Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013 Ran by baśka (administrator) on BAŚKA-KOMPUTER on 12-10-2013 11:01:04 Running from C:\Users\baśka\Downloads Microsoft Windows 7 Starter (X86) OS Language: Polish Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Intel Corporation) C:\Windows\system32\igfxsrvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\system32\wuauclt.exe (Microsoft Corporation) C:\Windows\system32\wuauclt.exe (Microsoft Corporation) C:\Windows\system32\DrvInst.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] () HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software) HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-10-12] (Google Inc.) ==================== Internet (Whitelisted) ==================== BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Tcpip\Parameters: [DhcpNameServer] 95.160.170.92 88.156.222.92 82.139.8.40 Chrome: ======= CHR Extension: (Google Docs) - C:\Users\BAKA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\BAKA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\BAKA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\BAKA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Chrome In-App Payments service) - C:\Users\BAKA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0 CHR Extension: (Gmail) - C:\Users\BAKA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 ========================== Services (Whitelisted) ================= R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software) ==================== Drivers (Whitelisted) ==================== R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [61680 2013-08-30] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49376 2013-08-30] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [770344 2013-08-30] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [177864 2013-08-30] () R0 CLFS; C:\Windows\System32\CLFS.sys [249408 2009-07-14] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-10-12 11:01 - 2013-10-12 11:01 - 00001888 _____ C:\Windows\IE9_main.log 2013-10-12 11:00 - 2013-10-12 11:00 - 01087213 _____ (Farbar) C:\Users\baśka\Downloads\FRST.exe 2013-10-12 11:00 - 2013-10-12 11:00 - 00000000 ____D C:\Windows\LastGood 2013-10-12 10:52 - 2013-10-12 10:52 - 00001616 _____ C:\Windows\PFRO.log 2013-10-12 10:37 - 2013-10-12 10:37 - 00000000 ____D C:\Users\baśka\AppData\Roaming\Google 2013-10-12 10:36 - 2013-10-12 10:36 - 00000000 ____D C:\ProgramData\Google 2013-10-12 10:35 - 2013-10-12 10:35 - 00002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-10-12 10:34 - 2013-08-07 04:22 - 00238872 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2013-10-12 10:33 - 2013-10-12 10:53 - 00001030 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-12 10:33 - 2013-10-12 10:49 - 00001034 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-12 10:33 - 2013-10-12 10:41 - 00000000 ____D C:\Users\baśka\AppData\Local\Google 2013-10-12 10:33 - 2013-10-12 10:36 - 00000000 ____D C:\Program Files\Google 2013-10-12 10:33 - 2013-10-12 10:33 - 00002079 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-10-12 10:33 - 2013-08-30 09:48 - 00770344 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2013-10-12 10:33 - 2013-08-30 09:48 - 00369584 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2013-10-12 10:33 - 2013-08-30 09:48 - 00177864 _____ C:\Windows\system32\Drivers\aswVmm.sys 2013-10-12 10:33 - 2013-08-30 09:48 - 00066336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2013-10-12 10:33 - 2013-08-30 09:48 - 00061680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2013-10-12 10:33 - 2013-08-30 09:48 - 00056080 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys 2013-10-12 10:33 - 2013-08-30 09:48 - 00049376 _____ C:\Windows\system32\Drivers\aswRvrt.sys 2013-10-12 10:33 - 2013-08-30 09:48 - 00029816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys 2013-10-12 10:33 - 2013-08-30 09:47 - 00229648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2013-10-12 10:32 - 2013-08-30 09:47 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr 2013-10-12 10:31 - 2013-10-12 10:31 - 00000000 ____D C:\Program Files\AVAST Software 2013-10-12 10:30 - 2013-10-12 10:31 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-12 10:28 - 2012-06-03 00:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2013-10-12 10:28 - 2012-06-03 00:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2013-10-12 10:28 - 2012-06-03 00:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2013-10-12 10:28 - 2012-06-03 00:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2013-10-12 10:28 - 2012-06-03 00:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2013-10-12 10:28 - 2012-06-03 00:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2013-10-12 10:28 - 2012-06-03 00:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2013-10-12 10:28 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2013-10-12 10:28 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2013-10-12 10:20 - 2013-10-12 10:52 - 00000314 _____ C:\Windows\Tasks\DriverEasy Scheduled Scan.job 2013-10-12 10:20 - 2013-10-12 10:20 - 00000560 _____ C:\Users\Public\Desktop\DriverEasy.lnk 2013-10-12 10:12 - 2013-10-12 10:12 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2013-10-12 10:12 - 2013-10-12 10:12 - 00000000 ____D C:\Program Files\Realtek 2013-10-12 10:12 - 2011-06-10 06:34 - 00100896 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll 2013-10-12 10:12 - 2010-11-29 23:02 - 00100896 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\SET3297.tmp 2013-10-12 10:11 - 2013-10-12 10:11 - 00000000 ____D C:\Program Files\Intel 2013-10-12 10:11 - 2010-06-16 21:02 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\system32\CSVer.dll 2013-10-12 09:58 - 2013-10-12 09:58 - 00000000 ____D C:\FRST 2013-10-12 09:55 - 2013-10-12 09:55 - 00002092 _____ C:\ComboFix.txt 2013-10-12 09:44 - 2013-10-12 09:44 - 00015530 _____ C:\Windows\system32\results.xml 2013-10-12 09:43 - 2013-10-12 09:55 - 00000000 ____D C:\Qoobox 2013-10-12 09:39 - 2013-10-12 08:56 - 00000000 ____D C:\Windows\Panther 2013-10-12 09:38 - 2013-10-12 09:38 - 00000000 ____D C:\Windows\system32\Lang 2013-10-12 09:38 - 2010-11-01 02:18 - 01006104 _____ (Intel Corporation) C:\Windows\system32\igxpun.exe 2013-10-12 09:37 - 2013-10-12 09:37 - 00000000 ____D C:\Intel 2013-10-12 09:36 - 2013-10-12 08:56 - 00000000 ____D C:\Recovery 2013-10-12 09:34 - 2013-10-12 09:34 - 00000000 ____D C:\Users\baśka\AppData\Roaming\Easeware 2013-10-12 09:32 - 2013-10-12 09:32 - 00000000 ____D C:\Windows.old 2013-10-12 09:05 - 2013-10-12 09:05 - 00057560 _____ C:\Users\baśka\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-12 08:59 - 2013-10-12 10:57 - 01523412 _____ C:\Windows\system32\PerfStringBackup.INI 2013-10-12 08:57 - 2013-10-12 08:57 - 00001425 _____ C:\Users\baśka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-12 08:56 - 2013-10-12 08:57 - 00000000 ____D C:\Users\baśka 2013-10-12 08:56 - 2013-10-12 08:56 - 00000020 ___SH C:\Users\baśka\ntuser.ini 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Public\Documents\Moje wideo 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Public\Documents\Moje obrazy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Public\Documents\Moja muzyka 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Ustawienia lokalne 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Szablony 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Moje dokumenty 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Menu Start 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Documents\Moje wideo 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Documents\Moje obrazy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Documents\Moja muzyka 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historia 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\Documents\Moje wideo 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\Documents\Moje obrazy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\Documents\Moja muzyka 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historia 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Ustawienia lokalne 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Szablony 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Moje dokumenty 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Menu Start 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Documents\Moje wideo 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Documents\Moje obrazy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Documents\Moja muzyka 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\AppData\Local\Historia 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\AppData\Local\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Ulubione 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Szablony 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Pulpit 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Menu Start 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Dokumenty 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 ____D C:\Users\baśka\AppData\Local\VirtualStore 2013-10-12 08:56 - 2009-07-14 06:42 - 00000000 ___RD C:\Users\baśka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-10-12 08:56 - 2009-07-14 06:37 - 00000000 ___RD C:\Users\baśka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-10-12 08:43 - 2013-10-12 11:01 - 00437248 _____ C:\Windows\WindowsUpdate.log 2013-10-12 08:43 - 2013-10-12 08:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-10-12 08:40 - 2013-10-12 08:44 - 00001313 _____ C:\Windows\TSSysprep.log ==================== One Month Modified Files and Folders ======= 2013-10-12 11:01 - 2013-10-12 11:01 - 00001888 _____ C:\Windows\IE9_main.log 2013-10-12 11:01 - 2013-10-12 08:43 - 00437248 _____ C:\Windows\WindowsUpdate.log 2013-10-12 11:00 - 2013-10-12 11:00 - 01087213 _____ (Farbar) C:\Users\baśka\Downloads\FRST.exe 2013-10-12 11:00 - 2013-10-12 11:00 - 00000000 ____D C:\Windows\LastGood 2013-10-12 10:57 - 2013-10-12 08:59 - 01523412 _____ C:\Windows\system32\PerfStringBackup.INI 2013-10-12 10:57 - 2009-07-14 10:07 - 00687828 _____ C:\Windows\system32\perfh015.dat 2013-10-12 10:57 - 2009-07-14 10:07 - 00131382 _____ C:\Windows\system32\perfc015.dat 2013-10-12 10:54 - 2009-07-14 06:34 - 00009840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-10-12 10:54 - 2009-07-14 06:34 - 00009840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-10-12 10:53 - 2013-10-12 10:33 - 00001030 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-12 10:52 - 2013-10-12 10:52 - 00001616 _____ C:\Windows\PFRO.log 2013-10-12 10:52 - 2013-10-12 10:20 - 00000314 _____ C:\Windows\Tasks\DriverEasy Scheduled Scan.job 2013-10-12 10:52 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-10-12 10:52 - 2009-07-14 06:39 - 00017148 _____ C:\Windows\setupact.log 2013-10-12 10:50 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\pl-PL 2013-10-12 10:49 - 2013-10-12 10:33 - 00001034 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-12 10:41 - 2013-10-12 10:33 - 00000000 ____D C:\Users\baśka\AppData\Local\Google 2013-10-12 10:37 - 2013-10-12 10:37 - 00000000 ____D C:\Users\baśka\AppData\Roaming\Google 2013-10-12 10:36 - 2013-10-12 10:36 - 00000000 ____D C:\ProgramData\Google 2013-10-12 10:36 - 2013-10-12 10:33 - 00000000 ____D C:\Program Files\Google 2013-10-12 10:35 - 2013-10-12 10:35 - 00002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-10-12 10:33 - 2013-10-12 10:33 - 00002079 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-10-12 10:33 - 2009-07-14 04:04 - 00002577 _____ C:\Windows\system32\config.nt 2013-10-12 10:32 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2013-10-12 10:31 - 2013-10-12 10:31 - 00000000 ____D C:\Program Files\AVAST Software 2013-10-12 10:31 - 2013-10-12 10:30 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-12 10:20 - 2013-10-12 10:20 - 00000560 _____ C:\Users\Public\Desktop\DriverEasy.lnk 2013-10-12 10:12 - 2013-10-12 10:12 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2013-10-12 10:12 - 2013-10-12 10:12 - 00000000 ____D C:\Program Files\Realtek 2013-10-12 10:12 - 2009-07-14 06:52 - 00000000 ____D C:\Windows\system32\restore 2013-10-12 10:11 - 2013-10-12 10:11 - 00000000 ____D C:\Program Files\Intel 2013-10-12 09:58 - 2013-10-12 09:58 - 00000000 ____D C:\FRST 2013-10-12 09:55 - 2013-10-12 09:55 - 00002092 _____ C:\ComboFix.txt 2013-10-12 09:55 - 2013-10-12 09:43 - 00000000 ____D C:\Qoobox 2013-10-12 09:44 - 2013-10-12 09:44 - 00015530 _____ C:\Windows\system32\results.xml 2013-10-12 09:38 - 2013-10-12 09:38 - 00000000 ____D C:\Windows\system32\Lang 2013-10-12 09:38 - 2009-07-14 06:57 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2013-10-12 09:38 - 2009-07-14 06:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2013-10-12 09:37 - 2013-10-12 09:37 - 00000000 ____D C:\Intel 2013-10-12 09:34 - 2013-10-12 09:34 - 00000000 ____D C:\Users\baśka\AppData\Roaming\Easeware 2013-10-12 09:32 - 2013-10-12 09:32 - 00000000 ____D C:\Windows.old 2013-10-12 09:05 - 2013-10-12 09:05 - 00057560 _____ C:\Users\baśka\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-12 08:58 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF 2013-10-12 08:57 - 2013-10-12 08:57 - 00001425 _____ C:\Users\baśka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-12 08:57 - 2013-10-12 08:56 - 00000000 ____D C:\Users\baśka 2013-10-12 08:56 - 2013-10-12 09:39 - 00000000 ____D C:\Windows\Panther 2013-10-12 08:56 - 2013-10-12 09:36 - 00000000 ____D C:\Recovery 2013-10-12 08:56 - 2013-10-12 08:56 - 00000020 ___SH C:\Users\baśka\ntuser.ini 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Public\Documents\Moje wideo 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Public\Documents\Moje obrazy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Public\Documents\Moja muzyka 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Ustawienia lokalne 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Szablony 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Moje dokumenty 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Menu Start 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Documents\Moje wideo 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Documents\Moje obrazy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Documents\Moja muzyka 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historia 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default\AppData\Local\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\Documents\Moje wideo 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\Documents\Moje obrazy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\Documents\Moja muzyka 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historia 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Ustawienia lokalne 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Szablony 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Moje dokumenty 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Menu Start 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Documents\Moje wideo 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Documents\Moje obrazy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Documents\Moja muzyka 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\AppData\Roaming\Microsoft\Windows\Start Menu\Programy 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\AppData\Local\Historia 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\Users\baśka\AppData\Local\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Ulubione 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Szablony 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Pulpit 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Menu Start 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Dokumenty 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 _SHDL C:\ProgramData\Dane aplikacji 2013-10-12 08:56 - 2013-10-12 08:56 - 00000000 ____D C:\Users\baśka\AppData\Local\VirtualStore 2013-10-12 08:56 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Default 2013-10-12 08:56 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\Recovery 2013-10-12 08:56 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Windows NT 2013-10-12 08:51 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache 2013-10-12 08:44 - 2013-10-12 08:40 - 00001313 _____ C:\Windows\TSSysprep.log 2013-10-12 08:43 - 2013-10-12 08:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-10-12 08:40 - 2009-07-14 06:34 - 00001774 _____ C:\Windows\DtcInstall.log 2013-10-12 08:40 - 2009-07-14 06:33 - 00266376 _____ C:\Windows\system32\FNTCACHE.DAT ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-10-12 08:40 ==================== End Of Log ============================