22 14:13 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy 2015-01-06 18:20 - 2009-01-22 14:13 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy 2015-01-06 18:15 - 2009-01-23 16:56 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy\Hewlett-Packard 2015-01-06 18:15 - 2009-01-23 16:56 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy\Hewlett-Packard 2015-01-06 18:15 - 2009-01-23 13:53 - 00026814 _____ () C:\WINDOWS.1\hpdj3500.his 2015-01-06 18:15 - 2009-01-23 13:53 - 00004394 _____ () C:\WINDOWS.1\hpdj3500.ini 2015-01-06 18:15 - 2009-01-22 15:07 - 00000000 ____D () C:\WINDOWS.1 2015-01-06 18:15 - 2003-10-03 11:12 - 00000000 ____D () C:\Program Files\Hewlett-Packard 2015-01-06 18:04 - 2009-01-23 08:26 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy\OpenOffice.org 3.0 2015-01-06 18:04 - 2009-01-23 08:26 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy\OpenOffice.org 3.0 2015-01-06 18:00 - 2009-01-22 14:13 - 00000000 ___HD () C:\Documents and Settings\All Users.WINDOWS.1\Szablony 2015-01-06 17:58 - 2008-12-07 16:50 - 00000000 ____D () C:\Program Files\OpenOffice.org 3 2015-01-06 17:57 - 2009-01-22 14:13 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS.1\Pulpit 2015-01-06 17:49 - 2009-04-17 12:45 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Dane aplikacji\Mozilla 2015-01-06 17:48 - 2013-07-23 19:22 - 00001064 ____C () C:\WINDOWS.1\Tasks\GoogleUpdateTaskMachineUA.job 2015-01-06 17:47 - 2007-11-15 17:18 - 00000000 ____D () C:\Program Files\Common Files\Java 2015-01-06 17:47 - 2004-12-18 16:44 - 00000000 ____D () C:\Program Files\Java 2015-01-06 17:42 - 2009-06-29 22:06 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Ustawienia lokalne\Dane aplikacji\Google 2015-01-06 17:39 - 2009-01-22 14:38 - 00000000 ___RD () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty 2015-01-06 17:34 - 2009-04-30 19:38 - 00000000 ____D () C:\WINDOWS.1\system32\Adobe 2015-01-06 17:34 - 2009-01-22 14:24 - 00000000 ____D () C:\WINDOWS.1\system32\Macromed 2015-01-06 17:31 - 2009-02-10 17:31 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Adobe 2015-01-06 17:31 - 2009-02-10 17:31 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji\Adobe 2015-01-06 17:31 - 2003-05-23 10:42 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2015-01-06 17:31 - 2003-05-23 10:42 - 00000000 ____D () C:\Program Files\Adobe 2015-01-06 17:27 - 2009-01-22 14:12 - 00000000 __RHD () C:\Documents and Settings\Default User.WINDOWS.1\Dane aplikacji 2015-01-06 17:24 - 2009-01-22 14:38 - 00000000 ___HD () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Ustawienia lokalne\Dane aplikacji 2015-01-06 16:38 - 2009-01-28 21:28 - 00000000 ____D () C:\WINDOWS.1\Minidump 2015-01-06 16:37 - 2009-01-22 14:47 - 771313664 _____ () C:\WINDOWS.1\MEMORY.DMP 2015-01-06 16:24 - 2009-01-22 14:47 - 00000000 ____D () C:\WINDOWS.0 2015-01-06 15:53 - 2009-01-22 14:38 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK 2015-01-06 13:58 - 2013-09-30 09:55 - 00221561 _____ () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\KSIĄŻKI.grt 2015-01-06 12:57 - 2009-10-17 08:52 - 00000000 ____D () C:\Kalendarz XP 2015-01-05 15:46 - 2009-01-26 14:14 - 00027448 ____C () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\2009.dfb 2015-01-05 15:46 - 2009-01-26 14:14 - 00008340 ____C () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\2009.snt 2015-01-05 15:46 - 2009-01-26 14:14 - 00008000 ____C () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\2009.slz 2015-01-05 13:55 - 2010-01-01 19:05 - 00009522 ____C () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\KSIĄDZ 2010.ods 2015-01-04 22:22 - 2014-03-19 17:57 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\FABIA 2015-01-04 21:07 - 2009-01-28 13:03 - 00034816 _____ () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-01-04 18:39 - 2013-04-16 13:04 - 00008704 ____C () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\OPŁATY 2013.xls 2015-01-04 18:23 - 2009-01-22 14:38 - 00000000 ___RD () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\Moja muzyka 2015-01-04 18:20 - 2011-08-16 14:01 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\KINGSTON (H) 2015-01-04 16:27 - 2002-09-23 13:00 - 00013772 ____C () C:\WINDOWS.1\system32\wpa.dbl 2015-01-02 22:25 - 2014-07-28 11:13 - 00000469 ____H () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Pulpit\Ewa Chodakowska SKALPEL.avi.ini 2015-01-01 13:20 - 2014-01-03 12:31 - 00033336 ____C () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\2009.5 2014-12-30 17:40 - 2014-09-12 15:28 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\OBEJRZANE 2014-12-30 16:14 - 2009-01-31 10:48 - 00000276 _____ () C:\WINDOWS.1\system\cmicnfg.ini 2014-12-29 22:20 - 2009-01-22 14:38 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Pulpit 2014-12-28 15:30 - 2009-01-22 14:38 - 00000000 ___HD () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Dane aplikacji 2014-12-28 15:30 - 2009-01-22 14:12 - 00000000 __RHD () C:\Documents and Settings\All Users.WINDOWS.1\Dane aplikacji 2014-12-27 20:06 - 2002-09-23 13:00 - 00000698 ____C () C:\WINDOWS.1\win.ini 2014-12-21 11:18 - 2011-05-24 08:20 - 00000000 ____D () C:\WINDOWS.1\pss 2014-12-21 11:18 - 2009-01-22 14:13 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy\Autostart 2014-12-21 11:18 - 2009-01-22 14:13 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS.1\Menu Start\Programy\Autostart 2014-12-20 12:52 - 2009-01-22 14:38 - 00000000 ____D () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Menu Start\Programy 2014-12-19 17:19 - 2011-05-22 10:58 - 00787800 _____ (AVAST Software) C:\WINDOWS.1\system32\Drivers\aswsnx.sys 2014-12-19 17:19 - 2011-05-22 10:58 - 00423784 _____ (AVAST Software) C:\WINDOWS.1\system32\Drivers\aswsp.sys 2014-12-19 17:18 - 2014-04-26 10:22 - 00024184 _____ () C:\WINDOWS.1\system32\Drivers\aswHwid.sys 2014-12-19 17:18 - 2013-05-07 08:42 - 00206248 _____ () C:\WINDOWS.1\system32\Drivers\aswVmm.sys 2014-12-19 17:18 - 2013-05-07 08:42 - 00070384 _____ (AVAST Software) C:\WINDOWS.1\system32\Drivers\aswMonFlt.sys 2014-12-19 17:18 - 2013-05-07 08:42 - 00049944 _____ () C:\WINDOWS.1\system32\Drivers\aswRvrt.sys 2014-12-19 17:18 - 2011-05-22 10:58 - 00057928 _____ (AVAST Software) C:\WINDOWS.1\system32\Drivers\aswTdi.sys 2014-12-19 17:18 - 2011-05-22 10:58 - 00055240 _____ (AVAST Software) C:\WINDOWS.1\system32\Drivers\aswrdr.sys 2014-12-19 16:57 - 2014-09-06 09:27 - 00000000 ____D () C:\Program Files\Opera 2014-12-19 16:57 - 2002-12-31 23:47 - 00000000 ____D () C:\WINDOWS.1\system32\MRT 2014-12-19 11:24 - 2009-01-23 18:09 - 109818608 ____C (Microsoft Corporation) C:\WINDOWS.1\system32\MRT.exe 2014-12-19 09:59 - 2009-10-18 15:08 - 00000000 ____D () C:\Documents and Settings\GRAŻKA 2014-12-19 09:59 - 2009-01-22 14:32 - 00000000 __SHD () C:\Documents and Settings\NetworkService.ZARZĄDZANIE NT 2014-12-19 09:59 - 2009-01-22 14:32 - 00000000 __SHD () C:\Documents and Settings\LocalService.ZARZĄDZANIE NT 2014-12-19 09:58 - 2009-01-22 14:23 - 00000000 ____D () C:\WINDOWS.1\Registration 2014-12-09 22:28 - 2009-01-27 18:58 - 00000069 ____C () C:\WINDOWS.1\NeroDigital.ini 2014-12-08 15:00 - 2014-03-24 10:01 - 00000250 _____ () C:\WINDOWS.1\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job 2014-12-08 14:49 - 2013-03-01 09:39 - 00000000 ___RD () C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Moje dokumenty\moje- wideo Some content of TEMP: ==================== C:\Documents and Settings\STANISŁAW SKRZYPCZAK\Ustawienia lokalne\Temp\hpdj3500.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS.1\explorer.exe => File is digitally signed C:\WINDOWS.1\system32\winlogon.exe => File is digitally signed C:\WINDOWS.1\system32\svchost.exe => File is digitally signed C:\WINDOWS.1\system32\services.exe => File is digitally signed C:\WINDOWS.1\system32\User32.dll => File is digitally signed C:\WINDOWS.1\system32\userinit.exe => File is digitally signed C:\WINDOWS.1\system32\rpcss.dll => File is digitally signed C:\WINDOWS.1\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================