Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-01-2014 01
Ran by Jaca (administrator) on ABC-A9FD6D35F2A on 25-01-2014 22:33:37
Running from C:\Documents and Settings\Jaca\Pulpit
Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) ===================

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.exe
() C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(HP) C:\WINDOWS\system32\HPZipm12.exe
() C:\WINDOWS\system32\PnkBstrA.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Rocket Division Software) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [16871936 2008-06-13] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Alcmtr] - C:\WINDOWS\ALCMTR.EXE [69632 2005-05-03] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Six Engine] - C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe [5625344 2008-06-25] ()
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2012-11-16] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2005-05-11] (Hewlett-Packard Co.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-11-26] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
MountPoints2: {2c57e0b0-acd8-11e2-bf57-002215a35341} - H:\setup.exe
MountPoints2: {99709426-ec60-11e2-8018-002215a35341} - I:\Installer.exe
MountPoints2: {99709427-ec60-11e2-8018-002215a35341} - J:\Setup.exe
HKU\Default User\...\RunOnce: [NeroHomeFirstStart] - C:\Program Files\Common Files\Ahead\Lib\NMFirstStart.exe [ 2007-06-27] (Nero AG)
HKU\jacek\...\Run: [Sony PC Companion] - C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [ 2013-05-29] (Sony)
HKU\jacek\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [ 2011-03-04] (Hewlett-Packard Company)
HKU\jacek\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [ 2007-06-27] (Nero AG)
AppInit_DLLs: c:\progra~1\gse7cc~1.ena => C:\Program Files\GS.Enabler [3041792 2013-12-31] ()
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: YoutubeAdblocker - {8B23AAA6-1252-2C34-30CF-F3C3781D91F4} - C:\Program Files\YoutubeAdblocker\YVg_9Xz08.dll ()
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: greatsoaver - {C1705FC2-EEEE-8BA8-B685-591E44F76999} - C:\Program Files\greatsoaver\WtWgGA2.dll ()
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Jaca\Dane aplikacji\Mozilla\Firefox\Profiles\ariv16vj.default
FF Homepage: hxxp://www.forexcupyoung.pl/
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll (BitComet)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Extension: Battlefield Play4Free - C:\Documents and Settings\Jaca\Dane aplikacji\Mozilla\Firefox\Profiles\ariv16vj.default\Extensions\battlefieldplay4free@ea.com [2013-12-21]
FF Extension: greaTSaver - C:\Documents and Settings\Jaca\Dane aplikacji\Mozilla\Firefox\Profiles\ariv16vj.default\Extensions\hqtx@klmv.co.uk [2013-12-31]
FF Extension: YoutubeAdblocker - C:\Documents and Settings\Jaca\Dane aplikacji\Mozilla\Firefox\Profiles\ariv16vj.default\Extensions\uu55yspjq@za-aqgjh.org [2013-12-31]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-11-26]

========================== Services (Whitelisted) =================

R2 916e5338; C:\Program Files\GSSvc.dll [146768 2013-12-31] ()
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2008-06-02] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-11-26] (AVAST Software)
S3 BRSptSvc; C:\Documents and Settings\All Users\Dane aplikacji\BitRaider\BRSptSvc.exe [477960 2013-12-21] (BitRaider, LLC)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2013-09-19] (Oracle Corporation)
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [75064 2013-12-21] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [254552 2012-09-11] ()
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
R2 StarWindService; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe [217600 2005-04-02] (Rocket Division Software)

==================== Drivers (Whitelisted) ====================

R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [19200 2005-10-27] (SlySoft, Inc.)
R1 AsIO; C:\Windows\System32\drivers\AsIO.sys [12400 2007-12-17] ()
R2 aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [35656 2013-11-26] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2013-11-26] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2013-11-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2013-11-26] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [774392 2013-11-26] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [403440 2013-11-26] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2013-11-26] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178304 2013-11-26] ()
S3 BRDriver; c:\Documents and Settings\All Users\Dane aplikacji\BitRaider\BRDriver.sys [64808 2013-12-21] (BitRaider)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R2 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [10624 2005-04-21] (Elaborate Bytes AG)
R3 ElbyDelay; C:\Windows\System32\Drivers\ElbyDelay.sys [4608 2005-04-12] (Elaborate Bytes AG)
R3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [51120 2005-03-08] (HP)
R3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2005-03-08] (HP)
R3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21744 2005-03-08] (HP)
R3 L1e; C:\Windows\System32\DRIVERS\l1e51x86.sys [36864 2008-06-25] (Atheros Communications, Inc.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 V0260VID; C:\Windows\System32\DRIVERS\V0260Vid.sys [162176 2006-04-01] (Creative Technology Ltd.)
R0 vax347b; C:\Windows\System32\DRIVERS\vax347b.sys [159616 2005-07-08] ( )
R0 vax347s; C:\Windows\System32\Drivers\vax347s.sys [5248 2004-04-30] ( )
S4 IntelIde; No ImagePath
S3 k750bus; system32\DRIVERS\k750bus.sys [x]
S3 k750mdfl; system32\DRIVERS\k750mdfl.sys [x]
S3 k750mdm; system32\DRIVERS\k750mdm.sys [x]
S3 k750mgmt; system32\DRIVERS\k750mgmt.sys [x]
S3 k750obex; system32\DRIVERS\k750obex.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; 
U3 uwddifoc; \??\C:\DOCUME~1\Jaca\USTAWI~1\Temp\uwddifoc.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-25 22:33 - 2014-01-25 22:33 - 00012394 _____ C:\Documents and Settings\Jaca\Pulpit\FRST.txt
2014-01-25 22:32 - 2014-01-25 22:32 - 00000000 ____D C:\FRST
2014-01-25 22:31 - 2014-01-25 22:31 - 00052288 _____ C:\Documents and Settings\Jaca\Pulpit\gmer.txt
2014-01-25 19:58 - 2014-01-21 21:56 - 00380416 _____ C:\Documents and Settings\Jaca\Pulpit\gmer.exe
2014-01-25 19:57 - 2014-01-25 19:57 - 01222144 _____ (Farbar) C:\Documents and Settings\Jaca\Pulpit\FRST.exe
2014-01-20 19:33 - 2014-01-23 21:11 - 00000159 _____ C:\WINDOWS\wiadebug.log
2014-01-20 19:33 - 2014-01-23 21:11 - 00000050 _____ C:\WINDOWS\wiaservc.log
2014-01-20 19:33 - 2014-01-20 19:33 - 00000000 _____ C:\WINDOWS\Sti_Trace.log
2014-01-20 19:25 - 2014-01-20 19:25 - 23637813 _____ C:\Documents and Settings\Jaca\Pulpit\cwiczenia.rar
2014-01-18 15:01 - 2014-01-24 17:51 - 00007726 _____ C:\WINDOWS\setupapi.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00006183 _____ C:\WINDOWS\FaxSetup.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00002956 _____ C:\WINDOWS\ocgen.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00002367 _____ C:\WINDOWS\tsoc.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00001993 _____ C:\WINDOWS\comsetup.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00001374 _____ C:\WINDOWS\imsins.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00001211 _____ C:\WINDOWS\ntdtcsetup.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00000969 _____ C:\WINDOWS\iis6.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00000386 _____ C:\WINDOWS\ocmsn.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00000309 _____ C:\WINDOWS\msgsocm.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2014-01-18 15:01 - 2014-01-18 15:01 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00000000 _____ C:\WINDOWS\setupact.log
2014-01-18 15:00 - 2014-01-18 15:01 - 00004367 _____ C:\WINDOWS\KB2914368.log
2014-01-18 14:53 - 2014-01-18 14:53 - 00000000 ____D C:\Documents and Settings\Jaca\Dane aplikacji\Subversion
2014-01-18 14:52 - 2014-01-20 00:05 - 00000000 ____D C:\Documents and Settings\Jaca\Moje dokumenty\MATLAB
2014-01-18 14:52 - 2014-01-18 14:52 - 00000000 ____D C:\Documents and Settings\Jaca\Dane aplikacji\MathWorks
2014-01-18 14:15 - 2014-01-18 14:15 - 00001431 _____ C:\WINDOWS\wmsetup.log
2014-01-11 20:05 - 2014-01-11 21:23 - 01472512 _____ C:\Documents and Settings\Jaca\Pulpit\Robimyyyyyy.xls
2014-01-03 21:40 - 2014-01-03 21:40 - 00000000 _____ C:\WINDOWS\SONYMAP.INI
2014-01-03 16:12 - 2014-01-03 16:13 - 00000000 ____D C:\Documents and Settings\Jaca\Pulpit\najlepszy rap
2014-01-03 13:53 - 2014-01-03 13:53 - 00000000 __SHD C:\found.001
2014-01-01 19:14 - 2014-01-23 23:57 - 00000000 ____D C:\Documents and Settings\Jaca\Dane aplikacji\Skype
2014-01-01 19:14 - 2014-01-23 20:50 - 00002267 _____ C:\Documents and Settings\All Users\Pulpit\Skype.lnk
2014-01-01 19:14 - 2014-01-01 19:14 - 00000000 ___RD C:\Program Files\Skype
2014-01-01 19:14 - 2014-01-01 19:14 - 00000000 ____D C:\Program Files\Common Files\Skype
2014-01-01 19:14 - 2014-01-01 19:14 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Skype
2014-01-01 19:13 - 2014-01-01 19:14 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Skype
2013-12-31 18:20 - 2013-12-31 18:20 - 03041792 _____ C:\Program Files\GS.Enabler
2013-12-31 18:20 - 2013-12-31 18:20 - 00146768 _____ C:\Program Files\GSSvc.dll
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Program Files\YoutubeAdblocker
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Program Files\greatsoaver
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Documents and Settings\Jaca\Dane aplikacji\SendSpace
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\YoutubeAdblocker
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\QuickSet
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\greatsoaver
2013-12-31 18:19 - 2013-12-31 18:20 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
2013-12-31 18:19 - 2013-12-31 18:20 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\251d516770173736
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Ustawienia lokalne
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik\Ustawienia lokalne
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Jaca\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Jaca\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Jaca\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość\Ustawienia lokalne
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET\Ustawienia lokalne
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator\Ustawienia lokalne
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator
2013-12-26 14:41 - 2013-12-26 14:50 - 00000151 _____ C:\WINDOWS\PhotoSnapViewer.INI

==================== One Month Modified Files and Folders =======

2014-01-25 22:33 - 2014-01-25 22:33 - 00012394 _____ C:\Documents and Settings\Jaca\Pulpit\FRST.txt
2014-01-25 22:33 - 2013-09-11 15:51 - 00000000 ____D C:\Documents and Settings\Jaca\Pulpit
2014-01-25 22:32 - 2014-01-25 22:32 - 00000000 ____D C:\FRST
2014-01-25 22:31 - 2014-01-25 22:31 - 00052288 _____ C:\Documents and Settings\Jaca\Pulpit\gmer.txt
2014-01-25 22:28 - 2013-04-23 17:21 - 00000930 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-25 20:00 - 2013-04-24 13:36 - 00000366 _____ C:\WINDOWS\Tasks\HPpromotions journeysoftware.job
2014-01-25 19:57 - 2014-01-25 19:57 - 01222144 _____ (Farbar) C:\Documents and Settings\Jaca\Pulpit\FRST.exe
2014-01-25 19:55 - 2013-10-17 10:10 - 00000544 _____ C:\WINDOWS\Tasks\MATLAB R2012b Startup Accelerator.job
2014-01-25 19:55 - 2013-04-23 16:47 - 01684376 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-25 19:54 - 2013-11-26 11:29 - 00000360 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-01-25 19:53 - 2013-04-23 16:50 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-25 18:10 - 2013-04-23 17:22 - 00196608 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2014-01-25 18:09 - 2013-09-11 15:51 - 00000000 ____D C:\Documents and Settings\Jaca\Dane aplikacji\Apple Computer
2014-01-24 17:51 - 2014-01-18 15:01 - 00007726 _____ C:\WINDOWS\setupapi.log
2014-01-23 23:57 - 2014-01-01 19:14 - 00000000 ____D C:\Documents and Settings\Jaca\Dane aplikacji\Skype
2014-01-23 21:12 - 2013-09-11 15:51 - 00000000 ___RD C:\Documents and Settings\Jaca\Moje dokumenty\Moje obrazy
2014-01-23 21:11 - 2014-01-20 19:33 - 00000159 _____ C:\WINDOWS\wiadebug.log
2014-01-23 21:11 - 2014-01-20 19:33 - 00000050 _____ C:\WINDOWS\wiaservc.log
2014-01-23 20:50 - 2014-01-01 19:14 - 00002267 _____ C:\Documents and Settings\All Users\Pulpit\Skype.lnk
2014-01-23 20:00 - 2013-04-23 16:50 - 00031888 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-23 18:48 - 2006-03-02 13:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2014-01-21 21:56 - 2014-01-25 19:58 - 00380416 _____ C:\Documents and Settings\Jaca\Pulpit\gmer.exe
2014-01-21 09:08 - 2013-09-12 15:44 - 00000664 _____ C:\WINDOWS\system32\d3d9caps.dat
2014-01-20 19:33 - 2014-01-20 19:33 - 00000000 _____ C:\WINDOWS\Sti_Trace.log
2014-01-20 19:25 - 2014-01-20 19:25 - 23637813 _____ C:\Documents and Settings\Jaca\Pulpit\cwiczenia.rar
2014-01-20 00:05 - 2014-01-18 14:52 - 00000000 ____D C:\Documents and Settings\Jaca\Moje dokumenty\MATLAB
2014-01-18 20:10 - 2013-09-11 15:51 - 00000188 ___SH C:\Documents and Settings\Jaca\ntuser.ini
2014-01-18 15:07 - 2013-11-05 10:41 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-18 15:01 - 2014-01-18 15:01 - 00006183 _____ C:\WINDOWS\FaxSetup.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00002956 _____ C:\WINDOWS\ocgen.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00002367 _____ C:\WINDOWS\tsoc.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00001993 _____ C:\WINDOWS\comsetup.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00001374 _____ C:\WINDOWS\imsins.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00001211 _____ C:\WINDOWS\ntdtcsetup.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00000969 _____ C:\WINDOWS\iis6.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00000386 _____ C:\WINDOWS\ocmsn.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00000309 _____ C:\WINDOWS\msgsocm.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2014-01-18 15:01 - 2014-01-18 15:01 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-18 15:01 - 2014-01-18 15:01 - 00000000 _____ C:\WINDOWS\setupact.log
2014-01-18 15:01 - 2014-01-18 15:00 - 00004367 _____ C:\WINDOWS\KB2914368.log
2014-01-18 15:01 - 2013-09-18 17:12 - 83425928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-18 14:53 - 2014-01-18 14:53 - 00000000 ____D C:\Documents and Settings\Jaca\Dane aplikacji\Subversion
2014-01-18 14:53 - 2013-09-11 15:51 - 00000000 __RHD C:\Documents and Settings\Jaca\Dane aplikacji
2014-01-18 14:52 - 2014-01-18 14:52 - 00000000 ____D C:\Documents and Settings\Jaca\Dane aplikacji\MathWorks
2014-01-18 14:52 - 2013-09-11 15:51 - 00000000 ___RD C:\Documents and Settings\Jaca\Moje dokumenty
2014-01-18 14:15 - 2014-01-18 14:15 - 00001431 _____ C:\WINDOWS\wmsetup.log
2014-01-17 10:21 - 2013-09-11 15:51 - 00000000 ____D C:\Documents and Settings\Jaca
2014-01-15 22:10 - 2013-09-12 16:06 - 00019968 _____ C:\Documents and Settings\Jaca\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-01-15 22:06 - 2013-04-23 18:39 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy
2014-01-15 22:06 - 2013-04-23 17:33 - 00002347 _____ C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader XI.lnk
2014-01-11 21:23 - 2014-01-11 20:05 - 01472512 _____ C:\Documents and Settings\Jaca\Pulpit\Robimyyyyyy.xls
2014-01-06 00:29 - 2013-05-23 19:19 - 00000000 ____D C:\Documents and Settings\Jaca\Moje dokumenty\FIFA 13
2014-01-06 00:29 - 2013-04-23 17:15 - 00000000 ____D C:\Documents and Settings\Jaca\Moje dokumenty\Pobieranie
2014-01-04 12:45 - 2013-09-18 19:05 - 00000069 ____C C:\WINDOWS\NeroDigital.ini
2014-01-03 21:40 - 2014-01-03 21:40 - 00000000 _____ C:\WINDOWS\SONYMAP.INI
2014-01-03 21:38 - 2013-09-18 19:06 - 00000084 _____ C:\Documents and Settings\Jaca\default.pls
2014-01-03 16:13 - 2014-01-03 16:12 - 00000000 ____D C:\Documents and Settings\Jaca\Pulpit\najlepszy rap
2014-01-03 13:53 - 2014-01-03 13:53 - 00000000 __SHD C:\found.001
2014-01-01 19:14 - 2014-01-01 19:14 - 00000000 ___RD C:\Program Files\Skype
2014-01-01 19:14 - 2014-01-01 19:14 - 00000000 ____D C:\Program Files\Common Files\Skype
2014-01-01 19:14 - 2014-01-01 19:14 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Skype
2014-01-01 19:14 - 2014-01-01 19:13 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Skype
2014-01-01 19:14 - 2013-04-23 18:39 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit
2014-01-01 19:13 - 2013-04-23 18:39 - 00000000 __RHD C:\Documents and Settings\All Users\Dane aplikacji
2014-01-01 14:19 - 2013-09-11 15:51 - 00000000 ___HD C:\Documents and Settings\Jaca\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:20 - 2013-12-31 18:20 - 03041792 _____ C:\Program Files\GS.Enabler
2013-12-31 18:20 - 2013-12-31 18:20 - 00146768 _____ C:\Program Files\GSSvc.dll
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Program Files\YoutubeAdblocker
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Program Files\greatsoaver
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Documents and Settings\Jaca\Dane aplikacji\SendSpace
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\YoutubeAdblocker
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\QuickSet
2013-12-31 18:20 - 2013-12-31 18:20 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\greatsoaver
2013-12-31 18:20 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\InstallMate
2013-12-31 18:20 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\251d516770173736
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Ustawienia lokalne
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik\Ustawienia lokalne
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Pomocnik
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Jaca\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Jaca\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Jaca\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość\Ustawienia lokalne
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Gość
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET\Ustawienia lokalne
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\ASPNET
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Torch
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Comodo
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator\Ustawienia lokalne
2013-12-31 18:19 - 2013-12-31 18:19 - 00000000 ____D C:\Documents and Settings\Administrator
2013-12-31 12:17 - 2013-04-23 16:46 - 00000000 ____D C:\WINDOWS\system32\Restore
2013-12-26 14:50 - 2013-12-26 14:41 - 00000151 _____ C:\WINDOWS\PhotoSnapViewer.INI

Some content of TEMP:
====================
C:\Documents and Settings\Jaca\Ustawienia lokalne\Temp\FastDownload.exe
C:\Documents and Settings\jacek\Ustawienia lokalne\Temp\KMP_3.2.0.0.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2006-03-02 13:00] - [2008-04-14 21:51] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\Windows\System32\winlogon.exe
[2006-03-02 13:00] - [2008-04-14 21:51] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\Windows\System32\svchost.exe
[2006-03-02 13:00] - [2008-04-14 21:51] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\Windows\System32\services.exe
[2006-03-02 13:00] - [2009-02-09 12:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f 

C:\Windows\System32\User32.dll
[2006-03-02 13:00] - [2008-04-14 21:50] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\Windows\System32\userinit.exe
[2006-03-02 13:00] - [2008-04-14 21:51] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\Windows\System32\rpcss.dll
[2006-03-02 13:00] - [2009-02-09 11:53] - 0401408 ____A (Microsoft Corporation) a37311d9d628c1042a2836731787f0f3 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\Windows\System32\Drivers\volsnap.sys
[2006-03-02 13:00] - [2008-04-14 20:31] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================