Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 18-12-2013 01
Ran by Rafał (administrator) on KUPISZA on 18-12-2013 12:13:52
Running from C:\Documents and Settings\Rafał\Moje dokumenty\logi
Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Microsoft Corporation) C:\WINDOWS\system32\scardsvr.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\tv_w32.exe
(HP) C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Nokia.) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\hpwuSchd2.exe [49152 2007-03-11] (Hewlett-Packard Co.)
HKLM\...\Run: [AutoRegisterCerts] - D:\cryptoCertumScanner.exe [121344 2012-10-26] (Unizeto Technologies SA)
HKLM\...\Run: [HP Component Manager] - C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [241664 2003-12-22] (Hewlett-Packard Company)
HKLM\...\Run: [HPDJ Taskbar Utility] - C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe [172032 2004-05-12] (HP)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [DWQueuedReporting] - C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [437160 2007-02-26] (Microsoft Corporation)
Winlogon\Notify\AtiExtEvent: C:\Windows\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\aneta\...\Run: [ares] - D:\Ares\Ares.exe [ 2010-01-22] (Ares Development Group)
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.pl/
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: IEPluginBHO Class - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\aneta\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.)
DPF: {14DF37B4-B1AD-4BD4-A855-56930AF822FF} https://www.giif.mofnet.gov.pl/giif/SIGIIFAX.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1385722451078
DPF: {92ECE6FA-AC2E-4042-BFAE-0C8608E52A41} https://www.pekaobiznes24.pl/sme/static/components/1,3,0,82/SignActivXPEKAO.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 194.204.152.34 194.204.159.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Rafał\Dane aplikacji\Mozilla\Firefox\Profiles\71350mue.default
FF Homepage: hxxp://www.google.pl/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

Chrome: 
=======
CHR DefaultSearchKeyword: google.pl
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}
CHR Extension: (Google Docs) - C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Google Wallet) - C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: (Gmail) - C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1

========================== Services (Whitelisted) =================

S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [516096 2004-09-29] ()
S2 gupdate1ca19f51f024aaa; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2009-08-10] (Google Inc.)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R2 MSSQL$INSERTGT; C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
S3 Samsung UPD Service; C:\WINDOWS\system32\SUPDSvc.exe [127656 2009-03-24] (Samsung Electronics CO., LTD.)
S2 helpsvc; %WINDIR%\PCHealth\HelpCtr\Binaries\pchsvc.dll [x]
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"

==================== Drivers (Whitelisted) ====================

S3 ACSSCR; C:\Windows\System32\DRIVERS\a38usb.sys [38528 2012-10-03] (Advanced Card Systems Ltd)
R3 cmuda; C:\Windows\System32\drivers\cmuda.sys [812416 2004-01-08] (C-Media Inc)
R3 FETNDIS; C:\Windows\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc.              )
R3 gameenum; C:\Windows\System32\DRIVERS\gameenum.sys [10624 2008-04-13] (Microsoft Corporation)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49920 2007-03-07] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2007-03-07] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2007-03-07] (HP)
R3 HSFHWBS2; C:\Windows\System32\DRIVERS\HSFBS2S2.sys [220032 2004-08-03] (Conexant Systems, Inc.)
R3 HSF_DP; C:\Windows\System32\DRIVERS\HSFDPSP2.sys [1041536 2004-08-03] (Conexant Systems, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKsledef7801; C:\Documents and Settings\All Users\Dane aplikacji\Microsoft\Microsoft Antimalware\Definition Updates\{BB76B259-4E62-4B7E-A09F-CFEA2B50ACF3}\MpKsledef7801.sys [40392 2013-12-18] (Microsoft Corporation)
R3 winachsf; C:\Windows\System32\DRIVERS\HSFCXTS2.sys [685056 2004-08-03] (Conexant Systems, Inc.)
R3 catchme; \??\C:\DOCUME~1\RAFA~1\USTAWI~1\Temp\catchme.sys [x]
U2 CertPropSvc; 
S4 IntelIde; No ImagePath
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U3 TlntSvr; 
U3 mbr; \??\C:\ComboFix\mbr.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-18 12:06 - 2013-12-18 12:06 - 00012139 _____ C:\ComboFix.txt
2013-12-18 10:35 - 2013-12-18 10:35 - 00000000 ____D C:\Documents and Settings\Rafał\Phone Browser
2013-12-16 11:09 - 2013-12-16 11:09 - 00001915 _____ C:\Documents and Settings\All Users\Pulpit\Google Earth.lnk
2013-12-16 11:09 - 2013-12-16 11:09 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Google Earth
2013-12-12 10:43 - 2013-12-12 10:45 - 00012906 _____ C:\WINDOWS\KB2898785-IE8.log
2013-12-12 10:43 - 2013-12-12 10:44 - 00004005 _____ C:\WINDOWS\updspapi.log
2013-12-12 10:43 - 2013-12-12 10:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2013-12-12 10:43 - 2013-12-12 10:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2013-12-12 10:42 - 2013-12-12 10:43 - 00005001 _____ C:\WINDOWS\KB2904266.log
2013-12-12 09:50 - 2013-12-12 09:51 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2013-12-12 09:28 - 2013-12-12 09:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2013-12-12 09:19 - 2013-12-12 10:45 - 00037097 _____ C:\WINDOWS\FaxSetup.log
2013-12-12 09:19 - 2013-12-12 10:45 - 00017736 _____ C:\WINDOWS\ocgen.log
2013-12-12 09:19 - 2013-12-12 10:45 - 00014202 _____ C:\WINDOWS\tsoc.log
2013-12-12 09:19 - 2013-12-12 10:45 - 00012411 _____ C:\WINDOWS\comsetup.log
2013-12-12 09:19 - 2013-12-12 10:45 - 00008546 _____ C:\WINDOWS\setupapi.log
2013-12-12 09:19 - 2013-12-12 10:45 - 00007528 _____ C:\WINDOWS\ntdtcsetup.log
2013-12-12 09:19 - 2013-12-12 10:45 - 00005978 _____ C:\WINDOWS\iis6.log
2013-12-12 09:19 - 2013-12-12 10:45 - 00002316 _____ C:\WINDOWS\ocmsn.log
2013-12-12 09:19 - 2013-12-12 10:45 - 00001818 _____ C:\WINDOWS\msgsocm.log
2013-12-12 09:19 - 2013-12-12 10:45 - 00001393 _____ C:\WINDOWS\imsins.log
2013-12-12 09:19 - 2013-12-12 10:43 - 00001393 _____ C:\WINDOWS\imsins.BAK
2013-12-12 09:19 - 2013-12-12 09:19 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-12-12 09:19 - 2013-12-12 09:19 - 00000000 _____ C:\WINDOWS\setupact.log
2013-12-12 09:18 - 2013-12-12 09:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2013-12-11 10:16 - 2013-12-11 10:16 - 09293192 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-11 09:52 - 2013-12-12 10:43 - 00010223 _____ C:\WINDOWS\KB2898715.log
2013-12-11 09:51 - 2013-12-12 09:51 - 00009162 _____ C:\WINDOWS\KB2893294.log
2013-12-11 09:51 - 2013-12-12 09:29 - 00009877 _____ C:\WINDOWS\KB2893984.log
2013-12-11 09:51 - 2013-12-12 09:19 - 00008333 _____ C:\WINDOWS\KB2892075.log
2013-12-11 09:21 - 2013-12-11 10:16 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-03 09:53 - 2013-12-05 12:04 - 00001819 _____ C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
2013-12-03 09:53 - 2013-12-03 09:53 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Google Chrome
2013-12-03 09:53 - 2013-12-03 09:53 - 00000000 ____D C:\_OTL
2013-12-02 13:49 - 2013-12-18 08:04 - 00000406 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2013-12-02 13:42 - 2013-11-19 11:21 - 00230048 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2013-12-02 13:39 - 2013-12-02 13:39 - 00151696 _____ C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2013-12-02 13:39 - 2013-12-02 13:39 - 00001912 _____ C:\WINDOWS\epplauncher.mif
2013-12-02 13:39 - 2013-12-02 13:39 - 00001698 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Security Essentials.lnk
2013-12-02 13:38 - 2013-12-02 13:39 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-12-02 12:56 - 2013-12-02 12:56 - 00000000 ____D C:\FRST
2013-12-02 12:54 - 2013-12-18 12:13 - 00000000 ____D C:\Documents and Settings\Rafał\Moje dokumenty\logi
2013-12-02 07:58 - 2013-12-18 10:59 - 00032544 _____ C:\WINDOWS\SchedLgU.Txt
2013-11-30 14:17 - 2013-11-30 14:17 - 00000000 ____D C:\WINDOWS\pchealth
2013-11-30 11:30 - 2012-06-02 15:18 - 00275696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll
2013-11-30 11:30 - 2012-06-02 15:18 - 00018160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mucltui.dll.mui
2013-11-29 13:56 - 2013-12-12 13:42 - 00002347 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader XI.lnk
2013-11-29 13:43 - 2013-11-29 13:43 - 00000000 ____D C:\Program Files\Common Files\Java
2013-11-29 13:41 - 2013-11-29 13:38 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-11-29 13:41 - 2013-11-29 13:38 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2013-11-29 13:39 - 2013-11-29 13:40 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Java
2013-11-29 13:39 - 2013-11-29 13:38 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-11-29 13:39 - 2013-11-29 13:38 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-11-29 13:39 - 2013-11-29 13:38 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-11-29 12:51 - 2013-11-29 12:51 - 00000000 ____D C:\Program Files\CCleaner
2013-11-29 12:31 - 2013-11-29 13:42 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-29 11:54 - 2013-11-29 11:54 - 00001566 _____ C:\Documents and Settings\All Users\Menu Start\Microsoft Update.lnk

==================== One Month Modified Files and Folders =======

2013-12-18 12:13 - 2013-12-02 12:54 - 00000000 ____D C:\Documents and Settings\Rafał\Moje dokumenty\logi
2013-12-18 12:06 - 2013-12-18 12:06 - 00012139 _____ C:\ComboFix.txt
2013-12-18 12:06 - 2013-08-28 13:10 - 00000000 ___HD C:\Documents and Settings\Rafał\Ustawienia lokalne
2013-12-18 12:06 - 2012-08-18 15:13 - 00000000 ___HD C:\Documents and Settings\Administrator\Ustawienia lokalne
2013-12-18 12:06 - 2007-12-13 18:23 - 00000000 __RHD C:\Documents and Settings\Default User\Ustawienia lokalne
2013-12-18 12:06 - 2007-12-13 17:37 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-12-18 12:06 - 2007-12-13 17:37 - 00000000 ___HD C:\Documents and Settings\LocalService\Ustawienia lokalne
2013-12-18 12:01 - 2006-03-02 13:00 - 00000227 _____ C:\WINDOWS\system.ini
2013-12-18 11:42 - 2013-08-28 13:10 - 00000000 __RHD C:\Documents and Settings\Rafał\Dane aplikacji
2013-12-18 10:59 - 2013-12-02 07:58 - 00032544 _____ C:\WINDOWS\SchedLgU.Txt
2013-12-18 10:59 - 2013-09-24 14:27 - 01652333 _____ C:\WINDOWS\WindowsUpdate.log
2013-12-18 10:51 - 2013-08-28 13:10 - 00000000 ___RD C:\Documents and Settings\Rafał\Moje dokumenty
2013-12-18 10:35 - 2013-12-18 10:35 - 00000000 ____D C:\Documents and Settings\Rafał\Phone Browser
2013-12-18 10:35 - 2013-08-28 13:10 - 00000000 ____D C:\Documents and Settings\Rafał
2013-12-18 10:24 - 2009-08-10 21:10 - 00001032 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-18 10:16 - 2013-09-02 11:23 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-18 10:00 - 2009-08-10 21:10 - 00001036 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-18 08:04 - 2013-12-02 13:49 - 00000406 ____H C:\WINDOWS\Tasks\Microsoft Antimalware Scheduled Scan.job
2013-12-18 07:54 - 2013-09-24 14:29 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-12-18 07:54 - 2013-09-24 14:29 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-12-18 07:53 - 2006-03-02 13:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2013-12-16 16:31 - 2013-08-28 13:10 - 00000188 ___SH C:\Documents and Settings\Rafał\ntuser.ini
2013-12-16 16:27 - 2007-12-13 17:41 - 00000188 ___SH C:\Documents and Settings\aneta\ntuser.ini
2013-12-16 13:32 - 2011-01-19 14:42 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2013-12-16 11:09 - 2013-12-16 11:09 - 00001915 _____ C:\Documents and Settings\All Users\Pulpit\Google Earth.lnk
2013-12-16 11:09 - 2013-12-16 11:09 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Google Earth
2013-12-16 11:09 - 2007-12-13 18:23 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy
2013-12-16 11:09 - 2007-12-13 18:23 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit
2013-12-16 11:06 - 2009-08-10 20:57 - 00000000 ____D C:\Program Files\Google
2013-12-12 16:38 - 2007-12-13 17:41 - 00000000 ____D C:\Documents and Settings\aneta
2013-12-12 13:42 - 2013-11-29 13:56 - 00002347 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader XI.lnk
2013-12-12 13:36 - 2008-10-04 14:13 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Adobe
2013-12-12 13:35 - 2007-12-14 09:15 - 00000000 ____D C:\Documents and Settings\aneta\Dane aplikacji\Adobe
2013-12-12 10:57 - 2007-12-13 18:23 - 00501824 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-12 10:45 - 2013-12-12 10:43 - 00012906 _____ C:\WINDOWS\KB2898785-IE8.log
2013-12-12 10:45 - 2013-12-12 09:19 - 00037097 _____ C:\WINDOWS\FaxSetup.log
2013-12-12 10:45 - 2013-12-12 09:19 - 00017736 _____ C:\WINDOWS\ocgen.log
2013-12-12 10:45 - 2013-12-12 09:19 - 00014202 _____ C:\WINDOWS\tsoc.log
2013-12-12 10:45 - 2013-12-12 09:19 - 00012411 _____ C:\WINDOWS\comsetup.log
2013-12-12 10:45 - 2013-12-12 09:19 - 00008546 _____ C:\WINDOWS\setupapi.log
2013-12-12 10:45 - 2013-12-12 09:19 - 00007528 _____ C:\WINDOWS\ntdtcsetup.log
2013-12-12 10:45 - 2013-12-12 09:19 - 00005978 _____ C:\WINDOWS\iis6.log
2013-12-12 10:45 - 2013-12-12 09:19 - 00002316 _____ C:\WINDOWS\ocmsn.log
2013-12-12 10:45 - 2013-12-12 09:19 - 00001818 _____ C:\WINDOWS\msgsocm.log
2013-12-12 10:45 - 2013-12-12 09:19 - 00001393 _____ C:\WINDOWS\imsins.log
2013-12-12 10:44 - 2013-12-12 10:43 - 00004005 _____ C:\WINDOWS\updspapi.log
2013-12-12 10:44 - 2012-03-08 16:17 - 00000000 ____D C:\WINDOWS\ie8updates
2013-12-12 10:43 - 2013-12-12 10:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2904266$
2013-12-12 10:43 - 2013-12-12 10:43 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2898715$
2013-12-12 10:43 - 2013-12-12 10:42 - 00005001 _____ C:\WINDOWS\KB2904266.log
2013-12-12 10:43 - 2013-12-12 09:19 - 00001393 _____ C:\WINDOWS\imsins.BAK
2013-12-12 10:43 - 2013-12-11 09:52 - 00010223 _____ C:\WINDOWS\KB2898715.log
2013-12-12 10:42 - 2013-08-15 16:50 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-12 09:58 - 2007-12-13 19:15 - 88123800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-12 09:51 - 2013-12-12 09:50 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893294$
2013-12-12 09:51 - 2013-12-11 09:51 - 00009162 _____ C:\WINDOWS\KB2893294.log
2013-12-12 09:29 - 2013-12-11 09:51 - 00009877 _____ C:\WINDOWS\KB2893984.log
2013-12-12 09:28 - 2013-12-12 09:28 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2893984$
2013-12-12 09:19 - 2013-12-12 09:19 - 00000000 _____ C:\WINDOWS\setuperr.log
2013-12-12 09:19 - 2013-12-12 09:19 - 00000000 _____ C:\WINDOWS\setupact.log
2013-12-12 09:19 - 2013-12-11 09:51 - 00008333 _____ C:\WINDOWS\KB2892075.log
2013-12-12 09:18 - 2013-12-12 09:18 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2892075$
2013-12-11 10:16 - 2013-12-11 10:16 - 09293192 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2013-12-11 10:16 - 2013-12-11 09:21 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-11 10:16 - 2011-11-12 16:29 - 00071048 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-09 15:43 - 2013-08-28 13:10 - 00000000 ___RD C:\Documents and Settings\Rafał\Ulubione
2013-12-05 12:04 - 2013-12-03 09:53 - 00001819 _____ C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
2013-12-03 11:08 - 2013-08-28 13:10 - 00000000 ____D C:\Documents and Settings\Rafał\Pulpit
2013-12-03 09:54 - 2007-12-13 18:23 - 00000000 __RHD C:\Documents and Settings\All Users\Dane aplikacji
2013-12-03 09:54 - 2007-12-13 17:41 - 00000000 ___RD C:\Documents and Settings\aneta\Menu Start\Programy\Autostart
2013-12-03 09:53 - 2013-12-03 09:53 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Google Chrome
2013-12-03 09:53 - 2013-12-03 09:53 - 00000000 ____D C:\_OTL
2013-12-03 09:38 - 2013-09-24 14:33 - 00000000 ____D C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\Google
2013-12-02 13:39 - 2013-12-02 13:39 - 00151696 _____ C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2013-12-02 13:39 - 2013-12-02 13:39 - 00001912 _____ C:\WINDOWS\epplauncher.mif
2013-12-02 13:39 - 2013-12-02 13:39 - 00001698 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Security Essentials.lnk
2013-12-02 13:39 - 2013-12-02 13:38 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-12-02 13:39 - 2013-08-28 13:10 - 00000000 ___HD C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji
2013-12-02 12:56 - 2013-12-02 12:56 - 00000000 ____D C:\FRST
2013-12-02 12:37 - 2013-08-29 10:52 - 00000000 ____D C:\Documents and Settings\Rafał\Moje dokumenty\Pobieranie
2013-11-30 14:45 - 2013-08-28 13:13 - 00000718 _____ C:\Documents and Settings\Rafał\Pulpit\Spółka - baza 2.lnk
2013-11-30 14:23 - 2012-10-13 11:56 - 00000000 ____D C:\Qoobox
2013-11-30 14:17 - 2013-11-30 14:17 - 00000000 ____D C:\WINDOWS\pchealth
2013-11-30 14:17 - 2007-12-13 17:37 - 00000000 __SHD C:\Documents and Settings\LocalService
2013-11-30 14:16 - 2012-08-18 15:13 - 00000188 __SHC C:\Documents and Settings\Administrator\ntuser.ini
2013-11-30 14:15 - 2007-12-13 17:37 - 00000000 ___HD C:\Documents and Settings\NetworkService\Ustawienia lokalne
2013-11-30 13:56 - 2012-08-18 15:13 - 00000000 __RHD C:\Documents and Settings\Administrator\Dane aplikacji
2013-11-30 13:36 - 2007-12-14 09:12 - 00000000 ____D C:\Program Files\Ahead
2013-11-30 12:38 - 2007-12-13 18:24 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-11-30 12:29 - 2007-12-13 17:53 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2013-11-30 12:16 - 2007-12-13 18:24 - 01292098 ____C C:\WINDOWS\system32\PerfStringBackup.INI
2013-11-30 12:16 - 2006-03-02 13:00 - 00614714 ____C C:\WINDOWS\system32\perfh015.dat
2013-11-30 12:16 - 2006-03-02 13:00 - 00129208 ____C C:\WINDOWS\system32\perfc015.dat
2013-11-30 12:11 - 2007-12-13 18:12 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2013-11-30 12:05 - 2007-12-13 17:31 - 00000000 ____D C:\WINDOWS\Registration
2013-11-30 12:00 - 2008-01-25 15:24 - 00000000 ____D C:\Program Files\Microsoft Office
2013-11-29 14:02 - 2012-08-24 15:08 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-11-29 14:01 - 2013-09-02 11:21 - 00000000 ____D C:\Documents and Settings\Rafał\Ustawienia lokalne\Dane aplikacji\Adobe
2013-11-29 13:54 - 2007-12-14 09:15 - 00000000 ____D C:\Program Files\Common Files\Adobe
2013-11-29 13:54 - 2007-12-14 09:15 - 00000000 ____D C:\Program Files\Adobe
2013-11-29 13:43 - 2013-11-29 13:43 - 00000000 ____D C:\Program Files\Common Files\Java
2013-11-29 13:42 - 2013-11-29 12:31 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-11-29 13:40 - 2013-11-29 13:39 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Java
2013-11-29 13:38 - 2013-11-29 13:41 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-11-29 13:38 - 2013-11-29 13:41 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2013-11-29 13:38 - 2013-11-29 13:39 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-11-29 13:38 - 2013-11-29 13:39 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-11-29 13:38 - 2013-11-29 13:39 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2013-11-29 13:34 - 2007-12-17 11:06 - 00000000 ____D C:\Program Files\Java
2013-11-29 13:15 - 2013-08-28 13:12 - 00000774 _____ C:\Documents and Settings\Rafał\Pulpit\0000 - baza.lnk
2013-11-29 12:51 - 2013-11-29 12:51 - 00000000 ____D C:\Program Files\CCleaner
2013-11-29 12:50 - 2009-09-15 11:31 - 00000000 ____D C:\Program Files\Winamp
2013-11-29 12:44 - 2008-10-04 14:11 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\OpenOffice.org 2.4
2013-11-29 12:41 - 2008-10-04 14:10 - 00000000 ____D C:\Program Files\OpenOffice.org 2.4
2013-11-29 12:41 - 2007-12-13 18:23 - 00000000 ___HD C:\Documents and Settings\All Users\Szablony
2013-11-29 11:54 - 2013-11-29 11:54 - 00001566 _____ C:\Documents and Settings\All Users\Menu Start\Microsoft Update.lnk
2013-11-29 11:54 - 2007-12-13 18:23 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start
2013-11-28 14:32 - 2008-10-04 14:20 - 00000000 ____D C:\Documents and Settings\aneta\Dane aplikacji\OpenOffice.org2
2013-11-19 11:21 - 2013-12-02 13:42 - 00230048 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2006-03-02 13:00] - [2008-04-14 18:21] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\Windows\System32\winlogon.exe
[2006-03-02 13:00] - [2008-04-14 18:21] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\Windows\System32\svchost.exe
[2006-03-02 13:00] - [2008-04-14 18:21] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\Windows\System32\services.exe
[2006-03-02 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\Windows\System32\User32.dll
[2006-03-02 13:00] - [2008-04-14 18:20] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\Windows\System32\userinit.exe
[2006-03-02 13:00] - [2008-04-14 18:21] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\Windows\System32\Drivers\volsnap.sys
[2006-03-02 13:00] - [2008-04-14 17:01] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================