Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-07-2013 03 Ran by MIRKA (administrator) on 17-07-2013 02:52:19 Running from D:\ Microsoft® Windows Vista™ Home Premium (X86) OS Language: Polish Internet Explorer Version 7 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Windows\system32\SLsvc.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgwdsvc.exe (TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe () C:\Windows\system32\PnkBstrA.exe () C:\Windows\system32\PnkBstrB.exe (Sun Microsystems, Inc.) C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Realtek Semiconductor) C:\Windows\RtHDVCpl.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe (TOSHIBA Corporation) C:\Windows\system32\TODDSrv.exe (TOSHIBA Corporation) c:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TOSHIBA) C:\Program Files\TOSHIBA\Toshiba Online Product Information\TOPI.exe (Interactive Digital Media) C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe (TOSHIBA Corporation) c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe (Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Chicony) C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (Microsoft Corporation) C:\Windows\WindowsMobile\wmdSync.exe () C:\Program Files\TextBridge Classic 2.0\Bin\InstantAccess.exe (Sony Corporation) C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe (Conexant Systems, Inc.) C:\Windows\system32\DRIVERS\xaudio.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2012\avgtray.exe () C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe (Microsoft Corporation) C:\Windows\ehome\ehtray.exe (Gadu-Gadu S.A.) C:\Program Files\Gadu-Gadu\gg.exe (Nokia) C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe (Intel Corporation) C:\Windows\system32\igfxsrvc.exe (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe () C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe (TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe (Microsoft Corporation) C:\Program Files\Windows Mail\WinMail.exe (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe (Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe (Microsoft Corporation) C:\Windows\system32\wuauclt.exe () C:\Program Files\NapiProjekt\napisy.exe (Microsoft Corporation) C:\Windows\System32\mobsync.exe (Microsoft Corporation) C:\Windows\system32\conime.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1006264 2008-02-29] (Microsoft Corporation) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe [132496 2007-09-25] (Sun Microsystems, Inc.) HKLM\...\Run: [RtHDVCpl] - RtHDVCpl.exe [x] HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1029416 2007-12-06] (Synaptics, Inc.) HKLM\...\Run: [NDSTray.exe] - NDSTray.exe [x] HKLM\...\Run: [topi] - C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe [581632 2007-07-10] (TOSHIBA) HKLM\...\Run: [Google Desktop Search] - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [1836544 2008-02-29] (Google) HKLM\...\Run: [Desktop SMS] - C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe [1507328 2007-06-18] (Interactive Digital Media) HKLM\...\Run: [Camera Assistant Software] - C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe [413696 2007-10-25] (Chicony) HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [431456 2008-01-17] (TOSHIBA Corporation) HKLM\...\Run: [SmoothView] - C:\Program Files\Toshiba\SmoothView\SmoothView.exe [509816 2008-01-25] (TOSHIBA Corporation) HKLM\...\Run: [00TCrdMain] - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [712704 2008-01-22] (TOSHIBA Corporation) HKLM\...\Run: [Toshiba Registration] - C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe [571024 2007-05-04] (Toshiba) HKLM\...\Run: [Windows Mobile-based device management] - C:\Windows\WindowsMobile\wmdSync.exe [215552 2006-11-02] (Microsoft Corporation) HKLM\...\Run: [InstantAccess] - C:\PROGRA~1\TEXTBR~1.0\Bin\INSTAN~1.EXE [37376 1999-12-14] () HKLM\...\Run: [RegisterDropHandler] - C:\PROGRA~1\TEXTBR~1.0\Bin\REGIST~1.EXE [22528 1998-07-07] () HKLM\...\Run: [iPlusManager] - C:\Program Files\iPlus\iPlusChecker.exe [446464 2009-12-21] () HKLM\...\Run: [ContentTransferWMDetector.exe] - C:\Program Files\Sony\Content Transfer\ContentTransferWMDetector.exe [583016 2009-11-19] (Sony Corporation) HKLM\...\Run: [AVG_TRAY] - C:\Program Files\AVG\AVG2012\avgtray.exe [2598520 2012-11-19] (AVG Technologies CZ, s.r.o.) HKLM\...\RunServices: [RegisterDropHandler] - C:\PROGRA~1\TEXTBR~1.0\Bin\REGIST~1.EXE [22528 1998-07-07] () HKCU\...\Run: [TOSCDSPD] - TOSCDSPD.EXE [x] HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125440 2006-11-02] (Microsoft Corporation) HKCU\...\Run: [Gadu-Gadu] - C:\Program Files\Gadu-Gadu\gg.exe [2127296 2008-03-20] (Gadu-Gadu S.A.) HKCU\...\Run: [DriverUpdaterPro] - C:\Program Files\iXi Tools\Driver Updater Pro\DriverUpdaterPro.exe -t [x] HKCU\...\Run: [System Resource Monitor] - C:\Users\MIRKA\AppData\Local\Temp\srcmon.exe [x] <===== ATTENTION HKCU\...\Run: [ALLUpdate] - C:\Program Files\ALLPlayer\ALLUpdate.exe [2991616 2012-10-09] (ALLCinema) HKCU\...\Run: [] - [x] HKCU\...\Run: [NokiaSuite.exe] - C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-04-19] (Nokia) HKCU\...\Run: [naMNGFob] - C:\Users\MIRKA\AppData\Local\kjpjvp\eUhxZcoH.exe [x] HKCU\...\Run: [DirtyDecrypt] - "C:\Users\MIRKA\AppData\Roaming\Dirty\DirtyDecrypt.exe" /hide [x] MountPoints2: {2014c072-e9b3-11df-9352-f5e973bb4e6e} - setup.exe MountPoints2: {c96f6ac2-abc3-11df-aed7-a927d1787455} - D:\uvpa.exe HKU\Default\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [ 2008-01-29] () HKU\Default User\...\Run: [TOSCDSPD] - C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe [ 2008-01-29] () Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk ShortcutTarget: TRDCReminder.lnk -> C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe) Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk ShortcutTarget: TRDCReminder.lnk -> C:\Program Files\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe) BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart ==================== Internet (Whitelisted) ==================== ProxyEnable: Internet Explorer proxy is enabled. ProxyServer: ftp=127.0.0.1:5555;http=127.0.0.1:5555;https=127.0.0.1:5555 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.pl HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.myplaycity.com/ HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm HKLM SearchScopes: DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&q={searchTerms} SearchScopes: HKLM - {2769711C-631F-40A3-ABC5-F826A8E6CBA5} URL = http://www.google.pl/search?q={searchTerms}&rls=com.microsoft:*:IE-SearchBox&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7; SearchScopes: HKLM - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&q={searchTerms} HKCU SearchScopes: DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://websearch.ask.com/redirect?client=ie&tb=DDR&o=&src=crm&q={searchTerms}&locale=&apn_ptnrs=&apn_dtid=&apn_uid=845E8DB0-65CA-4A56-BF08-B3BA79C2F6CE&apn_sauid=AF34F3E0-8B48-4393-940C-D6D8D81F3B0D SearchScopes: HKCU - {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} URL = http://start.myplaycity.com/results.php?category=web&s={searchTerms} SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&crg=3.1010000&q={searchTerms} BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.) BHO: ALLYouTubeDownloader - {61DB16C5-B733-43F4-872E-B20DC9E72740} - C:\PROGRA~1\ALLYOU~1\ALLYOU~1.DLL (ALLCinema Ltd.) BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll (Sun Microsystems, Inc.) BHO: IplexToALLPlayer - {DF925EF3-7A87-44E4-9CAF-8D7B280BF616} - C:\PROGRA~1\ALLPLA~1\Iplex\IPLEXT~1.DLL (ALLCinema Ltd.) Toolbar: HKCU -No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File Toolbar: HKCU -No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.) Tcpip\Parameters: [DhcpNameServer] 213.92.190.138 213.92.190.130 FireFox: ======== FF ProfilePath: C:\Users\MIRKA\AppData\Roaming\Mozilla\Firefox\Profiles\s6fy737w.default FF SelectedSearchEngine: Google FF Homepage: hxxp://www.google.pl/ FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP22DF&PC=UP22&dt=021313&q= FF NetworkProxy: "type", 4 FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @idsoftware.com/QuakeLive - C:\ProgramData\id Software\QuakeLive\npquakezero.dll (id Software Inc.) FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @nokia.com/EnablerPlugin - C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( ) FF Plugin: @real.com/nppl3260;version=6.0.12.450 - C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprpjplug;version=6.0.12.448 - C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.149\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.149\npGoogleUpdate3.dll (Google Inc.) FF SearchPlugin: C:\Users\MIRKA\AppData\Roaming\Mozilla\Firefox\Profiles\s6fy737w.default\searchplugins\askcom.xml FF SearchPlugin: C:\Users\MIRKA\AppData\Roaming\Mozilla\Firefox\Profiles\s6fy737w.default\searchplugins\bingp.xml FF SearchPlugin: C:\Users\MIRKA\AppData\Roaming\Mozilla\Firefox\Profiles\s6fy737w.default\searchplugins\sweetim.xml FF SearchPlugin: C:\Users\MIRKA\AppData\Roaming\Mozilla\Firefox\Profiles\s6fy737w.default\searchplugins\the-pirate-bay.xml FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml FF Extension: No Name - C:\Users\MIRKA\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} FF Extension: Microsoft .NET Framework Assistant - C:\Users\MIRKA\AppData\Roaming\Mozilla\Firefox\Profiles\s6fy737w.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} FF Extension: IplextoALL - C:\Users\MIRKA\AppData\Roaming\Mozilla\Firefox\Profiles\s6fy737w.default\Extensions\IplextoALL@ALLPlayer.org.xpi FF Extension: testpilot - C:\Users\MIRKA\AppData\Roaming\Mozilla\Firefox\Profiles\s6fy737w.default\Extensions\testpilot@labs.mozilla.com.xpi FF Extension: YouTubetoALL - C:\Users\MIRKA\AppData\Roaming\Mozilla\Firefox\Profiles\s6fy737w.default\Extensions\YouTubetoALL@ALLPlayer.org.xpi FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ FF HKLM\...\Firefox\Extensions: [{1E73965B-8B48-48be-9C8D-68B920ABC1C4}] C:\Program Files\AVG\AVG2012\Firefox4\ FF Extension: AVG Safe Search - C:\Program Files\AVG\AVG2012\Firefox4\ Chrome: ======= CHR RestoreOnStartup: "sync":{"suppress_start":true},"sync_promo":{"startup_count":3,"user_skipped":true,"view_count" CHR Extension: (YouTube) - C:\Users\MIRKA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0 CHR Extension: (Google Search) - C:\Users\MIRKA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0 CHR Extension: (AVG Safe Search) - C:\Users\MIRKA\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.2210_0 CHR Extension: (AVG Secure Search) - C:\Users\MIRKA\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\12.2.5.32_0 CHR Extension: (Gmail) - C:\Users\MIRKA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0 ========================== Services (Whitelisted) ================= S2 avgfws; C:\Program Files\AVG\AVG2012\avgfws.exe [2321560 2012-12-05] (AVG Technologies CZ, s.r.o.) S2 AVGIDSAgent; C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe [5174392 2012-11-02] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG2012\avgwdsvc.exe [193288 2012-02-14] (AVG Technologies CZ, s.r.o.) R2 ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2007-12-25] (TOSHIBA CORPORATION) S3 GoogleDesktopManager; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [1836544 2008-02-29] (Google) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [66872 2009-03-22] () R2 PnkBstrB; C:\Windows\system32\PnkBstrB.exe [107832 2009-03-22] () R2 TOSHIBA SMART Log Service; c:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [126976 2007-12-03] (TOSHIBA Corporation) R2 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.) ==================== Drivers (Whitelisted) ==================== R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [47968 2011-05-23] (AVG Technologies CZ, s.r.o.) R3 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [142176 2012-12-10] (AVG Technologies CZ, s.r.o. ) R3 AVGIDSFilter; C:\Windows\System32\DRIVERS\avgidsfilterx.sys [24144 2011-12-23] (AVG Technologies CZ, s.r.o. ) R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [24896 2012-04-19] (AVG Technologies CZ, s.r.o. ) R3 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [17232 2011-12-23] (AVG Technologies CZ, s.r.o. ) R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [250080 2012-11-08] (AVG Technologies CZ, s.r.o.) R1 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [41040 2011-12-23] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [31952 2012-01-31] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [302368 2013-04-11] (AVG Technologies CZ, s.r.o.) S3 k750bus; C:\Windows\System32\DRIVERS\k750bus.sys [55216 2005-02-11] (MCCI) S3 ndiscm; C:\Windows\System32\DRIVERS\NetMotCM.sys [15360 2004-09-29] (Motorola Inc.) R3 RTL8187B; C:\Windows\System32\DRIVERS\RTL8187B.sys [290304 2007-12-26] (Realtek Semiconductor Corporation ) R3 UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [18432 2007-12-17] (Chicony Electronics Co., Ltd.) S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [x] S2 GT680x; System32\Drivers\GT680x.SYS [x] S3 IpInIp; system32\DRIVERS\ipinip.sys [x] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-07-17 07:25 - 2013-07-17 07:25 - 00000000 ____D C:\_OTL 2013-07-17 02:52 - 2013-07-17 02:52 - 00000000 ____D C:\FRST 2013-07-17 02:04 - 2013-07-17 02:04 - 00000104 _____ C:\Users\MIRKA\Downloads\Sztos\Desktop\Desktop\Komputer — skrót.lnk 2013-07-08 19:50 - 2013-07-08 19:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_00_00.Wdf 2013-07-06 10:30 - 2013-07-06 10:31 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-07-02 20:55 - 2013-07-02 20:55 - 00610130 ____R C:\Users\MIRKA\Downloads\rozklad.zip 2013-07-02 20:13 - 2013-07-02 20:13 - 00272788 _____ C:\Windows\msxml4-KB954430-enu.LOG 2013-07-02 20:12 - 2013-07-02 20:12 - 00284824 _____ C:\Windows\msxml4-KB973688-enu.LOG 2013-07-02 20:12 - 2013-07-02 20:12 - 00000000 ____D C:\Program Files\MSXML 4.0 2013-06-30 12:54 - 2013-06-30 12:54 - 00001060 _____ C:\Users\MIRKA\Downloads\2008_0625200JanikowiewPerfect0006.lnk 2013-06-30 11:52 - 2013-06-30 11:52 - 00000104 _____ C:\Users\MIRKA\Downloads\Sztos\Desktop\Desktop\Kosz — skrót.lnk 2013-06-29 23:12 - 2013-06-29 23:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf 2013-06-29 22:38 - 2013-06-29 22:38 - 00000000 ____D C:\Users\MIRKA\AppData\Roaming\Nokia Suite 2013-06-29 22:38 - 2013-06-29 22:38 - 00000000 ____D C:\Users\MIRKA\AppData\Roaming\Nokia 2013-06-29 22:36 - 2013-06-29 22:36 - 00000000 ____D C:\Users\MIRKA\AppData\Local\NokiaAccount 2013-06-29 22:36 - 2009-07-14 19:43 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll 2013-06-29 22:36 - 2009-07-14 19:43 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2013-06-29 22:36 - 2009-07-14 19:43 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll 2013-06-29 22:36 - 2009-07-14 19:43 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll 2013-06-29 22:36 - 2009-07-14 03:14 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2013-06-29 22:36 - 2009-07-14 01:50 - 00132224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2013-06-29 22:36 - 2009-07-14 01:50 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2013-06-29 22:33 - 2013-06-29 22:37 - 00000000 ____D C:\Users\MIRKA\AppData\Roaming\PC Suite 2013-06-29 22:33 - 2013-06-29 22:36 - 00000000 ____D C:\ProgramData\PC Suite 2013-06-29 22:33 - 2013-06-29 22:35 - 00000000 ____D C:\Users\MIRKA\AppData\Local\Nokia 2013-06-29 22:32 - 2013-06-29 22:33 - 00000000 ____D C:\ProgramData\Nokia 2013-06-29 22:32 - 2013-06-29 22:32 - 00001890 _____ C:\Users\Public\Desktop\Nokia Suite.lnk 2013-06-29 22:32 - 2013-06-29 22:32 - 00000000 ____D C:\Program Files\Common Files\Nokia 2013-06-29 22:30 - 2013-06-29 22:30 - 00000000 ____D C:\Program Files\DIFX 2013-06-29 22:30 - 2012-10-17 14:53 - 00019072 _____ (Nokia) C:\Windows\system32\Drivers\pccsmcfd.sys 2013-06-29 22:28 - 2013-06-29 22:28 - 00000000 ____D C:\Program Files\PC Connectivity Solution 2013-06-29 22:20 - 2013-06-29 22:32 - 00000000 ____D C:\Program Files\Nokia 2013-06-29 22:20 - 2013-06-29 22:20 - 00000000 ____D C:\ProgramData\NokiaInstallerCache 2013-06-26 15:28 - 2013-06-26 15:28 - 00000298 _____ C:\Users\MIRKA\MIRKA3 — skrót.lnk 2013-06-26 15:28 - 2013-06-26 15:28 - 00000298 _____ C:\Users\MIRKA\MIRKA3 — skrót.lnk 2013-06-23 22:35 - 2013-06-23 22:35 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf 2013-06-23 22:35 - 2013-06-23 22:35 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf 2013-06-23 22:34 - 2009-07-14 03:19 - 00445008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2013-06-23 22:34 - 2009-07-14 03:19 - 00038480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys 2013-06-23 22:34 - 2009-06-10 23:27 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01009_Inbox_Critical.Wdf 2013-06-23 22:26 - 2013-07-17 02:04 - 00013683 _____ C:\Windows\setupact.log 2013-06-23 22:26 - 2013-06-23 22:26 - 00000000 _____ C:\Windows\setuperr.log ==================== One Month Modified Files and Folders ======= 2013-07-17 07:25 - 2013-07-17 07:25 - 00000000 ____D C:\_OTL 2013-07-17 02:52 - 2013-07-17 02:52 - 00000000 ____D C:\FRST 2013-07-17 02:52 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public 2013-07-17 02:51 - 2012-11-01 19:02 - 00001034 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-17 02:23 - 2013-04-16 11:02 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-17 02:05 - 2006-12-05 07:22 - 00535568 _____ C:\Windows\system32\perfh015.dat 2013-07-17 02:05 - 2006-12-05 07:22 - 00086416 _____ C:\Windows\system32\perfc015.dat 2013-07-17 02:05 - 2006-11-02 12:33 - 01326240 _____ C:\Windows\system32\PerfStringBackup.INI 2013-07-17 02:04 - 2013-07-17 02:04 - 00000104 _____ C:\Users\MIRKA\Downloads\Sztos\Desktop\Desktop\Komputer — skrót.lnk 2013-07-17 02:04 - 2013-06-23 22:26 - 00013683 _____ C:\Windows\setupact.log 2013-07-17 01:59 - 2008-08-30 15:28 - 01135361 _____ C:\Windows\WindowsUpdate.log 2013-07-17 01:55 - 2012-11-01 19:02 - 00001030 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-17 01:55 - 2006-11-02 14:47 - 00003456 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-17 01:55 - 2006-11-02 14:47 - 00003456 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-17 01:54 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-07-15 05:45 - 2008-08-30 15:39 - 00000000 ____D C:\Users\MIRKA 2013-07-14 16:37 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Public\Desktop 2013-07-14 16:37 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool 2013-07-14 16:37 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration 2013-07-14 16:37 - 2006-11-02 12:22 - 33030144 _____ C:\Windows\system32\config\software_previous 2013-07-14 16:37 - 2006-11-02 12:22 - 22020096 _____ C:\Windows\system32\config\system_previous 2013-07-14 16:36 - 2006-11-02 12:22 - 32243712 _____ C:\Windows\system32\config\components_previous 2013-07-14 16:36 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\sam_previous 2013-07-14 15:43 - 2006-11-02 15:01 - 00032596 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2013-07-13 01:15 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\security_previous 2013-07-13 01:15 - 2006-11-02 12:22 - 00262144 _____ C:\Windows\system32\config\default_previous 2013-07-08 21:39 - 2008-08-30 19:39 - 00078848 _____ C:\Users\MIRKA\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-07-08 19:50 - 2013-07-08 19:50 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_00_00.Wdf 2013-07-08 16:08 - 2012-05-15 15:44 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2013-07-08 16:08 - 2008-08-30 15:24 - 00019016 _____ C:\Windows\PFRO.log 2013-07-07 09:16 - 2013-05-25 23:51 - 00000000 ____D C:\Program Files\Mozilla Firefox.bak 2013-07-06 10:31 - 2013-07-06 10:30 - 00000000 ____D C:\Program Files\Mozilla Firefox 2013-07-03 19:39 - 2008-11-29 13:12 - 00000000 ____D C:\Users\MIRKA\AppData\Roaming\uTorrent 2013-07-02 20:55 - 2013-07-02 20:55 - 00610130 ____R C:\Users\MIRKA\Downloads\rozklad.zip 2013-07-02 20:13 - 2013-07-02 20:13 - 00272788 _____ C:\Windows\msxml4-KB954430-enu.LOG 2013-07-02 20:12 - 2013-07-02 20:12 - 00284824 _____ C:\Windows\msxml4-KB973688-enu.LOG 2013-07-02 20:12 - 2013-07-02 20:12 - 00000000 ____D C:\Program Files\MSXML 4.0 2013-06-30 14:32 - 2006-11-02 14:37 - 00000000 ___RD C:\Users\Public\Recorded TV 2013-06-30 12:54 - 2013-06-30 12:54 - 00001060 _____ C:\Users\MIRKA\Downloads\2008_0625200JanikowiewPerfect0006.lnk 2013-06-30 11:52 - 2013-06-30 11:52 - 00000104 _____ C:\Users\MIRKA\Downloads\Sztos\Desktop\Desktop\Kosz — skrót.lnk 2013-06-29 23:12 - 2013-06-29 23:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf 2013-06-29 22:53 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\pl-PL 2013-06-29 22:38 - 2013-06-29 22:38 - 00000000 ____D C:\Users\MIRKA\AppData\Roaming\Nokia Suite 2013-06-29 22:38 - 2013-06-29 22:38 - 00000000 ____D C:\Users\MIRKA\AppData\Roaming\Nokia 2013-06-29 22:37 - 2013-06-29 22:33 - 00000000 ____D C:\Users\MIRKA\AppData\Roaming\PC Suite 2013-06-29 22:36 - 2013-06-29 22:36 - 00000000 ____D C:\Users\MIRKA\AppData\Local\NokiaAccount 2013-06-29 22:36 - 2013-06-29 22:33 - 00000000 ____D C:\ProgramData\PC Suite 2013-06-29 22:35 - 2013-06-29 22:33 - 00000000 ____D C:\Users\MIRKA\AppData\Local\Nokia 2013-06-29 22:33 - 2013-06-29 22:32 - 00000000 ____D C:\ProgramData\Nokia 2013-06-29 22:32 - 2013-06-29 22:32 - 00001890 _____ C:\Users\Public\Desktop\Nokia Suite.lnk 2013-06-29 22:32 - 2013-06-29 22:32 - 00000000 ____D C:\Program Files\Common Files\Nokia 2013-06-29 22:32 - 2013-06-29 22:20 - 00000000 ____D C:\Program Files\Nokia 2013-06-29 22:30 - 2013-06-29 22:30 - 00000000 ____D C:\Program Files\DIFX 2013-06-29 22:30 - 2008-02-29 11:30 - 00015058 _____ C:\Windows\DPINST.LOG 2013-06-29 22:28 - 2013-06-29 22:28 - 00000000 ____D C:\Program Files\PC Connectivity Solution 2013-06-29 22:20 - 2013-06-29 22:20 - 00000000 ____D C:\ProgramData\NokiaInstallerCache 2013-06-26 15:28 - 2013-06-26 15:28 - 00000298 _____ C:\Users\MIRKA\MIRKA3 — skrót.lnk 2013-06-26 15:28 - 2013-06-26 15:28 - 00000298 _____ C:\Users\MIRKA\MIRKA3 — skrót.lnk 2013-06-23 22:52 - 2006-12-05 07:20 - 00000000 ____D C:\Windows\system32\Drivers\pl-PL 2013-06-23 22:35 - 2013-06-23 22:35 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf 2013-06-23 22:35 - 2013-06-23 22:35 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf 2013-06-23 22:26 - 2013-06-23 22:26 - 00000000 _____ C:\Windows\setuperr.log ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-07-17 02:01 ==================== End Of Log ============================