Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-01-2015 Ran by dom (administrator) on XP on 19-01-2015 19:02:44 Running from D:\_raporty Loaded Profiles: dom & UpdatusUser (Available profiles: dom & UpdatusUser) Platform: Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polski Internet Explorer Version 8 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Nuance Communications, Inc.) C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe (Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe (Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe (ClickCaption) C:\Program Files\ClickCaption_1.10.0.5\Service\ccsvc.exe (Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe (Microsoft Corporation) C:\WINDOWS\system32\taskmgr.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16262656 2006-09-06] (Realtek Semiconductor Corp.) HKLM\...\Run: [SkyTel] => C:\WINDOWS\SkyTel.EXE [2879488 2006-05-17] (Realtek Semiconductor Corp.) HKLM\...\Run: [Alcmtr] => C:\WINDOWS\ALCMTR.EXE [69632 2005-05-04] (Realtek Semiconductor Corp.) HKLM\...\Run: [avast] => C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software) HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.) HKLM\...\Run: [SSBkgdUpdate] => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.) HKLM\...\Run: [PaperPort PTD] => C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [29984 2008-07-09] (Nuance Communications, Inc.) HKLM\...\Run: [IndexSearch] => C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [46368 2008-07-09] (Nuance Communications, Inc.) HKLM\...\Run: [PPort11reminder] => C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [328992 2007-08-31] (Nuance Communications, Inc.) HKLM\...\Run: [BrMfcWnd] => C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [1150976 2009-01-19] (Brother Industries, Ltd.) HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2009-01-09] (Brother Industries, Ltd.) Winlogon\Notify\WgaLogon: WgaLogon.dll [X] HKU\S-1-5-21-1229272821-1592454029-839522115-1003\...\Run: [ALLUpdate] => C:\Program Files\ALLPlayer\ALLUpdate.exe [2995712 2013-01-23] (ALLPlayer Group Ltd.) HKU\S-1-5-21-1229272821-1592454029-839522115-1003\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_15_0_0_246_Plugin.exe -update plugin HKU\S-1-5-21-1229272821-1592454029-839522115-1003\...\MountPoints2: {6c5565cc-ad7a-11e2-92d1-001a9203eaf5} - G:\Startme.exe ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software) ShellIconOverlayIdentifiers: [GDriveBlacklistedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ShellIconOverlayIdentifiers: [GDriveSharedEditOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ShellIconOverlayIdentifiers: [GDriveSharedViewOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ShellIconOverlayIdentifiers: [GDriveSyncedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ShellIconOverlayIdentifiers: [GDriveSyncingOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://isearch.omiga-plus.com/web/?type=ds&ts=1419946325&from=cor&uid=WDCXWD2500YS-01SHB1_WD-WCANY279006490064&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://isearch.omiga-plus.com/web/?type=ds&ts=1419946325&from=cor&uid=WDCXWD2500YS-01SHB1_WD-WCANY279006490064&q={searchTerms} HKU\S-1-5-21-1229272821-1592454029-839522115-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1229272821-1592454029-839522115-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch URLSearchHook: [S-1-5-21-1229272821-1592454029-839522115-1004] ATTENTION ==> Default URLSearchHook is missing. StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://isearch.omiga-plus.com/?type=sc&ts=1419946325&from=cor&uid=WDCXWD2500YS-01SHB1_WD-WCANY279006490064 BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: ALLYouTubeDownloader -> {61DB16C5-B733-43F4-872E-B20DC9E72740} -> C:\Program Files\ALLYouTubeDownloader\ALLYouTubeDownloader.dll (ALLCinema Ltd.) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: IplexToALLPlayer -> {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} -> C:\Program Files\ALLPlayer\Iplex\IplexToALLPlayer.dll (ALLCinema Ltd.) Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.88.1 FireFox: ======== FF ProfilePath: C:\Documents and Settings\dom\Dane aplikacji\Mozilla\Firefox\Profiles\ovvsddaw.default FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll () FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation) FF Plugin: @java.com/DTPlugin,version=10.7.2 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.7.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF user.js: detected! => C:\Documents and Settings\dom\Dane aplikacji\Mozilla\Firefox\Profiles\ovvsddaw.default\user.js FF Extension: Iplex to ALLPlayer - C:\Documents and Settings\dom\Dane aplikacji\Mozilla\Firefox\Profiles\ovvsddaw.default\Extensions\IplextoALL@ALLPlayer.org.xpi [2013-01-01] FF Extension: ALLYouTubeDownloader - C:\Documents and Settings\dom\Dane aplikacji\Mozilla\Firefox\Profiles\ovvsddaw.default\Extensions\YouTubetoALL@ALLPlayer.org.xpi [2013-01-01] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-02-19] FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe http://isearch.omiga-plus.com/?type=sc&ts=1419946325&from=cor&uid=WDCXWD2500YS-01SHB1_WD-WCANY279006490064 Chrome: ======= CHR StartupUrls: Default -> "hxxp://isearch.omiga-plus.com/?type=hp&ts=1419946325&from=cor&uid=WDCXWD2500YS-01SHB1_WD-WCANY279006490064" CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\39.0.2171.99\PepperFlash\pepflashplayer.dll () CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\39.0.2171.99\ppGoogleNaClPluginChrome.dll No File CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\39.0.2171.99\pdf.dll () CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation) CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.)) CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation) CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File CHR Profile: C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default CHR Extension: (Dokumenty Google) - C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2002-01-01] CHR Extension: (Dysk Google) - C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2002-01-01] CHR Extension: (YouTube) - C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2002-01-01] CHR Extension: (Szukaj w Google) - C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2002-01-01] CHR Extension: (Google Wallet) - C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-01] CHR Extension: (Gmail) - C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2002-01-01] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software) R2 ccsvc_1.10.0.5; C:\Program Files\ClickCaption_1.10.0.5\Service\ccsvc.exe [277584 2014-12-12] (ClickCaption) R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [161768 2013-02-21] (Oracle Corporation) R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed] S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{241E75CE-2CDE-42F6-B954-BAEB7FF45B71} ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 aswFsBlk; C:\WINDOWS\system32\Drivers\aswFsBlk.sys [29816 2013-05-09] (AVAST Software) R1 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [21576 2013-05-02] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-05-09] (AVAST Software) R1 AswRdr; C:\WINDOWS\system32\Drivers\AswRdr.sys [49760 2013-05-09] (AVAST Software) R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49376 2013-05-09] () R1 aswSnx; C:\WINDOWS\system32\Drivers\aswSnx.sys [770784 2014-12-26] (AVAST Software) R1 aswSP; C:\WINDOWS\system32\Drivers\aswSP.sys [369584 2002-01-01] (AVAST Software) R1 aswTdi; C:\WINDOWS\system32\Drivers\aswTdi.sys [56080 2013-05-09] (AVAST Software) R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [175176 2002-01-01] () R3 AtcL001; C:\WINDOWS\System32\DRIVERS\l151x86.sys [36864 2007-08-30] (Atheros Communications, Inc.) S3 BrScnUsb; C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.) R1 ccnfd_1_10_0_5; C:\WINDOWS\System32\drivers\ccnfd_1_10_0_5.sys [52728 2014-12-12] (ClickCaption) R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] () R0 videX32; C:\WINDOWS\System32\DRIVERS\videX32.sys [9728 2006-02-23] (VIA Technologies, Inc.) R0 xfilt; C:\WINDOWS\System32\DRIVERS\xfilt.sys [11264 2006-02-23] (VIA Technologies,Inc) S3 cpuz136; \??\C:\DOCUME~1\dom\USTAWI~1\Temp\cpuz136\cpuz136_x32.sys [X] S4 IntelIde; No ImagePath U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation) U1 WS2IFSL; No ImagePath ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-19 19:02 - 2015-01-19 19:02 - 00000000 ____D () C:\FRST 2015-01-19 18:53 - 2015-01-19 18:53 - 00000000 ____D () C:\Documents and Settings\dom\Moje dokumenty\Pobieranie 2015-01-17 12:10 - 2015-01-17 12:10 - 00000000 ____D () C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files 2015-01-17 12:06 - 2015-01-17 12:06 - 00000000 ___RD () C:\Documents and Settings\dom\Moje dokumenty\Moje wideo 2014-12-30 14:48 - 2014-12-30 14:48 - 00000492 _____ () C:\Documents and Settings\dom\Pulpit\Map Editor.lnk 2014-12-30 14:48 - 2014-12-30 14:48 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Free Lunch Design 2014-12-30 14:34 - 2014-12-30 14:34 - 00000675 _____ () C:\Documents and Settings\All Users\Pulpit\Opera.lnk 2014-12-30 14:34 - 2014-12-30 14:34 - 00000675 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Opera.lnk 2014-12-30 14:34 - 2014-12-30 14:34 - 00000000 ____D () C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\Opera Software 2014-12-30 14:34 - 2014-12-30 14:34 - 00000000 ____D () C:\Documents and Settings\dom\Dane aplikacji\Opera Software 2014-12-30 14:34 - 2002-01-01 00:05 - 00000410 _____ () C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1419946435.job 2014-12-30 14:33 - 2015-01-19 18:57 - 00000000 ____D () C:\Program Files\SupTab 2014-12-30 14:32 - 2015-01-19 18:57 - 00000000 ____D () C:\Documents and Settings\dom\Dane aplikacji\omiga-plus 2014-12-30 14:30 - 2014-12-30 14:31 - 00000000 ____D () C:\Program Files\ClickCaption_1.10.0.5 2014-12-30 14:30 - 2002-01-01 00:05 - 00000000 ____D () C:\Program Files\Opera ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-19 19:03 - 2013-02-18 19:03 - 00000000 ____D () C:\Documents and Settings\dom\Ustawienia lokalne\Temp 2015-01-19 19:00 - 2013-02-18 19:03 - 00000000 ____D () C:\Documents and Settings\dom 2015-01-19 18:59 - 2014-07-21 21:12 - 00000000 ____D () C:\WINDOWS\Minidump 2015-01-19 18:59 - 2013-02-19 19:37 - 00000000 __SHD () C:\Documents and Settings\dom\UserData 2015-01-19 18:59 - 2002-01-01 00:02 - 00000000 ____D () C:\Documents and Settings\dom\Dane aplikacji\Media Player Classic 2015-01-19 18:58 - 2013-02-18 18:55 - 01267160 ____N () C:\WINDOWS\WindowsUpdate.log 2015-01-19 18:57 - 2013-02-19 18:05 - 00000730 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk 2015-01-19 18:57 - 2013-02-19 18:05 - 00000724 _____ () C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk 2015-01-19 18:57 - 2013-02-18 19:03 - 00000803 _____ () C:\Documents and Settings\dom\Menu Start\Programy\Internet Explorer.lnk 2015-01-19 18:57 - 2002-01-01 00:54 - 00001819 _____ () C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk 2015-01-19 18:53 - 2013-02-18 19:03 - 00000000 ___RD () C:\Documents and Settings\dom\Moje dokumenty 2015-01-19 18:48 - 2013-02-19 18:09 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2015-01-19 18:48 - 2013-02-19 18:09 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2015-01-19 18:48 - 2013-02-19 18:09 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-01-19 18:44 - 2014-01-15 15:13 - 00000000 ____D () C:\WINDOWS\system32\MRT 2015-01-19 18:40 - 2002-01-02 22:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2015-01-19 18:34 - 2013-02-19 20:42 - 110348472 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-01-17 14:47 - 2013-02-18 21:38 - 00000540 _____ () C:\WINDOWS\zipgenius.xml 2015-01-17 14:39 - 2001-12-31 23:01 - 00000212 _____ () C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job 2015-01-17 12:10 - 2013-02-18 19:03 - 00000000 ___HD () C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji 2014-12-30 14:48 - 2013-02-18 19:39 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy 2014-12-30 14:34 - 2013-02-18 19:39 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit 2014-12-30 14:34 - 2013-02-18 19:03 - 00000000 __RHD () C:\Documents and Settings\dom\Dane aplikacji 2014-12-27 17:25 - 2013-02-19 19:27 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help 2014-12-26 13:32 - 2013-02-19 18:24 - 00770784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2014-12-26 13:32 - 2002-01-01 00:01 - 00000175 _____ () C:\WINDOWS\system32\Drivers\aswSnx.sys.sum ==================== Files in the root of some directories ======= 2002-01-01 00:25 - 2013-05-30 09:40 - 0000322 _____ () C:\Documents and Settings\dom\Dane aplikacji\mainhst.zgh 2013-06-09 11:05 - 2013-06-09 11:05 - 1203712 _____ (CPUID) C:\Documents and Settings\dom\Dane aplikacji\siw_sdk.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================