Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01
Ran by Beata (administrator) on BEATA-PC on 29-12-2013 22:33:19
Running from C:\Users\Beata\Desktop
Windows 7 Professional Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1436736 2011-06-15] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [499608 2011-03-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [hpqSRMon] - C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Beata\AppData\Roaming\Mozilla\Firefox\Profiles\9tsncki6.default-1388352254182
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\wolnelektury-pl.xml
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

==================== Services (Whitelisted) =================

R2 MsMpSvc; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [12784 2011-04-27] (Microsoft Corporation)
R2 MSSQL$SQLEXPRESS; C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [288272 2011-04-27] (Microsoft Corporation)
S3 OpenVPNService; D:\e-dziennik\OpenVPN\bin\openvpnserv.exe [14848 2011-04-26] ()
S2 Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [x]

==================== Drivers (Whitelisted) ====================

R1 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [189440 2011-04-18] (Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [84864 2011-04-27] (Microsoft Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [526392 2011-09-18] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-29 22:33 - 2013-12-29 22:34 - 00007320 _____ C:\Users\Beata\Desktop\FRST.txt
2013-12-29 22:28 - 2013-12-29 22:29 - 00000000 ____D C:\AdwCleaner
2013-12-29 22:27 - 2013-12-29 22:28 - 01233962 _____ C:\Users\Beata\Downloads\AdwCleaner.exe
2013-12-29 22:26 - 2013-12-29 22:27 - 00000000 ____D C:\Users\Beata\Desktop\New folder
2013-12-29 22:22 - 2013-12-29 22:22 - 00000000 ____D C:\Users\Beata\Desktop\Upload
2013-12-28 20:25 - 2013-12-29 22:22 - 00000000 ____D C:\FRST
2013-12-28 20:24 - 2013-12-29 22:22 - 01931302 _____ (Farbar) C:\Users\Beata\Desktop\FRST64.exe
2013-12-24 12:17 - 2013-12-24 12:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-16 19:40 - 2013-12-16 20:14 - 00000000 ____D C:\Users\Beata\Desktop\zdjęcia
2013-12-13 22:30 - 2013-12-13 22:30 - 00319456 _____ (Microsoft Corporation) C:\Windows\DIFxAPI.dll
2013-12-13 22:29 - 2013-12-13 22:30 - 00000390 _____ C:\RHDSetup.log
2013-12-13 22:29 - 2013-12-13 22:29 - 00315392 _____ (Realtek Semiconductor Corp.) C:\Windows\HideWin.exe
2013-12-13 22:29 - 2006-12-14 16:48 - 00003903 _____ C:\Windows\system32\nvnrm.nvu
2013-12-13 22:28 - 2013-12-13 22:34 - 00000086 _____ C:\CSB.LOG
2013-12-13 22:28 - 2013-12-13 22:33 - 00022336 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2013-12-13 22:28 - 2013-12-13 22:33 - 00000010 _____ C:\Windows\GSetup.ini
2013-12-13 22:28 - 2013-12-13 22:28 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-12-13 22:28 - 2013-12-13 22:28 - 00000000 ____D C:\Users\Beata\AppData\Roaming\InstallShield
2013-12-13 22:28 - 2011-07-11 14:28 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\Macromedia
2013-12-13 22:28 - 2011-07-04 09:23 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Microsoft Help
2013-12-13 22:28 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-13 22:28 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-12-13 22:28 - 2007-01-15 15:54 - 00369152 _____ (NVIDIA Corporation) C:\Windows\system32\NVUNINST.EXE
2013-12-13 22:28 - 2006-11-08 08:49 - 00369152 _____ (NVIDIA Corporation) C:\Windows\system32\nvusmb.exe
2013-12-13 22:28 - 2006-10-19 09:36 - 00001864 _____ C:\Windows\system32\nvsmb.nvu
2013-12-13 22:27 - 2013-12-29 22:31 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-13 22:27 - 2013-10-23 09:20 - 06669600 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-12-13 22:27 - 2013-10-23 09:20 - 03489568 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-12-13 22:27 - 2013-10-23 09:20 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-12-13 22:27 - 2013-10-23 09:20 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-12-13 22:27 - 2013-10-23 09:20 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-12-13 22:27 - 2013-10-23 09:20 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-12-13 22:26 - 2013-10-27 09:12 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-12-13 22:26 - 2013-10-27 09:12 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-12-13 22:25 - 2013-12-13 22:28 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-13 22:21 - 2013-12-13 22:21 - 00000000 ____D C:\NVIDIA
2013-12-13 22:07 - 2013-12-13 22:15 - 00000000 ____D C:\Program Files (x86)\KatMouse
2013-12-13 22:02 - 2013-12-13 22:11 - 00000000 ____D C:\Program Files\Highresolution Enterprises
2013-12-13 15:00 - 2013-12-13 15:00 - 00000000 ____D C:\Users\Beata\AppData\Roaming\Highresolution Enterprises
2013-12-13 12:15 - 2013-12-13 12:15 - 00018342 _____ C:\ComboFix.txt
2013-12-13 11:58 - 2013-12-13 12:15 - 00000000 ____D C:\Qoobox
2013-12-13 11:58 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-13 11:58 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-13 11:58 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-13 11:58 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-13 11:58 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-13 11:58 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-13 11:58 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-13 11:58 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-13 11:57 - 2013-12-13 12:12 - 00000000 ____D C:\Windows\erdnt
2013-12-13 11:41 - 2013-12-13 11:41 - 00000000 ____D C:\Users\Beata\AppData\Roaming\Malwarebytes
2013-12-13 11:41 - 2013-12-13 11:41 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-13 11:41 - 2013-12-13 11:41 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-13 11:41 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-09 13:56 - 2013-12-09 13:56 - 00000000 ____D C:\Users\Beata\Documents\Rosnij z Juka
2013-12-09 13:50 - 2013-12-13 11:34 - 00000000 ____D C:\Program Files (x86)\Wydawnictwo JUKA
2013-12-06 12:06 - 2013-12-06 12:11 - 00000000 ____D C:\Program Files (x86)\Easy CD & DVD Cover Creator

==================== One Month Modified Files and Folders =======

2013-12-29 22:34 - 2013-12-29 22:33 - 00007320 _____ C:\Users\Beata\Desktop\FRST.txt
2013-12-29 22:32 - 2013-10-06 17:56 - 00000000 ____D C:\Users\Beata\AppData\Roaming\Skype
2013-12-29 22:31 - 2013-12-13 22:27 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-29 22:31 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-29 22:31 - 2009-07-14 05:51 - 00131869 _____ C:\Windows\setupact.log
2013-12-29 22:29 - 2013-12-29 22:28 - 00000000 ____D C:\AdwCleaner
2013-12-29 22:29 - 2011-07-02 19:30 - 01290606 _____ C:\Windows\WindowsUpdate.log
2013-12-29 22:28 - 2013-12-29 22:27 - 01233962 _____ C:\Users\Beata\Downloads\AdwCleaner.exe
2013-12-29 22:27 - 2013-12-29 22:26 - 00000000 ____D C:\Users\Beata\Desktop\New folder
2013-12-29 22:22 - 2013-12-29 22:22 - 00000000 ____D C:\Users\Beata\Desktop\Upload
2013-12-29 22:22 - 2013-12-28 20:25 - 00000000 ____D C:\FRST
2013-12-29 22:22 - 2013-12-28 20:24 - 01931302 _____ (Farbar) C:\Users\Beata\Desktop\FRST64.exe
2013-12-29 22:22 - 2011-07-02 19:30 - 00000000 ____D C:\Users\Beata
2013-12-29 22:13 - 2013-09-08 19:55 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-29 22:13 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\LiveKernelReports
2013-12-29 20:47 - 2009-07-14 05:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-29 20:47 - 2009-07-14 05:45 - 00015792 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-28 21:50 - 2012-07-17 14:46 - 00000000 ____D C:\Users\Beata\AppData\Roaming\uTorrent
2013-12-28 20:22 - 2009-07-14 06:13 - 00796892 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-28 14:21 - 2011-07-02 21:12 - 00025062 _____ C:\Windows\PFRO.log
2013-12-24 23:05 - 2012-05-10 14:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-24 12:18 - 2013-12-24 12:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-16 20:14 - 2013-12-16 19:40 - 00000000 ____D C:\Users\Beata\Desktop\zdjęcia
2013-12-13 22:34 - 2013-12-13 22:28 - 00000086 _____ C:\CSB.LOG
2013-12-13 22:33 - 2013-12-13 22:28 - 00022336 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2013-12-13 22:33 - 2013-12-13 22:28 - 00000010 _____ C:\Windows\GSetup.ini
2013-12-13 22:30 - 2013-12-13 22:30 - 00319456 _____ (Microsoft Corporation) C:\Windows\DIFxAPI.dll
2013-12-13 22:30 - 2013-12-13 22:29 - 00000390 _____ C:\RHDSetup.log
2013-12-13 22:29 - 2013-12-13 22:29 - 00315392 _____ (Realtek Semiconductor Corp.) C:\Windows\HideWin.exe
2013-12-13 22:28 - 2013-12-13 22:28 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-12-13 22:28 - 2013-12-13 22:28 - 00000000 ____D C:\Users\Beata\AppData\Roaming\InstallShield
2013-12-13 22:28 - 2013-12-13 22:25 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-13 22:28 - 2011-07-10 20:00 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-13 22:28 - 2011-07-10 19:59 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-13 22:27 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2013-12-13 22:21 - 2013-12-13 22:21 - 00000000 ____D C:\NVIDIA
2013-12-13 22:15 - 2013-12-13 22:07 - 00000000 ____D C:\Program Files (x86)\KatMouse
2013-12-13 22:11 - 2013-12-13 22:02 - 00000000 ____D C:\Program Files\Highresolution Enterprises
2013-12-13 18:39 - 2009-07-14 06:08 - 00032620 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-13 15:00 - 2013-12-13 15:00 - 00000000 ____D C:\Users\Beata\AppData\Roaming\Highresolution Enterprises
2013-12-13 12:15 - 2013-12-13 12:15 - 00018342 _____ C:\ComboFix.txt
2013-12-13 12:15 - 2013-12-13 11:58 - 00000000 ____D C:\Qoobox
2013-12-13 12:15 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-12-13 12:12 - 2013-12-13 11:57 - 00000000 ____D C:\Windows\erdnt
2013-12-13 12:11 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-12-13 11:41 - 2013-12-13 11:41 - 00000000 ____D C:\Users\Beata\AppData\Roaming\Malwarebytes
2013-12-13 11:41 - 2013-12-13 11:41 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-13 11:41 - 2013-12-13 11:41 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-13 11:34 - 2013-12-09 13:50 - 00000000 ____D C:\Program Files (x86)\Wydawnictwo JUKA
2013-12-12 16:49 - 2009-07-14 05:45 - 04901200 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-12 13:26 - 2011-07-02 20:37 - 00085368 _____ C:\Users\Beata\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-12 13:09 - 2011-07-10 19:06 - 00000000 ____D C:\ProgramData\Autodesk
2013-12-12 13:09 - 2011-07-10 19:06 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2013-12-11 18:58 - 2013-09-08 19:55 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 18:58 - 2013-09-08 19:55 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 18:58 - 2011-07-10 18:56 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-09 13:56 - 2013-12-09 13:56 - 00000000 ____D C:\Users\Beata\Documents\Rosnij z Juka
2013-12-06 12:11 - 2013-12-06 12:06 - 00000000 ____D C:\Program Files (x86)\Easy CD & DVD Cover Creator
2013-12-06 10:23 - 2013-10-06 17:56 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-06 10:23 - 2013-10-06 17:56 - 00000000 ____D C:\ProgramData\Skype
2013-12-02 15:22 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-29 10:52 - 2011-07-02 19:30 - 00001417 _____ C:\Users\Beata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-29 10:52 - 2011-07-02 19:30 - 00000000 ___RD C:\Users\Beata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-29 10:52 - 2011-07-02 19:30 - 00000000 ___RD C:\Users\Beata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

Some content of TEMP:
====================
C:\Users\Beata\AppData\Local\Temp\nvSCPAPISvr.exe
C:\Users\Beata\AppData\Local\Temp\nvStInst.exe
C:\Users\Beata\AppData\Local\Temp\Quarantine.exe
C:\Users\Beata\AppData\Local\Temp\tbuTo0.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-25 20:49

==================== End Of Log ============================